incapsula 3.37.0 published on Sunday, Jan 18, 2026 by imperva
incapsula 3.37.0 published on Sunday, Jan 18, 2026 by imperva
Provides an Incapsula Site SSL Settings resource.
In this resource you can configure:
- HSTS: A security mechanism enabling websites to announce themselves as accessible only via HTTPS. For more information about HSTS, click here.
- TLS settings: Define the supported TLS version and cipher suites used for encryption of the TLS handshake between client and Imperva. For more information about supported TLS versions and ciphers, click here.
If you run the SSL settings resource from a site for which SSL is not yet enabled and the SSL certificate is not approved, it will result in the following error response:
status:406message:Site does not have SSL configured- To enable this feature for your site, you must first configure its SSL settings including a valid certificate.
Create SiteSslSettings Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SiteSslSettings(name: string, args: SiteSslSettingsArgs, opts?: CustomResourceOptions);@overload
def SiteSslSettings(resource_name: str,
args: SiteSslSettingsArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SiteSslSettings(resource_name: str,
opts: Optional[ResourceOptions] = None,
site_id: Optional[float] = None,
account_id: Optional[float] = None,
disable_pqc_support: Optional[bool] = None,
hsts: Optional[Sequence[SiteSslSettingsHstArgs]] = None,
inbound_tls_settings: Optional[Sequence[SiteSslSettingsInboundTlsSettingArgs]] = None,
site_ssl_settings_id: Optional[str] = None)func NewSiteSslSettings(ctx *Context, name string, args SiteSslSettingsArgs, opts ...ResourceOption) (*SiteSslSettings, error)public SiteSslSettings(string name, SiteSslSettingsArgs args, CustomResourceOptions? opts = null)
public SiteSslSettings(String name, SiteSslSettingsArgs args)
public SiteSslSettings(String name, SiteSslSettingsArgs args, CustomResourceOptions options)
type: incapsula:SiteSslSettings
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SiteSslSettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SiteSslSettingsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SiteSslSettingsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SiteSslSettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SiteSslSettingsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var siteSslSettingsResource = new Incapsula.SiteSslSettings("siteSslSettingsResource", new()
{
SiteId = 0,
AccountId = 0,
DisablePqcSupport = false,
Hsts = new[]
{
new Incapsula.Inputs.SiteSslSettingsHstArgs
{
IsEnabled = false,
MaxAge = 0,
PreLoaded = false,
SubDomainsIncluded = false,
},
},
InboundTlsSettings = new[]
{
new Incapsula.Inputs.SiteSslSettingsInboundTlsSettingArgs
{
ConfigurationProfile = "string",
TlsConfigurations = new[]
{
new Incapsula.Inputs.SiteSslSettingsInboundTlsSettingTlsConfigurationArgs
{
CiphersSupports = new[]
{
"string",
},
TlsVersion = "string",
},
},
},
},
SiteSslSettingsId = "string",
});
example, err := incapsula.NewSiteSslSettings(ctx, "siteSslSettingsResource", &incapsula.SiteSslSettingsArgs{
SiteId: pulumi.Float64(0),
AccountId: pulumi.Float64(0),
DisablePqcSupport: pulumi.Bool(false),
Hsts: incapsula.SiteSslSettingsHstArray{
&incapsula.SiteSslSettingsHstArgs{
IsEnabled: pulumi.Bool(false),
MaxAge: pulumi.Float64(0),
PreLoaded: pulumi.Bool(false),
SubDomainsIncluded: pulumi.Bool(false),
},
},
InboundTlsSettings: incapsula.SiteSslSettingsInboundTlsSettingArray{
&incapsula.SiteSslSettingsInboundTlsSettingArgs{
ConfigurationProfile: pulumi.String("string"),
TlsConfigurations: incapsula.SiteSslSettingsInboundTlsSettingTlsConfigurationArray{
&incapsula.SiteSslSettingsInboundTlsSettingTlsConfigurationArgs{
CiphersSupports: pulumi.StringArray{
pulumi.String("string"),
},
TlsVersion: pulumi.String("string"),
},
},
},
},
SiteSslSettingsId: pulumi.String("string"),
})
var siteSslSettingsResource = new SiteSslSettings("siteSslSettingsResource", SiteSslSettingsArgs.builder()
.siteId(0.0)
.accountId(0.0)
.disablePqcSupport(false)
.hsts(SiteSslSettingsHstArgs.builder()
.isEnabled(false)
.maxAge(0.0)
.preLoaded(false)
.subDomainsIncluded(false)
.build())
.inboundTlsSettings(SiteSslSettingsInboundTlsSettingArgs.builder()
.configurationProfile("string")
.tlsConfigurations(SiteSslSettingsInboundTlsSettingTlsConfigurationArgs.builder()
.ciphersSupports("string")
.tlsVersion("string")
.build())
.build())
.siteSslSettingsId("string")
.build());
site_ssl_settings_resource = incapsula.SiteSslSettings("siteSslSettingsResource",
site_id=0,
account_id=0,
disable_pqc_support=False,
hsts=[{
"is_enabled": False,
"max_age": 0,
"pre_loaded": False,
"sub_domains_included": False,
}],
inbound_tls_settings=[{
"configuration_profile": "string",
"tls_configurations": [{
"ciphers_supports": ["string"],
"tls_version": "string",
}],
}],
site_ssl_settings_id="string")
const siteSslSettingsResource = new incapsula.SiteSslSettings("siteSslSettingsResource", {
siteId: 0,
accountId: 0,
disablePqcSupport: false,
hsts: [{
isEnabled: false,
maxAge: 0,
preLoaded: false,
subDomainsIncluded: false,
}],
inboundTlsSettings: [{
configurationProfile: "string",
tlsConfigurations: [{
ciphersSupports: ["string"],
tlsVersion: "string",
}],
}],
siteSslSettingsId: "string",
});
type: incapsula:SiteSslSettings
properties:
accountId: 0
disablePqcSupport: false
hsts:
- isEnabled: false
maxAge: 0
preLoaded: false
subDomainsIncluded: false
inboundTlsSettings:
- configurationProfile: string
tlsConfigurations:
- ciphersSupports:
- string
tlsVersion: string
siteId: 0
siteSslSettingsId: string
SiteSslSettings Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SiteSslSettings resource accepts the following input properties:
- Site
Id double - Numeric identifier of the site to operate on.
- Account
Id double - Numeric identifier of the account in which the site is located.
- Disable
Pqc boolSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- Hsts
List<Site
Ssl Settings Hst> - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- Inbound
Tls List<SiteSettings Ssl Settings Inbound Tls Setting> - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- Site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- Site
Id float64 - Numeric identifier of the site to operate on.
- Account
Id float64 - Numeric identifier of the account in which the site is located.
- Disable
Pqc boolSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- Hsts
[]Site
Ssl Settings Hst Args - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- Inbound
Tls []SiteSettings Ssl Settings Inbound Tls Setting Args - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- Site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- site
Id Double - Numeric identifier of the site to operate on.
- account
Id Double - Numeric identifier of the account in which the site is located.
- disable
Pqc BooleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
List<Site
Ssl Settings Hst> - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls List<SiteSettings Ssl Settings Inbound Tls Setting> - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Ssl StringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- site
Id number - Numeric identifier of the site to operate on.
- account
Id number - Numeric identifier of the account in which the site is located.
- disable
Pqc booleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
Site
Ssl Settings Hst[] - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls SiteSettings Ssl Settings Inbound Tls Setting[] - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- site_
id float - Numeric identifier of the site to operate on.
- account_
id float - Numeric identifier of the account in which the site is located.
- disable_
pqc_ boolsupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
Sequence[Site
Ssl Settings Hst Args] - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound_
tls_ Sequence[Sitesettings Ssl Settings Inbound Tls Setting Args] - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site_
ssl_ strsettings_ id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- site
Id Number - Numeric identifier of the site to operate on.
- account
Id Number - Numeric identifier of the account in which the site is located.
- disable
Pqc BooleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts List<Property Map>
- : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls List<Property Map>Settings - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Ssl StringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
Outputs
All input properties are implicitly available as output properties. Additionally, the SiteSslSettings resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing SiteSslSettings Resource
Get an existing SiteSslSettings resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SiteSslSettingsState, opts?: CustomResourceOptions): SiteSslSettings@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[float] = None,
disable_pqc_support: Optional[bool] = None,
hsts: Optional[Sequence[SiteSslSettingsHstArgs]] = None,
inbound_tls_settings: Optional[Sequence[SiteSslSettingsInboundTlsSettingArgs]] = None,
site_id: Optional[float] = None,
site_ssl_settings_id: Optional[str] = None) -> SiteSslSettingsfunc GetSiteSslSettings(ctx *Context, name string, id IDInput, state *SiteSslSettingsState, opts ...ResourceOption) (*SiteSslSettings, error)public static SiteSslSettings Get(string name, Input<string> id, SiteSslSettingsState? state, CustomResourceOptions? opts = null)public static SiteSslSettings get(String name, Output<String> id, SiteSslSettingsState state, CustomResourceOptions options)resources: _: type: incapsula:SiteSslSettings get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id double - Numeric identifier of the account in which the site is located.
- Disable
Pqc boolSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- Hsts
List<Site
Ssl Settings Hst> - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- Inbound
Tls List<SiteSettings Ssl Settings Inbound Tls Setting> - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- Site
Id double - Numeric identifier of the site to operate on.
- Site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- Account
Id float64 - Numeric identifier of the account in which the site is located.
- Disable
Pqc boolSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- Hsts
[]Site
Ssl Settings Hst Args - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- Inbound
Tls []SiteSettings Ssl Settings Inbound Tls Setting Args - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- Site
Id float64 - Numeric identifier of the site to operate on.
- Site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- account
Id Double - Numeric identifier of the account in which the site is located.
- disable
Pqc BooleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
List<Site
Ssl Settings Hst> - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls List<SiteSettings Ssl Settings Inbound Tls Setting> - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Id Double - Numeric identifier of the site to operate on.
- site
Ssl StringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- account
Id number - Numeric identifier of the account in which the site is located.
- disable
Pqc booleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
Site
Ssl Settings Hst[] - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls SiteSettings Ssl Settings Inbound Tls Setting[] - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Id number - Numeric identifier of the site to operate on.
- site
Ssl stringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- account_
id float - Numeric identifier of the account in which the site is located.
- disable_
pqc_ boolsupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts
Sequence[Site
Ssl Settings Hst Args] - : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound_
tls_ Sequence[Sitesettings Ssl Settings Inbound Tls Setting Args] - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site_
id float - Numeric identifier of the site to operate on.
- site_
ssl_ strsettings_ id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
- account
Id Number - Numeric identifier of the account in which the site is located.
- disable
Pqc BooleanSupport - : Disable Post-Quantum Cryptography support for SNI traffic.
- Type:
bool - Default:
false
- Type:
- hsts List<Property Map>
- : HTTP Strict Transport Security (HSTS) configuration settings for the site.
- Type:
setofhsts_configresource (defined below)
- Type:
- inbound
Tls List<Property Map>Settings - : Transport Layer Security (TLS) configuration settings for the site.
- Type:
setofinbound_tls_settingsresource (defined below)
- Type:
- site
Id Number - Numeric identifier of the site to operate on.
- site
Ssl StringSettings Id - Unique identifier in the API for the Site SSL settings. The id is identical to Site id.
Supporting Types
SiteSslSettingsHst, SiteSslSettingsHstArgs
- Is
Enabled bool - Max
Age double - Pre
Loaded bool - Sub
Domains boolIncluded
- Is
Enabled bool - Max
Age float64 - Pre
Loaded bool - Sub
Domains boolIncluded
- is
Enabled Boolean - max
Age Double - pre
Loaded Boolean - sub
Domains BooleanIncluded
- is
Enabled boolean - max
Age number - pre
Loaded boolean - sub
Domains booleanIncluded
- is_
enabled bool - max_
age float - pre_
loaded bool - sub_
domains_ boolincluded
- is
Enabled Boolean - max
Age Number - pre
Loaded Boolean - sub
Domains BooleanIncluded
SiteSslSettingsInboundTlsSetting, SiteSslSettingsInboundTlsSettingArgs
SiteSslSettingsInboundTlsSettingTlsConfiguration, SiteSslSettingsInboundTlsSettingTlsConfigurationArgs
- Ciphers
Supports List<string> - Tls
Version string
- Ciphers
Supports []string - Tls
Version string
- ciphers
Supports List<String> - tls
Version String
- ciphers
Supports string[] - tls
Version string
- ciphers_
supports Sequence[str] - tls_
version str
- ciphers
Supports List<String> - tls
Version String
Import
Site SSL settings can be imported using the siteId or siteId/accountId for sub-accounts:
$ pulumi import incapsula:index/siteSslSettings:SiteSslSettings example 1234
$ pulumi import incapsula:index/siteSslSettings:SiteSslSettings example 1234/4321
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- incapsula imperva/terraform-provider-incapsula
- License
- Notes
- This Pulumi package is based on the
incapsulaTerraform Provider.
incapsula 3.37.0 published on Sunday, Jan 18, 2026 by imperva
