Docs Home
Zscaler Internet Access v1.1.1 published on Tuesday, Jun 24, 2025 by Zscaler
zia.RiskProfiles
Explore with Pulumi AI
Use the zia_risk_profiles resource allows the creation and management of cloud application risk profile in the Zscaler Internet Access cloud or via the API. See About Cloud Application Risk Profile for more details.
Example Usage
Create A Risk Profile
resource "zia_risk_profiles" "this" {
name = "RiskProfile_12346"
status="SANCTIONED"
risk_index=[1, 2, 3, 4, 5]
certifications=["AICPA", "CCPA", "CISP"]
password_strength="GOOD"
poor_items_of_service="YES"
admin_audit_logs="YES"
data_breach="YES"
source_ip_restrictions="YES"
file_sharing="YES"
mfa_support="YES"
ssl_pinned="YES"
data_encryption_in_transit=[
"SSLV2", "SSLV3", "TLSV1_0", "TLSV1_1", "TLSV1_2", "TLSV1_3", "UN_KNOWN"
]
http_security_headers="YES"
evasive="YES"
dns_caa_policy="YES"
ssl_cert_validity="YES"
weak_cipher_support="YES"
vulnerability="YES"
vulnerable_to_heart_bleed="YES"
ssl_cert_key_size="BITS_2048"
vulnerable_to_poodle="YES"
support_for_waf="YES"
vulnerability_disclosure="YES"
domain_keys_identified_mail="YES"
malware_scanning_for_content="YES"
domain_based_message_auth="YES"
sender_policy_framework="YES"
remote_screen_sharing="YES"
vulnerable_to_log_jam="YES"
profile_type="CLOUD_APPLICATIONS"
custom_tags {
id = [1, 2]
}
}
Create RiskProfiles Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new RiskProfiles(name: string, args?: RiskProfilesArgs, opts?: CustomResourceOptions);@overload
def RiskProfiles(resource_name: str,
args: Optional[RiskProfilesArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def RiskProfiles(resource_name: str,
opts: Optional[ResourceOptions] = None,
admin_audit_logs: Optional[str] = None,
certifications: Optional[Sequence[str]] = None,
custom_tags: Optional[RiskProfilesCustomTagsArgs] = None,
data_breach: Optional[str] = None,
data_encryption_in_transits: Optional[Sequence[str]] = None,
dns_caa_policy: Optional[str] = None,
domain_based_message_auth: Optional[str] = None,
domain_keys_identified_mail: Optional[str] = None,
evasive: Optional[str] = None,
exclude_certificates: Optional[int] = None,
file_sharing: Optional[str] = None,
http_security_headers: Optional[str] = None,
malware_scanning_for_content: Optional[str] = None,
mfa_support: Optional[str] = None,
name: Optional[str] = None,
password_strength: Optional[str] = None,
poor_items_of_service: Optional[str] = None,
profile_type: Optional[str] = None,
remote_screen_sharing: Optional[str] = None,
risk_indices: Optional[Sequence[int]] = None,
sender_policy_framework: Optional[str] = None,
source_ip_restrictions: Optional[str] = None,
ssl_cert_key_size: Optional[str] = None,
ssl_cert_validity: Optional[str] = None,
ssl_pinned: Optional[str] = None,
status: Optional[str] = None,
support_for_waf: Optional[str] = None,
vulnerability: Optional[str] = None,
vulnerability_disclosure: Optional[str] = None,
vulnerable_to_heart_bleed: Optional[str] = None,
vulnerable_to_log_jam: Optional[str] = None,
vulnerable_to_poodle: Optional[str] = None,
weak_cipher_support: Optional[str] = None)func NewRiskProfiles(ctx *Context, name string, args *RiskProfilesArgs, opts ...ResourceOption) (*RiskProfiles, error)public RiskProfiles(string name, RiskProfilesArgs? args = null, CustomResourceOptions? opts = null)
public RiskProfiles(String name, RiskProfilesArgs args)
public RiskProfiles(String name, RiskProfilesArgs args, CustomResourceOptions options)
type: zia:RiskProfiles
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args RiskProfilesArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args RiskProfilesArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args RiskProfilesArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args RiskProfilesArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args RiskProfilesArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var riskProfilesResource = new Zia.RiskProfiles("riskProfilesResource", new()
{
AdminAuditLogs = "string",
Certifications = new[]
{
"string",
},
CustomTags = new Zia.Inputs.RiskProfilesCustomTagsArgs
{
Ids = new[]
{
0,
},
},
DataBreach = "string",
DataEncryptionInTransits = new[]
{
"string",
},
DnsCaaPolicy = "string",
DomainBasedMessageAuth = "string",
DomainKeysIdentifiedMail = "string",
Evasive = "string",
ExcludeCertificates = 0,
FileSharing = "string",
HttpSecurityHeaders = "string",
MalwareScanningForContent = "string",
MfaSupport = "string",
Name = "string",
PasswordStrength = "string",
PoorItemsOfService = "string",
ProfileType = "string",
RemoteScreenSharing = "string",
RiskIndices = new[]
{
0,
},
SenderPolicyFramework = "string",
SourceIpRestrictions = "string",
SslCertKeySize = "string",
SslCertValidity = "string",
SslPinned = "string",
Status = "string",
SupportForWaf = "string",
Vulnerability = "string",
VulnerabilityDisclosure = "string",
VulnerableToHeartBleed = "string",
VulnerableToLogJam = "string",
VulnerableToPoodle = "string",
WeakCipherSupport = "string",
});
example, err := zia.NewRiskProfiles(ctx, "riskProfilesResource", &zia.RiskProfilesArgs{
AdminAuditLogs: pulumi.String("string"),
Certifications: pulumi.StringArray{
pulumi.String("string"),
},
CustomTags: &zia.RiskProfilesCustomTagsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
DataBreach: pulumi.String("string"),
DataEncryptionInTransits: pulumi.StringArray{
pulumi.String("string"),
},
DnsCaaPolicy: pulumi.String("string"),
DomainBasedMessageAuth: pulumi.String("string"),
DomainKeysIdentifiedMail: pulumi.String("string"),
Evasive: pulumi.String("string"),
ExcludeCertificates: pulumi.Int(0),
FileSharing: pulumi.String("string"),
HttpSecurityHeaders: pulumi.String("string"),
MalwareScanningForContent: pulumi.String("string"),
MfaSupport: pulumi.String("string"),
Name: pulumi.String("string"),
PasswordStrength: pulumi.String("string"),
PoorItemsOfService: pulumi.String("string"),
ProfileType: pulumi.String("string"),
RemoteScreenSharing: pulumi.String("string"),
RiskIndices: pulumi.IntArray{
pulumi.Int(0),
},
SenderPolicyFramework: pulumi.String("string"),
SourceIpRestrictions: pulumi.String("string"),
SslCertKeySize: pulumi.String("string"),
SslCertValidity: pulumi.String("string"),
SslPinned: pulumi.String("string"),
Status: pulumi.String("string"),
SupportForWaf: pulumi.String("string"),
Vulnerability: pulumi.String("string"),
VulnerabilityDisclosure: pulumi.String("string"),
VulnerableToHeartBleed: pulumi.String("string"),
VulnerableToLogJam: pulumi.String("string"),
VulnerableToPoodle: pulumi.String("string"),
WeakCipherSupport: pulumi.String("string"),
})
var riskProfilesResource = new RiskProfiles("riskProfilesResource", RiskProfilesArgs.builder()
.adminAuditLogs("string")
.certifications("string")
.customTags(RiskProfilesCustomTagsArgs.builder()
.ids(0)
.build())
.dataBreach("string")
.dataEncryptionInTransits("string")
.dnsCaaPolicy("string")
.domainBasedMessageAuth("string")
.domainKeysIdentifiedMail("string")
.evasive("string")
.excludeCertificates(0)
.fileSharing("string")
.httpSecurityHeaders("string")
.malwareScanningForContent("string")
.mfaSupport("string")
.name("string")
.passwordStrength("string")
.poorItemsOfService("string")
.profileType("string")
.remoteScreenSharing("string")
.riskIndices(0)
.senderPolicyFramework("string")
.sourceIpRestrictions("string")
.sslCertKeySize("string")
.sslCertValidity("string")
.sslPinned("string")
.status("string")
.supportForWaf("string")
.vulnerability("string")
.vulnerabilityDisclosure("string")
.vulnerableToHeartBleed("string")
.vulnerableToLogJam("string")
.vulnerableToPoodle("string")
.weakCipherSupport("string")
.build());
risk_profiles_resource = zia.RiskProfiles("riskProfilesResource",
admin_audit_logs="string",
certifications=["string"],
custom_tags={
"ids": [0],
},
data_breach="string",
data_encryption_in_transits=["string"],
dns_caa_policy="string",
domain_based_message_auth="string",
domain_keys_identified_mail="string",
evasive="string",
exclude_certificates=0,
file_sharing="string",
http_security_headers="string",
malware_scanning_for_content="string",
mfa_support="string",
name="string",
password_strength="string",
poor_items_of_service="string",
profile_type="string",
remote_screen_sharing="string",
risk_indices=[0],
sender_policy_framework="string",
source_ip_restrictions="string",
ssl_cert_key_size="string",
ssl_cert_validity="string",
ssl_pinned="string",
status="string",
support_for_waf="string",
vulnerability="string",
vulnerability_disclosure="string",
vulnerable_to_heart_bleed="string",
vulnerable_to_log_jam="string",
vulnerable_to_poodle="string",
weak_cipher_support="string")
const riskProfilesResource = new zia.RiskProfiles("riskProfilesResource", {
adminAuditLogs: "string",
certifications: ["string"],
customTags: {
ids: [0],
},
dataBreach: "string",
dataEncryptionInTransits: ["string"],
dnsCaaPolicy: "string",
domainBasedMessageAuth: "string",
domainKeysIdentifiedMail: "string",
evasive: "string",
excludeCertificates: 0,
fileSharing: "string",
httpSecurityHeaders: "string",
malwareScanningForContent: "string",
mfaSupport: "string",
name: "string",
passwordStrength: "string",
poorItemsOfService: "string",
profileType: "string",
remoteScreenSharing: "string",
riskIndices: [0],
senderPolicyFramework: "string",
sourceIpRestrictions: "string",
sslCertKeySize: "string",
sslCertValidity: "string",
sslPinned: "string",
status: "string",
supportForWaf: "string",
vulnerability: "string",
vulnerabilityDisclosure: "string",
vulnerableToHeartBleed: "string",
vulnerableToLogJam: "string",
vulnerableToPoodle: "string",
weakCipherSupport: "string",
});
type: zia:RiskProfiles
properties:
adminAuditLogs: string
certifications:
- string
customTags:
ids:
- 0
dataBreach: string
dataEncryptionInTransits:
- string
dnsCaaPolicy: string
domainBasedMessageAuth: string
domainKeysIdentifiedMail: string
evasive: string
excludeCertificates: 0
fileSharing: string
httpSecurityHeaders: string
malwareScanningForContent: string
mfaSupport: string
name: string
passwordStrength: string
poorItemsOfService: string
profileType: string
remoteScreenSharing: string
riskIndices:
- 0
senderPolicyFramework: string
sourceIpRestrictions: string
sslCertKeySize: string
sslCertValidity: string
sslPinned: string
status: string
supportForWaf: string
vulnerability: string
vulnerabilityDisclosure: string
vulnerableToHeartBleed: string
vulnerableToLogJam: string
vulnerableToPoodle: string
weakCipherSupport: string
RiskProfiles Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The RiskProfiles resource accepts the following input properties:
- Admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - Certifications List<string>
- (Optional) Filters based on supported certifications.
-
zscaler.
Pulumi Package. Zia. Inputs. Risk Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- Data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - Data
Encryption List<string>In Transits - (Optional) Filters based on encryption of data in transit.
- Dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- Domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - Domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - Exclude
Certificates int - (Int) Indicates if the certificates are included or not.
- File
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - Http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - Malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - Mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Name string
- Cloud application risk profile name.
- Password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - Poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - Profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - Remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - Risk
Indices List<int> - (Optional) Filters based on risk index thresholds.
- Sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - Ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - Status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - Support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- Admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - Certifications []string
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags Args - (Set) List of custom tags to be included or excluded for the profile.
- Data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - Data
Encryption []stringIn Transits - (Optional) Filters based on encryption of data in transit.
- Dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- Domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - Domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - Exclude
Certificates int - (Int) Indicates if the certificates are included or not.
- File
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - Http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - Malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - Mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Name string
- Cloud application risk profile name.
- Password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - Poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - Profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - Remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - Risk
Indices []int - (Optional) Filters based on risk index thresholds.
- Sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - Ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - Status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - Support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit StringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications List<String>
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- data
Breach String - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption List<String>In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa StringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based StringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys StringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive String
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates Integer - (Int) Indicates if the certificates are included or not.
- file
Sharing String - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security StringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning StringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support String - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name String
- Cloud application risk profile name.
- password
Strength String - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items StringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Type String - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen StringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices List<Integer> - (Optional) Filters based on risk index thresholds.
- sender
Policy StringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip StringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert StringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert StringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned String - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status String
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For StringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability String
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure String - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher StringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications string[]
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption string[]In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates number - (Int) Indicates if the certificates are included or not.
- file
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name string
- Cloud application risk profile name.
- password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices number[] - (Optional) Filters based on risk index thresholds.
- sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin_
audit_ strlogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications Sequence[str]
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags Args - (Set) List of custom tags to be included or excluded for the profile.
- data_
breach str - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data_
encryption_ Sequence[str]in_ transits - (Optional) Filters based on encryption of data in transit.
- dns_
caa_ strpolicy - (String) Filters based on DNS CAA policy implementation.
- domain_
based_ strmessage_ auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain_
keys_ stridentified_ mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive str
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude_
certificates int - (Int) Indicates if the certificates are included or not.
- file_
sharing str - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http_
security_ strheaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware_
scanning_ strfor_ content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa_
support str - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name str
- Cloud application risk profile name.
- password_
strength str - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor_
items_ strof_ service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile_
type str - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote_
screen_ strsharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk_
indices Sequence[int] - (Optional) Filters based on risk index thresholds.
- sender_
policy_ strframework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source_
ip_ strrestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl_
cert_ strkey_ size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl_
cert_ strvalidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl_
pinned str - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status str
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support_
for_ strwaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability str
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability_
disclosure str - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strheart_ bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strlog_ jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strpoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak_
cipher_ strsupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit StringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications List<String>
- (Optional) Filters based on supported certifications.
- Property Map
- (Set) List of custom tags to be included or excluded for the profile.
- data
Breach String - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption List<String>In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa StringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based StringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys StringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive String
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates Number - (Int) Indicates if the certificates are included or not.
- file
Sharing String - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security StringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning StringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support String - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name String
- Cloud application risk profile name.
- password
Strength String - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items StringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Type String - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen StringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices List<Number> - (Optional) Filters based on risk index thresholds.
- sender
Policy StringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip StringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert StringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert StringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned String - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status String
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For StringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability String
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure String - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher StringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
Outputs
All input properties are implicitly available as output properties. Additionally, the RiskProfiles resource produces the following output properties:
- id str
- The provider-assigned unique ID for this managed resource.
- profile_
id int - Unique identifier for the risk profile.
Look up Existing RiskProfiles Resource
Get an existing RiskProfiles resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: RiskProfilesState, opts?: CustomResourceOptions): RiskProfiles@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
admin_audit_logs: Optional[str] = None,
certifications: Optional[Sequence[str]] = None,
custom_tags: Optional[RiskProfilesCustomTagsArgs] = None,
data_breach: Optional[str] = None,
data_encryption_in_transits: Optional[Sequence[str]] = None,
dns_caa_policy: Optional[str] = None,
domain_based_message_auth: Optional[str] = None,
domain_keys_identified_mail: Optional[str] = None,
evasive: Optional[str] = None,
exclude_certificates: Optional[int] = None,
file_sharing: Optional[str] = None,
http_security_headers: Optional[str] = None,
malware_scanning_for_content: Optional[str] = None,
mfa_support: Optional[str] = None,
name: Optional[str] = None,
password_strength: Optional[str] = None,
poor_items_of_service: Optional[str] = None,
profile_id: Optional[int] = None,
profile_type: Optional[str] = None,
remote_screen_sharing: Optional[str] = None,
risk_indices: Optional[Sequence[int]] = None,
sender_policy_framework: Optional[str] = None,
source_ip_restrictions: Optional[str] = None,
ssl_cert_key_size: Optional[str] = None,
ssl_cert_validity: Optional[str] = None,
ssl_pinned: Optional[str] = None,
status: Optional[str] = None,
support_for_waf: Optional[str] = None,
vulnerability: Optional[str] = None,
vulnerability_disclosure: Optional[str] = None,
vulnerable_to_heart_bleed: Optional[str] = None,
vulnerable_to_log_jam: Optional[str] = None,
vulnerable_to_poodle: Optional[str] = None,
weak_cipher_support: Optional[str] = None) -> RiskProfilesfunc GetRiskProfiles(ctx *Context, name string, id IDInput, state *RiskProfilesState, opts ...ResourceOption) (*RiskProfiles, error)public static RiskProfiles Get(string name, Input<string> id, RiskProfilesState? state, CustomResourceOptions? opts = null)public static RiskProfiles get(String name, Output<String> id, RiskProfilesState state, CustomResourceOptions options)resources: _: type: zia:RiskProfiles get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - Certifications List<string>
- (Optional) Filters based on supported certifications.
-
zscaler.
Pulumi Package. Zia. Inputs. Risk Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- Data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - Data
Encryption List<string>In Transits - (Optional) Filters based on encryption of data in transit.
- Dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- Domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - Domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - Exclude
Certificates int - (Int) Indicates if the certificates are included or not.
- File
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - Http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - Malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - Mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Name string
- Cloud application risk profile name.
- Password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - Poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - Profile
Id int - Unique identifier for the risk profile.
- Profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - Remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - Risk
Indices List<int> - (Optional) Filters based on risk index thresholds.
- Sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - Ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - Status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - Support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- Admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - Certifications []string
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags Args - (Set) List of custom tags to be included or excluded for the profile.
- Data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - Data
Encryption []stringIn Transits - (Optional) Filters based on encryption of data in transit.
- Dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- Domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - Domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - Exclude
Certificates int - (Int) Indicates if the certificates are included or not.
- File
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - Http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - Malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - Mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Name string
- Cloud application risk profile name.
- Password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - Poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - Profile
Id int - Unique identifier for the risk profile.
- Profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - Remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - Risk
Indices []int - (Optional) Filters based on risk index thresholds.
- Sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - Source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - Ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - Ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - Status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - Support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - Weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit StringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications List<String>
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- data
Breach String - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption List<String>In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa StringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based StringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys StringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive String
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates Integer - (Int) Indicates if the certificates are included or not.
- file
Sharing String - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security StringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning StringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support String - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name String
- Cloud application risk profile name.
- password
Strength String - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items StringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Id Integer - Unique identifier for the risk profile.
- profile
Type String - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen StringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices List<Integer> - (Optional) Filters based on risk index thresholds.
- sender
Policy StringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip StringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert StringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert StringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned String - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status String
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For StringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability String
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure String - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher StringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit stringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications string[]
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags - (Set) List of custom tags to be included or excluded for the profile.
- data
Breach string - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption string[]In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa stringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based stringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys stringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive string
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates number - (Int) Indicates if the certificates are included or not.
- file
Sharing string - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security stringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning stringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support string - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name string
- Cloud application risk profile name.
- password
Strength string - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items stringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Id number - Unique identifier for the risk profile.
- profile
Type string - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen stringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices number[] - (Optional) Filters based on risk index thresholds.
- sender
Policy stringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip stringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert stringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert stringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned string - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status string
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For stringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability string
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure string - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To stringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher stringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin_
audit_ strlogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications Sequence[str]
- (Optional) Filters based on supported certifications.
-
Risk
Profiles Custom Tags Args - (Set) List of custom tags to be included or excluded for the profile.
- data_
breach str - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data_
encryption_ Sequence[str]in_ transits - (Optional) Filters based on encryption of data in transit.
- dns_
caa_ strpolicy - (String) Filters based on DNS CAA policy implementation.
- domain_
based_ strmessage_ auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain_
keys_ stridentified_ mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive str
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude_
certificates int - (Int) Indicates if the certificates are included or not.
- file_
sharing str - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http_
security_ strheaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware_
scanning_ strfor_ content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa_
support str - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name str
- Cloud application risk profile name.
- password_
strength str - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor_
items_ strof_ service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile_
id int - Unique identifier for the risk profile.
- profile_
type str - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote_
screen_ strsharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk_
indices Sequence[int] - (Optional) Filters based on risk index thresholds.
- sender_
policy_ strframework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source_
ip_ strrestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl_
cert_ strkey_ size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl_
cert_ strvalidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl_
pinned str - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status str
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support_
for_ strwaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability str
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability_
disclosure str - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strheart_ bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strlog_ jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable_
to_ strpoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak_
cipher_ strsupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
- admin
Audit StringLogs - (String) Filters based on support for administrative logging. Supported values:
ANY,YES,NO,UN_KNOWN. - certifications List<String>
- (Optional) Filters based on supported certifications.
- Property Map
- (Set) List of custom tags to be included or excluded for the profile.
- data
Breach String - (String) Filters based on history of data breaches. Supported values:
ANY,YES,NO,UN_KNOWN. - data
Encryption List<String>In Transits - (Optional) Filters based on encryption of data in transit.
- dns
Caa StringPolicy - (String) Filters based on DNS CAA policy implementation.
- domain
Based StringMessage Auth - (String) Filters based on DMARC support. Supported values:
ANY,YES,NO,UN_KNOWN. - domain
Keys StringIdentified Mail - (String) Filters based on DKIM authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - evasive String
- (String) Filters based on anonymous access support. Supported values:
ANY,YES,NO,UN_KNOWN. - exclude
Certificates Number - (Int) Indicates if the certificates are included or not.
- file
Sharing String - (String) Filters based on file sharing capability. Supported values:
ANY,YES,NO,UN_KNOWN. - http
Security StringHeaders - (String) Filters based on HTTP security headers support. Supported values:
ANY,YES,NO,UN_KNOWN. - malware
Scanning StringFor Content - (String) Filters based on content malware scanning. Supported values:
ANY,YES,NO,UN_KNOWN. - mfa
Support String - (String) Filters based on multi-factor authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - name String
- Cloud application risk profile name.
- password
Strength String - (String) Filters based on password strength policy. Supported values:
ANY,GOOD,POOR,UN_KNOWN. - poor
Items StringOf Service - (String) Filters applications based on questionable legal terms. Supported values:
ANY,YES,NO,UN_KNOWN. - profile
Id Number - Unique identifier for the risk profile.
- profile
Type String - (String) Risk profile type. Supported value:
CLOUD_APPLICATIONS. Default isCLOUD_APPLICATIONS. - remote
Screen StringSharing - (String) Filters based on remote screen sharing support. Supported values:
ANY,YES,NO,UN_KNOWN. - risk
Indices List<Number> - (Optional) Filters based on risk index thresholds.
- sender
Policy StringFramework - (String) Filters based on SPF authentication support. Supported values:
ANY,YES,NO,UN_KNOWN. - source
Ip StringRestrictions - (String) Filters based on IP restriction support. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Cert StringKey Size - (String) Filters based on SSL certificate key size. Supported values:
ANY,UN_KNOWN,BITS_1024,BITS_2048,BITS_256,BITS_3072,BITS_384,BITS_4096,BITS_8192. - ssl
Cert StringValidity - (String) Filters based on SSL certificate validity period. Supported values:
ANY,YES,NO,UN_KNOWN. - ssl
Pinned String - (String) Filters based on use of pinned SSL certificates. Supported values:
ANY,YES,NO,UN_KNOWN. - status String
- (String) Status of the applications. Supported values:
UN_SANCTIONED,SANCTIONED,ANY. - support
For StringWaf - (String) Filters based on Web Application Firewall (WAF) support. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability String
- (String) Filters based on published CVE vulnerabilities. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerability
Disclosure String - (String) Filters based on vulnerability disclosure policy. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringHeart Bleed - (String) Filters based on Heartbleed vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringLog Jam - (String) Filters based on Logjam vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - vulnerable
To StringPoodle - (String) Filters based on POODLE vulnerability. Supported values:
ANY,YES,NO,UN_KNOWN. - weak
Cipher StringSupport - (String) Filters based on weak cipher usage. Supported values:
ANY,YES,NO,UN_KNOWN.
Supporting Types
RiskProfilesCustomTags, RiskProfilesCustomTagsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
Import
Zscaler offers a dedicated tool called Zscaler-Terraformer to allow the automated import of ZIA configurations into Terraform-compliant HashiCorp Configuration Language.
Visit
zia_risk_profiles can be imported by using <PROFILE_ID> or <PROFILE_NAME> as the import ID.
For example:
$ pulumi import zia:index/riskProfiles:RiskProfiles example <profile_id>
or
$ pulumi import zia:index/riskProfiles:RiskProfiles example <profile_name>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- zia zscaler/pulumi-zia
- License
- MIT
- Notes
- This Pulumi package is based on the
ziaTerraform Provider.