Zscaler Internet Access v0.0.3, Jan 30 23

zia.DLP.DLPWebRules

The zia_dlp_web_rules resource allows the creation and management of ZIA DLP Web Rules in the Zscaler Internet Access cloud or via the API.

Example Usage

using System.Collections.Generic;
using Pulumi;
using Zia = zscaler.PulumiPackage.Zia;

return await Deployment.RunAsync(() => 
{
    var test = new Zia.DLP.DLPWebRules("test", new()
    {
        Action = "ALLOW",
        CloudApplications = new[]
        {
            "ZENDESK",
            "LUCKY_ORANGE",
            "MICROSOFT_POWERAPPS",
            "MICROSOFTLIVEMEETING",
        },
        Description = "Test",
        FileTypes = new[] {},
        MatchOnly = false,
        MinSize = 20,
        OcrEnabled = false,
        Order = 1,
        Protocols = new[]
        {
            "HTTPS_RULE",
            "HTTP_RULE",
        },
        Rank = 7,
        State = "ENABLED",
        WithoutContentInspection = false,
        ZscalerIncidentReciever = true,
    });

});

package main

import (
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
	"github.com/zscaler/pulumi-zia/sdk/go/zia/DLP"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := DLP.NewDLPWebRules(ctx, "test", &DLP.DLPWebRulesArgs{
			Action: pulumi.String("ALLOW"),
			CloudApplications: pulumi.StringArray{
				pulumi.String("ZENDESK"),
				pulumi.String("LUCKY_ORANGE"),
				pulumi.String("MICROSOFT_POWERAPPS"),
				pulumi.String("MICROSOFTLIVEMEETING"),
			},
			Description: pulumi.String("Test"),
			FileTypes:   pulumi.StringArray{},
			MatchOnly:   pulumi.Bool(false),
			MinSize:     pulumi.Int(20),
			OcrEnabled:  pulumi.Bool(false),
			Order:       pulumi.Int(1),
			Protocols: pulumi.StringArray{
				pulumi.String("HTTPS_RULE"),
				pulumi.String("HTTP_RULE"),
			},
			Rank:                     pulumi.Int(7),
			State:                    pulumi.String("ENABLED"),
			WithoutContentInspection: pulumi.Bool(false),
			ZscalerIncidentReciever:  pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.zia.DLP.DLPWebRules;
import com.pulumi.zia.DLP.DLPWebRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var test = new DLPWebRules("test", DLPWebRulesArgs.builder()        
            .action("ALLOW")
            .cloudApplications(            
                "ZENDESK",
                "LUCKY_ORANGE",
                "MICROSOFT_POWERAPPS",
                "MICROSOFTLIVEMEETING")
            .description("Test")
            .fileTypes()
            .matchOnly(false)
            .minSize(20)
            .ocrEnabled(false)
            .order(1)
            .protocols(            
                "HTTPS_RULE",
                "HTTP_RULE")
            .rank(7)
            .state("ENABLED")
            .withoutContentInspection(false)
            .zscalerIncidentReciever(true)
            .build());

    }
}

import pulumi
import zscaler_pulumi_zia as zia

test = zia.dlp.DLPWebRules("test",
    action="ALLOW",
    cloud_applications=[
        "ZENDESK",
        "LUCKY_ORANGE",
        "MICROSOFT_POWERAPPS",
        "MICROSOFTLIVEMEETING",
    ],
    description="Test",
    file_types=[],
    match_only=False,
    min_size=20,
    ocr_enabled=False,
    order=1,
    protocols=[
        "HTTPS_RULE",
        "HTTP_RULE",
    ],
    rank=7,
    state="ENABLED",
    without_content_inspection=False,
    zscaler_incident_reciever=True)

import * as pulumi from "@pulumi/pulumi";
import * as zia from "@zscaler/pulumi-zia";

const test = new zia.dlp.DLPWebRules("test", {
    action: "ALLOW",
    cloudApplications: [
        "ZENDESK",
        "LUCKY_ORANGE",
        "MICROSOFT_POWERAPPS",
        "MICROSOFTLIVEMEETING",
    ],
    description: "Test",
    fileTypes: [],
    matchOnly: false,
    minSize: 20,
    ocrEnabled: false,
    order: 1,
    protocols: [
        "HTTPS_RULE",
        "HTTP_RULE",
    ],
    rank: 7,
    state: "ENABLED",
    withoutContentInspection: false,
    zscalerIncidentReciever: true,
});

resources:
  test:
    type: zia:DLP:DLPWebRules
    properties:
      action: ALLOW
      cloudApplications:
        - ZENDESK
        - LUCKY_ORANGE
        - MICROSOFT_POWERAPPS
        - MICROSOFTLIVEMEETING
      description: Test
      fileTypes: []
      matchOnly: false
      minSize: 20
      ocrEnabled: false
      order: 1
      protocols:
        - HTTPS_RULE
        - HTTP_RULE
      rank: 7
      state: ENABLED
      withoutContentInspection: false
      zscalerIncidentReciever: true

Create DLPWebRules Resource

new DLPWebRules(name: string, args: DLPWebRulesArgs, opts?: CustomResourceOptions);

@overload
def DLPWebRules(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                access_control: Optional[str] = None,
                action: Optional[str] = None,
                auditor: Optional[_dlp.DLPWebRulesAuditorArgs] = None,
                cloud_applications: Optional[Sequence[str]] = None,
                departments: Optional[_dlp.DLPWebRulesDepartmentsArgs] = None,
                description: Optional[str] = None,
                dlp_engines: Optional[_dlp.DLPWebRulesDlpEnginesArgs] = None,
                excluded_departments: Optional[_dlp.DLPWebRulesExcludedDepartmentsArgs] = None,
                excluded_groups: Optional[_dlp.DLPWebRulesExcludedGroupsArgs] = None,
                excluded_users: Optional[_dlp.DLPWebRulesExcludedUsersArgs] = None,
                external_auditor_email: Optional[str] = None,
                file_types: Optional[Sequence[str]] = None,
                groups: Optional[_dlp.DLPWebRulesGroupsArgs] = None,
                icap_server: Optional[_dlp.DLPWebRulesIcapServerArgs] = None,
                labels: Optional[_dlp.DLPWebRulesLabelsArgs] = None,
                location_groups: Optional[_dlp.DLPWebRulesLocationGroupsArgs] = None,
                locations: Optional[_dlp.DLPWebRulesLocationsArgs] = None,
                match_only: Optional[bool] = None,
                min_size: Optional[int] = None,
                name: Optional[str] = None,
                notification_template: Optional[_dlp.DLPWebRulesNotificationTemplateArgs] = None,
                ocr_enabled: Optional[bool] = None,
                order: Optional[int] = None,
                protocols: Optional[Sequence[str]] = None,
                rank: Optional[int] = None,
                state: Optional[str] = None,
                time_windows: Optional[_dlp.DLPWebRulesTimeWindowsArgs] = None,
                url_categories: Optional[_dlp.DLPWebRulesUrlCategoriesArgs] = None,
                users: Optional[_dlp.DLPWebRulesUsersArgs] = None,
                without_content_inspection: Optional[bool] = None,
                zscaler_incident_reciever: Optional[bool] = None)
@overload
def DLPWebRules(resource_name: str,
                args: DLPWebRulesArgs,
                opts: Optional[ResourceOptions] = None)

func NewDLPWebRules(ctx *Context, name string, args DLPWebRulesArgs, opts ...ResourceOption) (*DLPWebRules, error)

public DLPWebRules(string name, DLPWebRulesArgs args, CustomResourceOptions? opts = null)

public DLPWebRules(String name, DLPWebRulesArgs args)
public DLPWebRules(String name, DLPWebRulesArgs args, CustomResourceOptions options)

type: zia:DLP:DLPWebRules
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DLPWebRulesArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args DLPWebRulesArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args DLPWebRulesArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DLPWebRulesArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args DLPWebRulesArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

DLPWebRules Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The DLPWebRules resource accepts the following input properties:

Order int: The rule order of execution for the DLP policy rule with respect to other rules.
AccessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
Action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
Auditor zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
CloudApplications List<string>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
Departments zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
Description string: The description of the DLP policy rule.
DlpEngines zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
ExcludedDepartments zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
ExcludedGroups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
ExcludedUsers zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
ExternalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
FileTypes List<string>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
Groups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
IcapServer zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
Labels zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
LocationGroups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
Locations zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
MatchOnly bool: The match only criteria for DLP engines.
MinSize int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
Name string: The DLP policy rule name.
NotificationTemplate zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
OcrEnabled bool: Enables or disables image file scanning.
Protocols List<string>: The protocol criteria specified for the DLP policy rule.
Rank int: Admin rank of the admin who creates this rule
State string: Enables or disables the DLP policy rule.. The supported values are:
TimeWindows zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
UrlCategories zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
Users zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
WithoutContentInspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
ZscalerIncidentReciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

Order int: The rule order of execution for the DLP policy rule with respect to other rules.
AccessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
Action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
Auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
CloudApplications []string: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
Departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
Description string: The description of the DLP policy rule.
DlpEngines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
ExcludedDepartments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
ExcludedGroups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
ExcludedUsers DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
ExternalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
FileTypes []string: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
Groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
IcapServer DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
Labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
LocationGroups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
Locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
MatchOnly bool: The match only criteria for DLP engines.
MinSize int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
Name string: The DLP policy rule name.
NotificationTemplate DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
OcrEnabled bool: Enables or disables image file scanning.
Protocols []string: The protocol criteria specified for the DLP policy rule.
Rank int: Admin rank of the admin who creates this rule
State string: Enables or disables the DLP policy rule.. The supported values are:
TimeWindows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
UrlCategories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
Users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
WithoutContentInspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
ZscalerIncidentReciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

order Integer: The rule order of execution for the DLP policy rule with respect to other rules.
accessControl String: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action String: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor WebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloudApplications List<String>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments WebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description String: The description of the DLP policy rule.
dlpEngines WebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments WebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups WebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers WebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail String: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes List<String>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups WebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer WebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels WebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups WebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations WebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly Boolean: The match only criteria for DLP engines.
minSize Integer: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name String: The DLP policy rule name.
notificationTemplate WebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocrEnabled Boolean: Enables or disables image file scanning.
protocols List<String>: The protocol criteria specified for the DLP policy rule.
rank Integer: Admin rank of the admin who creates this rule
state String: Enables or disables the DLP policy rule.. The supported values are:
timeWindows WebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories WebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users WebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection Boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever Boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

order number: The rule order of execution for the DLP policy rule with respect to other rules.
accessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloudApplications string[]: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description string: The description of the DLP policy rule.
dlpEngines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes string[]: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly boolean: The match only criteria for DLP engines.
minSize number: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name string: The DLP policy rule name.
notificationTemplate DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocrEnabled boolean: Enables or disables image file scanning.
protocols string[]: The protocol criteria specified for the DLP policy rule.
rank number: Admin rank of the admin who creates this rule
state string: Enables or disables the DLP policy rule.. The supported values are:
timeWindows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

order int: The rule order of execution for the DLP policy rule with respect to other rules.
access_control str: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action str: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloud_applications Sequence[str]: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description str: The description of the DLP policy rule.
dlp_engines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excluded_departments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excluded_groups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excluded_users DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
external_auditor_email str: The email address of an external auditor to whom DLP email notifications are sent.
file_types Sequence[str]: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icap_server DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
location_groups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
match_only bool: The match only criteria for DLP engines.
min_size int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name str: The DLP policy rule name.
notification_template DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocr_enabled bool: Enables or disables image file scanning.
protocols Sequence[str]: The protocol criteria specified for the DLP policy rule.
rank int: Admin rank of the admin who creates this rule
state str: Enables or disables the DLP policy rule.. The supported values are:
time_windows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
url_categories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
without_content_inspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscaler_incident_reciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

order Number: The rule order of execution for the DLP policy rule with respect to other rules.
accessControl String: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action String: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor Property Map: The auditor to which the DLP policy rule must be applied.
cloudApplications List<String>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments Property Map: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description String: The description of the DLP policy rule.
dlpEngines Property Map: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments Property Map: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups Property Map: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers Property Map: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail String: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes List<String>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups Property Map: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer Property Map: The DLP server, using ICAP, to which the transaction content is forwarded.
labels Property Map: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups Property Map: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations Property Map: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly Boolean: The match only criteria for DLP engines.
minSize Number: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name String: The DLP policy rule name.
notificationTemplate Property Map: The template used for DLP notification emails.
ocrEnabled Boolean: Enables or disables image file scanning.
protocols List<String>: The protocol criteria specified for the DLP policy rule.
rank Number: Admin rank of the admin who creates this rule
state String: Enables or disables the DLP policy rule.. The supported values are:
timeWindows Property Map: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories Property Map: The list of URL categories to which the DLP policy rule must be applied.
users Property Map: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection Boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever Boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

Outputs

All input properties are implicitly available as output properties. Additionally, the DLPWebRules resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
RuleId int

Id string: The provider-assigned unique ID for this managed resource.
RuleId int

id String: The provider-assigned unique ID for this managed resource.
ruleId Integer

id string: The provider-assigned unique ID for this managed resource.
ruleId number

id str: The provider-assigned unique ID for this managed resource.
rule_id int

id String: The provider-assigned unique ID for this managed resource.
ruleId Number

Look up Existing DLPWebRules Resource

Get an existing DLPWebRules resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DLPWebRulesState, opts?: CustomResourceOptions): DLPWebRules

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_control: Optional[str] = None,
        action: Optional[str] = None,
        auditor: Optional[_dlp.DLPWebRulesAuditorArgs] = None,
        cloud_applications: Optional[Sequence[str]] = None,
        departments: Optional[_dlp.DLPWebRulesDepartmentsArgs] = None,
        description: Optional[str] = None,
        dlp_engines: Optional[_dlp.DLPWebRulesDlpEnginesArgs] = None,
        excluded_departments: Optional[_dlp.DLPWebRulesExcludedDepartmentsArgs] = None,
        excluded_groups: Optional[_dlp.DLPWebRulesExcludedGroupsArgs] = None,
        excluded_users: Optional[_dlp.DLPWebRulesExcludedUsersArgs] = None,
        external_auditor_email: Optional[str] = None,
        file_types: Optional[Sequence[str]] = None,
        groups: Optional[_dlp.DLPWebRulesGroupsArgs] = None,
        icap_server: Optional[_dlp.DLPWebRulesIcapServerArgs] = None,
        labels: Optional[_dlp.DLPWebRulesLabelsArgs] = None,
        location_groups: Optional[_dlp.DLPWebRulesLocationGroupsArgs] = None,
        locations: Optional[_dlp.DLPWebRulesLocationsArgs] = None,
        match_only: Optional[bool] = None,
        min_size: Optional[int] = None,
        name: Optional[str] = None,
        notification_template: Optional[_dlp.DLPWebRulesNotificationTemplateArgs] = None,
        ocr_enabled: Optional[bool] = None,
        order: Optional[int] = None,
        protocols: Optional[Sequence[str]] = None,
        rank: Optional[int] = None,
        rule_id: Optional[int] = None,
        state: Optional[str] = None,
        time_windows: Optional[_dlp.DLPWebRulesTimeWindowsArgs] = None,
        url_categories: Optional[_dlp.DLPWebRulesUrlCategoriesArgs] = None,
        users: Optional[_dlp.DLPWebRulesUsersArgs] = None,
        without_content_inspection: Optional[bool] = None,
        zscaler_incident_reciever: Optional[bool] = None) -> DLPWebRules

func GetDLPWebRules(ctx *Context, name string, id IDInput, state *DLPWebRulesState, opts ...ResourceOption) (*DLPWebRules, error)

public static DLPWebRules Get(string name, Input<string> id, DLPWebRulesState? state, CustomResourceOptions? opts = null)

public static DLPWebRules get(String name, Output<String> id, DLPWebRulesState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
Action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
Auditor zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
CloudApplications List<string>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
Departments zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
Description string: The description of the DLP policy rule.
DlpEngines zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
ExcludedDepartments zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
ExcludedGroups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
ExcludedUsers zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
ExternalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
FileTypes List<string>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
Groups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
IcapServer zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
Labels zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
LocationGroups zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
Locations zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
MatchOnly bool: The match only criteria for DLP engines.
MinSize int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
Name string: The DLP policy rule name.
NotificationTemplate zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
OcrEnabled bool: Enables or disables image file scanning.
Order int: The rule order of execution for the DLP policy rule with respect to other rules.
Protocols List<string>: The protocol criteria specified for the DLP policy rule.
Rank int: Admin rank of the admin who creates this rule
RuleId int
State string: Enables or disables the DLP policy rule.. The supported values are:
TimeWindows zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
UrlCategories zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
Users zscaler.PulumiPackage.Zia.DLP.Inputs.DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
WithoutContentInspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
ZscalerIncidentReciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

AccessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
Action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
Auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
CloudApplications []string: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
Departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
Description string: The description of the DLP policy rule.
DlpEngines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
ExcludedDepartments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
ExcludedGroups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
ExcludedUsers DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
ExternalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
FileTypes []string: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
Groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
IcapServer DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
Labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
LocationGroups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
Locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
MatchOnly bool: The match only criteria for DLP engines.
MinSize int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
Name string: The DLP policy rule name.
NotificationTemplate DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
OcrEnabled bool: Enables or disables image file scanning.
Order int: The rule order of execution for the DLP policy rule with respect to other rules.
Protocols []string: The protocol criteria specified for the DLP policy rule.
Rank int: Admin rank of the admin who creates this rule
RuleId int
State string: Enables or disables the DLP policy rule.. The supported values are:
TimeWindows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
UrlCategories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
Users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
WithoutContentInspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
ZscalerIncidentReciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

accessControl String: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action String: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor WebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloudApplications List<String>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments WebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description String: The description of the DLP policy rule.
dlpEngines WebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments WebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups WebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers WebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail String: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes List<String>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups WebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer WebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels WebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups WebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations WebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly Boolean: The match only criteria for DLP engines.
minSize Integer: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name String: The DLP policy rule name.
notificationTemplate WebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocrEnabled Boolean: Enables or disables image file scanning.
order Integer: The rule order of execution for the DLP policy rule with respect to other rules.
protocols List<String>: The protocol criteria specified for the DLP policy rule.
rank Integer: Admin rank of the admin who creates this rule
ruleId Integer
state String: Enables or disables the DLP policy rule.. The supported values are:
timeWindows WebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories WebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users WebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection Boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever Boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

accessControl string: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action string: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloudApplications string[]: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description string: The description of the DLP policy rule.
dlpEngines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail string: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes string[]: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly boolean: The match only criteria for DLP engines.
minSize number: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name string: The DLP policy rule name.
notificationTemplate DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocrEnabled boolean: Enables or disables image file scanning.
order number: The rule order of execution for the DLP policy rule with respect to other rules.
protocols string[]: The protocol criteria specified for the DLP policy rule.
rank number: Admin rank of the admin who creates this rule
ruleId number
state string: Enables or disables the DLP policy rule.. The supported values are:
timeWindows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

access_control str: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action str: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor DLPWebRulesAuditorArgs: The auditor to which the DLP policy rule must be applied.
cloud_applications Sequence[str]: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments DLPWebRulesDepartmentsArgs: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description str: The description of the DLP policy rule.
dlp_engines DLPWebRulesDlpEnginesArgs: The list of DLP engines to which the DLP policy rule must be applied.
excluded_departments DLPWebRulesExcludedDepartmentsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excluded_groups DLPWebRulesExcludedGroupsArgs: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excluded_users DLPWebRulesExcludedUsersArgs: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
external_auditor_email str: The email address of an external auditor to whom DLP email notifications are sent.
file_types Sequence[str]: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups DLPWebRulesGroupsArgs: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icap_server DLPWebRulesIcapServerArgs: The DLP server, using ICAP, to which the transaction content is forwarded.
labels DLPWebRulesLabelsArgs: The Name-ID pairs of rule labels associated to the DLP policy rule.
location_groups DLPWebRulesLocationGroupsArgs: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations DLPWebRulesLocationsArgs: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
match_only bool: The match only criteria for DLP engines.
min_size int: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name str: The DLP policy rule name.
notification_template DLPWebRulesNotificationTemplateArgs: The template used for DLP notification emails.
ocr_enabled bool: Enables or disables image file scanning.
order int: The rule order of execution for the DLP policy rule with respect to other rules.
protocols Sequence[str]: The protocol criteria specified for the DLP policy rule.
rank int: Admin rank of the admin who creates this rule
rule_id int
state str: Enables or disables the DLP policy rule.. The supported values are:
time_windows DLPWebRulesTimeWindowsArgs: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
url_categories DLPWebRulesUrlCategoriesArgs: The list of URL categories to which the DLP policy rule must be applied.
users DLPWebRulesUsersArgs: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
without_content_inspection bool: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscaler_incident_reciever bool: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

accessControl String: The access privilege for this DLP policy rule based on the admin's state. The supported values are:
action String: The action taken when traffic matches the DLP policy rule criteria. The supported values are:
auditor Property Map: The auditor to which the DLP policy rule must be applied.
cloudApplications List<String>: The list of cloud applications to which the DLP policy rule must be applied. For the complete list of supported cloud applications refer to the ZIA API documentation
departments Property Map: The name-ID pairs of the departments that are excluded from the DLP policy rule.
description String: The description of the DLP policy rule.
dlpEngines Property Map: The list of DLP engines to which the DLP policy rule must be applied.
excludedDepartments Property Map: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 departments.
excludedGroups Property Map: The name-ID pairs of the groups that are excluded from the DLP policy rule. Maximum of up to 256 groups.
excludedUsers Property Map: The name-ID pairs of the users that are excluded from the DLP policy rule. Maximum of up to 256 users.
externalAuditorEmail String: The email address of an external auditor to whom DLP email notifications are sent.
fileTypes List<String>: The list of file types to which the DLP policy rule must be applied. For the complete list of supported file types refer to the ZIA API documentation
groups Property Map: The Name-ID pairs of groups to which the DLP policy rule must be applied. Maximum of up to 8 groups. When not used it implies Any to apply the rule to all groups.
icapServer Property Map: The DLP server, using ICAP, to which the transaction content is forwarded.
labels Property Map: The Name-ID pairs of rule labels associated to the DLP policy rule.
locationGroups Property Map: The Name-ID pairs of locations groups to which the DLP policy rule must be applied. Maximum of up to 32 location groups. When not used it implies Any to apply the rule to all location groups.
locations Property Map: The Name-ID pairs of locations to which the DLP policy rule must be applied. Maximum of up to 8 locations. When not used it implies Any to apply the rule to all locations.
matchOnly Boolean: The match only criteria for DLP engines.
minSize Number: The minimum file size (in KB) used for evaluation of the DLP policy rule.
name String: The DLP policy rule name.
notificationTemplate Property Map: The template used for DLP notification emails.
ocrEnabled Boolean: Enables or disables image file scanning.
order Number: The rule order of execution for the DLP policy rule with respect to other rules.
protocols List<String>: The protocol criteria specified for the DLP policy rule.
rank Number: Admin rank of the admin who creates this rule
ruleId Number
state String: Enables or disables the DLP policy rule.. The supported values are:
timeWindows Property Map: The Name-ID pairs of time windows to which the DLP policy rule must be applied. Maximum of up to 2 time intervals. When not used it implies always to apply the rule to all time intervals.
urlCategories Property Map: The list of URL categories to which the DLP policy rule must be applied.
users Property Map: The Name-ID pairs of users to which the DLP policy rule must be applied. Maximum of up to 4 users. When not used it implies Any to apply the rule to all users.
withoutContentInspection Boolean: Indicates a DLP policy rule without content inspection, when the value is set to true.
zscalerIncidentReciever Boolean: Indicates whether a Zscaler Incident Receiver is associated to the DLP policy rule.

Supporting Types

DLPWebRulesAuditor

Id int: Identifier that uniquely identifies an entity

Id int: Identifier that uniquely identifies an entity

id Integer: Identifier that uniquely identifies an entity

id number: Identifier that uniquely identifies an entity

id int: Identifier that uniquely identifies an entity

id Number: Identifier that uniquely identifies an entity

DLPWebRulesDepartments

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesDlpEngines

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesExcludedDepartments

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesExcludedGroups

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesExcludedUsers

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesGroups

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesIcapServer

Id int: Identifier that uniquely identifies an entity

Id int: Identifier that uniquely identifies an entity

id Integer: Identifier that uniquely identifies an entity

id number: Identifier that uniquely identifies an entity

id int: Identifier that uniquely identifies an entity

id Number: Identifier that uniquely identifies an entity

DLPWebRulesLabels

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesLocationGroups

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesLocations

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesNotificationTemplate

Id int: Identifier that uniquely identifies an entity

Id int: Identifier that uniquely identifies an entity

id Integer: Identifier that uniquely identifies an entity

id number: Identifier that uniquely identifies an entity

id int: Identifier that uniquely identifies an entity

id Number: Identifier that uniquely identifies an entity

DLPWebRulesTimeWindows

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesUrlCategories

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

DLPWebRulesUsers

Ids List<int>: Identifier that uniquely identifies an entity

Ids []int: Identifier that uniquely identifies an entity

ids List<Integer>: Identifier that uniquely identifies an entity

ids number[]: Identifier that uniquely identifies an entity

ids Sequence[int]: Identifier that uniquely identifies an entity

ids List<Number>: Identifier that uniquely identifies an entity

Package Details

Repository: zia zscaler/pulumi-zia
License: MIT
Notes: This Pulumi package is based on the zia Terraform Provider.