Docs Home
prismacloud 1.7.0 published on Monday, Apr 14, 2025 by paloaltonetworks
prismacloud.CloudAccount
Explore with Pulumi AI
prismacloud 1.7.0 published on Monday, Apr 14, 2025 by paloaltonetworks
Manage a cloud account on the Prisma Cloud platform.
Create CloudAccount Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new CloudAccount(name: string, args?: CloudAccountArgs, opts?: CustomResourceOptions);@overload
def CloudAccount(resource_name: str,
args: Optional[CloudAccountArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def CloudAccount(resource_name: str,
opts: Optional[ResourceOptions] = None,
alibaba_cloud: Optional[CloudAccountAlibabaCloudArgs] = None,
aws: Optional[CloudAccountAwsArgs] = None,
azure: Optional[CloudAccountAzureArgs] = None,
cloud_account_id: Optional[str] = None,
disable_on_destroy: Optional[bool] = None,
gcp: Optional[CloudAccountGcpArgs] = None,
timeouts: Optional[CloudAccountTimeoutsArgs] = None)func NewCloudAccount(ctx *Context, name string, args *CloudAccountArgs, opts ...ResourceOption) (*CloudAccount, error)public CloudAccount(string name, CloudAccountArgs? args = null, CustomResourceOptions? opts = null)
public CloudAccount(String name, CloudAccountArgs args)
public CloudAccount(String name, CloudAccountArgs args, CustomResourceOptions options)
type: prismacloud:CloudAccount
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CloudAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CloudAccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CloudAccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CloudAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CloudAccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var cloudAccountResource = new Prismacloud.CloudAccount("cloudAccountResource", new()
{
AlibabaCloud = new Prismacloud.Inputs.CloudAccountAlibabaCloudArgs
{
AccountId = "string",
GroupIds = new[]
{
"string",
},
Name = "string",
RamArn = "string",
Enabled = false,
},
Aws = new Prismacloud.Inputs.CloudAccountAwsArgs
{
AccountId = "string",
ExternalId = "string",
GroupIds = new[]
{
"string",
},
Name = "string",
RoleArn = "string",
AccountType = "string",
Enabled = false,
ProtectionMode = "string",
},
Azure = new Prismacloud.Inputs.CloudAccountAzureArgs
{
AccountId = "string",
ClientId = "string",
GroupIds = new[]
{
"string",
},
Key = "string",
Name = "string",
ServicePrincipalId = "string",
TenantId = "string",
AccountType = "string",
Enabled = false,
MonitorFlowLogs = false,
ProtectionMode = "string",
},
CloudAccountId = "string",
DisableOnDestroy = false,
Gcp = new Prismacloud.Inputs.CloudAccountGcpArgs
{
AccountId = "string",
CredentialsJson = "string",
GroupIds = new[]
{
"string",
},
Name = "string",
AccountType = "string",
CompressionEnabled = false,
DataflowEnabledProject = "string",
Enabled = false,
FlowLogStorageBucket = "string",
ProtectionMode = "string",
},
Timeouts = new Prismacloud.Inputs.CloudAccountTimeoutsArgs
{
Create = "string",
Delete = "string",
Update = "string",
},
});
example, err := prismacloud.NewCloudAccount(ctx, "cloudAccountResource", &prismacloud.CloudAccountArgs{
AlibabaCloud: &prismacloud.CloudAccountAlibabaCloudArgs{
AccountId: pulumi.String("string"),
GroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Name: pulumi.String("string"),
RamArn: pulumi.String("string"),
Enabled: pulumi.Bool(false),
},
Aws: &prismacloud.CloudAccountAwsArgs{
AccountId: pulumi.String("string"),
ExternalId: pulumi.String("string"),
GroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Name: pulumi.String("string"),
RoleArn: pulumi.String("string"),
AccountType: pulumi.String("string"),
Enabled: pulumi.Bool(false),
ProtectionMode: pulumi.String("string"),
},
Azure: &prismacloud.CloudAccountAzureArgs{
AccountId: pulumi.String("string"),
ClientId: pulumi.String("string"),
GroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Key: pulumi.String("string"),
Name: pulumi.String("string"),
ServicePrincipalId: pulumi.String("string"),
TenantId: pulumi.String("string"),
AccountType: pulumi.String("string"),
Enabled: pulumi.Bool(false),
MonitorFlowLogs: pulumi.Bool(false),
ProtectionMode: pulumi.String("string"),
},
CloudAccountId: pulumi.String("string"),
DisableOnDestroy: pulumi.Bool(false),
Gcp: &prismacloud.CloudAccountGcpArgs{
AccountId: pulumi.String("string"),
CredentialsJson: pulumi.String("string"),
GroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Name: pulumi.String("string"),
AccountType: pulumi.String("string"),
CompressionEnabled: pulumi.Bool(false),
DataflowEnabledProject: pulumi.String("string"),
Enabled: pulumi.Bool(false),
FlowLogStorageBucket: pulumi.String("string"),
ProtectionMode: pulumi.String("string"),
},
Timeouts: &prismacloud.CloudAccountTimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
Update: pulumi.String("string"),
},
})
var cloudAccountResource = new CloudAccount("cloudAccountResource", CloudAccountArgs.builder()
.alibabaCloud(CloudAccountAlibabaCloudArgs.builder()
.accountId("string")
.groupIds("string")
.name("string")
.ramArn("string")
.enabled(false)
.build())
.aws(CloudAccountAwsArgs.builder()
.accountId("string")
.externalId("string")
.groupIds("string")
.name("string")
.roleArn("string")
.accountType("string")
.enabled(false)
.protectionMode("string")
.build())
.azure(CloudAccountAzureArgs.builder()
.accountId("string")
.clientId("string")
.groupIds("string")
.key("string")
.name("string")
.servicePrincipalId("string")
.tenantId("string")
.accountType("string")
.enabled(false)
.monitorFlowLogs(false)
.protectionMode("string")
.build())
.cloudAccountId("string")
.disableOnDestroy(false)
.gcp(CloudAccountGcpArgs.builder()
.accountId("string")
.credentialsJson("string")
.groupIds("string")
.name("string")
.accountType("string")
.compressionEnabled(false)
.dataflowEnabledProject("string")
.enabled(false)
.flowLogStorageBucket("string")
.protectionMode("string")
.build())
.timeouts(CloudAccountTimeoutsArgs.builder()
.create("string")
.delete("string")
.update("string")
.build())
.build());
cloud_account_resource = prismacloud.CloudAccount("cloudAccountResource",
alibaba_cloud={
"account_id": "string",
"group_ids": ["string"],
"name": "string",
"ram_arn": "string",
"enabled": False,
},
aws={
"account_id": "string",
"external_id": "string",
"group_ids": ["string"],
"name": "string",
"role_arn": "string",
"account_type": "string",
"enabled": False,
"protection_mode": "string",
},
azure={
"account_id": "string",
"client_id": "string",
"group_ids": ["string"],
"key": "string",
"name": "string",
"service_principal_id": "string",
"tenant_id": "string",
"account_type": "string",
"enabled": False,
"monitor_flow_logs": False,
"protection_mode": "string",
},
cloud_account_id="string",
disable_on_destroy=False,
gcp={
"account_id": "string",
"credentials_json": "string",
"group_ids": ["string"],
"name": "string",
"account_type": "string",
"compression_enabled": False,
"dataflow_enabled_project": "string",
"enabled": False,
"flow_log_storage_bucket": "string",
"protection_mode": "string",
},
timeouts={
"create": "string",
"delete": "string",
"update": "string",
})
const cloudAccountResource = new prismacloud.CloudAccount("cloudAccountResource", {
alibabaCloud: {
accountId: "string",
groupIds: ["string"],
name: "string",
ramArn: "string",
enabled: false,
},
aws: {
accountId: "string",
externalId: "string",
groupIds: ["string"],
name: "string",
roleArn: "string",
accountType: "string",
enabled: false,
protectionMode: "string",
},
azure: {
accountId: "string",
clientId: "string",
groupIds: ["string"],
key: "string",
name: "string",
servicePrincipalId: "string",
tenantId: "string",
accountType: "string",
enabled: false,
monitorFlowLogs: false,
protectionMode: "string",
},
cloudAccountId: "string",
disableOnDestroy: false,
gcp: {
accountId: "string",
credentialsJson: "string",
groupIds: ["string"],
name: "string",
accountType: "string",
compressionEnabled: false,
dataflowEnabledProject: "string",
enabled: false,
flowLogStorageBucket: "string",
protectionMode: "string",
},
timeouts: {
create: "string",
"delete": "string",
update: "string",
},
});
type: prismacloud:CloudAccount
properties:
alibabaCloud:
accountId: string
enabled: false
groupIds:
- string
name: string
ramArn: string
aws:
accountId: string
accountType: string
enabled: false
externalId: string
groupIds:
- string
name: string
protectionMode: string
roleArn: string
azure:
accountId: string
accountType: string
clientId: string
enabled: false
groupIds:
- string
key: string
monitorFlowLogs: false
name: string
protectionMode: string
servicePrincipalId: string
tenantId: string
cloudAccountId: string
disableOnDestroy: false
gcp:
accountId: string
accountType: string
compressionEnabled: false
credentialsJson: string
dataflowEnabledProject: string
enabled: false
flowLogStorageBucket: string
groupIds:
- string
name: string
protectionMode: string
timeouts:
create: string
delete: string
update: string
CloudAccount Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The CloudAccount resource accepts the following input properties:
- Alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- Aws
Cloud
Account Aws - AWS account type spec, defined below.
- Azure
Cloud
Account Azure - Azure account type spec, defined below.
- Cloud
Account stringId - Disable
On boolDestroy - to disable cloud account instead of deleting on calling destroy
- Gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- Timeouts
Cloud
Account Timeouts
- Alibaba
Cloud CloudAccount Alibaba Cloud Args - Alibaba account type spec, defined below.
- Aws
Cloud
Account Aws Args - AWS account type spec, defined below.
- Azure
Cloud
Account Azure Args - Azure account type spec, defined below.
- Cloud
Account stringId - Disable
On boolDestroy - to disable cloud account instead of deleting on calling destroy
- Gcp
Cloud
Account Gcp Args - GCP account type spec, defined below.
- Timeouts
Cloud
Account Timeouts Args
- alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws - AWS account type spec, defined below.
- azure
Cloud
Account Azure - Azure account type spec, defined below.
- cloud
Account StringId - disable
On BooleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts
- alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws - AWS account type spec, defined below.
- azure
Cloud
Account Azure - Azure account type spec, defined below.
- cloud
Account stringId - disable
On booleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts
- alibaba_
cloud CloudAccount Alibaba Cloud Args - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws Args - AWS account type spec, defined below.
- azure
Cloud
Account Azure Args - Azure account type spec, defined below.
- cloud_
account_ strid - disable_
on_ booldestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp Args - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts Args
- alibaba
Cloud Property Map - Alibaba account type spec, defined below.
- aws Property Map
- AWS account type spec, defined below.
- azure Property Map
- Azure account type spec, defined below.
- cloud
Account StringId - disable
On BooleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp Property Map
- GCP account type spec, defined below.
- timeouts Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the CloudAccount resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing CloudAccount Resource
Get an existing CloudAccount resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CloudAccountState, opts?: CustomResourceOptions): CloudAccount@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
alibaba_cloud: Optional[CloudAccountAlibabaCloudArgs] = None,
aws: Optional[CloudAccountAwsArgs] = None,
azure: Optional[CloudAccountAzureArgs] = None,
cloud_account_id: Optional[str] = None,
disable_on_destroy: Optional[bool] = None,
gcp: Optional[CloudAccountGcpArgs] = None,
timeouts: Optional[CloudAccountTimeoutsArgs] = None) -> CloudAccountfunc GetCloudAccount(ctx *Context, name string, id IDInput, state *CloudAccountState, opts ...ResourceOption) (*CloudAccount, error)public static CloudAccount Get(string name, Input<string> id, CloudAccountState? state, CustomResourceOptions? opts = null)public static CloudAccount get(String name, Output<String> id, CloudAccountState state, CustomResourceOptions options)resources: _: type: prismacloud:CloudAccount get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- Aws
Cloud
Account Aws - AWS account type spec, defined below.
- Azure
Cloud
Account Azure - Azure account type spec, defined below.
- Cloud
Account stringId - Disable
On boolDestroy - to disable cloud account instead of deleting on calling destroy
- Gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- Timeouts
Cloud
Account Timeouts
- Alibaba
Cloud CloudAccount Alibaba Cloud Args - Alibaba account type spec, defined below.
- Aws
Cloud
Account Aws Args - AWS account type spec, defined below.
- Azure
Cloud
Account Azure Args - Azure account type spec, defined below.
- Cloud
Account stringId - Disable
On boolDestroy - to disable cloud account instead of deleting on calling destroy
- Gcp
Cloud
Account Gcp Args - GCP account type spec, defined below.
- Timeouts
Cloud
Account Timeouts Args
- alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws - AWS account type spec, defined below.
- azure
Cloud
Account Azure - Azure account type spec, defined below.
- cloud
Account StringId - disable
On BooleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts
- alibaba
Cloud CloudAccount Alibaba Cloud - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws - AWS account type spec, defined below.
- azure
Cloud
Account Azure - Azure account type spec, defined below.
- cloud
Account stringId - disable
On booleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts
- alibaba_
cloud CloudAccount Alibaba Cloud Args - Alibaba account type spec, defined below.
- aws
Cloud
Account Aws Args - AWS account type spec, defined below.
- azure
Cloud
Account Azure Args - Azure account type spec, defined below.
- cloud_
account_ strid - disable_
on_ booldestroy - to disable cloud account instead of deleting on calling destroy
- gcp
Cloud
Account Gcp Args - GCP account type spec, defined below.
- timeouts
Cloud
Account Timeouts Args
- alibaba
Cloud Property Map - Alibaba account type spec, defined below.
- aws Property Map
- AWS account type spec, defined below.
- azure Property Map
- Azure account type spec, defined below.
- cloud
Account StringId - disable
On BooleanDestroy - to disable cloud account instead of deleting on calling destroy
- gcp Property Map
- GCP account type spec, defined below.
- timeouts Property Map
Supporting Types
CloudAccountAlibabaCloud, CloudAccountAlibabaCloudArgs
- Account
Id string - Alibaba account ID.
- Group
Ids List<string> - List of account IDs to which you are assigning this account.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Ram
Arn string - Unique identifier for an Alibaba RAM role resource.
- Enabled bool
- Whether or not the account is enabled
- Account
Id string - Alibaba account ID.
- Group
Ids []string - List of account IDs to which you are assigning this account.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Ram
Arn string - Unique identifier for an Alibaba RAM role resource.
- Enabled bool
- Whether or not the account is enabled
- account
Id String - Alibaba account ID.
- group
Ids List<String> - List of account IDs to which you are assigning this account.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- ram
Arn String - Unique identifier for an Alibaba RAM role resource.
- enabled Boolean
- Whether or not the account is enabled
- account
Id string - Alibaba account ID.
- group
Ids string[] - List of account IDs to which you are assigning this account.
- name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- ram
Arn string - Unique identifier for an Alibaba RAM role resource.
- enabled boolean
- Whether or not the account is enabled
- account_
id str - Alibaba account ID.
- group_
ids Sequence[str] - List of account IDs to which you are assigning this account.
- name str
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- ram_
arn str - Unique identifier for an Alibaba RAM role resource.
- enabled bool
- Whether or not the account is enabled
- account
Id String - Alibaba account ID.
- group
Ids List<String> - List of account IDs to which you are assigning this account.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- ram
Arn String - Unique identifier for an Alibaba RAM role resource.
- enabled Boolean
- Whether or not the account is enabled
CloudAccountAws, CloudAccountAwsArgs
- Account
Id string - AWS account ID
- External
Id string - AWS account external ID
- Group
Ids List<string> - List of account IDs to which you are assigning this account
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- Role
Arn string - Unique identifier for an AWS resource (ARN)
- Account
Type string - Account type - organization or account
- Enabled bool
- Whether or not the account is enabled
- Protection
Mode string - Monitor or Monitor and Protect
- Account
Id string - AWS account ID
- External
Id string - AWS account external ID
- Group
Ids []string - List of account IDs to which you are assigning this account
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- Role
Arn string - Unique identifier for an AWS resource (ARN)
- Account
Type string - Account type - organization or account
- Enabled bool
- Whether or not the account is enabled
- Protection
Mode string - Monitor or Monitor and Protect
- account
Id String - AWS account ID
- external
Id String - AWS account external ID
- group
Ids List<String> - List of account IDs to which you are assigning this account
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- role
Arn String - Unique identifier for an AWS resource (ARN)
- account
Type String - Account type - organization or account
- enabled Boolean
- Whether or not the account is enabled
- protection
Mode String - Monitor or Monitor and Protect
- account
Id string - AWS account ID
- external
Id string - AWS account external ID
- group
Ids string[] - List of account IDs to which you are assigning this account
- name string
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- role
Arn string - Unique identifier for an AWS resource (ARN)
- account
Type string - Account type - organization or account
- enabled boolean
- Whether or not the account is enabled
- protection
Mode string - Monitor or Monitor and Protect
- account_
id str - AWS account ID
- external_
id str - AWS account external ID
- group_
ids Sequence[str] - List of account IDs to which you are assigning this account
- name str
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- role_
arn str - Unique identifier for an AWS resource (ARN)
- account_
type str - Account type - organization or account
- enabled bool
- Whether or not the account is enabled
- protection_
mode str - Monitor or Monitor and Protect
- account
Id String - AWS account ID
- external
Id String - AWS account external ID
- group
Ids List<String> - List of account IDs to which you are assigning this account
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique)
- role
Arn String - Unique identifier for an AWS resource (ARN)
- account
Type String - Account type - organization or account
- enabled Boolean
- Whether or not the account is enabled
- protection
Mode String - Monitor or Monitor and Protect
CloudAccountAzure, CloudAccountAzureArgs
- Account
Id string - Azure account ID.
- Client
Id string - Application ID registered with Active Directory.
- Group
Ids List<string> - List of account IDs to which you are assigning this account.
- Key string
- Application ID key.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Service
Principal stringId - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- Tenant
Id string - Active Directory ID associated with Azure.
- Account
Type string - Defaults to "account" if not specified
- Enabled bool
- Whether or not the account is enabled (defualt:
true). - Monitor
Flow boolLogs - Automatically ingest flow logs.
- Protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- Account
Id string - Azure account ID.
- Client
Id string - Application ID registered with Active Directory.
- Group
Ids []string - List of account IDs to which you are assigning this account.
- Key string
- Application ID key.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Service
Principal stringId - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- Tenant
Id string - Active Directory ID associated with Azure.
- Account
Type string - Defaults to "account" if not specified
- Enabled bool
- Whether or not the account is enabled (defualt:
true). - Monitor
Flow boolLogs - Automatically ingest flow logs.
- Protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id String - Azure account ID.
- client
Id String - Application ID registered with Active Directory.
- group
Ids List<String> - List of account IDs to which you are assigning this account.
- key String
- Application ID key.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- service
Principal StringId - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- tenant
Id String - Active Directory ID associated with Azure.
- account
Type String - Defaults to "account" if not specified
- enabled Boolean
- Whether or not the account is enabled (defualt:
true). - monitor
Flow BooleanLogs - Automatically ingest flow logs.
- protection
Mode String - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id string - Azure account ID.
- client
Id string - Application ID registered with Active Directory.
- group
Ids string[] - List of account IDs to which you are assigning this account.
- key string
- Application ID key.
- name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- service
Principal stringId - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- tenant
Id string - Active Directory ID associated with Azure.
- account
Type string - Defaults to "account" if not specified
- enabled boolean
- Whether or not the account is enabled (defualt:
true). - monitor
Flow booleanLogs - Automatically ingest flow logs.
- protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account_
id str - Azure account ID.
- client_
id str - Application ID registered with Active Directory.
- group_
ids Sequence[str] - List of account IDs to which you are assigning this account.
- key str
- Application ID key.
- name str
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- service_
principal_ strid - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- tenant_
id str - Active Directory ID associated with Azure.
- account_
type str - Defaults to "account" if not specified
- enabled bool
- Whether or not the account is enabled (defualt:
true). - monitor_
flow_ boollogs - Automatically ingest flow logs.
- protection_
mode str - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id String - Azure account ID.
- client
Id String - Application ID registered with Active Directory.
- group
Ids List<String> - List of account IDs to which you are assigning this account.
- key String
- Application ID key.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- service
Principal StringId - Unique ID of the service principal object associated with the Prisma Cloud application that you create.
- tenant
Id String - Active Directory ID associated with Azure.
- account
Type String - Defaults to "account" if not specified
- enabled Boolean
- Whether or not the account is enabled (defualt:
true). - monitor
Flow BooleanLogs - Automatically ingest flow logs.
- protection
Mode String - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
CloudAccountGcp, CloudAccountGcpArgs
- Account
Id string - GCP project ID.
- Credentials
Json string - Content of the JSON credentials file (read in using
file()). - Group
Ids List<string> - List of account IDs to which you are assigning this account.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Account
Type string - Defaults to "account" if not specified
- Compression
Enabled bool - Enable flow log compression.
- Dataflow
Enabled stringProject - GCP project for flow log compression.
- Enabled bool
- Whether or not the account is enabled (defualt:
true). - Flow
Log stringStorage Bucket - GCP Flow logs storage bucket.
- Protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- Account
Id string - GCP project ID.
- Credentials
Json string - Content of the JSON credentials file (read in using
file()). - Group
Ids []string - List of account IDs to which you are assigning this account.
- Name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- Account
Type string - Defaults to "account" if not specified
- Compression
Enabled bool - Enable flow log compression.
- Dataflow
Enabled stringProject - GCP project for flow log compression.
- Enabled bool
- Whether or not the account is enabled (defualt:
true). - Flow
Log stringStorage Bucket - GCP Flow logs storage bucket.
- Protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id String - GCP project ID.
- credentials
Json String - Content of the JSON credentials file (read in using
file()). - group
Ids List<String> - List of account IDs to which you are assigning this account.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- account
Type String - Defaults to "account" if not specified
- compression
Enabled Boolean - Enable flow log compression.
- dataflow
Enabled StringProject - GCP project for flow log compression.
- enabled Boolean
- Whether or not the account is enabled (defualt:
true). - flow
Log StringStorage Bucket - GCP Flow logs storage bucket.
- protection
Mode String - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id string - GCP project ID.
- credentials
Json string - Content of the JSON credentials file (read in using
file()). - group
Ids string[] - List of account IDs to which you are assigning this account.
- name string
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- account
Type string - Defaults to "account" if not specified
- compression
Enabled boolean - Enable flow log compression.
- dataflow
Enabled stringProject - GCP project for flow log compression.
- enabled boolean
- Whether or not the account is enabled (defualt:
true). - flow
Log stringStorage Bucket - GCP Flow logs storage bucket.
- protection
Mode string - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account_
id str - GCP project ID.
- credentials_
json str - Content of the JSON credentials file (read in using
file()). - group_
ids Sequence[str] - List of account IDs to which you are assigning this account.
- name str
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- account_
type str - Defaults to "account" if not specified
- compression_
enabled bool - Enable flow log compression.
- dataflow_
enabled_ strproject - GCP project for flow log compression.
- enabled bool
- Whether or not the account is enabled (defualt:
true). - flow_
log_ strstorage_ bucket - GCP Flow logs storage bucket.
- protection_
mode str - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
- account
Id String - GCP project ID.
- credentials
Json String - Content of the JSON credentials file (read in using
file()). - group
Ids List<String> - List of account IDs to which you are assigning this account.
- name String
- Name to be used for the account on the Prisma Cloud platform (must be unique).
- account
Type String - Defaults to "account" if not specified
- compression
Enabled Boolean - Enable flow log compression.
- dataflow
Enabled StringProject - GCP project for flow log compression.
- enabled Boolean
- Whether or not the account is enabled (defualt:
true). - flow
Log StringStorage Bucket - GCP Flow logs storage bucket.
- protection
Mode String - Defaults to "MONITOR". Valid values :
MONITORorMONITOR_AND_PROTECT
CloudAccountTimeouts, CloudAccountTimeoutsArgs
Import
Resources can be imported using the cloud type (aws, azure, gcp, or alibaba_cloud) and the ID:
$ pulumi import prismacloud:index/cloudAccount:CloudAccount aws_example aws:accountIdHere
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- prismacloud paloaltonetworks/terraform-provider-prismacloud
- License
- Notes
- This Pulumi package is based on the
prismacloudTerraform Provider.
prismacloud 1.7.0 published on Monday, Apr 14, 2025 by paloaltonetworks