Zscaler Internet Access v1.1.1, Jun 24 25

Zscaler Internet Access v1.1.1 published on Tuesday, Jun 24, 2025 by Zscaler

zia.CasbMalwareRule

Explore with Pulumi AI

Zscaler Internet Access v1.1.1 published on Tuesday, Jun 24, 2025 by Zscaler

Example Usage

data "zia_casb_tenant" "this" {
  tenant_name = "GitLab_Tenant01"
}

data "zia_rule_labels" "this" {
    name = "RuleLabel01
}

resource "zia_casb_malware_rules" "this" {
  name = "GitLab_Tenant01"
  action = "OFLCASB_AVP_REPORT_MALWARE"
  type = "OFLCASB_AVP_REPO"
  order = 1
  cloud_app_tenants {
    id = [data.zia_casb_tenant.this.id]
  }
  labels {
    id = [data.zia_rule_labels.this.id]
  }
  buckets {
    id = [1442271, 1442270, 1442268, 1442269, 1442272]
  }
}

Create CasbMalwareRule Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new CasbMalwareRule(name: string, args?: CasbMalwareRuleArgs, opts?: CustomResourceOptions);

@overload
def CasbMalwareRule(resource_name: str,
                    args: Optional[CasbMalwareRuleArgs] = None,
                    opts: Optional[ResourceOptions] = None)

@overload
def CasbMalwareRule(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    action: Optional[str] = None,
                    buckets: Optional[CasbMalwareRuleBucketsArgs] = None,
                    casb_email_labels: Optional[Sequence[CasbMalwareRuleCasbEmailLabelArgs]] = None,
                    casb_tombstone_templates: Optional[Sequence[CasbMalwareRuleCasbTombstoneTemplateArgs]] = None,
                    cloud_app_tenant_ids: Optional[CasbMalwareRuleCloudAppTenantIdsArgs] = None,
                    cloud_app_tenants: Optional[CasbMalwareRuleCloudAppTenantsArgs] = None,
                    labels: Optional[CasbMalwareRuleLabelsArgs] = None,
                    name: Optional[str] = None,
                    order: Optional[int] = None,
                    quarantine_location: Optional[str] = None,
                    scan_inbound_email_link: Optional[str] = None,
                    state: Optional[str] = None,
                    type: Optional[str] = None)

func NewCasbMalwareRule(ctx *Context, name string, args *CasbMalwareRuleArgs, opts ...ResourceOption) (*CasbMalwareRule, error)

public CasbMalwareRule(string name, CasbMalwareRuleArgs? args = null, CustomResourceOptions? opts = null)

public CasbMalwareRule(String name, CasbMalwareRuleArgs args)
public CasbMalwareRule(String name, CasbMalwareRuleArgs args, CustomResourceOptions options)

type: zia:CasbMalwareRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args CasbMalwareRuleArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args CasbMalwareRuleArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args CasbMalwareRuleArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CasbMalwareRuleArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args CasbMalwareRuleArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var casbMalwareRuleResource = new Zia.CasbMalwareRule("casbMalwareRuleResource", new()
{
    Action = "string",
    Buckets = new Zia.Inputs.CasbMalwareRuleBucketsArgs
    {
        Ids = new[]
        {
            0,
        },
    },
    CasbEmailLabels = new[]
    {
        new Zia.Inputs.CasbMalwareRuleCasbEmailLabelArgs
        {
            Id = 0,
        },
    },
    CasbTombstoneTemplates = new[]
    {
        new Zia.Inputs.CasbMalwareRuleCasbTombstoneTemplateArgs
        {
            Id = 0,
        },
    },
    CloudAppTenantIds = new Zia.Inputs.CasbMalwareRuleCloudAppTenantIdsArgs
    {
        Id = 0,
    },
    CloudAppTenants = new Zia.Inputs.CasbMalwareRuleCloudAppTenantsArgs
    {
        Id = 0,
    },
    Labels = new Zia.Inputs.CasbMalwareRuleLabelsArgs
    {
        Id = 0,
    },
    Name = "string",
    Order = 0,
    QuarantineLocation = "string",
    ScanInboundEmailLink = "string",
    State = "string",
    Type = "string",
});

example, err := zia.NewCasbMalwareRule(ctx, "casbMalwareRuleResource", &zia.CasbMalwareRuleArgs{
	Action: pulumi.String("string"),
	Buckets: &zia.CasbMalwareRuleBucketsArgs{
		Ids: pulumi.IntArray{
			pulumi.Int(0),
		},
	},
	CasbEmailLabels: zia.CasbMalwareRuleCasbEmailLabelArray{
		&zia.CasbMalwareRuleCasbEmailLabelArgs{
			Id: pulumi.Int(0),
		},
	},
	CasbTombstoneTemplates: zia.CasbMalwareRuleCasbTombstoneTemplateArray{
		&zia.CasbMalwareRuleCasbTombstoneTemplateArgs{
			Id: pulumi.Int(0),
		},
	},
	CloudAppTenantIds: &zia.CasbMalwareRuleCloudAppTenantIdsArgs{
		Id: pulumi.Int(0),
	},
	CloudAppTenants: &zia.CasbMalwareRuleCloudAppTenantsArgs{
		Id: pulumi.Int(0),
	},
	Labels: &zia.CasbMalwareRuleLabelsArgs{
		Id: pulumi.Int(0),
	},
	Name:                 pulumi.String("string"),
	Order:                pulumi.Int(0),
	QuarantineLocation:   pulumi.String("string"),
	ScanInboundEmailLink: pulumi.String("string"),
	State:                pulumi.String("string"),
	Type:                 pulumi.String("string"),
})

var casbMalwareRuleResource = new CasbMalwareRule("casbMalwareRuleResource", CasbMalwareRuleArgs.builder()
    .action("string")
    .buckets(CasbMalwareRuleBucketsArgs.builder()
        .ids(0)
        .build())
    .casbEmailLabels(CasbMalwareRuleCasbEmailLabelArgs.builder()
        .id(0)
        .build())
    .casbTombstoneTemplates(CasbMalwareRuleCasbTombstoneTemplateArgs.builder()
        .id(0)
        .build())
    .cloudAppTenantIds(CasbMalwareRuleCloudAppTenantIdsArgs.builder()
        .id(0)
        .build())
    .cloudAppTenants(CasbMalwareRuleCloudAppTenantsArgs.builder()
        .id(0)
        .build())
    .labels(CasbMalwareRuleLabelsArgs.builder()
        .id(0)
        .build())
    .name("string")
    .order(0)
    .quarantineLocation("string")
    .scanInboundEmailLink("string")
    .state("string")
    .type("string")
    .build());

casb_malware_rule_resource = zia.CasbMalwareRule("casbMalwareRuleResource",
    action="string",
    buckets={
        "ids": [0],
    },
    casb_email_labels=[{
        "id": 0,
    }],
    casb_tombstone_templates=[{
        "id": 0,
    }],
    cloud_app_tenant_ids={
        "id": 0,
    },
    cloud_app_tenants={
        "id": 0,
    },
    labels={
        "id": 0,
    },
    name="string",
    order=0,
    quarantine_location="string",
    scan_inbound_email_link="string",
    state="string",
    type="string")

const casbMalwareRuleResource = new zia.CasbMalwareRule("casbMalwareRuleResource", {
    action: "string",
    buckets: {
        ids: [0],
    },
    casbEmailLabels: [{
        id: 0,
    }],
    casbTombstoneTemplates: [{
        id: 0,
    }],
    cloudAppTenantIds: {
        id: 0,
    },
    cloudAppTenants: {
        id: 0,
    },
    labels: {
        id: 0,
    },
    name: "string",
    order: 0,
    quarantineLocation: "string",
    scanInboundEmailLink: "string",
    state: "string",
    type: "string",
});

type: zia:CasbMalwareRule
properties:
    action: string
    buckets:
        ids:
            - 0
    casbEmailLabels:
        - id: 0
    casbTombstoneTemplates:
        - id: 0
    cloudAppTenantIds:
        id: 0
    cloudAppTenants:
        id: 0
    labels:
        id: 0
    name: string
    order: 0
    quarantineLocation: string
    scanInboundEmailLink: string
    state: string
    type: string

CasbMalwareRule Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The CasbMalwareRule resource accepts the following input properties:

Action string
Buckets zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
CasbEmailLabels List<zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCasbEmailLabel>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CasbTombstoneTemplates List<zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCasbTombstoneTemplate>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CloudAppTenantIds zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
CloudAppTenants zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
Labels zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
Name string
Order int
QuarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
ScanInboundEmailLink string: Enables or disables the scan inbound email link
State string
Type string

Action string
Buckets CasbMalwareRuleBucketsArgs: Name-ID pairs of locations for which rule must be applied
CasbEmailLabels []CasbMalwareRuleCasbEmailLabelArgs: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CasbTombstoneTemplates []CasbMalwareRuleCasbTombstoneTemplateArgs: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CloudAppTenantIds CasbMalwareRuleCloudAppTenantIdsArgs: This field is applicable for devices that are managed using Zscaler Client Connector.
CloudAppTenants CasbMalwareRuleCloudAppTenantsArgs: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
Labels CasbMalwareRuleLabelsArgs: list of Labels that are applicable to the rule.
Name string
Order int
QuarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
ScanInboundEmailLink string: Enables or disables the scan inbound email link
State string
Type string

action String
buckets CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
casbEmailLabels List<CasbMalwareRuleCasbEmailLabel>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates List<CasbMalwareRuleCasbTombstoneTemplate>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
name String
order Integer
quarantineLocation String: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
scanInboundEmailLink String: Enables or disables the scan inbound email link
state String
type String

action string
buckets CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
casbEmailLabels CasbMalwareRuleCasbEmailLabel[]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates CasbMalwareRuleCasbTombstoneTemplate[]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
name string
order number
quarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
scanInboundEmailLink string: Enables or disables the scan inbound email link
state string
type string

action str
buckets CasbMalwareRuleBucketsArgs: Name-ID pairs of locations for which rule must be applied
casb_email_labels Sequence[CasbMalwareRuleCasbEmailLabelArgs]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casb_tombstone_templates Sequence[CasbMalwareRuleCasbTombstoneTemplateArgs]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloud_app_tenant_ids CasbMalwareRuleCloudAppTenantIdsArgs: This field is applicable for devices that are managed using Zscaler Client Connector.
cloud_app_tenants CasbMalwareRuleCloudAppTenantsArgs: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabelsArgs: list of Labels that are applicable to the rule.
name str
order int
quarantine_location str: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
scan_inbound_email_link str: Enables or disables the scan inbound email link
state str
type str

action String
buckets Property Map: Name-ID pairs of locations for which rule must be applied
casbEmailLabels List<Property Map>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates List<Property Map>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds Property Map: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants Property Map: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels Property Map: list of Labels that are applicable to the rule.
name String
order Number
quarantineLocation String: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
scanInboundEmailLink String: Enables or disables the scan inbound email link
state String
type String

Outputs

All input properties are implicitly available as output properties. Additionally, the CasbMalwareRule resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
RuleId int: A unique identifier assigned to the forwarding rule

Id string: The provider-assigned unique ID for this managed resource.
RuleId int: A unique identifier assigned to the forwarding rule

id String: The provider-assigned unique ID for this managed resource.
ruleId Integer: A unique identifier assigned to the forwarding rule

id string: The provider-assigned unique ID for this managed resource.
ruleId number: A unique identifier assigned to the forwarding rule

id str: The provider-assigned unique ID for this managed resource.
rule_id int: A unique identifier assigned to the forwarding rule

id String: The provider-assigned unique ID for this managed resource.
ruleId Number: A unique identifier assigned to the forwarding rule

Look up Existing CasbMalwareRule Resource

Get an existing CasbMalwareRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: CasbMalwareRuleState, opts?: CustomResourceOptions): CasbMalwareRule

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        action: Optional[str] = None,
        buckets: Optional[CasbMalwareRuleBucketsArgs] = None,
        casb_email_labels: Optional[Sequence[CasbMalwareRuleCasbEmailLabelArgs]] = None,
        casb_tombstone_templates: Optional[Sequence[CasbMalwareRuleCasbTombstoneTemplateArgs]] = None,
        cloud_app_tenant_ids: Optional[CasbMalwareRuleCloudAppTenantIdsArgs] = None,
        cloud_app_tenants: Optional[CasbMalwareRuleCloudAppTenantsArgs] = None,
        labels: Optional[CasbMalwareRuleLabelsArgs] = None,
        name: Optional[str] = None,
        order: Optional[int] = None,
        quarantine_location: Optional[str] = None,
        rule_id: Optional[int] = None,
        scan_inbound_email_link: Optional[str] = None,
        state: Optional[str] = None,
        type: Optional[str] = None) -> CasbMalwareRule

func GetCasbMalwareRule(ctx *Context, name string, id IDInput, state *CasbMalwareRuleState, opts ...ResourceOption) (*CasbMalwareRule, error)

public static CasbMalwareRule Get(string name, Input<string> id, CasbMalwareRuleState? state, CustomResourceOptions? opts = null)

public static CasbMalwareRule get(String name, Output<String> id, CasbMalwareRuleState state, CustomResourceOptions options)

resources:  _:    type: zia:CasbMalwareRule    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Action string
Buckets zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
CasbEmailLabels List<zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCasbEmailLabel>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CasbTombstoneTemplates List<zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCasbTombstoneTemplate>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CloudAppTenantIds zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
CloudAppTenants zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
Labels zscaler.PulumiPackage.Zia.Inputs.CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
Name string
Order int
QuarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
RuleId int: A unique identifier assigned to the forwarding rule
ScanInboundEmailLink string: Enables or disables the scan inbound email link
State string
Type string

Action string
Buckets CasbMalwareRuleBucketsArgs: Name-ID pairs of locations for which rule must be applied
CasbEmailLabels []CasbMalwareRuleCasbEmailLabelArgs: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CasbTombstoneTemplates []CasbMalwareRuleCasbTombstoneTemplateArgs: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
CloudAppTenantIds CasbMalwareRuleCloudAppTenantIdsArgs: This field is applicable for devices that are managed using Zscaler Client Connector.
CloudAppTenants CasbMalwareRuleCloudAppTenantsArgs: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
Labels CasbMalwareRuleLabelsArgs: list of Labels that are applicable to the rule.
Name string
Order int
QuarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
RuleId int: A unique identifier assigned to the forwarding rule
ScanInboundEmailLink string: Enables or disables the scan inbound email link
State string
Type string

action String
buckets CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
casbEmailLabels List<CasbMalwareRuleCasbEmailLabel>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates List<CasbMalwareRuleCasbTombstoneTemplate>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
name String
order Integer
quarantineLocation String: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
ruleId Integer: A unique identifier assigned to the forwarding rule
scanInboundEmailLink String: Enables or disables the scan inbound email link
state String
type String

action string
buckets CasbMalwareRuleBuckets: Name-ID pairs of locations for which rule must be applied
casbEmailLabels CasbMalwareRuleCasbEmailLabel[]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates CasbMalwareRuleCasbTombstoneTemplate[]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds CasbMalwareRuleCloudAppTenantIds: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants CasbMalwareRuleCloudAppTenants: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabels: list of Labels that are applicable to the rule.
name string
order number
quarantineLocation string: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
ruleId number: A unique identifier assigned to the forwarding rule
scanInboundEmailLink string: Enables or disables the scan inbound email link
state string
type string

action str
buckets CasbMalwareRuleBucketsArgs: Name-ID pairs of locations for which rule must be applied
casb_email_labels Sequence[CasbMalwareRuleCasbEmailLabelArgs]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casb_tombstone_templates Sequence[CasbMalwareRuleCasbTombstoneTemplateArgs]: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloud_app_tenant_ids CasbMalwareRuleCloudAppTenantIdsArgs: This field is applicable for devices that are managed using Zscaler Client Connector.
cloud_app_tenants CasbMalwareRuleCloudAppTenantsArgs: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels CasbMalwareRuleLabelsArgs: list of Labels that are applicable to the rule.
name str
order int
quarantine_location str: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
rule_id int: A unique identifier assigned to the forwarding rule
scan_inbound_email_link str: Enables or disables the scan inbound email link
state str
type str

action String
buckets Property Map: Name-ID pairs of locations for which rule must be applied
casbEmailLabels List<Property Map>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
casbTombstoneTemplates List<Property Map>: The ZPA Server Group for which this rule is applicable. Only the Server Groups that are associated with the selected Application Segments are allowed. This field is applicable only for the ZPA forwarding method.
cloudAppTenantIds Property Map: This field is applicable for devices that are managed using Zscaler Client Connector.
cloudAppTenants Property Map: Name-ID pairs of the cloud application tenants for which the rule is applied. If the name-ID pairs of the cloud application tenants are not specified, the rule is applied to all tenants.
labels Property Map: list of Labels that are applicable to the rule.
name String
order Number
quarantineLocation String: Location where all the quarantined files are moved and necessary actions are taken by either deleting or restoring the data
ruleId Number: A unique identifier assigned to the forwarding rule
scanInboundEmailLink String: Enables or disables the scan inbound email link
state String
type String

Supporting Types

CasbMalwareRuleBuckets, CasbMalwareRuleBucketsArgs

Ids List<int>

Ids []int

ids List<Integer>

ids number[]

ids Sequence[int]

ids List<Number>

CasbMalwareRuleCasbEmailLabel, CasbMalwareRuleCasbEmailLabelArgs

Id int

Id int

id Integer

id number

id int

id Number

CasbMalwareRuleCasbTombstoneTemplate, CasbMalwareRuleCasbTombstoneTemplateArgs

Id int

Id int

id Integer

id number

id int

id Number

CasbMalwareRuleCloudAppTenantIds, CasbMalwareRuleCloudAppTenantIdsArgs

Id int

Id int

id Integer

id number

id int

id Number

CasbMalwareRuleCloudAppTenants, CasbMalwareRuleCloudAppTenantsArgs

Id int

Id int

id Integer

id number

id int

id Number

CasbMalwareRuleLabels, CasbMalwareRuleLabelsArgs

Id int

Id int

id Integer

id number

id int

id Number

Import

Zscaler offers a dedicated tool called Zscaler-Terraformer to allow the automated import of ZIA configurations into Terraform-compliant HashiCorp Configuration Language.

Visit

zia_casb_malware_rules can be imported by using <RULE_TYPE:RULE_ID> or <RULE_TYPE:RULE_NAME> as the import ID.

For example:

$ pulumi import zia:index/casbMalwareRule:CasbMalwareRule this <rule_type:rule_id>

$ pulumi import zia:index/casbMalwareRule:CasbMalwareRule this <"rule_type:rule_name">

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: zia zscaler/pulumi-zia
License: MIT
Notes: This Pulumi package is based on the zia Terraform Provider.

Zscaler Internet Access v1.1.1 published on Tuesday, Jun 24, 2025 by Zscaler

zscaler/pulumi-zia

zia.CasbMalwareRule

On this page

On this page

Example Usage

Create CasbMalwareRule Resource

Constructor syntax

Parameters

Constructor example

CasbMalwareRule Resource Properties

Inputs

Outputs

Look up Existing CasbMalwareRule Resource

Supporting Types

CasbMalwareRuleBuckets, CasbMalwareRuleBucketsArgs

CasbMalwareRuleCasbEmailLabel, CasbMalwareRuleCasbEmailLabelArgs

CasbMalwareRuleCasbTombstoneTemplate, CasbMalwareRuleCasbTombstoneTemplateArgs

CasbMalwareRuleCloudAppTenantIds, CasbMalwareRuleCloudAppTenantIdsArgs

CasbMalwareRuleCloudAppTenants, CasbMalwareRuleCloudAppTenantsArgs

CasbMalwareRuleLabels, CasbMalwareRuleLabelsArgs

Import

Package Details

On this page

On this page