intersight 1.0.64, Apr 30 25

intersight 1.0.64 published on Wednesday, Apr 30, 2025 by ciscodevnet

ciscodevnet/terraform-provider-intersight

intersight.FabricMacSecPolicy

Explore with Pulumi AI

intersight 1.0.64 published on Wednesday, Apr 30, 2025 by ciscodevnet

ciscodevnet/terraform-provider-intersight

Create FabricMacSecPolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new FabricMacSecPolicy(name: string, args?: FabricMacSecPolicyArgs, opts?: CustomResourceOptions);

@overload
def FabricMacSecPolicy(resource_name: str,
                       args: Optional[FabricMacSecPolicyArgs] = None,
                       opts: Optional[ResourceOptions] = None)

@overload
def FabricMacSecPolicy(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       account_moid: Optional[str] = None,
                       additional_properties: Optional[str] = None,
                       ancestors: Optional[Sequence[FabricMacSecPolicyAncestorArgs]] = None,
                       cipher_suite: Optional[str] = None,
                       class_id: Optional[str] = None,
                       confidentiality_offset: Optional[str] = None,
                       create_time: Optional[str] = None,
                       description: Optional[str] = None,
                       domain_group_moid: Optional[str] = None,
                       fabric_mac_sec_policy_id: Optional[str] = None,
                       fallback_key_chains: Optional[Sequence[FabricMacSecPolicyFallbackKeyChainArgs]] = None,
                       include_icv_indicator: Optional[bool] = None,
                       key_server_priority: Optional[float] = None,
                       mac_sec_ea_pols: Optional[Sequence[FabricMacSecPolicyMacSecEaPolArgs]] = None,
                       mod_time: Optional[str] = None,
                       moid: Optional[str] = None,
                       name: Optional[str] = None,
                       object_type: Optional[str] = None,
                       organizations: Optional[Sequence[FabricMacSecPolicyOrganizationArgs]] = None,
                       owners: Optional[Sequence[str]] = None,
                       parents: Optional[Sequence[FabricMacSecPolicyParentArgs]] = None,
                       permission_resources: Optional[Sequence[FabricMacSecPolicyPermissionResourceArgs]] = None,
                       primary_key_chains: Optional[Sequence[FabricMacSecPolicyPrimaryKeyChainArgs]] = None,
                       replay_window_size: Optional[float] = None,
                       sak_expiry_time: Optional[float] = None,
                       security_policy: Optional[str] = None,
                       shared_scope: Optional[str] = None,
                       tags: Optional[Sequence[FabricMacSecPolicyTagArgs]] = None,
                       version_contexts: Optional[Sequence[FabricMacSecPolicyVersionContextArgs]] = None)

func NewFabricMacSecPolicy(ctx *Context, name string, args *FabricMacSecPolicyArgs, opts ...ResourceOption) (*FabricMacSecPolicy, error)

public FabricMacSecPolicy(string name, FabricMacSecPolicyArgs? args = null, CustomResourceOptions? opts = null)

public FabricMacSecPolicy(String name, FabricMacSecPolicyArgs args)
public FabricMacSecPolicy(String name, FabricMacSecPolicyArgs args, CustomResourceOptions options)

type: intersight:FabricMacSecPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args FabricMacSecPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args FabricMacSecPolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args FabricMacSecPolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args FabricMacSecPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args FabricMacSecPolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var fabricMacSecPolicyResource = new Intersight.FabricMacSecPolicy("fabricMacSecPolicyResource", new()
{
    AccountMoid = "string",
    AdditionalProperties = "string",
    Ancestors = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyAncestorArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Moid = "string",
            ObjectType = "string",
            Selector = "string",
        },
    },
    CipherSuite = "string",
    ClassId = "string",
    ConfidentialityOffset = "string",
    CreateTime = "string",
    Description = "string",
    DomainGroupMoid = "string",
    FabricMacSecPolicyId = "string",
    FallbackKeyChains = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyFallbackKeyChainArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Name = "string",
            ObjectType = "string",
            SecKeys = new[]
            {
                new Intersight.Inputs.FabricMacSecPolicyFallbackKeyChainSecKeyArgs
                {
                    AdditionalProperties = "string",
                    ClassId = "string",
                    CryptographicAlgorithm = "string",
                    Id = "string",
                    IsOctetStringSet = false,
                    KeyType = "string",
                    ObjectType = "string",
                    OctetString = "string",
                    SendLifetimeDuration = 0,
                    SendLifetimeEndTime = "string",
                    SendLifetimeInfinite = false,
                    SendLifetimeStartTime = "string",
                    SendLifetimeTimeZone = "string",
                    SendLifetimeUnlimited = false,
                },
            },
        },
    },
    IncludeIcvIndicator = false,
    KeyServerPriority = 0,
    MacSecEaPols = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyMacSecEaPolArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            EaPolEthertype = "string",
            EaPolMacAddress = "string",
            ObjectType = "string",
        },
    },
    ModTime = "string",
    Moid = "string",
    Name = "string",
    ObjectType = "string",
    Organizations = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyOrganizationArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Moid = "string",
            ObjectType = "string",
            Selector = "string",
        },
    },
    Owners = new[]
    {
        "string",
    },
    Parents = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyParentArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Moid = "string",
            ObjectType = "string",
            Selector = "string",
        },
    },
    PermissionResources = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyPermissionResourceArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Moid = "string",
            ObjectType = "string",
            Selector = "string",
        },
    },
    PrimaryKeyChains = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyPrimaryKeyChainArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            Name = "string",
            ObjectType = "string",
            SecKeys = new[]
            {
                new Intersight.Inputs.FabricMacSecPolicyPrimaryKeyChainSecKeyArgs
                {
                    AdditionalProperties = "string",
                    ClassId = "string",
                    CryptographicAlgorithm = "string",
                    Id = "string",
                    IsOctetStringSet = false,
                    KeyType = "string",
                    ObjectType = "string",
                    OctetString = "string",
                    SendLifetimeDuration = 0,
                    SendLifetimeEndTime = "string",
                    SendLifetimeInfinite = false,
                    SendLifetimeStartTime = "string",
                    SendLifetimeTimeZone = "string",
                    SendLifetimeUnlimited = false,
                },
            },
        },
    },
    ReplayWindowSize = 0,
    SakExpiryTime = 0,
    SecurityPolicy = "string",
    SharedScope = "string",
    Tags = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyTagArgs
        {
            AdditionalProperties = "string",
            Key = "string",
            Value = "string",
        },
    },
    VersionContexts = new[]
    {
        new Intersight.Inputs.FabricMacSecPolicyVersionContextArgs
        {
            AdditionalProperties = "string",
            ClassId = "string",
            InterestedMos = new[]
            {
                new Intersight.Inputs.FabricMacSecPolicyVersionContextInterestedMoArgs
                {
                    AdditionalProperties = "string",
                    ClassId = "string",
                    Moid = "string",
                    ObjectType = "string",
                    Selector = "string",
                },
            },
            MarkedForDeletion = false,
            NrVersion = "string",
            ObjectType = "string",
            RefMos = new[]
            {
                new Intersight.Inputs.FabricMacSecPolicyVersionContextRefMoArgs
                {
                    AdditionalProperties = "string",
                    ClassId = "string",
                    Moid = "string",
                    ObjectType = "string",
                    Selector = "string",
                },
            },
            Timestamp = "string",
            VersionType = "string",
        },
    },
});

example, err := intersight.NewFabricMacSecPolicy(ctx, "fabricMacSecPolicyResource", &intersight.FabricMacSecPolicyArgs{
	AccountMoid:          pulumi.String("string"),
	AdditionalProperties: pulumi.String("string"),
	Ancestors: intersight.FabricMacSecPolicyAncestorArray{
		&intersight.FabricMacSecPolicyAncestorArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Moid:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			Selector:             pulumi.String("string"),
		},
	},
	CipherSuite:           pulumi.String("string"),
	ClassId:               pulumi.String("string"),
	ConfidentialityOffset: pulumi.String("string"),
	CreateTime:            pulumi.String("string"),
	Description:           pulumi.String("string"),
	DomainGroupMoid:       pulumi.String("string"),
	FabricMacSecPolicyId:  pulumi.String("string"),
	FallbackKeyChains: intersight.FabricMacSecPolicyFallbackKeyChainArray{
		&intersight.FabricMacSecPolicyFallbackKeyChainArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Name:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			SecKeys: intersight.FabricMacSecPolicyFallbackKeyChainSecKeyArray{
				&intersight.FabricMacSecPolicyFallbackKeyChainSecKeyArgs{
					AdditionalProperties:   pulumi.String("string"),
					ClassId:                pulumi.String("string"),
					CryptographicAlgorithm: pulumi.String("string"),
					Id:                     pulumi.String("string"),
					IsOctetStringSet:       pulumi.Bool(false),
					KeyType:                pulumi.String("string"),
					ObjectType:             pulumi.String("string"),
					OctetString:            pulumi.String("string"),
					SendLifetimeDuration:   pulumi.Float64(0),
					SendLifetimeEndTime:    pulumi.String("string"),
					SendLifetimeInfinite:   pulumi.Bool(false),
					SendLifetimeStartTime:  pulumi.String("string"),
					SendLifetimeTimeZone:   pulumi.String("string"),
					SendLifetimeUnlimited:  pulumi.Bool(false),
				},
			},
		},
	},
	IncludeIcvIndicator: pulumi.Bool(false),
	KeyServerPriority:   pulumi.Float64(0),
	MacSecEaPols: intersight.FabricMacSecPolicyMacSecEaPolArray{
		&intersight.FabricMacSecPolicyMacSecEaPolArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			EaPolEthertype:       pulumi.String("string"),
			EaPolMacAddress:      pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
		},
	},
	ModTime:    pulumi.String("string"),
	Moid:       pulumi.String("string"),
	Name:       pulumi.String("string"),
	ObjectType: pulumi.String("string"),
	Organizations: intersight.FabricMacSecPolicyOrganizationArray{
		&intersight.FabricMacSecPolicyOrganizationArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Moid:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			Selector:             pulumi.String("string"),
		},
	},
	Owners: pulumi.StringArray{
		pulumi.String("string"),
	},
	Parents: intersight.FabricMacSecPolicyParentArray{
		&intersight.FabricMacSecPolicyParentArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Moid:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			Selector:             pulumi.String("string"),
		},
	},
	PermissionResources: intersight.FabricMacSecPolicyPermissionResourceArray{
		&intersight.FabricMacSecPolicyPermissionResourceArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Moid:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			Selector:             pulumi.String("string"),
		},
	},
	PrimaryKeyChains: intersight.FabricMacSecPolicyPrimaryKeyChainArray{
		&intersight.FabricMacSecPolicyPrimaryKeyChainArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			Name:                 pulumi.String("string"),
			ObjectType:           pulumi.String("string"),
			SecKeys: intersight.FabricMacSecPolicyPrimaryKeyChainSecKeyArray{
				&intersight.FabricMacSecPolicyPrimaryKeyChainSecKeyArgs{
					AdditionalProperties:   pulumi.String("string"),
					ClassId:                pulumi.String("string"),
					CryptographicAlgorithm: pulumi.String("string"),
					Id:                     pulumi.String("string"),
					IsOctetStringSet:       pulumi.Bool(false),
					KeyType:                pulumi.String("string"),
					ObjectType:             pulumi.String("string"),
					OctetString:            pulumi.String("string"),
					SendLifetimeDuration:   pulumi.Float64(0),
					SendLifetimeEndTime:    pulumi.String("string"),
					SendLifetimeInfinite:   pulumi.Bool(false),
					SendLifetimeStartTime:  pulumi.String("string"),
					SendLifetimeTimeZone:   pulumi.String("string"),
					SendLifetimeUnlimited:  pulumi.Bool(false),
				},
			},
		},
	},
	ReplayWindowSize: pulumi.Float64(0),
	SakExpiryTime:    pulumi.Float64(0),
	SecurityPolicy:   pulumi.String("string"),
	SharedScope:      pulumi.String("string"),
	Tags: intersight.FabricMacSecPolicyTagArray{
		&intersight.FabricMacSecPolicyTagArgs{
			AdditionalProperties: pulumi.String("string"),
			Key:                  pulumi.String("string"),
			Value:                pulumi.String("string"),
		},
	},
	VersionContexts: intersight.FabricMacSecPolicyVersionContextArray{
		&intersight.FabricMacSecPolicyVersionContextArgs{
			AdditionalProperties: pulumi.String("string"),
			ClassId:              pulumi.String("string"),
			InterestedMos: intersight.FabricMacSecPolicyVersionContextInterestedMoArray{
				&intersight.FabricMacSecPolicyVersionContextInterestedMoArgs{
					AdditionalProperties: pulumi.String("string"),
					ClassId:              pulumi.String("string"),
					Moid:                 pulumi.String("string"),
					ObjectType:           pulumi.String("string"),
					Selector:             pulumi.String("string"),
				},
			},
			MarkedForDeletion: pulumi.Bool(false),
			NrVersion:         pulumi.String("string"),
			ObjectType:        pulumi.String("string"),
			RefMos: intersight.FabricMacSecPolicyVersionContextRefMoArray{
				&intersight.FabricMacSecPolicyVersionContextRefMoArgs{
					AdditionalProperties: pulumi.String("string"),
					ClassId:              pulumi.String("string"),
					Moid:                 pulumi.String("string"),
					ObjectType:           pulumi.String("string"),
					Selector:             pulumi.String("string"),
				},
			},
			Timestamp:   pulumi.String("string"),
			VersionType: pulumi.String("string"),
		},
	},
})

var fabricMacSecPolicyResource = new FabricMacSecPolicy("fabricMacSecPolicyResource", FabricMacSecPolicyArgs.builder()
    .accountMoid("string")
    .additionalProperties("string")
    .ancestors(FabricMacSecPolicyAncestorArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .moid("string")
        .objectType("string")
        .selector("string")
        .build())
    .cipherSuite("string")
    .classId("string")
    .confidentialityOffset("string")
    .createTime("string")
    .description("string")
    .domainGroupMoid("string")
    .fabricMacSecPolicyId("string")
    .fallbackKeyChains(FabricMacSecPolicyFallbackKeyChainArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .name("string")
        .objectType("string")
        .secKeys(FabricMacSecPolicyFallbackKeyChainSecKeyArgs.builder()
            .additionalProperties("string")
            .classId("string")
            .cryptographicAlgorithm("string")
            .id("string")
            .isOctetStringSet(false)
            .keyType("string")
            .objectType("string")
            .octetString("string")
            .sendLifetimeDuration(0)
            .sendLifetimeEndTime("string")
            .sendLifetimeInfinite(false)
            .sendLifetimeStartTime("string")
            .sendLifetimeTimeZone("string")
            .sendLifetimeUnlimited(false)
            .build())
        .build())
    .includeIcvIndicator(false)
    .keyServerPriority(0)
    .macSecEaPols(FabricMacSecPolicyMacSecEaPolArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .eaPolEthertype("string")
        .eaPolMacAddress("string")
        .objectType("string")
        .build())
    .modTime("string")
    .moid("string")
    .name("string")
    .objectType("string")
    .organizations(FabricMacSecPolicyOrganizationArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .moid("string")
        .objectType("string")
        .selector("string")
        .build())
    .owners("string")
    .parents(FabricMacSecPolicyParentArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .moid("string")
        .objectType("string")
        .selector("string")
        .build())
    .permissionResources(FabricMacSecPolicyPermissionResourceArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .moid("string")
        .objectType("string")
        .selector("string")
        .build())
    .primaryKeyChains(FabricMacSecPolicyPrimaryKeyChainArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .name("string")
        .objectType("string")
        .secKeys(FabricMacSecPolicyPrimaryKeyChainSecKeyArgs.builder()
            .additionalProperties("string")
            .classId("string")
            .cryptographicAlgorithm("string")
            .id("string")
            .isOctetStringSet(false)
            .keyType("string")
            .objectType("string")
            .octetString("string")
            .sendLifetimeDuration(0)
            .sendLifetimeEndTime("string")
            .sendLifetimeInfinite(false)
            .sendLifetimeStartTime("string")
            .sendLifetimeTimeZone("string")
            .sendLifetimeUnlimited(false)
            .build())
        .build())
    .replayWindowSize(0)
    .sakExpiryTime(0)
    .securityPolicy("string")
    .sharedScope("string")
    .tags(FabricMacSecPolicyTagArgs.builder()
        .additionalProperties("string")
        .key("string")
        .value("string")
        .build())
    .versionContexts(FabricMacSecPolicyVersionContextArgs.builder()
        .additionalProperties("string")
        .classId("string")
        .interestedMos(FabricMacSecPolicyVersionContextInterestedMoArgs.builder()
            .additionalProperties("string")
            .classId("string")
            .moid("string")
            .objectType("string")
            .selector("string")
            .build())
        .markedForDeletion(false)
        .nrVersion("string")
        .objectType("string")
        .refMos(FabricMacSecPolicyVersionContextRefMoArgs.builder()
            .additionalProperties("string")
            .classId("string")
            .moid("string")
            .objectType("string")
            .selector("string")
            .build())
        .timestamp("string")
        .versionType("string")
        .build())
    .build());

fabric_mac_sec_policy_resource = intersight.FabricMacSecPolicy("fabricMacSecPolicyResource",
    account_moid="string",
    additional_properties="string",
    ancestors=[{
        "additional_properties": "string",
        "class_id": "string",
        "moid": "string",
        "object_type": "string",
        "selector": "string",
    }],
    cipher_suite="string",
    class_id="string",
    confidentiality_offset="string",
    create_time="string",
    description="string",
    domain_group_moid="string",
    fabric_mac_sec_policy_id="string",
    fallback_key_chains=[{
        "additional_properties": "string",
        "class_id": "string",
        "name": "string",
        "object_type": "string",
        "sec_keys": [{
            "additional_properties": "string",
            "class_id": "string",
            "cryptographic_algorithm": "string",
            "id": "string",
            "is_octet_string_set": False,
            "key_type": "string",
            "object_type": "string",
            "octet_string": "string",
            "send_lifetime_duration": 0,
            "send_lifetime_end_time": "string",
            "send_lifetime_infinite": False,
            "send_lifetime_start_time": "string",
            "send_lifetime_time_zone": "string",
            "send_lifetime_unlimited": False,
        }],
    }],
    include_icv_indicator=False,
    key_server_priority=0,
    mac_sec_ea_pols=[{
        "additional_properties": "string",
        "class_id": "string",
        "ea_pol_ethertype": "string",
        "ea_pol_mac_address": "string",
        "object_type": "string",
    }],
    mod_time="string",
    moid="string",
    name="string",
    object_type="string",
    organizations=[{
        "additional_properties": "string",
        "class_id": "string",
        "moid": "string",
        "object_type": "string",
        "selector": "string",
    }],
    owners=["string"],
    parents=[{
        "additional_properties": "string",
        "class_id": "string",
        "moid": "string",
        "object_type": "string",
        "selector": "string",
    }],
    permission_resources=[{
        "additional_properties": "string",
        "class_id": "string",
        "moid": "string",
        "object_type": "string",
        "selector": "string",
    }],
    primary_key_chains=[{
        "additional_properties": "string",
        "class_id": "string",
        "name": "string",
        "object_type": "string",
        "sec_keys": [{
            "additional_properties": "string",
            "class_id": "string",
            "cryptographic_algorithm": "string",
            "id": "string",
            "is_octet_string_set": False,
            "key_type": "string",
            "object_type": "string",
            "octet_string": "string",
            "send_lifetime_duration": 0,
            "send_lifetime_end_time": "string",
            "send_lifetime_infinite": False,
            "send_lifetime_start_time": "string",
            "send_lifetime_time_zone": "string",
            "send_lifetime_unlimited": False,
        }],
    }],
    replay_window_size=0,
    sak_expiry_time=0,
    security_policy="string",
    shared_scope="string",
    tags=[{
        "additional_properties": "string",
        "key": "string",
        "value": "string",
    }],
    version_contexts=[{
        "additional_properties": "string",
        "class_id": "string",
        "interested_mos": [{
            "additional_properties": "string",
            "class_id": "string",
            "moid": "string",
            "object_type": "string",
            "selector": "string",
        }],
        "marked_for_deletion": False,
        "nr_version": "string",
        "object_type": "string",
        "ref_mos": [{
            "additional_properties": "string",
            "class_id": "string",
            "moid": "string",
            "object_type": "string",
            "selector": "string",
        }],
        "timestamp": "string",
        "version_type": "string",
    }])

const fabricMacSecPolicyResource = new intersight.FabricMacSecPolicy("fabricMacSecPolicyResource", {
    accountMoid: "string",
    additionalProperties: "string",
    ancestors: [{
        additionalProperties: "string",
        classId: "string",
        moid: "string",
        objectType: "string",
        selector: "string",
    }],
    cipherSuite: "string",
    classId: "string",
    confidentialityOffset: "string",
    createTime: "string",
    description: "string",
    domainGroupMoid: "string",
    fabricMacSecPolicyId: "string",
    fallbackKeyChains: [{
        additionalProperties: "string",
        classId: "string",
        name: "string",
        objectType: "string",
        secKeys: [{
            additionalProperties: "string",
            classId: "string",
            cryptographicAlgorithm: "string",
            id: "string",
            isOctetStringSet: false,
            keyType: "string",
            objectType: "string",
            octetString: "string",
            sendLifetimeDuration: 0,
            sendLifetimeEndTime: "string",
            sendLifetimeInfinite: false,
            sendLifetimeStartTime: "string",
            sendLifetimeTimeZone: "string",
            sendLifetimeUnlimited: false,
        }],
    }],
    includeIcvIndicator: false,
    keyServerPriority: 0,
    macSecEaPols: [{
        additionalProperties: "string",
        classId: "string",
        eaPolEthertype: "string",
        eaPolMacAddress: "string",
        objectType: "string",
    }],
    modTime: "string",
    moid: "string",
    name: "string",
    objectType: "string",
    organizations: [{
        additionalProperties: "string",
        classId: "string",
        moid: "string",
        objectType: "string",
        selector: "string",
    }],
    owners: ["string"],
    parents: [{
        additionalProperties: "string",
        classId: "string",
        moid: "string",
        objectType: "string",
        selector: "string",
    }],
    permissionResources: [{
        additionalProperties: "string",
        classId: "string",
        moid: "string",
        objectType: "string",
        selector: "string",
    }],
    primaryKeyChains: [{
        additionalProperties: "string",
        classId: "string",
        name: "string",
        objectType: "string",
        secKeys: [{
            additionalProperties: "string",
            classId: "string",
            cryptographicAlgorithm: "string",
            id: "string",
            isOctetStringSet: false,
            keyType: "string",
            objectType: "string",
            octetString: "string",
            sendLifetimeDuration: 0,
            sendLifetimeEndTime: "string",
            sendLifetimeInfinite: false,
            sendLifetimeStartTime: "string",
            sendLifetimeTimeZone: "string",
            sendLifetimeUnlimited: false,
        }],
    }],
    replayWindowSize: 0,
    sakExpiryTime: 0,
    securityPolicy: "string",
    sharedScope: "string",
    tags: [{
        additionalProperties: "string",
        key: "string",
        value: "string",
    }],
    versionContexts: [{
        additionalProperties: "string",
        classId: "string",
        interestedMos: [{
            additionalProperties: "string",
            classId: "string",
            moid: "string",
            objectType: "string",
            selector: "string",
        }],
        markedForDeletion: false,
        nrVersion: "string",
        objectType: "string",
        refMos: [{
            additionalProperties: "string",
            classId: "string",
            moid: "string",
            objectType: "string",
            selector: "string",
        }],
        timestamp: "string",
        versionType: "string",
    }],
});

type: intersight:FabricMacSecPolicy
properties:
    accountMoid: string
    additionalProperties: string
    ancestors:
        - additionalProperties: string
          classId: string
          moid: string
          objectType: string
          selector: string
    cipherSuite: string
    classId: string
    confidentialityOffset: string
    createTime: string
    description: string
    domainGroupMoid: string
    fabricMacSecPolicyId: string
    fallbackKeyChains:
        - additionalProperties: string
          classId: string
          name: string
          objectType: string
          secKeys:
            - additionalProperties: string
              classId: string
              cryptographicAlgorithm: string
              id: string
              isOctetStringSet: false
              keyType: string
              objectType: string
              octetString: string
              sendLifetimeDuration: 0
              sendLifetimeEndTime: string
              sendLifetimeInfinite: false
              sendLifetimeStartTime: string
              sendLifetimeTimeZone: string
              sendLifetimeUnlimited: false
    includeIcvIndicator: false
    keyServerPriority: 0
    macSecEaPols:
        - additionalProperties: string
          classId: string
          eaPolEthertype: string
          eaPolMacAddress: string
          objectType: string
    modTime: string
    moid: string
    name: string
    objectType: string
    organizations:
        - additionalProperties: string
          classId: string
          moid: string
          objectType: string
          selector: string
    owners:
        - string
    parents:
        - additionalProperties: string
          classId: string
          moid: string
          objectType: string
          selector: string
    permissionResources:
        - additionalProperties: string
          classId: string
          moid: string
          objectType: string
          selector: string
    primaryKeyChains:
        - additionalProperties: string
          classId: string
          name: string
          objectType: string
          secKeys:
            - additionalProperties: string
              classId: string
              cryptographicAlgorithm: string
              id: string
              isOctetStringSet: false
              keyType: string
              objectType: string
              octetString: string
              sendLifetimeDuration: 0
              sendLifetimeEndTime: string
              sendLifetimeInfinite: false
              sendLifetimeStartTime: string
              sendLifetimeTimeZone: string
              sendLifetimeUnlimited: false
    replayWindowSize: 0
    sakExpiryTime: 0
    securityPolicy: string
    sharedScope: string
    tags:
        - additionalProperties: string
          key: string
          value: string
    versionContexts:
        - additionalProperties: string
          classId: string
          interestedMos:
            - additionalProperties: string
              classId: string
              moid: string
              objectType: string
              selector: string
          markedForDeletion: false
          nrVersion: string
          objectType: string
          refMos:
            - additionalProperties: string
              classId: string
              moid: string
              objectType: string
              selector: string
          timestamp: string
          versionType: string

FabricMacSecPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The FabricMacSecPolicy resource accepts the following input properties:

AccountMoid string: (ReadOnly) The Account ID for this managed object.
AdditionalProperties string
Ancestors List<FabricMacSecPolicyAncestor>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
CipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
ClassId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
ConfidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
CreateTime string: (ReadOnly) The time when this managed object was created.
Description string: Description of the policy.
DomainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
FabricMacSecPolicyId string
FallbackKeyChains List<FabricMacSecPolicyFallbackKeyChain>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
IncludeIcvIndicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
KeyServerPriority double: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
MacSecEaPols List<FabricMacSecPolicyMacSecEaPol>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
ModTime string: (ReadOnly) The time when this managed object was last modified.
Moid string: The unique identifier of this Managed Object instance.
Name string: Name of the concrete policy.
ObjectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
Organizations List<FabricMacSecPolicyOrganization>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
Owners List<string>: (Array of schema.TypeString) -(ReadOnly)
Parents List<FabricMacSecPolicyParent>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
PermissionResources List<FabricMacSecPolicyPermissionResource>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
PrimaryKeyChains List<FabricMacSecPolicyPrimaryKeyChain>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
ReplayWindowSize double: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
SakExpiryTime double: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
SecurityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
SharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
Tags List<FabricMacSecPolicyTag>: This complex property has following sub-properties:
VersionContexts List<FabricMacSecPolicyVersionContext>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

AccountMoid string: (ReadOnly) The Account ID for this managed object.
AdditionalProperties string
Ancestors []FabricMacSecPolicyAncestorArgs: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
CipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
ClassId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
ConfidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
CreateTime string: (ReadOnly) The time when this managed object was created.
Description string: Description of the policy.
DomainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
FabricMacSecPolicyId string
FallbackKeyChains []FabricMacSecPolicyFallbackKeyChainArgs: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
IncludeIcvIndicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
KeyServerPriority float64: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
MacSecEaPols []FabricMacSecPolicyMacSecEaPolArgs: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
ModTime string: (ReadOnly) The time when this managed object was last modified.
Moid string: The unique identifier of this Managed Object instance.
Name string: Name of the concrete policy.
ObjectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
Organizations []FabricMacSecPolicyOrganizationArgs: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
Owners []string: (Array of schema.TypeString) -(ReadOnly)
Parents []FabricMacSecPolicyParentArgs: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
PermissionResources []FabricMacSecPolicyPermissionResourceArgs: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
PrimaryKeyChains []FabricMacSecPolicyPrimaryKeyChainArgs: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
ReplayWindowSize float64: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
SakExpiryTime float64: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
SecurityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
SharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
Tags []FabricMacSecPolicyTagArgs: This complex property has following sub-properties:
VersionContexts []FabricMacSecPolicyVersionContextArgs: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid String: (ReadOnly) The Account ID for this managed object.
additionalProperties String
ancestors List<FabricMacSecPolicyAncestor>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite String: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId String: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset String: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime String: (ReadOnly) The time when this managed object was created.
description String: Description of the policy.
domainGroupMoid String: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId String
fallbackKeyChains List<FabricMacSecPolicyFallbackKeyChain>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator Boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority Double: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols List<FabricMacSecPolicyMacSecEaPol>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime String: (ReadOnly) The time when this managed object was last modified.
moid String: The unique identifier of this Managed Object instance.
name String: Name of the concrete policy.
objectType String: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations List<FabricMacSecPolicyOrganization>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners List<String>: (Array of schema.TypeString) -(ReadOnly)
parents List<FabricMacSecPolicyParent>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources List<FabricMacSecPolicyPermissionResource>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains List<FabricMacSecPolicyPrimaryKeyChain>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize Double: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime Double: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy String: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope String: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags List<FabricMacSecPolicyTag>: This complex property has following sub-properties:
versionContexts List<FabricMacSecPolicyVersionContext>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid string: (ReadOnly) The Account ID for this managed object.
additionalProperties string
ancestors FabricMacSecPolicyAncestor[]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime string: (ReadOnly) The time when this managed object was created.
description string: Description of the policy.
domainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId string
fallbackKeyChains FabricMacSecPolicyFallbackKeyChain[]: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority number: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols FabricMacSecPolicyMacSecEaPol[]: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime string: (ReadOnly) The time when this managed object was last modified.
moid string: The unique identifier of this Managed Object instance.
name string: Name of the concrete policy.
objectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations FabricMacSecPolicyOrganization[]: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners string[]: (Array of schema.TypeString) -(ReadOnly)
parents FabricMacSecPolicyParent[]: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources FabricMacSecPolicyPermissionResource[]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains FabricMacSecPolicyPrimaryKeyChain[]: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize number: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime number: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags FabricMacSecPolicyTag[]: This complex property has following sub-properties:
versionContexts FabricMacSecPolicyVersionContext[]: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

account_moid str: (ReadOnly) The Account ID for this managed object.
additional_properties str
ancestors Sequence[FabricMacSecPolicyAncestorArgs]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipher_suite str: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
class_id str: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentiality_offset str: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
create_time str: (ReadOnly) The time when this managed object was created.
description str: Description of the policy.
domain_group_moid str: (ReadOnly) The DomainGroup ID for this managed object.
fabric_mac_sec_policy_id str
fallback_key_chains Sequence[FabricMacSecPolicyFallbackKeyChainArgs]: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
include_icv_indicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
key_server_priority float: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
mac_sec_ea_pols Sequence[FabricMacSecPolicyMacSecEaPolArgs]: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
mod_time str: (ReadOnly) The time when this managed object was last modified.
moid str: The unique identifier of this Managed Object instance.
name str: Name of the concrete policy.
object_type str: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations Sequence[FabricMacSecPolicyOrganizationArgs]: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners Sequence[str]: (Array of schema.TypeString) -(ReadOnly)
parents Sequence[FabricMacSecPolicyParentArgs]: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permission_resources Sequence[FabricMacSecPolicyPermissionResourceArgs]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primary_key_chains Sequence[FabricMacSecPolicyPrimaryKeyChainArgs]: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replay_window_size float: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sak_expiry_time float: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
security_policy str: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
shared_scope str: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags Sequence[FabricMacSecPolicyTagArgs]: This complex property has following sub-properties:
version_contexts Sequence[FabricMacSecPolicyVersionContextArgs]: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid String: (ReadOnly) The Account ID for this managed object.
additionalProperties String
ancestors List<Property Map>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite String: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId String: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset String: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime String: (ReadOnly) The time when this managed object was created.
description String: Description of the policy.
domainGroupMoid String: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId String
fallbackKeyChains List<Property Map>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator Boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority Number: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols List<Property Map>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime String: (ReadOnly) The time when this managed object was last modified.
moid String: The unique identifier of this Managed Object instance.
name String: Name of the concrete policy.
objectType String: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations List<Property Map>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners List<String>: (Array of schema.TypeString) -(ReadOnly)
parents List<Property Map>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources List<Property Map>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains List<Property Map>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize Number: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime Number: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy String: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope String: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags List<Property Map>: This complex property has following sub-properties:
versionContexts List<Property Map>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

Outputs

All input properties are implicitly available as output properties. Additionally, the FabricMacSecPolicy resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing FabricMacSecPolicy Resource

Get an existing FabricMacSecPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: FabricMacSecPolicyState, opts?: CustomResourceOptions): FabricMacSecPolicy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        account_moid: Optional[str] = None,
        additional_properties: Optional[str] = None,
        ancestors: Optional[Sequence[FabricMacSecPolicyAncestorArgs]] = None,
        cipher_suite: Optional[str] = None,
        class_id: Optional[str] = None,
        confidentiality_offset: Optional[str] = None,
        create_time: Optional[str] = None,
        description: Optional[str] = None,
        domain_group_moid: Optional[str] = None,
        fabric_mac_sec_policy_id: Optional[str] = None,
        fallback_key_chains: Optional[Sequence[FabricMacSecPolicyFallbackKeyChainArgs]] = None,
        include_icv_indicator: Optional[bool] = None,
        key_server_priority: Optional[float] = None,
        mac_sec_ea_pols: Optional[Sequence[FabricMacSecPolicyMacSecEaPolArgs]] = None,
        mod_time: Optional[str] = None,
        moid: Optional[str] = None,
        name: Optional[str] = None,
        object_type: Optional[str] = None,
        organizations: Optional[Sequence[FabricMacSecPolicyOrganizationArgs]] = None,
        owners: Optional[Sequence[str]] = None,
        parents: Optional[Sequence[FabricMacSecPolicyParentArgs]] = None,
        permission_resources: Optional[Sequence[FabricMacSecPolicyPermissionResourceArgs]] = None,
        primary_key_chains: Optional[Sequence[FabricMacSecPolicyPrimaryKeyChainArgs]] = None,
        replay_window_size: Optional[float] = None,
        sak_expiry_time: Optional[float] = None,
        security_policy: Optional[str] = None,
        shared_scope: Optional[str] = None,
        tags: Optional[Sequence[FabricMacSecPolicyTagArgs]] = None,
        version_contexts: Optional[Sequence[FabricMacSecPolicyVersionContextArgs]] = None) -> FabricMacSecPolicy

func GetFabricMacSecPolicy(ctx *Context, name string, id IDInput, state *FabricMacSecPolicyState, opts ...ResourceOption) (*FabricMacSecPolicy, error)

public static FabricMacSecPolicy Get(string name, Input<string> id, FabricMacSecPolicyState? state, CustomResourceOptions? opts = null)

public static FabricMacSecPolicy get(String name, Output<String> id, FabricMacSecPolicyState state, CustomResourceOptions options)

resources:  _:    type: intersight:FabricMacSecPolicy    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccountMoid string: (ReadOnly) The Account ID for this managed object.
AdditionalProperties string
Ancestors List<FabricMacSecPolicyAncestor>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
CipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
ClassId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
ConfidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
CreateTime string: (ReadOnly) The time when this managed object was created.
Description string: Description of the policy.
DomainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
FabricMacSecPolicyId string
FallbackKeyChains List<FabricMacSecPolicyFallbackKeyChain>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
IncludeIcvIndicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
KeyServerPriority double: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
MacSecEaPols List<FabricMacSecPolicyMacSecEaPol>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
ModTime string: (ReadOnly) The time when this managed object was last modified.
Moid string: The unique identifier of this Managed Object instance.
Name string: Name of the concrete policy.
ObjectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
Organizations List<FabricMacSecPolicyOrganization>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
Owners List<string>: (Array of schema.TypeString) -(ReadOnly)
Parents List<FabricMacSecPolicyParent>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
PermissionResources List<FabricMacSecPolicyPermissionResource>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
PrimaryKeyChains List<FabricMacSecPolicyPrimaryKeyChain>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
ReplayWindowSize double: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
SakExpiryTime double: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
SecurityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
SharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
Tags List<FabricMacSecPolicyTag>: This complex property has following sub-properties:
VersionContexts List<FabricMacSecPolicyVersionContext>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

AccountMoid string: (ReadOnly) The Account ID for this managed object.
AdditionalProperties string
Ancestors []FabricMacSecPolicyAncestorArgs: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
CipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
ClassId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
ConfidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
CreateTime string: (ReadOnly) The time when this managed object was created.
Description string: Description of the policy.
DomainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
FabricMacSecPolicyId string
FallbackKeyChains []FabricMacSecPolicyFallbackKeyChainArgs: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
IncludeIcvIndicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
KeyServerPriority float64: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
MacSecEaPols []FabricMacSecPolicyMacSecEaPolArgs: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
ModTime string: (ReadOnly) The time when this managed object was last modified.
Moid string: The unique identifier of this Managed Object instance.
Name string: Name of the concrete policy.
ObjectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
Organizations []FabricMacSecPolicyOrganizationArgs: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
Owners []string: (Array of schema.TypeString) -(ReadOnly)
Parents []FabricMacSecPolicyParentArgs: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
PermissionResources []FabricMacSecPolicyPermissionResourceArgs: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
PrimaryKeyChains []FabricMacSecPolicyPrimaryKeyChainArgs: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
ReplayWindowSize float64: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
SakExpiryTime float64: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
SecurityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
SharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
Tags []FabricMacSecPolicyTagArgs: This complex property has following sub-properties:
VersionContexts []FabricMacSecPolicyVersionContextArgs: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid String: (ReadOnly) The Account ID for this managed object.
additionalProperties String
ancestors List<FabricMacSecPolicyAncestor>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite String: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId String: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset String: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime String: (ReadOnly) The time when this managed object was created.
description String: Description of the policy.
domainGroupMoid String: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId String
fallbackKeyChains List<FabricMacSecPolicyFallbackKeyChain>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator Boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority Double: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols List<FabricMacSecPolicyMacSecEaPol>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime String: (ReadOnly) The time when this managed object was last modified.
moid String: The unique identifier of this Managed Object instance.
name String: Name of the concrete policy.
objectType String: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations List<FabricMacSecPolicyOrganization>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners List<String>: (Array of schema.TypeString) -(ReadOnly)
parents List<FabricMacSecPolicyParent>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources List<FabricMacSecPolicyPermissionResource>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains List<FabricMacSecPolicyPrimaryKeyChain>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize Double: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime Double: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy String: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope String: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags List<FabricMacSecPolicyTag>: This complex property has following sub-properties:
versionContexts List<FabricMacSecPolicyVersionContext>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid string: (ReadOnly) The Account ID for this managed object.
additionalProperties string
ancestors FabricMacSecPolicyAncestor[]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite string: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId string: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset string: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime string: (ReadOnly) The time when this managed object was created.
description string: Description of the policy.
domainGroupMoid string: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId string
fallbackKeyChains FabricMacSecPolicyFallbackKeyChain[]: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority number: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols FabricMacSecPolicyMacSecEaPol[]: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime string: (ReadOnly) The time when this managed object was last modified.
moid string: The unique identifier of this Managed Object instance.
name string: Name of the concrete policy.
objectType string: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations FabricMacSecPolicyOrganization[]: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners string[]: (Array of schema.TypeString) -(ReadOnly)
parents FabricMacSecPolicyParent[]: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources FabricMacSecPolicyPermissionResource[]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains FabricMacSecPolicyPrimaryKeyChain[]: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize number: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime number: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy string: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope string: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags FabricMacSecPolicyTag[]: This complex property has following sub-properties:
versionContexts FabricMacSecPolicyVersionContext[]: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

account_moid str: (ReadOnly) The Account ID for this managed object.
additional_properties str
ancestors Sequence[FabricMacSecPolicyAncestorArgs]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipher_suite str: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
class_id str: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentiality_offset str: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
create_time str: (ReadOnly) The time when this managed object was created.
description str: Description of the policy.
domain_group_moid str: (ReadOnly) The DomainGroup ID for this managed object.
fabric_mac_sec_policy_id str
fallback_key_chains Sequence[FabricMacSecPolicyFallbackKeyChainArgs]: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
include_icv_indicator bool: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
key_server_priority float: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
mac_sec_ea_pols Sequence[FabricMacSecPolicyMacSecEaPolArgs]: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
mod_time str: (ReadOnly) The time when this managed object was last modified.
moid str: The unique identifier of this Managed Object instance.
name str: Name of the concrete policy.
object_type str: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations Sequence[FabricMacSecPolicyOrganizationArgs]: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners Sequence[str]: (Array of schema.TypeString) -(ReadOnly)
parents Sequence[FabricMacSecPolicyParentArgs]: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permission_resources Sequence[FabricMacSecPolicyPermissionResourceArgs]: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primary_key_chains Sequence[FabricMacSecPolicyPrimaryKeyChainArgs]: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replay_window_size float: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sak_expiry_time float: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
security_policy str: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
shared_scope str: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags Sequence[FabricMacSecPolicyTagArgs]: This complex property has following sub-properties:
version_contexts Sequence[FabricMacSecPolicyVersionContextArgs]: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

accountMoid String: (ReadOnly) The Account ID for this managed object.
additionalProperties String
ancestors List<Property Map>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
cipherSuite String: Cipher suite to be used for MACsec encryption.* GCM-AES-XPN-256 - An extended Cipher Suite of GCM-AES-256 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) for enhanced security and scalability.* GCM-AES-128 - This Cipher Suite employs the Advanced Encryption Standard (AES) with a 128-bit key in Galois/Counter Mode, offering both encryption and authentication.* GCM-AES-256 - This Cipher Suite utilizes Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode, offering a higher level of security compared to GCM-AES-128 due to the larger key size.* GCM-AES-XPN-128 - An extended Cipher Suite of GCM-AES-128 used in MACsec (Media Access Control Security) that incorporates Extended Packet Numbering (XPN) to enhance security and scalability.
classId String: The fully-qualified name of the instantiated, concrete type. This property is used as a discriminator to identify the type of the payload when marshaling and unmarshaling data.
confidentialityOffset String: The MACsec confidentiality offset specifies the number of bytes starting from the frame header. MACsec encrypts only the bytes after the offset in a frame.* CONF-OFFSET-0 - A value of 0 means the entire ethernet frame is encrypted.* CONF-OFFSET-30 - The first 30 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.* CONF-OFFSET-50 - The first 50 bytes of the ethernet frame are not encrypted, and the rest of the frame is encrypted.
createTime String: (ReadOnly) The time when this managed object was created.
description String: Description of the policy.
domainGroupMoid String: (ReadOnly) The DomainGroup ID for this managed object.
fabricMacSecPolicyId String
fallbackKeyChains List<Property Map>: Fallback keychain for managing an alternative set of security keys to be used when a secure session cannot be established using the primary keychain. This complex property has following sub-properties:
includeIcvIndicator Boolean: Configures inclusion of the optional integrity check value (ICV) indicator as part of the transmitted MACsec key agreement protocol data unit (PDU).
keyServerPriority Number: The key server is selected by comparing key-server priority values during MACsec key agreement (MKA) message exchange between peer devices. Valid values range from 0 to 255. The lower the value, the higher the chance it will be selected as the key server.
macSecEaPols List<Property Map>: Extensible authentication protocol over LAN (EAPoL). MACsec transmits MACsec key agreement (MKA) protocol data units (PDUs) using EAPoL packets to establish a secure session. This complex property has following sub-properties:
modTime String: (ReadOnly) The time when this managed object was last modified.
moid String: The unique identifier of this Managed Object instance.
name String: Name of the concrete policy.
objectType String: The fully-qualified name of the instantiated, concrete type. The value should be the same as the 'ClassId' property.
organizations List<Property Map>: A reference to a organizationOrganization resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
owners List<String>: (Array of schema.TypeString) -(ReadOnly)
parents List<Property Map>: (ReadOnly) A reference to a moBaseMo resource.When the $expand query parameter is specified, the referenced resource is returned inline. This complex property has following sub-properties:
permissionResources List<Property Map>: (ReadOnly) An array of relationships to moBaseMo resources. This complex property has following sub-properties:
primaryKeyChains List<Property Map>: Primary keychain for managing the default set of security keys for encryption and decryption. This complex property has following sub-properties:
replayWindowSize Number: Defines the size of the replay protection window. It determines the number of packets that can be received out of order without being considered replay attacks.
sakExpiryTime Number: Time in seconds to force secure association key (SAK) rekey. Valid range is from 60 to 2592000 seconds when configured. When not configured, the SAK rekey interval is determined based on the interface speed.
securityPolicy String: The security policy specifies the level of MACsec enforcement on network traffic passing through a given interface.Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow. Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.* Should-secure - Should secure allows unencrypted traffic to flow until the MACsec key agreement (MKA) session is secured. After the MKA session is secured, the policy switches to only allow encrypted traffic to flow.* Must-secure - Must secure imposes only MACsec encrypted traffic to flow. Traffic will be dropped, until the MKA session is not secured.
sharedScope String: (ReadOnly) Intersight provides pre-built workflows, tasks and policies to end users through global catalogs.Objects that are made available through global catalogs are said to have a 'shared' ownership. Shared objects are either made globally available to all end users or restricted to end users based on their license entitlement. Users can use this property to differentiate the scope (global or a specific license tier) to which a shared MO belongs.
tags List<Property Map>: This complex property has following sub-properties:
versionContexts List<Property Map>: (ReadOnly) The versioning info for this managed object. This complex property has following sub-properties:

Supporting Types

FabricMacSecPolicyAncestor, FabricMacSecPolicyAncestorArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

FabricMacSecPolicyFallbackKeyChain, FabricMacSecPolicyFallbackKeyChainArgs

AdditionalProperties string
ClassId string
Name string: Must be a maximum of 63 characters, without spacing.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
SecKeys List<FabricMacSecPolicyFallbackKeyChainSecKey>: This complex property has following sub-properties:

AdditionalProperties string
ClassId string
Name string: Must be a maximum of 63 characters, without spacing.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
SecKeys []FabricMacSecPolicyFallbackKeyChainSecKey: This complex property has following sub-properties:

additionalProperties String
classId String
name String: Must be a maximum of 63 characters, without spacing.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys List<FabricMacSecPolicyFallbackKeyChainSecKey>: This complex property has following sub-properties:

additionalProperties string
classId string
name string: Must be a maximum of 63 characters, without spacing.
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys FabricMacSecPolicyFallbackKeyChainSecKey[]: This complex property has following sub-properties:

additional_properties str
class_id str
name str: Must be a maximum of 63 characters, without spacing.
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
sec_keys Sequence[FabricMacSecPolicyFallbackKeyChainSecKey]: This complex property has following sub-properties:

additionalProperties String
classId String
name String: Must be a maximum of 63 characters, without spacing.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys List<Property Map>: This complex property has following sub-properties:

FabricMacSecPolicyFallbackKeyChainSecKey, FabricMacSecPolicyFallbackKeyChainSecKeyArgs

AdditionalProperties string
ClassId string
CryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
Id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
IsOctetStringSet bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
KeyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
OctetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
SendLifetimeDuration double: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
SendLifetimeEndTime string: The time of day and date when the key becomes inactive.
SendLifetimeInfinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
SendLifetimeStartTime string: The time of day and date when the key becomes active.
SendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
SendLifetimeUnlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

AdditionalProperties string
ClassId string
CryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
Id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
IsOctetStringSet bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
KeyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
OctetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
SendLifetimeDuration float64: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
SendLifetimeEndTime string: The time of day and date when the key becomes inactive.
SendLifetimeInfinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
SendLifetimeStartTime string: The time of day and date when the key becomes active.
SendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
SendLifetimeUnlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties String
classId String
cryptographicAlgorithm String: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id String: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet Boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType String: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString String: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration Double: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime String: The time of day and date when the key becomes inactive.
sendLifetimeInfinite Boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime String: The time of day and date when the key becomes active.
sendLifetimeTimeZone String: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited Boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties string
classId string
cryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration number: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime string: The time of day and date when the key becomes inactive.
sendLifetimeInfinite boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime string: The time of day and date when the key becomes active.
sendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additional_properties str
class_id str
cryptographic_algorithm str: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id str: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
is_octet_string_set bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
key_type str: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octet_string str: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
send_lifetime_duration float: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
send_lifetime_end_time str: The time of day and date when the key becomes inactive.
send_lifetime_infinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
send_lifetime_start_time str: The time of day and date when the key becomes active.
send_lifetime_time_zone str: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
send_lifetime_unlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties String
classId String
cryptographicAlgorithm String: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id String: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet Boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType String: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString String: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration Number: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime String: The time of day and date when the key becomes inactive.
sendLifetimeInfinite Boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime String: The time of day and date when the key becomes active.
sendLifetimeTimeZone String: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited Boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

FabricMacSecPolicyMacSecEaPol, FabricMacSecPolicyMacSecEaPolArgs

AdditionalProperties string
ClassId string
EaPolEthertype string: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
EaPolMacAddress string: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

AdditionalProperties string
ClassId string
EaPolEthertype string: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
EaPolMacAddress string: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

additionalProperties String
classId String
eaPolEthertype String: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
eaPolMacAddress String: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

additionalProperties string
classId string
eaPolEthertype string: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
eaPolMacAddress string: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

additional_properties str
class_id str
ea_pol_ethertype str: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
ea_pol_mac_address str: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

additionalProperties String
classId String
eaPolEthertype String: Ethertype to use in extensible authentication protocol over LAN (EAPoL) frames for MACsec key agreement (MKA) protocol data units (PDUs). The range is between 0x600 - 0xffff.
eaPolMacAddress String: MAC address to use in extensible authentication protocol over LAN (EAPoL) for MACsec key agreement (MKA) protocol data units (PDUs). EAPol mac address should not be equal to all-zero (0000.0000.0000).
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.

FabricMacSecPolicyOrganization, FabricMacSecPolicyOrganizationArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

FabricMacSecPolicyParent, FabricMacSecPolicyParentArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

FabricMacSecPolicyPermissionResource, FabricMacSecPolicyPermissionResourceArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

FabricMacSecPolicyPrimaryKeyChain, FabricMacSecPolicyPrimaryKeyChainArgs

AdditionalProperties string
ClassId string
Name string: Must be a maximum of 63 characters, without spacing.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
SecKeys List<FabricMacSecPolicyPrimaryKeyChainSecKey>: This complex property has following sub-properties:

AdditionalProperties string
ClassId string
Name string: Must be a maximum of 63 characters, without spacing.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
SecKeys []FabricMacSecPolicyPrimaryKeyChainSecKey: This complex property has following sub-properties:

additionalProperties String
classId String
name String: Must be a maximum of 63 characters, without spacing.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys List<FabricMacSecPolicyPrimaryKeyChainSecKey>: This complex property has following sub-properties:

additionalProperties string
classId string
name string: Must be a maximum of 63 characters, without spacing.
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys FabricMacSecPolicyPrimaryKeyChainSecKey[]: This complex property has following sub-properties:

additional_properties str
class_id str
name str: Must be a maximum of 63 characters, without spacing.
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
sec_keys Sequence[FabricMacSecPolicyPrimaryKeyChainSecKey]: This complex property has following sub-properties:

additionalProperties String
classId String
name String: Must be a maximum of 63 characters, without spacing.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
secKeys List<Property Map>: This complex property has following sub-properties:

FabricMacSecPolicyPrimaryKeyChainSecKey, FabricMacSecPolicyPrimaryKeyChainSecKeyArgs

AdditionalProperties string
ClassId string
CryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
Id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
IsOctetStringSet bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
KeyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
OctetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
SendLifetimeDuration double: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
SendLifetimeEndTime string: The time of day and date when the key becomes inactive.
SendLifetimeInfinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
SendLifetimeStartTime string: The time of day and date when the key becomes active.
SendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
SendLifetimeUnlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

AdditionalProperties string
ClassId string
CryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
Id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
IsOctetStringSet bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
KeyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
OctetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
SendLifetimeDuration float64: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
SendLifetimeEndTime string: The time of day and date when the key becomes inactive.
SendLifetimeInfinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
SendLifetimeStartTime string: The time of day and date when the key becomes active.
SendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
SendLifetimeUnlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties String
classId String
cryptographicAlgorithm String: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id String: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet Boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType String: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString String: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration Double: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime String: The time of day and date when the key becomes inactive.
sendLifetimeInfinite Boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime String: The time of day and date when the key becomes active.
sendLifetimeTimeZone String: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited Boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties string
classId string
cryptographicAlgorithm string: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id string: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType string: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString string: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration number: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime string: The time of day and date when the key becomes inactive.
sendLifetimeInfinite boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime string: The time of day and date when the key becomes active.
sendLifetimeTimeZone string: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additional_properties str
class_id str
cryptographic_algorithm str: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id str: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
is_octet_string_set bool: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
key_type str: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octet_string str: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
send_lifetime_duration float: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
send_lifetime_end_time str: The time of day and date when the key becomes inactive.
send_lifetime_infinite bool: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
send_lifetime_start_time str: The time of day and date when the key becomes active.
send_lifetime_time_zone str: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
send_lifetime_unlimited bool: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

additionalProperties String
classId String
cryptographicAlgorithm String: The cryptographic algorithm that employs the cipher-based message authentication code (CMAC) mode of operation with advanced encryption standard (AES).* AES_256_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 256-bit key to generate a CMAC.* AES_128_CMAC - Uses the AES (Advanced Encryption Standard) algorithm with a 128-bit key to generate a CMAC.
id String: Must have an even number of hexadecimal characters (including 0-9 and A-F, only) with a length between 2 and 64 characters. For example, \ 10\ , \ 2000\ , \ ABCD1234\ .
isOctetStringSet Boolean: (ReadOnly) Indicates whether the value of the 'octetString' property has been set.
keyType String: The type of encryption used for the specified key.* Type-0 - No encryption for the specified octetString.* Type-6 - Proprietary advanced encryption standard for the specified octetString.* Type-7 - Proprietary insecure encryption for the specified octetString.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
octetString String: The key octet string is a shared secret used in cryptographic operations. The valid size and format of the octet string depend on the selected KeyCryptographicAlgorithm and KeyEncryptionType. It should start with the character 'J'.
sendLifetimeDuration Number: The key lifetime duration in seconds after the start time. If a non-zero value is configured for the duration, the end time configuration for the key lifetime is ignored.
sendLifetimeEndTime String: The time of day and date when the key becomes inactive.
sendLifetimeInfinite Boolean: Indicates that the key remains active indefinitely after the specified start time. When this parameter is set, the end time and duration configurations for the key lifetime are ignored.
sendLifetimeStartTime String: The time of day and date when the key becomes active.
sendLifetimeTimeZone String: The time zone used for key lifetime configurations.* UTC - The Universal Time (UTC) for key lifetime configurations.* Local - The local time zone of the device for key lifetime configurations.
sendLifetimeUnlimited Boolean: Indicates that the key is always active. When this parameter is set, all other key lifetime configurations are ignored.

FabricMacSecPolicyTag, FabricMacSecPolicyTagArgs

AdditionalProperties string
Key string: The string representation of a tag key.
Value string: The string representation of a tag value.

AdditionalProperties string
Key string: The string representation of a tag key.
Value string: The string representation of a tag value.

additionalProperties String
key String: The string representation of a tag key.
value String: The string representation of a tag value.

additionalProperties string
key string: The string representation of a tag key.
value string: The string representation of a tag value.

additional_properties str
key str: The string representation of a tag key.
value str: The string representation of a tag value.

additionalProperties String
key String: The string representation of a tag key.
value String: The string representation of a tag value.

FabricMacSecPolicyVersionContext, FabricMacSecPolicyVersionContextArgs

AdditionalProperties string
ClassId string
InterestedMos List<FabricMacSecPolicyVersionContextInterestedMo>: This complex property has following sub-properties:
MarkedForDeletion bool: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
NrVersion string: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
RefMos List<FabricMacSecPolicyVersionContextRefMo>: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
Timestamp string: (ReadOnly) The time this versioned Managed Object was created.
VersionType string: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

AdditionalProperties string
ClassId string
InterestedMos []FabricMacSecPolicyVersionContextInterestedMo: This complex property has following sub-properties:
MarkedForDeletion bool: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
NrVersion string: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
ObjectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
RefMos []FabricMacSecPolicyVersionContextRefMo: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
Timestamp string: (ReadOnly) The time this versioned Managed Object was created.
VersionType string: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

additionalProperties String
classId String
interestedMos List<FabricMacSecPolicyVersionContextInterestedMo>: This complex property has following sub-properties:
markedForDeletion Boolean: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
nrVersion String: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
refMos List<FabricMacSecPolicyVersionContextRefMo>: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
timestamp String: (ReadOnly) The time this versioned Managed Object was created.
versionType String: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

additionalProperties string
classId string
interestedMos FabricMacSecPolicyVersionContextInterestedMo[]: This complex property has following sub-properties:
markedForDeletion boolean: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
nrVersion string: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
objectType string: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
refMos FabricMacSecPolicyVersionContextRefMo[]: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
timestamp string: (ReadOnly) The time this versioned Managed Object was created.
versionType string: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

additional_properties str
class_id str
interested_mos Sequence[FabricMacSecPolicyVersionContextInterestedMo]: This complex property has following sub-properties:
marked_for_deletion bool: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
nr_version str: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
object_type str: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
ref_mos Sequence[FabricMacSecPolicyVersionContextRefMo]: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
timestamp str: (ReadOnly) The time this versioned Managed Object was created.
version_type str: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

additionalProperties String
classId String
interestedMos List<Property Map>: This complex property has following sub-properties:
markedForDeletion Boolean: (ReadOnly) The flag to indicate if snapshot is marked for deletion or not. If flag is set then snapshot will be removed after the successful deployment of the policy.
nrVersion String: (ReadOnly) The version of the Managed Object, e.g. an incrementing number or a hash id.
objectType String: The fully-qualified name of the instantiated, concrete type.The value should be the same as the 'ClassId' property.
refMos List<Property Map>: (ReadOnly) A reference to the original Managed Object. This complex property has following sub-properties:
timestamp String: (ReadOnly) The time this versioned Managed Object was created.
versionType String: (ReadOnly) Specifies type of version. Currently the only supported value is \ Configured\ that is used to keep track of snapshots of policies and profiles that are intendedto be configured to target endpoints.* Modified - Version created every time an object is modified.* Configured - Version created every time an object is configured to the service profile.* Deployed - Version created for objects related to a service profile when it is deployed.

FabricMacSecPolicyVersionContextInterestedMo, FabricMacSecPolicyVersionContextInterestedMoArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

FabricMacSecPolicyVersionContextRefMo, FabricMacSecPolicyVersionContextRefMoArgs

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

AdditionalProperties string
ClassId string
Moid string: The Moid of the referenced REST resource.
ObjectType string: The fully-qualified name of the remote type referred by this relationship.
Selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties string
classId string
moid string: The Moid of the referenced REST resource.
objectType string: The fully-qualified name of the remote type referred by this relationship.
selector string: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additional_properties str
class_id str
moid str: The Moid of the referenced REST resource.
object_type str: The fully-qualified name of the remote type referred by this relationship.
selector str: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

additionalProperties String
classId String
moid String: The Moid of the referenced REST resource.
objectType String: The fully-qualified name of the remote type referred by this relationship.
selector String: An OData $filter expression which describes the REST resource to be referenced. This field maybe set instead of 'moid' by clients.1. If 'moid' is set this field is ignored.1. If 'selector' is set and 'moid' is empty/absent from the request, Intersight determines the Moid of theresource matching the filter expression and populates it in the MoRef that is part of the objectinstance being inserted/updated to fulfill the REST request.An error is returned if the filter matches zero or more than one REST resource.An example filter string is: Serial eq '3AA8B7T11'.

Import

intersight_fabric_mac_sec_policy can be imported using the Moid of the object, e.g.

$ pulumi import intersight:index/fabricMacSecPolicy:FabricMacSecPolicy example 1234567890987654321abcde

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: intersight ciscodevnet/terraform-provider-intersight
License
Notes: This Pulumi package is based on the intersight Terraform Provider.

intersight 1.0.64 published on Wednesday, Apr 30, 2025 by ciscodevnet

ciscodevnet/terraform-provider-intersight

intersight.FabricMacSecPolicy

On this page

On this page

Create FabricMacSecPolicy Resource

Constructor syntax

Parameters

Constructor example

FabricMacSecPolicy Resource Properties

Inputs

Outputs

Look up Existing FabricMacSecPolicy Resource

Supporting Types

FabricMacSecPolicyAncestor, FabricMacSecPolicyAncestorArgs

FabricMacSecPolicyFallbackKeyChain, FabricMacSecPolicyFallbackKeyChainArgs

FabricMacSecPolicyFallbackKeyChainSecKey, FabricMacSecPolicyFallbackKeyChainSecKeyArgs

FabricMacSecPolicyMacSecEaPol, FabricMacSecPolicyMacSecEaPolArgs

FabricMacSecPolicyOrganization, FabricMacSecPolicyOrganizationArgs

FabricMacSecPolicyParent, FabricMacSecPolicyParentArgs

FabricMacSecPolicyPermissionResource, FabricMacSecPolicyPermissionResourceArgs

FabricMacSecPolicyPrimaryKeyChain, FabricMacSecPolicyPrimaryKeyChainArgs

FabricMacSecPolicyPrimaryKeyChainSecKey, FabricMacSecPolicyPrimaryKeyChainSecKeyArgs

FabricMacSecPolicyTag, FabricMacSecPolicyTagArgs

FabricMacSecPolicyVersionContext, FabricMacSecPolicyVersionContextArgs

FabricMacSecPolicyVersionContextInterestedMo, FabricMacSecPolicyVersionContextInterestedMoArgs

FabricMacSecPolicyVersionContextRefMo, FabricMacSecPolicyVersionContextRefMoArgs

Import

Package Details

On this page

On this page