Docs Home
incapsula 3.33.0 published on Wednesday, Apr 30, 2025 by imperva
incapsula.AccountSslSettings
Explore with Pulumi AI
incapsula 3.33.0 published on Wednesday, Apr 30, 2025 by imperva
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as incapsula from "@pulumi/incapsula";
const ssl_52546413 = new incapsula.AccountSslSettings("ssl-52546413", {
accountId: "123",
addNakedDomainSanForWwwSites: false,
allowCnameValidation: true,
allowSupportOldTlsVersions: false,
allowedDomainForCnameValidations: [
{
name: "example.com",
},
{
name: "example2.com",
},
],
enableHstsForNewSites: true,
useWildCardSanInsteadOfFqdn: true,
});
import pulumi
import pulumi_incapsula as incapsula
ssl_52546413 = incapsula.AccountSslSettings("ssl-52546413",
account_id="123",
add_naked_domain_san_for_www_sites=False,
allow_cname_validation=True,
allow_support_old_tls_versions=False,
allowed_domain_for_cname_validations=[
{
"name": "example.com",
},
{
"name": "example2.com",
},
],
enable_hsts_for_new_sites=True,
use_wild_card_san_instead_of_fqdn=True)
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/incapsula/v3/incapsula"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := incapsula.NewAccountSslSettings(ctx, "ssl-52546413", &incapsula.AccountSslSettingsArgs{
AccountId: pulumi.String("123"),
AddNakedDomainSanForWwwSites: pulumi.Bool(false),
AllowCnameValidation: pulumi.Bool(true),
AllowSupportOldTlsVersions: pulumi.Bool(false),
AllowedDomainForCnameValidations: incapsula.AccountSslSettingsAllowedDomainForCnameValidationArray{
&incapsula.AccountSslSettingsAllowedDomainForCnameValidationArgs{
Name: pulumi.String("example.com"),
},
&incapsula.AccountSslSettingsAllowedDomainForCnameValidationArgs{
Name: pulumi.String("example2.com"),
},
},
EnableHstsForNewSites: pulumi.Bool(true),
UseWildCardSanInsteadOfFqdn: pulumi.Bool(true),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Incapsula = Pulumi.Incapsula;
return await Deployment.RunAsync(() =>
{
var ssl_52546413 = new Incapsula.AccountSslSettings("ssl-52546413", new()
{
AccountId = "123",
AddNakedDomainSanForWwwSites = false,
AllowCnameValidation = true,
AllowSupportOldTlsVersions = false,
AllowedDomainForCnameValidations = new[]
{
new Incapsula.Inputs.AccountSslSettingsAllowedDomainForCnameValidationArgs
{
Name = "example.com",
},
new Incapsula.Inputs.AccountSslSettingsAllowedDomainForCnameValidationArgs
{
Name = "example2.com",
},
},
EnableHstsForNewSites = true,
UseWildCardSanInsteadOfFqdn = true,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.incapsula.AccountSslSettings;
import com.pulumi.incapsula.AccountSslSettingsArgs;
import com.pulumi.incapsula.inputs.AccountSslSettingsAllowedDomainForCnameValidationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var ssl_52546413 = new AccountSslSettings("ssl-52546413", AccountSslSettingsArgs.builder()
.accountId(123)
.addNakedDomainSanForWwwSites(false)
.allowCnameValidation(true)
.allowSupportOldTlsVersions(false)
.allowedDomainForCnameValidations(
AccountSslSettingsAllowedDomainForCnameValidationArgs.builder()
.name("example.com")
.build(),
AccountSslSettingsAllowedDomainForCnameValidationArgs.builder()
.name("example2.com")
.build())
.enableHstsForNewSites(true)
.useWildCardSanInsteadOfFqdn(true)
.build());
}
}
resources:
ssl-52546413:
type: incapsula:AccountSslSettings
properties:
accountId: 123
addNakedDomainSanForWwwSites: false
allowCnameValidation: true
allowSupportOldTlsVersions: false
allowedDomainForCnameValidations:
- name: example.com
- name: example2.com
enableHstsForNewSites: true
useWildCardSanInsteadOfFqdn: true
Create AccountSslSettings Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AccountSslSettings(name: string, args: AccountSslSettingsArgs, opts?: CustomResourceOptions);@overload
def AccountSslSettings(resource_name: str,
args: AccountSslSettingsArgs,
opts: Optional[ResourceOptions] = None)
@overload
def AccountSslSettings(resource_name: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
account_ssl_settings_id: Optional[str] = None,
add_naked_domain_san_for_www_sites: Optional[bool] = None,
allow_cname_validation: Optional[bool] = None,
allow_support_old_tls_versions: Optional[bool] = None,
allowed_domain_for_cname_validations: Optional[Sequence[AccountSslSettingsAllowedDomainForCnameValidationArgs]] = None,
enable_hsts_for_new_sites: Optional[bool] = None,
use_wild_card_san_instead_of_fqdn: Optional[bool] = None)func NewAccountSslSettings(ctx *Context, name string, args AccountSslSettingsArgs, opts ...ResourceOption) (*AccountSslSettings, error)public AccountSslSettings(string name, AccountSslSettingsArgs args, CustomResourceOptions? opts = null)
public AccountSslSettings(String name, AccountSslSettingsArgs args)
public AccountSslSettings(String name, AccountSslSettingsArgs args, CustomResourceOptions options)
type: incapsula:AccountSslSettings
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AccountSslSettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AccountSslSettingsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AccountSslSettingsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountSslSettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AccountSslSettingsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var accountSslSettingsResource = new Incapsula.AccountSslSettings("accountSslSettingsResource", new()
{
AccountId = "string",
AccountSslSettingsId = "string",
AddNakedDomainSanForWwwSites = false,
AllowCnameValidation = false,
AllowSupportOldTlsVersions = false,
AllowedDomainForCnameValidations = new[]
{
new Incapsula.Inputs.AccountSslSettingsAllowedDomainForCnameValidationArgs
{
Name = "string",
CnameRecordHost = "string",
CnameRecordValue = "string",
CreationDate = 0,
Id = 0,
LastStatusCheck = 0,
Status = "string",
StatusSince = 0,
},
},
EnableHstsForNewSites = false,
UseWildCardSanInsteadOfFqdn = false,
});
example, err := incapsula.NewAccountSslSettings(ctx, "accountSslSettingsResource", &incapsula.AccountSslSettingsArgs{
AccountId: pulumi.String("string"),
AccountSslSettingsId: pulumi.String("string"),
AddNakedDomainSanForWwwSites: pulumi.Bool(false),
AllowCnameValidation: pulumi.Bool(false),
AllowSupportOldTlsVersions: pulumi.Bool(false),
AllowedDomainForCnameValidations: incapsula.AccountSslSettingsAllowedDomainForCnameValidationArray{
&incapsula.AccountSslSettingsAllowedDomainForCnameValidationArgs{
Name: pulumi.String("string"),
CnameRecordHost: pulumi.String("string"),
CnameRecordValue: pulumi.String("string"),
CreationDate: pulumi.Float64(0),
Id: pulumi.Float64(0),
LastStatusCheck: pulumi.Float64(0),
Status: pulumi.String("string"),
StatusSince: pulumi.Float64(0),
},
},
EnableHstsForNewSites: pulumi.Bool(false),
UseWildCardSanInsteadOfFqdn: pulumi.Bool(false),
})
var accountSslSettingsResource = new AccountSslSettings("accountSslSettingsResource", AccountSslSettingsArgs.builder()
.accountId("string")
.accountSslSettingsId("string")
.addNakedDomainSanForWwwSites(false)
.allowCnameValidation(false)
.allowSupportOldTlsVersions(false)
.allowedDomainForCnameValidations(AccountSslSettingsAllowedDomainForCnameValidationArgs.builder()
.name("string")
.cnameRecordHost("string")
.cnameRecordValue("string")
.creationDate(0)
.id(0)
.lastStatusCheck(0)
.status("string")
.statusSince(0)
.build())
.enableHstsForNewSites(false)
.useWildCardSanInsteadOfFqdn(false)
.build());
account_ssl_settings_resource = incapsula.AccountSslSettings("accountSslSettingsResource",
account_id="string",
account_ssl_settings_id="string",
add_naked_domain_san_for_www_sites=False,
allow_cname_validation=False,
allow_support_old_tls_versions=False,
allowed_domain_for_cname_validations=[{
"name": "string",
"cname_record_host": "string",
"cname_record_value": "string",
"creation_date": 0,
"id": 0,
"last_status_check": 0,
"status": "string",
"status_since": 0,
}],
enable_hsts_for_new_sites=False,
use_wild_card_san_instead_of_fqdn=False)
const accountSslSettingsResource = new incapsula.AccountSslSettings("accountSslSettingsResource", {
accountId: "string",
accountSslSettingsId: "string",
addNakedDomainSanForWwwSites: false,
allowCnameValidation: false,
allowSupportOldTlsVersions: false,
allowedDomainForCnameValidations: [{
name: "string",
cnameRecordHost: "string",
cnameRecordValue: "string",
creationDate: 0,
id: 0,
lastStatusCheck: 0,
status: "string",
statusSince: 0,
}],
enableHstsForNewSites: false,
useWildCardSanInsteadOfFqdn: false,
});
type: incapsula:AccountSslSettings
properties:
accountId: string
accountSslSettingsId: string
addNakedDomainSanForWwwSites: false
allowCnameValidation: false
allowSupportOldTlsVersions: false
allowedDomainForCnameValidations:
- cnameRecordHost: string
cnameRecordValue: string
creationDate: 0
id: 0
lastStatusCheck: 0
name: string
status: string
statusSince: 0
enableHstsForNewSites: false
useWildCardSanInsteadOfFqdn: false
AccountSslSettings Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AccountSslSettings resource accepts the following input properties:
- Account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- Account
Ssl stringSettings Id - The domain id.
- Add
Naked boolDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- Allow
Cname boolValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- Allow
Support boolOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- Allowed
Domain List<AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation> Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- Enable
Hsts boolFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- Use
Wild boolCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- Account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- Account
Ssl stringSettings Id - The domain id.
- Add
Naked boolDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- Allow
Cname boolValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- Allow
Support boolOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- Allowed
Domain []AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation Args Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- Enable
Hsts boolFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- Use
Wild boolCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id String - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl StringSettings Id - The domain id.
- add
Naked BooleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname BooleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support BooleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain List<AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation> Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts BooleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild BooleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl stringSettings Id - The domain id.
- add
Naked booleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname booleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support booleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation[] Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts booleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild booleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account_
id str - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account_
ssl_ strsettings_ id - The domain id.
- add_
naked_ booldomain_ san_ for_ www_ sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow_
cname_ boolvalidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow_
support_ boolold_ tls_ versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed_
domain_ Sequence[Accountfor_ cname_ validations Ssl Settings Allowed Domain For Cname Validation Args] Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable_
hsts_ boolfor_ new_ sites - When true, enables HSTS support for newly created websites. Default: true.
- use_
wild_ boolcard_ san_ instead_ of_ fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id String - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl StringSettings Id - The domain id.
- add
Naked BooleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname BooleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support BooleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain List<Property Map>For Cname Validations Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts BooleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild BooleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
Outputs
All input properties are implicitly available as output properties. Additionally, the AccountSslSettings resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing AccountSslSettings Resource
Get an existing AccountSslSettings resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AccountSslSettingsState, opts?: CustomResourceOptions): AccountSslSettings@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
account_ssl_settings_id: Optional[str] = None,
add_naked_domain_san_for_www_sites: Optional[bool] = None,
allow_cname_validation: Optional[bool] = None,
allow_support_old_tls_versions: Optional[bool] = None,
allowed_domain_for_cname_validations: Optional[Sequence[AccountSslSettingsAllowedDomainForCnameValidationArgs]] = None,
enable_hsts_for_new_sites: Optional[bool] = None,
use_wild_card_san_instead_of_fqdn: Optional[bool] = None) -> AccountSslSettingsfunc GetAccountSslSettings(ctx *Context, name string, id IDInput, state *AccountSslSettingsState, opts ...ResourceOption) (*AccountSslSettings, error)public static AccountSslSettings Get(string name, Input<string> id, AccountSslSettingsState? state, CustomResourceOptions? opts = null)public static AccountSslSettings get(String name, Output<String> id, AccountSslSettingsState state, CustomResourceOptions options)resources: _: type: incapsula:AccountSslSettings get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- Account
Ssl stringSettings Id - The domain id.
- Add
Naked boolDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- Allow
Cname boolValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- Allow
Support boolOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- Allowed
Domain List<AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation> Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- Enable
Hsts boolFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- Use
Wild boolCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- Account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- Account
Ssl stringSettings Id - The domain id.
- Add
Naked boolDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- Allow
Cname boolValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- Allow
Support boolOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- Allowed
Domain []AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation Args Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- Enable
Hsts boolFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- Use
Wild boolCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id String - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl StringSettings Id - The domain id.
- add
Naked BooleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname BooleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support BooleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain List<AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation> Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts BooleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild BooleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id string - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl stringSettings Id - The domain id.
- add
Naked booleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname booleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support booleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain AccountFor Cname Validations Ssl Settings Allowed Domain For Cname Validation[] Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts booleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild booleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account_
id str - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account_
ssl_ strsettings_ id - The domain id.
- add_
naked_ booldomain_ san_ for_ www_ sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow_
cname_ boolvalidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow_
support_ boolold_ tls_ versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed_
domain_ Sequence[Accountfor_ cname_ validations Ssl Settings Allowed Domain For Cname Validation Args] Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable_
hsts_ boolfor_ new_ sites - When true, enables HSTS support for newly created websites. Default: true.
- use_
wild_ boolcard_ san_ instead_ of_ fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
- account
Id String - Numeric identifier of the account to operate on - a reference to the account datasource may be used.
- account
Ssl StringSettings Id - The domain id.
- add
Naked BooleanDomain San For Www Sites - Newly created WWW sites will have also naked domain SAN on the Imperva-generated certificate. Default: true.
- allow
Cname BooleanValidation - Delegate to Imperva the ability to automatically prove ownership of SANs under the domains in the allowed_domains_for_cname_validation list. Default: false.
- allow
Support BooleanOld Tls Versions - When true, sites under the account or sub-accounts can allow support of old TLS versions traffic. This can be configured only on the parent account level. Default: false.
- allowed
Domain List<Property Map>For Cname Validations Sub resources can be defined to set domains for automatic validation. allow-cname-validation must be set to true.
The following allowed_domain_for_cname_validation arguments are supported:
- enable
Hsts BooleanFor New Sites - When true, enables HSTS support for newly created websites. Default: true.
- use
Wild BooleanCard San Instead Of Fqdn - Newly created sites will use wildcard SAN instead of FQDN SAN on the Imperva-generated certificate. Default: true.
Supporting Types
AccountSslSettingsAllowedDomainForCnameValidation, AccountSslSettingsAllowedDomainForCnameValidationArgs
- Name string
- The domain name.
- Cname
Record stringHost - The CNAME record host to use.
- Cname
Record stringValue - The CNAME record value to use to configure this domain for delegation.
- Creation
Date double - The domain creation date.
- Id double
- The domain id.
- Last
Status doubleCheck - The date the domain status was last verified.
- Status string
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- Status
Since double - The date the domain status was last modified.
- Name string
- The domain name.
- Cname
Record stringHost - The CNAME record host to use.
- Cname
Record stringValue - The CNAME record value to use to configure this domain for delegation.
- Creation
Date float64 - The domain creation date.
- Id float64
- The domain id.
- Last
Status float64Check - The date the domain status was last verified.
- Status string
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- Status
Since float64 - The date the domain status was last modified.
- name String
- The domain name.
- cname
Record StringHost - The CNAME record host to use.
- cname
Record StringValue - The CNAME record value to use to configure this domain for delegation.
- creation
Date Double - The domain creation date.
- id Double
- The domain id.
- last
Status DoubleCheck - The date the domain status was last verified.
- status String
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- status
Since Double - The date the domain status was last modified.
- name string
- The domain name.
- cname
Record stringHost - The CNAME record host to use.
- cname
Record stringValue - The CNAME record value to use to configure this domain for delegation.
- creation
Date number - The domain creation date.
- id number
- The domain id.
- last
Status numberCheck - The date the domain status was last verified.
- status string
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- status
Since number - The date the domain status was last modified.
- name str
- The domain name.
- cname_
record_ strhost - The CNAME record host to use.
- cname_
record_ strvalue - The CNAME record value to use to configure this domain for delegation.
- creation_
date float - The domain creation date.
- id float
- The domain id.
- last_
status_ floatcheck - The date the domain status was last verified.
- status str
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- status_
since float - The date the domain status was last modified.
- name String
- The domain name.
- cname
Record StringHost - The CNAME record host to use.
- cname
Record StringValue - The CNAME record value to use to configure this domain for delegation.
- creation
Date Number - The domain creation date.
- id Number
- The domain id.
- last
Status NumberCheck - The date the domain status was last verified.
- status String
- The domain status. Possible values: CONFIGURED, NOT_CONFIGURED.
- status
Since Number - The date the domain status was last modified.
Import
Account SSL Settings Configuration can be imported using the account_id (id), e.g.:
$ pulumi import incapsula:index/accountSslSettings:AccountSslSettings example-terraform-account-ssl-settings-config 123
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- incapsula imperva/terraform-provider-incapsula
- License
- Notes
- This Pulumi package is based on the
incapsulaTerraform Provider.
incapsula 3.33.0 published on Wednesday, Apr 30, 2025 by imperva