Viewing docs for pulumi-resource-zia v1.3.8
published on Friday, Mar 13, 2026 by Zscaler
published on Friday, Mar 13, 2026 by Zscaler
Viewing docs for pulumi-resource-zia v1.3.8
published on Friday, Mar 13, 2026 by Zscaler
published on Friday, Mar 13, 2026 by Zscaler
The zia.TenantRestrictionProfile resource manages tenant restriction profiles in the Zscaler Internet Access (ZIA) cloud. Tenant restriction profiles control access to cloud application tenants (e.g., Microsoft 365, Google Workspace) by restricting users to authorized tenant domains.
Example Usage
Basic Tenant Restriction Profile
Example coming soon!
Example coming soon!
Example coming soon!
import * as zia from "@bdzscaler/pulumi-zia";
const example = new zia.TenantRestrictionProfile("example", {
name: "Example Tenant Profile",
description: "Managed by Pulumi",
appType: "MICROSOFT",
itemTypePrimary: "TENANT_ID",
itemDataPrimary: ["tenant-id-12345"],
restrictPersonalO365Domains: true,
});
import zscaler_pulumi_zia as zia
example = zia.TenantRestrictionProfile("example",
name="Example Tenant Profile",
description="Managed by Pulumi",
app_type="MICROSOFT",
item_type_primary="TENANT_ID",
item_data_primary=["tenant-id-12345"],
restrict_personal_o365_domains=True,
)
resources:
example:
type: zia:TenantRestrictionProfile
properties:
name: Example Tenant Profile
description: Managed by Pulumi
appType: MICROSOFT
itemTypePrimary: TENANT_ID
itemDataPrimary:
- tenant-id-12345
restrictPersonalO365Domains: true
Create TenantRestrictionProfile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new TenantRestrictionProfile(name: string, args: TenantRestrictionProfileArgs, opts?: CustomResourceOptions);@overload
def TenantRestrictionProfile(resource_name: str,
args: TenantRestrictionProfileArgs,
opts: Optional[ResourceOptions] = None)
@overload
def TenantRestrictionProfile(resource_name: str,
opts: Optional[ResourceOptions] = None,
name: Optional[str] = None,
item_data_secondary: Optional[Sequence[str]] = None,
allow_google_visitors: Optional[bool] = None,
app_type: Optional[str] = None,
description: Optional[str] = None,
item_data_primary: Optional[Sequence[str]] = None,
allow_gcp_cloud_storage_read: Optional[bool] = None,
item_type_primary: Optional[str] = None,
item_type_secondary: Optional[str] = None,
item_value: Optional[Sequence[str]] = None,
ms_login_services_tr_v2: Optional[bool] = None,
allow_google_consumers: Optional[bool] = None,
restrict_personal_o365_domains: Optional[bool] = None)func NewTenantRestrictionProfile(ctx *Context, name string, args TenantRestrictionProfileArgs, opts ...ResourceOption) (*TenantRestrictionProfile, error)public TenantRestrictionProfile(string name, TenantRestrictionProfileArgs args, CustomResourceOptions? opts = null)
public TenantRestrictionProfile(String name, TenantRestrictionProfileArgs args)
public TenantRestrictionProfile(String name, TenantRestrictionProfileArgs args, CustomResourceOptions options)
type: zia:TenantRestrictionProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args TenantRestrictionProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args TenantRestrictionProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args TenantRestrictionProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args TenantRestrictionProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args TenantRestrictionProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var tenantRestrictionProfileResource = new Zia.TenantRestrictionProfile("tenantRestrictionProfileResource", new()
{
Name = "string",
ItemDataSecondary = new[]
{
"string",
},
AllowGoogleVisitors = false,
AppType = "string",
Description = "string",
ItemDataPrimary = new[]
{
"string",
},
AllowGcpCloudStorageRead = false,
ItemTypePrimary = "string",
ItemTypeSecondary = "string",
ItemValue = new[]
{
"string",
},
MsLoginServicesTrV2 = false,
AllowGoogleConsumers = false,
RestrictPersonalO365Domains = false,
});
example, err := zia.NewTenantRestrictionProfile(ctx, "tenantRestrictionProfileResource", &zia.TenantRestrictionProfileArgs{
Name: pulumi.String("string"),
ItemDataSecondary: pulumi.StringArray{
pulumi.String("string"),
},
AllowGoogleVisitors: pulumi.Bool(false),
AppType: pulumi.String("string"),
Description: pulumi.String("string"),
ItemDataPrimary: pulumi.StringArray{
pulumi.String("string"),
},
AllowGcpCloudStorageRead: pulumi.Bool(false),
ItemTypePrimary: pulumi.String("string"),
ItemTypeSecondary: pulumi.String("string"),
ItemValue: pulumi.StringArray{
pulumi.String("string"),
},
MsLoginServicesTrV2: pulumi.Bool(false),
AllowGoogleConsumers: pulumi.Bool(false),
RestrictPersonalO365Domains: pulumi.Bool(false),
})
var tenantRestrictionProfileResource = new TenantRestrictionProfile("tenantRestrictionProfileResource", TenantRestrictionProfileArgs.builder()
.name("string")
.itemDataSecondary("string")
.allowGoogleVisitors(false)
.appType("string")
.description("string")
.itemDataPrimary("string")
.allowGcpCloudStorageRead(false)
.itemTypePrimary("string")
.itemTypeSecondary("string")
.itemValue("string")
.msLoginServicesTrV2(false)
.allowGoogleConsumers(false)
.restrictPersonalO365Domains(false)
.build());
tenant_restriction_profile_resource = zia.TenantRestrictionProfile("tenantRestrictionProfileResource",
name="string",
item_data_secondary=["string"],
allow_google_visitors=False,
app_type="string",
description="string",
item_data_primary=["string"],
allow_gcp_cloud_storage_read=False,
item_type_primary="string",
item_type_secondary="string",
item_value=["string"],
ms_login_services_tr_v2=False,
allow_google_consumers=False,
restrict_personal_o365_domains=False)
const tenantRestrictionProfileResource = new zia.TenantRestrictionProfile("tenantRestrictionProfileResource", {
name: "string",
itemDataSecondary: ["string"],
allowGoogleVisitors: false,
appType: "string",
description: "string",
itemDataPrimary: ["string"],
allowGcpCloudStorageRead: false,
itemTypePrimary: "string",
itemTypeSecondary: "string",
itemValue: ["string"],
msLoginServicesTrV2: false,
allowGoogleConsumers: false,
restrictPersonalO365Domains: false,
});
type: zia:TenantRestrictionProfile
properties:
allowGcpCloudStorageRead: false
allowGoogleConsumers: false
allowGoogleVisitors: false
appType: string
description: string
itemDataPrimary:
- string
itemDataSecondary:
- string
itemTypePrimary: string
itemTypeSecondary: string
itemValue:
- string
msLoginServicesTrV2: false
name: string
restrictPersonalO365Domains: false
TenantRestrictionProfile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The TenantRestrictionProfile resource accepts the following input properties:
- Name string
- Name of the tenant restriction profile.
- Allow
Gcp boolCloud Storage Read - Whether to allow GCP Cloud Storage read access.
- Allow
Google boolConsumers - Whether to allow Google consumer accounts.
- Allow
Google boolVisitors - Whether to allow Google visitor accounts.
- App
Type string - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- Description string
- Description of the tenant restriction profile.
- Item
Data List<string>Primary - List of primary item data values (e.g., tenant IDs).
- Item
Data List<string>Secondary - List of secondary item data values.
- Item
Type stringPrimary - The primary item type (e.g., 'TENANT_ID').
- Item
Type stringSecondary - The secondary item type.
- Item
Value List<string> - List of item values.
- Ms
Login boolServices Tr V2 - Whether to enable Microsoft login services tenant restriction v2.
- Restrict
Personal boolO365Domains - Whether to restrict personal Office 365 domains.
- Name string
- Name of the tenant restriction profile.
- Allow
Gcp boolCloud Storage Read - Whether to allow GCP Cloud Storage read access.
- Allow
Google boolConsumers - Whether to allow Google consumer accounts.
- Allow
Google boolVisitors - Whether to allow Google visitor accounts.
- App
Type string - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- Description string
- Description of the tenant restriction profile.
- Item
Data []stringPrimary - List of primary item data values (e.g., tenant IDs).
- Item
Data []stringSecondary - List of secondary item data values.
- Item
Type stringPrimary - The primary item type (e.g., 'TENANT_ID').
- Item
Type stringSecondary - The secondary item type.
- Item
Value []string - List of item values.
- Ms
Login boolServices Tr V2 - Whether to enable Microsoft login services tenant restriction v2.
- Restrict
Personal boolO365Domains - Whether to restrict personal Office 365 domains.
- name String
- Name of the tenant restriction profile.
- allow
Gcp BooleanCloud Storage Read - Whether to allow GCP Cloud Storage read access.
- allow
Google BooleanConsumers - Whether to allow Google consumer accounts.
- allow
Google BooleanVisitors - Whether to allow Google visitor accounts.
- app
Type String - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- description String
- Description of the tenant restriction profile.
- item
Data List<String>Primary - List of primary item data values (e.g., tenant IDs).
- item
Data List<String>Secondary - List of secondary item data values.
- item
Type StringPrimary - The primary item type (e.g., 'TENANT_ID').
- item
Type StringSecondary - The secondary item type.
- item
Value List<String> - List of item values.
- ms
Login BooleanServices Tr V2 - Whether to enable Microsoft login services tenant restriction v2.
- restrict
Personal BooleanO365Domains - Whether to restrict personal Office 365 domains.
- name string
- Name of the tenant restriction profile.
- allow
Gcp booleanCloud Storage Read - Whether to allow GCP Cloud Storage read access.
- allow
Google booleanConsumers - Whether to allow Google consumer accounts.
- allow
Google booleanVisitors - Whether to allow Google visitor accounts.
- app
Type string - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- description string
- Description of the tenant restriction profile.
- item
Data string[]Primary - List of primary item data values (e.g., tenant IDs).
- item
Data string[]Secondary - List of secondary item data values.
- item
Type stringPrimary - The primary item type (e.g., 'TENANT_ID').
- item
Type stringSecondary - The secondary item type.
- item
Value string[] - List of item values.
- ms
Login booleanServices Tr V2 - Whether to enable Microsoft login services tenant restriction v2.
- restrict
Personal booleanO365Domains - Whether to restrict personal Office 365 domains.
- name str
- Name of the tenant restriction profile.
- allow_
gcp_ boolcloud_ storage_ read - Whether to allow GCP Cloud Storage read access.
- allow_
google_ boolconsumers - Whether to allow Google consumer accounts.
- allow_
google_ boolvisitors - Whether to allow Google visitor accounts.
- app_
type str - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- description str
- Description of the tenant restriction profile.
- item_
data_ Sequence[str]primary - List of primary item data values (e.g., tenant IDs).
- item_
data_ Sequence[str]secondary - List of secondary item data values.
- item_
type_ strprimary - The primary item type (e.g., 'TENANT_ID').
- item_
type_ strsecondary - The secondary item type.
- item_
value Sequence[str] - List of item values.
- ms_
login_ boolservices_ tr_ v2 - Whether to enable Microsoft login services tenant restriction v2.
- restrict_
personal_ boolo365_ domains - Whether to restrict personal Office 365 domains.
- name String
- Name of the tenant restriction profile.
- allow
Gcp BooleanCloud Storage Read - Whether to allow GCP Cloud Storage read access.
- allow
Google BooleanConsumers - Whether to allow Google consumer accounts.
- allow
Google BooleanVisitors - Whether to allow Google visitor accounts.
- app
Type String - The cloud application type (e.g., 'MICROSOFT', 'GOOGLE').
- description String
- Description of the tenant restriction profile.
- item
Data List<String>Primary - List of primary item data values (e.g., tenant IDs).
- item
Data List<String>Secondary - List of secondary item data values.
- item
Type StringPrimary - The primary item type (e.g., 'TENANT_ID').
- item
Type StringSecondary - The secondary item type.
- item
Value List<String> - List of item values.
- ms
Login BooleanServices Tr V2 - Whether to enable Microsoft login services tenant restriction v2.
- restrict
Personal BooleanO365Domains - Whether to restrict personal Office 365 domains.
Outputs
All input properties are implicitly available as output properties. Additionally, the TenantRestrictionProfile resource produces the following output properties:
- id str
- The provider-assigned unique ID for this managed resource.
- profile_
id int - The unique identifier for the tenant restriction profile assigned by the ZIA cloud.
Import
An existing tenant restriction profile can be imported using its ID, e.g.
$ pulumi import zia:index:TenantRestrictionProfile example 12345
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- zia zscaler/pulumi-zia
- License
Viewing docs for pulumi-resource-zia v1.3.8
published on Friday, Mar 13, 2026 by Zscaler
published on Friday, Mar 13, 2026 by Zscaler
