nsxt 3.8.1, Apr 30 25

nsxt 3.8.1 published on Wednesday, Apr 30, 2025 by vmware

nsxt.PolicyParentSecurityPolicy

Explore with Pulumi AI

nsxt 3.8.1 published on Wednesday, Apr 30, 2025 by vmware

Create PolicyParentSecurityPolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new PolicyParentSecurityPolicy(name: string, args: PolicyParentSecurityPolicyArgs, opts?: CustomResourceOptions);

@overload
def PolicyParentSecurityPolicy(resource_name: str,
                               args: PolicyParentSecurityPolicyArgs,
                               opts: Optional[ResourceOptions] = None)

@overload
def PolicyParentSecurityPolicy(resource_name: str,
                               opts: Optional[ResourceOptions] = None,
                               display_name: Optional[str] = None,
                               category: Optional[str] = None,
                               locked: Optional[bool] = None,
                               description: Optional[str] = None,
                               context: Optional[PolicyParentSecurityPolicyContextArgs] = None,
                               domain: Optional[str] = None,
                               comments: Optional[str] = None,
                               nsx_id: Optional[str] = None,
                               policy_parent_security_policy_id: Optional[str] = None,
                               scopes: Optional[Sequence[str]] = None,
                               sequence_number: Optional[float] = None,
                               stateful: Optional[bool] = None,
                               tags: Optional[Sequence[PolicyParentSecurityPolicyTagArgs]] = None,
                               tcp_strict: Optional[bool] = None)

func NewPolicyParentSecurityPolicy(ctx *Context, name string, args PolicyParentSecurityPolicyArgs, opts ...ResourceOption) (*PolicyParentSecurityPolicy, error)

public PolicyParentSecurityPolicy(string name, PolicyParentSecurityPolicyArgs args, CustomResourceOptions? opts = null)

public PolicyParentSecurityPolicy(String name, PolicyParentSecurityPolicyArgs args)
public PolicyParentSecurityPolicy(String name, PolicyParentSecurityPolicyArgs args, CustomResourceOptions options)

type: nsxt:PolicyParentSecurityPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args PolicyParentSecurityPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args PolicyParentSecurityPolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args PolicyParentSecurityPolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args PolicyParentSecurityPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args PolicyParentSecurityPolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var policyParentSecurityPolicyResource = new Nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", new()
{
    DisplayName = "string",
    Category = "string",
    Locked = false,
    Description = "string",
    Context = new Nsxt.Inputs.PolicyParentSecurityPolicyContextArgs
    {
        ProjectId = "string",
    },
    Domain = "string",
    Comments = "string",
    NsxId = "string",
    PolicyParentSecurityPolicyId = "string",
    Scopes = new[]
    {
        "string",
    },
    SequenceNumber = 0,
    Stateful = false,
    Tags = new[]
    {
        new Nsxt.Inputs.PolicyParentSecurityPolicyTagArgs
        {
            Scope = "string",
            Tag = "string",
        },
    },
    TcpStrict = false,
});

example, err := nsxt.NewPolicyParentSecurityPolicy(ctx, "policyParentSecurityPolicyResource", &nsxt.PolicyParentSecurityPolicyArgs{
	DisplayName: pulumi.String("string"),
	Category:    pulumi.String("string"),
	Locked:      pulumi.Bool(false),
	Description: pulumi.String("string"),
	Context: &nsxt.PolicyParentSecurityPolicyContextArgs{
		ProjectId: pulumi.String("string"),
	},
	Domain:                       pulumi.String("string"),
	Comments:                     pulumi.String("string"),
	NsxId:                        pulumi.String("string"),
	PolicyParentSecurityPolicyId: pulumi.String("string"),
	Scopes: pulumi.StringArray{
		pulumi.String("string"),
	},
	SequenceNumber: pulumi.Float64(0),
	Stateful:       pulumi.Bool(false),
	Tags: nsxt.PolicyParentSecurityPolicyTagArray{
		&nsxt.PolicyParentSecurityPolicyTagArgs{
			Scope: pulumi.String("string"),
			Tag:   pulumi.String("string"),
		},
	},
	TcpStrict: pulumi.Bool(false),
})

var policyParentSecurityPolicyResource = new PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", PolicyParentSecurityPolicyArgs.builder()
    .displayName("string")
    .category("string")
    .locked(false)
    .description("string")
    .context(PolicyParentSecurityPolicyContextArgs.builder()
        .projectId("string")
        .build())
    .domain("string")
    .comments("string")
    .nsxId("string")
    .policyParentSecurityPolicyId("string")
    .scopes("string")
    .sequenceNumber(0)
    .stateful(false)
    .tags(PolicyParentSecurityPolicyTagArgs.builder()
        .scope("string")
        .tag("string")
        .build())
    .tcpStrict(false)
    .build());

policy_parent_security_policy_resource = nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource",
    display_name="string",
    category="string",
    locked=False,
    description="string",
    context={
        "project_id": "string",
    },
    domain="string",
    comments="string",
    nsx_id="string",
    policy_parent_security_policy_id="string",
    scopes=["string"],
    sequence_number=0,
    stateful=False,
    tags=[{
        "scope": "string",
        "tag": "string",
    }],
    tcp_strict=False)

const policyParentSecurityPolicyResource = new nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", {
    displayName: "string",
    category: "string",
    locked: false,
    description: "string",
    context: {
        projectId: "string",
    },
    domain: "string",
    comments: "string",
    nsxId: "string",
    policyParentSecurityPolicyId: "string",
    scopes: ["string"],
    sequenceNumber: 0,
    stateful: false,
    tags: [{
        scope: "string",
        tag: "string",
    }],
    tcpStrict: false,
});

type: nsxt:PolicyParentSecurityPolicy
properties:
    category: string
    comments: string
    context:
        projectId: string
    description: string
    displayName: string
    domain: string
    locked: false
    nsxId: string
    policyParentSecurityPolicyId: string
    scopes:
        - string
    sequenceNumber: 0
    stateful: false
    tags:
        - scope: string
          tag: string
    tcpStrict: false

PolicyParentSecurityPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The PolicyParentSecurityPolicy resource accepts the following input properties:

Category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
DisplayName string: Display name of the resource.
Comments string: Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContext: The context which the object belongs to
Description string: Description of the resource.
Domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
PolicyParentSecurityPolicyId string: ID of the Security Policy.
Scopes List<string>: The list of policy object paths where the rules in this policy will get applied.
SequenceNumber double: This field is used to resolve conflicts between security policies across domains.
Stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags List<PolicyParentSecurityPolicyTag>: A list of scope + tag pairs to associate with this policy.
TcpStrict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
DisplayName string: Display name of the resource.
Comments string: Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContextArgs: The context which the object belongs to
Description string: Description of the resource.
Domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
PolicyParentSecurityPolicyId string: ID of the Security Policy.
Scopes []string: The list of policy object paths where the rules in this policy will get applied.
SequenceNumber float64: This field is used to resolve conflicts between security policies across domains.
Stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags []PolicyParentSecurityPolicyTagArgs: A list of scope + tag pairs to associate with this policy.
TcpStrict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category String: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName String: Display name of the resource.
comments String: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext: The context which the object belongs to
description String: Description of the resource.
domain String: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String: The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId String: ID of the Security Policy.
scopes List<String>: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Double: This field is used to resolve conflicts between security policies across domains.
stateful Boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<PolicyParentSecurityPolicyTag>: A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName string: Display name of the resource.
comments string: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext: The context which the object belongs to
description string: Description of the resource.
domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId string: ID of the Security Policy.
scopes string[]: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber number: This field is used to resolve conflicts between security policies across domains.
stateful boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags PolicyParentSecurityPolicyTag[]: A list of scope + tag pairs to associate with this policy.
tcpStrict boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category str: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
display_name str: Display name of the resource.
comments str: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContextArgs: The context which the object belongs to
description str: Description of the resource.
domain str: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsx_id str: The NSX ID of this resource. If set, this ID will be used to create the resource.
policy_parent_security_policy_id str: ID of the Security Policy.
scopes Sequence[str]: The list of policy object paths where the rules in this policy will get applied.
sequence_number float: This field is used to resolve conflicts between security policies across domains.
stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags Sequence[PolicyParentSecurityPolicyTagArgs]: A list of scope + tag pairs to associate with this policy.
tcp_strict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category String: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName String: Display name of the resource.
comments String: Comments for security policy lock/unlock.
context Property Map: The context which the object belongs to
description String: Description of the resource.
domain String: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String: The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId String: ID of the Security Policy.
scopes List<String>: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Number: This field is used to resolve conflicts between security policies across domains.
stateful Boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<Property Map>: A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Outputs

All input properties are implicitly available as output properties. Additionally, the PolicyParentSecurityPolicy resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Path string: The NSX path of the policy resource.
Revision double: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

Id string: The provider-assigned unique ID for this managed resource.
Path string: The NSX path of the policy resource.
Revision float64: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

id String: The provider-assigned unique ID for this managed resource.
path String: The NSX path of the policy resource.
revision Double: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

id string: The provider-assigned unique ID for this managed resource.
path string: The NSX path of the policy resource.
revision number: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

id str: The provider-assigned unique ID for this managed resource.
path str: The NSX path of the policy resource.
revision float: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

id String: The provider-assigned unique ID for this managed resource.
path String: The NSX path of the policy resource.
revision Number: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

Look up Existing PolicyParentSecurityPolicy Resource

Get an existing PolicyParentSecurityPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: PolicyParentSecurityPolicyState, opts?: CustomResourceOptions): PolicyParentSecurityPolicy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        category: Optional[str] = None,
        comments: Optional[str] = None,
        context: Optional[PolicyParentSecurityPolicyContextArgs] = None,
        description: Optional[str] = None,
        display_name: Optional[str] = None,
        domain: Optional[str] = None,
        locked: Optional[bool] = None,
        nsx_id: Optional[str] = None,
        path: Optional[str] = None,
        policy_parent_security_policy_id: Optional[str] = None,
        revision: Optional[float] = None,
        scopes: Optional[Sequence[str]] = None,
        sequence_number: Optional[float] = None,
        stateful: Optional[bool] = None,
        tags: Optional[Sequence[PolicyParentSecurityPolicyTagArgs]] = None,
        tcp_strict: Optional[bool] = None) -> PolicyParentSecurityPolicy

func GetPolicyParentSecurityPolicy(ctx *Context, name string, id IDInput, state *PolicyParentSecurityPolicyState, opts ...ResourceOption) (*PolicyParentSecurityPolicy, error)

public static PolicyParentSecurityPolicy Get(string name, Input<string> id, PolicyParentSecurityPolicyState? state, CustomResourceOptions? opts = null)

public static PolicyParentSecurityPolicy get(String name, Output<String> id, PolicyParentSecurityPolicyState state, CustomResourceOptions options)

resources:  _:    type: nsxt:PolicyParentSecurityPolicy    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
Comments string: Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContext: The context which the object belongs to
Description string: Description of the resource.
DisplayName string: Display name of the resource.
Domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
Path string: The NSX path of the policy resource.
PolicyParentSecurityPolicyId string: ID of the Security Policy.
Revision double: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
Scopes List<string>: The list of policy object paths where the rules in this policy will get applied.
SequenceNumber double: This field is used to resolve conflicts between security policies across domains.
Stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags List<PolicyParentSecurityPolicyTag>: A list of scope + tag pairs to associate with this policy.
TcpStrict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
Comments string: Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContextArgs: The context which the object belongs to
Description string: Description of the resource.
DisplayName string: Display name of the resource.
Domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
Path string: The NSX path of the policy resource.
PolicyParentSecurityPolicyId string: ID of the Security Policy.
Revision float64: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
Scopes []string: The list of policy object paths where the rules in this policy will get applied.
SequenceNumber float64: This field is used to resolve conflicts between security policies across domains.
Stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags []PolicyParentSecurityPolicyTagArgs: A list of scope + tag pairs to associate with this policy.
TcpStrict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category String: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments String: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext: The context which the object belongs to
description String: Description of the resource.
displayName String: Display name of the resource.
domain String: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String: The NSX ID of this resource. If set, this ID will be used to create the resource.
path String: The NSX path of the policy resource.
policyParentSecurityPolicyId String: ID of the Security Policy.
revision Double: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes List<String>: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Double: This field is used to resolve conflicts between security policies across domains.
stateful Boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<PolicyParentSecurityPolicyTag>: A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category string: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments string: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext: The context which the object belongs to
description string: Description of the resource.
displayName string: Display name of the resource.
domain string: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId string: The NSX ID of this resource. If set, this ID will be used to create the resource.
path string: The NSX path of the policy resource.
policyParentSecurityPolicyId string: ID of the Security Policy.
revision number: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes string[]: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber number: This field is used to resolve conflicts between security policies across domains.
stateful boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags PolicyParentSecurityPolicyTag[]: A list of scope + tag pairs to associate with this policy.
tcpStrict boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category str: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments str: Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContextArgs: The context which the object belongs to
description str: Description of the resource.
display_name str: Display name of the resource.
domain str: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked bool: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsx_id str: The NSX ID of this resource. If set, this ID will be used to create the resource.
path str: The NSX path of the policy resource.
policy_parent_security_policy_id str: ID of the Security Policy.
revision float: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes Sequence[str]: The list of policy object paths where the rules in this policy will get applied.
sequence_number float: This field is used to resolve conflicts between security policies across domains.
stateful bool: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags Sequence[PolicyParentSecurityPolicyTagArgs]: A list of scope + tag pairs to associate with this policy.
tcp_strict bool: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

category String: Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments String: Comments for security policy lock/unlock.
context Property Map: The context which the object belongs to
description String: Description of the resource.
displayName String: Display name of the resource.
domain String: The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean: Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String: The NSX ID of this resource. If set, this ID will be used to create the resource.
path String: The NSX path of the policy resource.
policyParentSecurityPolicyId String: ID of the Security Policy.
revision Number: Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes List<String>: The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Number: This field is used to resolve conflicts between security policies across domains.
stateful Boolean: If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<Property Map>: A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean: Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Supporting Types

PolicyParentSecurityPolicyContext, PolicyParentSecurityPolicyContextArgs

ProjectId string: The ID of the project which the object belongs to

ProjectId string: The ID of the project which the object belongs to

projectId String: The ID of the project which the object belongs to

projectId string: The ID of the project which the object belongs to

project_id str: The ID of the project which the object belongs to

projectId String: The ID of the project which the object belongs to

PolicyParentSecurityPolicyTag, PolicyParentSecurityPolicyTagArgs

Scope string: The list of policy object paths where the rules in this policy will get applied.
Tag string: A list of scope + tag pairs to associate with this policy.

Scope string: The list of policy object paths where the rules in this policy will get applied.
Tag string: A list of scope + tag pairs to associate with this policy.

scope String: The list of policy object paths where the rules in this policy will get applied.
tag String: A list of scope + tag pairs to associate with this policy.

scope string: The list of policy object paths where the rules in this policy will get applied.
tag string: A list of scope + tag pairs to associate with this policy.

scope str: The list of policy object paths where the rules in this policy will get applied.
tag str: A list of scope + tag pairs to associate with this policy.

scope String: The list of policy object paths where the rules in this policy will get applied.
tag String: A list of scope + tag pairs to associate with this policy.

Package Details

Repository: nsxt vmware/terraform-provider-nsxt
License
Notes: This Pulumi package is based on the nsxt Terraform Provider.

nsxt 3.8.1 published on Wednesday, Apr 30, 2025 by vmware

vmware/terraform-provider-nsxt

nsxt.PolicyParentSecurityPolicy

On this page

On this page

Create PolicyParentSecurityPolicy Resource

Constructor syntax

Parameters

Constructor example

PolicyParentSecurityPolicy Resource Properties

Inputs

Outputs

Look up Existing PolicyParentSecurityPolicy Resource

Supporting Types

PolicyParentSecurityPolicyContext, PolicyParentSecurityPolicyContextArgs

PolicyParentSecurityPolicyTag, PolicyParentSecurityPolicyTagArgs

Package Details

On this page

On this page