Docs Home
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi
cloudngfwaws.Certificate
Explore with Pulumi AI
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi
Resource for certificate manipulation.
Admin Permission Type
Rulestack(forscope="Local")Global Rulestack(forscope="Global")
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudngfwaws from "@pulumi/cloudngfwaws";
const r = new cloudngfwaws.Rulestack("r", {
name: "terraform-rulestack",
scope: "Local",
accountId: "123456789",
description: "Made by Pulumi",
profileConfig: {
antiSpyware: "BestPractice",
},
});
const example = new cloudngfwaws.Certificate("example", {
rulestack: r.name,
name: "tf-cert",
description: "Also configured by Terraform",
selfSigned: true,
auditComment: "initial config",
});
import pulumi
import pulumi_cloudngfwaws as cloudngfwaws
r = cloudngfwaws.Rulestack("r",
name="terraform-rulestack",
scope="Local",
account_id="123456789",
description="Made by Pulumi",
profile_config={
"anti_spyware": "BestPractice",
})
example = cloudngfwaws.Certificate("example",
rulestack=r.name,
name="tf-cert",
description="Also configured by Terraform",
self_signed=True,
audit_comment="initial config")
package main
import (
"github.com/pulumi/pulumi-cloudngfwaws/sdk/go/cloudngfwaws"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
r, err := cloudngfwaws.NewRulestack(ctx, "r", &cloudngfwaws.RulestackArgs{
Name: pulumi.String("terraform-rulestack"),
Scope: pulumi.String("Local"),
AccountId: pulumi.String("123456789"),
Description: pulumi.String("Made by Pulumi"),
ProfileConfig: &cloudngfwaws.RulestackProfileConfigArgs{
AntiSpyware: pulumi.String("BestPractice"),
},
})
if err != nil {
return err
}
_, err = cloudngfwaws.NewCertificate(ctx, "example", &cloudngfwaws.CertificateArgs{
Rulestack: r.Name,
Name: pulumi.String("tf-cert"),
Description: pulumi.String("Also configured by Terraform"),
SelfSigned: pulumi.Bool(true),
AuditComment: pulumi.String("initial config"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using CloudNgfwAws = Pulumi.CloudNgfwAws;
return await Deployment.RunAsync(() =>
{
var r = new CloudNgfwAws.Rulestack("r", new()
{
Name = "terraform-rulestack",
Scope = "Local",
AccountId = "123456789",
Description = "Made by Pulumi",
ProfileConfig = new CloudNgfwAws.Inputs.RulestackProfileConfigArgs
{
AntiSpyware = "BestPractice",
},
});
var example = new CloudNgfwAws.Certificate("example", new()
{
Rulestack = r.Name,
Name = "tf-cert",
Description = "Also configured by Terraform",
SelfSigned = true,
AuditComment = "initial config",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudngfwaws.Rulestack;
import com.pulumi.cloudngfwaws.RulestackArgs;
import com.pulumi.cloudngfwaws.inputs.RulestackProfileConfigArgs;
import com.pulumi.cloudngfwaws.Certificate;
import com.pulumi.cloudngfwaws.CertificateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var r = new Rulestack("r", RulestackArgs.builder()
.name("terraform-rulestack")
.scope("Local")
.accountId("123456789")
.description("Made by Pulumi")
.profileConfig(RulestackProfileConfigArgs.builder()
.antiSpyware("BestPractice")
.build())
.build());
var example = new Certificate("example", CertificateArgs.builder()
.rulestack(r.name())
.name("tf-cert")
.description("Also configured by Terraform")
.selfSigned(true)
.auditComment("initial config")
.build());
}
}
resources:
example:
type: cloudngfwaws:Certificate
properties:
rulestack: ${r.name}
name: tf-cert
description: Also configured by Terraform
selfSigned: true
auditComment: initial config
r:
type: cloudngfwaws:Rulestack
properties:
name: terraform-rulestack
scope: Local
accountId: '123456789'
description: Made by Pulumi
profileConfig:
antiSpyware: BestPractice
Create Certificate Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Certificate(name: string, args: CertificateArgs, opts?: CustomResourceOptions);@overload
def Certificate(resource_name: str,
args: CertificateArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Certificate(resource_name: str,
opts: Optional[ResourceOptions] = None,
rulestack: Optional[str] = None,
audit_comment: Optional[str] = None,
description: Optional[str] = None,
name: Optional[str] = None,
scope: Optional[str] = None,
self_signed: Optional[bool] = None,
signer_arn: Optional[str] = None)func NewCertificate(ctx *Context, name string, args CertificateArgs, opts ...ResourceOption) (*Certificate, error)public Certificate(string name, CertificateArgs args, CustomResourceOptions? opts = null)
public Certificate(String name, CertificateArgs args)
public Certificate(String name, CertificateArgs args, CustomResourceOptions options)
type: cloudngfwaws:Certificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CertificateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CertificateArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CertificateArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CertificateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CertificateArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var certificateResource = new CloudNgfwAws.Certificate("certificateResource", new()
{
Rulestack = "string",
AuditComment = "string",
Description = "string",
Name = "string",
Scope = "string",
SelfSigned = false,
SignerArn = "string",
});
example, err := cloudngfwaws.NewCertificate(ctx, "certificateResource", &cloudngfwaws.CertificateArgs{
Rulestack: pulumi.String("string"),
AuditComment: pulumi.String("string"),
Description: pulumi.String("string"),
Name: pulumi.String("string"),
Scope: pulumi.String("string"),
SelfSigned: pulumi.Bool(false),
SignerArn: pulumi.String("string"),
})
var certificateResource = new Certificate("certificateResource", CertificateArgs.builder()
.rulestack("string")
.auditComment("string")
.description("string")
.name("string")
.scope("string")
.selfSigned(false)
.signerArn("string")
.build());
certificate_resource = cloudngfwaws.Certificate("certificateResource",
rulestack="string",
audit_comment="string",
description="string",
name="string",
scope="string",
self_signed=False,
signer_arn="string")
const certificateResource = new cloudngfwaws.Certificate("certificateResource", {
rulestack: "string",
auditComment: "string",
description: "string",
name: "string",
scope: "string",
selfSigned: false,
signerArn: "string",
});
type: cloudngfwaws:Certificate
properties:
auditComment: string
description: string
name: string
rulestack: string
scope: string
selfSigned: false
signerArn: string
Certificate Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Certificate resource accepts the following input properties:
- Rulestack string
- The rulestack.
- Audit
Comment string - The audit comment.
- Description string
- The description.
- Name string
- The name.
- Scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - Self
Signed bool - Set to true if certificate is self-signed.
- Signer
Arn string - The certificate signer ARN.
- Rulestack string
- The rulestack.
- Audit
Comment string - The audit comment.
- Description string
- The description.
- Name string
- The name.
- Scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - Self
Signed bool - Set to true if certificate is self-signed.
- Signer
Arn string - The certificate signer ARN.
- rulestack String
- The rulestack.
- audit
Comment String - The audit comment.
- description String
- The description.
- name String
- The name.
- scope String
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed Boolean - Set to true if certificate is self-signed.
- signer
Arn String - The certificate signer ARN.
- rulestack string
- The rulestack.
- audit
Comment string - The audit comment.
- description string
- The description.
- name string
- The name.
- scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed boolean - Set to true if certificate is self-signed.
- signer
Arn string - The certificate signer ARN.
- rulestack str
- The rulestack.
- audit_
comment str - The audit comment.
- description str
- The description.
- name str
- The name.
- scope str
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self_
signed bool - Set to true if certificate is self-signed.
- signer_
arn str - The certificate signer ARN.
- rulestack String
- The rulestack.
- audit
Comment String - The audit comment.
- description String
- The description.
- name String
- The name.
- scope String
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed Boolean - Set to true if certificate is self-signed.
- signer
Arn String - The certificate signer ARN.
Outputs
All input properties are implicitly available as output properties. Additionally, the Certificate resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Update
Token string - The update token.
- Id string
- The provider-assigned unique ID for this managed resource.
- Update
Token string - The update token.
- id String
- The provider-assigned unique ID for this managed resource.
- update
Token String - The update token.
- id string
- The provider-assigned unique ID for this managed resource.
- update
Token string - The update token.
- id str
- The provider-assigned unique ID for this managed resource.
- update_
token str - The update token.
- id String
- The provider-assigned unique ID for this managed resource.
- update
Token String - The update token.
Look up Existing Certificate Resource
Get an existing Certificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CertificateState, opts?: CustomResourceOptions): Certificate@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
audit_comment: Optional[str] = None,
description: Optional[str] = None,
name: Optional[str] = None,
rulestack: Optional[str] = None,
scope: Optional[str] = None,
self_signed: Optional[bool] = None,
signer_arn: Optional[str] = None,
update_token: Optional[str] = None) -> Certificatefunc GetCertificate(ctx *Context, name string, id IDInput, state *CertificateState, opts ...ResourceOption) (*Certificate, error)public static Certificate Get(string name, Input<string> id, CertificateState? state, CustomResourceOptions? opts = null)public static Certificate get(String name, Output<String> id, CertificateState state, CustomResourceOptions options)resources: _: type: cloudngfwaws:Certificate get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Audit
Comment string - The audit comment.
- Description string
- The description.
- Name string
- The name.
- Rulestack string
- The rulestack.
- Scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - Self
Signed bool - Set to true if certificate is self-signed.
- Signer
Arn string - The certificate signer ARN.
- Update
Token string - The update token.
- Audit
Comment string - The audit comment.
- Description string
- The description.
- Name string
- The name.
- Rulestack string
- The rulestack.
- Scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - Self
Signed bool - Set to true if certificate is self-signed.
- Signer
Arn string - The certificate signer ARN.
- Update
Token string - The update token.
- audit
Comment String - The audit comment.
- description String
- The description.
- name String
- The name.
- rulestack String
- The rulestack.
- scope String
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed Boolean - Set to true if certificate is self-signed.
- signer
Arn String - The certificate signer ARN.
- update
Token String - The update token.
- audit
Comment string - The audit comment.
- description string
- The description.
- name string
- The name.
- rulestack string
- The rulestack.
- scope string
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed boolean - Set to true if certificate is self-signed.
- signer
Arn string - The certificate signer ARN.
- update
Token string - The update token.
- audit_
comment str - The audit comment.
- description str
- The description.
- name str
- The name.
- rulestack str
- The rulestack.
- scope str
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self_
signed bool - Set to true if certificate is self-signed.
- signer_
arn str - The certificate signer ARN.
- update_
token str - The update token.
- audit
Comment String - The audit comment.
- description String
- The description.
- name String
- The name.
- rulestack String
- The rulestack.
- scope String
- The rulestack's scope. A local rulestack will require that you've retrieved a LRA JWT. A global rulestack will require that you've retrieved a GRA JWT. Valid values are
LocalorGlobal. Defaults toLocal. - self
Signed Boolean - Set to true if certificate is self-signed.
- signer
Arn String - The certificate signer ARN.
- update
Token String - The update token.
Import
import name is
$ pulumi import cloudngfwaws:index/certificate:Certificate example Local:terraform-rulestack:tf-cert
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- cloudngfwaws pulumi/pulumi-cloudngfwaws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudngfwawsTerraform Provider.
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi