Oracle Cloud Infrastructure v2.33.0, May 1 25

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

oci.DataSafe.AuditPolicy

Explore with Pulumi AI

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

Create AuditPolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new AuditPolicy(name: string, args: AuditPolicyArgs, opts?: CustomResourceOptions);

@overload
def AuditPolicy(resource_name: str,
                args: AuditPolicyArgs,
                opts: Optional[ResourceOptions] = None)

@overload
def AuditPolicy(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                audit_policy_id: Optional[str] = None,
                compartment_id: Optional[str] = None,
                defined_tags: Optional[Mapping[str, str]] = None,
                description: Optional[str] = None,
                display_name: Optional[str] = None,
                freeform_tags: Optional[Mapping[str, str]] = None,
                provision_trigger: Optional[int] = None,
                retrieve_from_target_trigger: Optional[int] = None)

func NewAuditPolicy(ctx *Context, name string, args AuditPolicyArgs, opts ...ResourceOption) (*AuditPolicy, error)

public AuditPolicy(string name, AuditPolicyArgs args, CustomResourceOptions? opts = null)

public AuditPolicy(String name, AuditPolicyArgs args)
public AuditPolicy(String name, AuditPolicyArgs args, CustomResourceOptions options)

type: oci:DataSafe:AuditPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args AuditPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args AuditPolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args AuditPolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AuditPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args AuditPolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var auditPolicyResource = new Oci.DataSafe.AuditPolicy("auditPolicyResource", new()
{
    AuditPolicyId = "string",
    CompartmentId = "string",
    DefinedTags = 
    {
        { "string", "string" },
    },
    Description = "string",
    DisplayName = "string",
    FreeformTags = 
    {
        { "string", "string" },
    },
    ProvisionTrigger = 0,
    RetrieveFromTargetTrigger = 0,
});

example, err := datasafe.NewAuditPolicy(ctx, "auditPolicyResource", &datasafe.AuditPolicyArgs{
	AuditPolicyId: pulumi.String("string"),
	CompartmentId: pulumi.String("string"),
	DefinedTags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	Description: pulumi.String("string"),
	DisplayName: pulumi.String("string"),
	FreeformTags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	ProvisionTrigger:          pulumi.Int(0),
	RetrieveFromTargetTrigger: pulumi.Int(0),
})

var auditPolicyResource = new AuditPolicy("auditPolicyResource", AuditPolicyArgs.builder()
    .auditPolicyId("string")
    .compartmentId("string")
    .definedTags(Map.of("string", "string"))
    .description("string")
    .displayName("string")
    .freeformTags(Map.of("string", "string"))
    .provisionTrigger(0)
    .retrieveFromTargetTrigger(0)
    .build());

audit_policy_resource = oci.data_safe.AuditPolicy("auditPolicyResource",
    audit_policy_id="string",
    compartment_id="string",
    defined_tags={
        "string": "string",
    },
    description="string",
    display_name="string",
    freeform_tags={
        "string": "string",
    },
    provision_trigger=0,
    retrieve_from_target_trigger=0)

const auditPolicyResource = new oci.datasafe.AuditPolicy("auditPolicyResource", {
    auditPolicyId: "string",
    compartmentId: "string",
    definedTags: {
        string: "string",
    },
    description: "string",
    displayName: "string",
    freeformTags: {
        string: "string",
    },
    provisionTrigger: 0,
    retrieveFromTargetTrigger: 0,
});

type: oci:DataSafe:AuditPolicy
properties:
    auditPolicyId: string
    compartmentId: string
    definedTags:
        string: string
    description: string
    displayName: string
    freeformTags:
        string: string
    provisionTrigger: 0
    retrieveFromTargetTrigger: 0

AuditPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The AuditPolicy resource accepts the following input properties:

AuditPolicyId string

Unique audit policy identifier.

CompartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

DefinedTags Dictionary<string, string>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) The description of the audit policy.

DisplayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

FreeformTags Dictionary<string, string>

(Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example: {"Department": "Finance"}

ProvisionTrigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

RetrieveFromTargetTrigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

AuditPolicyId string

Unique audit policy identifier.

CompartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

DefinedTags map[string]string

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) The description of the audit policy.

DisplayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

FreeformTags map[string]string

ProvisionTrigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

RetrieveFromTargetTrigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

auditPolicyId String

Unique audit policy identifier.

compartmentId String

(Updatable) The OCID of the compartment containing the audit policy.

definedTags Map<String,String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

(Updatable) The description of the audit policy.

displayName String

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags Map<String,String>

provisionTrigger Integer

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger Integer

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

auditPolicyId string

Unique audit policy identifier.

compartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

definedTags {[key: string]: string}

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description string

(Updatable) The description of the audit policy.

displayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags {[key: string]: string}

provisionTrigger number

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger number

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

audit_policy_id str

Unique audit policy identifier.

compartment_id str

(Updatable) The OCID of the compartment containing the audit policy.

defined_tags Mapping[str, str]

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description str

(Updatable) The description of the audit policy.

display_name str

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeform_tags Mapping[str, str]

provision_trigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieve_from_target_trigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

auditPolicyId String

Unique audit policy identifier.

compartmentId String

(Updatable) The OCID of the compartment containing the audit policy.

definedTags Map<String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

(Updatable) The description of the audit policy.

displayName String

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags Map<String>

provisionTrigger Number

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger Number

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Outputs

All input properties are implicitly available as output properties. Additionally, the AuditPolicy resource produces the following output properties:

AuditConditions List<AuditPolicyAuditCondition>: Lists the audit policy provisioning conditions for the target database.
AuditSpecifications List<AuditPolicyAuditSpecification>: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
Id string: The provider-assigned unique ID for this managed resource.
IsDataSafeServiceAccountExcluded bool: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
LifecycleDetails string: Details about the current state of the audit policy in Data Safe.
State string: The current state of the audit policy.
SystemTags Dictionary<string, string>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
TargetId string: The OCID of the target for which the audit policy is created.
TimeCreated string: The time the the audit policy was created, in the format defined by RFC3339.
TimeLastProvisioned string: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
TimeLastRetrieved string: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
TimeUpdated string: The last date and time the audit policy was updated, in the format defined by RFC3339.

AuditConditions []AuditPolicyAuditCondition: Lists the audit policy provisioning conditions for the target database.
AuditSpecifications []AuditPolicyAuditSpecification: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
Id string: The provider-assigned unique ID for this managed resource.
IsDataSafeServiceAccountExcluded bool: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
LifecycleDetails string: Details about the current state of the audit policy in Data Safe.
State string: The current state of the audit policy.
SystemTags map[string]string: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
TargetId string: The OCID of the target for which the audit policy is created.
TimeCreated string: The time the the audit policy was created, in the format defined by RFC3339.
TimeLastProvisioned string: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
TimeLastRetrieved string: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
TimeUpdated string: The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions List<AuditPolicyAuditCondition>: Lists the audit policy provisioning conditions for the target database.
auditSpecifications List<AuditPolicyAuditSpecification>: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
id String: The provider-assigned unique ID for this managed resource.
isDataSafeServiceAccountExcluded Boolean: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
lifecycleDetails String: Details about the current state of the audit policy in Data Safe.
state String: The current state of the audit policy.
systemTags Map<String,String>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
targetId String: The OCID of the target for which the audit policy is created.
timeCreated String: The time the the audit policy was created, in the format defined by RFC3339.
timeLastProvisioned String: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
timeLastRetrieved String: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
timeUpdated String: The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions AuditPolicyAuditCondition[]: Lists the audit policy provisioning conditions for the target database.
auditSpecifications AuditPolicyAuditSpecification[]: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
id string: The provider-assigned unique ID for this managed resource.
isDataSafeServiceAccountExcluded boolean: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
lifecycleDetails string: Details about the current state of the audit policy in Data Safe.
state string: The current state of the audit policy.
systemTags {[key: string]: string}: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
targetId string: The OCID of the target for which the audit policy is created.
timeCreated string: The time the the audit policy was created, in the format defined by RFC3339.
timeLastProvisioned string: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
timeLastRetrieved string: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
timeUpdated string: The last date and time the audit policy was updated, in the format defined by RFC3339.

audit_conditions Sequence[AuditPolicyAuditCondition]: Lists the audit policy provisioning conditions for the target database.
audit_specifications Sequence[AuditPolicyAuditSpecification]: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
id str: The provider-assigned unique ID for this managed resource.
is_data_safe_service_account_excluded bool: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
lifecycle_details str: Details about the current state of the audit policy in Data Safe.
state str: The current state of the audit policy.
system_tags Mapping[str, str]: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
target_id str: The OCID of the target for which the audit policy is created.
time_created str: The time the the audit policy was created, in the format defined by RFC3339.
time_last_provisioned str: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
time_last_retrieved str: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
time_updated str: The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions List<Property Map>: Lists the audit policy provisioning conditions for the target database.
auditSpecifications List<Property Map>: Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
id String: The provider-assigned unique ID for this managed resource.
isDataSafeServiceAccountExcluded Boolean: Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
lifecycleDetails String: Details about the current state of the audit policy in Data Safe.
state String: The current state of the audit policy.
systemTags Map<String>: System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}
targetId String: The OCID of the target for which the audit policy is created.
timeCreated String: The time the the audit policy was created, in the format defined by RFC3339.
timeLastProvisioned String: Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
timeLastRetrieved String: The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
timeUpdated String: The last date and time the audit policy was updated, in the format defined by RFC3339.

Look up Existing AuditPolicy Resource

Get an existing AuditPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: AuditPolicyState, opts?: CustomResourceOptions): AuditPolicy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        audit_conditions: Optional[Sequence[AuditPolicyAuditConditionArgs]] = None,
        audit_policy_id: Optional[str] = None,
        audit_specifications: Optional[Sequence[AuditPolicyAuditSpecificationArgs]] = None,
        compartment_id: Optional[str] = None,
        defined_tags: Optional[Mapping[str, str]] = None,
        description: Optional[str] = None,
        display_name: Optional[str] = None,
        freeform_tags: Optional[Mapping[str, str]] = None,
        is_data_safe_service_account_excluded: Optional[bool] = None,
        lifecycle_details: Optional[str] = None,
        provision_trigger: Optional[int] = None,
        retrieve_from_target_trigger: Optional[int] = None,
        state: Optional[str] = None,
        system_tags: Optional[Mapping[str, str]] = None,
        target_id: Optional[str] = None,
        time_created: Optional[str] = None,
        time_last_provisioned: Optional[str] = None,
        time_last_retrieved: Optional[str] = None,
        time_updated: Optional[str] = None) -> AuditPolicy

func GetAuditPolicy(ctx *Context, name string, id IDInput, state *AuditPolicyState, opts ...ResourceOption) (*AuditPolicy, error)

public static AuditPolicy Get(string name, Input<string> id, AuditPolicyState? state, CustomResourceOptions? opts = null)

public static AuditPolicy get(String name, Output<String> id, AuditPolicyState state, CustomResourceOptions options)

resources:  _:    type: oci:DataSafe:AuditPolicy    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AuditConditions List<AuditPolicyAuditCondition>

Lists the audit policy provisioning conditions for the target database.

AuditPolicyId string

Unique audit policy identifier.

AuditSpecifications List<AuditPolicyAuditSpecification>

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

CompartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

DefinedTags Dictionary<string, string>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) The description of the audit policy.

DisplayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

FreeformTags Dictionary<string, string>

IsDataSafeServiceAccountExcluded bool

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

LifecycleDetails string

Details about the current state of the audit policy in Data Safe.

ProvisionTrigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

RetrieveFromTargetTrigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

State string

The current state of the audit policy.

SystemTags Dictionary<string, string>

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

TargetId string

The OCID of the target for which the audit policy is created.

TimeCreated string

The time the the audit policy was created, in the format defined by RFC3339.

TimeLastProvisioned string

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

TimeLastRetrieved string

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

TimeUpdated string

The last date and time the audit policy was updated, in the format defined by RFC3339.

AuditConditions []AuditPolicyAuditConditionArgs

Lists the audit policy provisioning conditions for the target database.

AuditPolicyId string

Unique audit policy identifier.

AuditSpecifications []AuditPolicyAuditSpecificationArgs

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

CompartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

DefinedTags map[string]string

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

Description string

(Updatable) The description of the audit policy.

DisplayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

FreeformTags map[string]string

IsDataSafeServiceAccountExcluded bool

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

LifecycleDetails string

Details about the current state of the audit policy in Data Safe.

ProvisionTrigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

RetrieveFromTargetTrigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

State string

The current state of the audit policy.

SystemTags map[string]string

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

TargetId string

The OCID of the target for which the audit policy is created.

TimeCreated string

The time the the audit policy was created, in the format defined by RFC3339.

TimeLastProvisioned string

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

TimeLastRetrieved string

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

TimeUpdated string

The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions List<AuditPolicyAuditCondition>

Lists the audit policy provisioning conditions for the target database.

auditPolicyId String

Unique audit policy identifier.

auditSpecifications List<AuditPolicyAuditSpecification>

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

compartmentId String

(Updatable) The OCID of the compartment containing the audit policy.

definedTags Map<String,String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

(Updatable) The description of the audit policy.

displayName String

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags Map<String,String>

isDataSafeServiceAccountExcluded Boolean

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

lifecycleDetails String

Details about the current state of the audit policy in Data Safe.

provisionTrigger Integer

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger Integer

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

state String

The current state of the audit policy.

systemTags Map<String,String>

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

targetId String

The OCID of the target for which the audit policy is created.

timeCreated String

The time the the audit policy was created, in the format defined by RFC3339.

timeLastProvisioned String

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

timeLastRetrieved String

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

timeUpdated String

The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions AuditPolicyAuditCondition[]

Lists the audit policy provisioning conditions for the target database.

auditPolicyId string

Unique audit policy identifier.

auditSpecifications AuditPolicyAuditSpecification[]

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

compartmentId string

(Updatable) The OCID of the compartment containing the audit policy.

definedTags {[key: string]: string}

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description string

(Updatable) The description of the audit policy.

displayName string

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags {[key: string]: string}

isDataSafeServiceAccountExcluded boolean

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

lifecycleDetails string

Details about the current state of the audit policy in Data Safe.

provisionTrigger number

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger number

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

state string

The current state of the audit policy.

systemTags {[key: string]: string}

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

targetId string

The OCID of the target for which the audit policy is created.

timeCreated string

The time the the audit policy was created, in the format defined by RFC3339.

timeLastProvisioned string

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

timeLastRetrieved string

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

timeUpdated string

The last date and time the audit policy was updated, in the format defined by RFC3339.

audit_conditions Sequence[AuditPolicyAuditConditionArgs]

Lists the audit policy provisioning conditions for the target database.

audit_policy_id str

Unique audit policy identifier.

audit_specifications Sequence[AuditPolicyAuditSpecificationArgs]

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

compartment_id str

(Updatable) The OCID of the compartment containing the audit policy.

defined_tags Mapping[str, str]

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description str

(Updatable) The description of the audit policy.

display_name str

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeform_tags Mapping[str, str]

is_data_safe_service_account_excluded bool

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

lifecycle_details str

Details about the current state of the audit policy in Data Safe.

provision_trigger int

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieve_from_target_trigger int

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

state str

The current state of the audit policy.

system_tags Mapping[str, str]

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

target_id str

The OCID of the target for which the audit policy is created.

time_created str

The time the the audit policy was created, in the format defined by RFC3339.

time_last_provisioned str

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

time_last_retrieved str

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

time_updated str

The last date and time the audit policy was updated, in the format defined by RFC3339.

auditConditions List<Property Map>

Lists the audit policy provisioning conditions for the target database.

auditPolicyId String

Unique audit policy identifier.

auditSpecifications List<Property Map>

Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.

compartmentId String

(Updatable) The OCID of the compartment containing the audit policy.

definedTags Map<String>

(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example: {"Operations.CostCenter": "42"}

description String

(Updatable) The description of the audit policy.

displayName String

(Updatable) The display name of the audit policy. The name does not have to be unique, and it is changeable.

freeformTags Map<String>

isDataSafeServiceAccountExcluded Boolean

Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.

lifecycleDetails String

Details about the current state of the audit policy in Data Safe.

provisionTrigger Number

(Updatable) An optional property when incremented triggers Provision. Could be set to any integer value.

retrieveFromTargetTrigger Number

(Updatable) An optional property when incremented triggers Retrieve From Target. Could be set to any integer value.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

state String

The current state of the audit policy.

systemTags Map<String>

System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"orcl-cloud.free-tier-retained": "true"}

targetId String

The OCID of the target for which the audit policy is created.

timeCreated String

The time the the audit policy was created, in the format defined by RFC3339.

timeLastProvisioned String

Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.

timeLastRetrieved String

The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.

timeUpdated String

The last date and time the audit policy was updated, in the format defined by RFC3339.

Supporting Types

AuditPolicyAuditCondition, AuditPolicyAuditConditionArgs

AuditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
EnableConditions List<AuditPolicyAuditConditionEnableCondition>: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
IsDataSafeServiceAccountAudited bool: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
IsPrivUsersManagedByDataSafe bool: Indicates whether the privileged user list is managed by Data Safe.

AuditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
EnableConditions []AuditPolicyAuditConditionEnableCondition: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
IsDataSafeServiceAccountAudited bool: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
IsPrivUsersManagedByDataSafe bool: Indicates whether the privileged user list is managed by Data Safe.

auditPolicyName String: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
enableConditions List<AuditPolicyAuditConditionEnableCondition>: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
isDataSafeServiceAccountAudited Boolean: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
isPrivUsersManagedByDataSafe Boolean: Indicates whether the privileged user list is managed by Data Safe.

auditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
enableConditions AuditPolicyAuditConditionEnableCondition[]: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
isDataSafeServiceAccountAudited boolean: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
isPrivUsersManagedByDataSafe boolean: Indicates whether the privileged user list is managed by Data Safe.

audit_policy_name str: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
enable_conditions Sequence[AuditPolicyAuditConditionEnableCondition]: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
is_data_safe_service_account_audited bool: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
is_priv_users_managed_by_data_safe bool: Indicates whether the privileged user list is managed by Data Safe.

auditPolicyName String: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
enableConditions List<Property Map>: Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
isDataSafeServiceAccountAudited Boolean: Indicates whether the Data Safe user activity on the target database will be audited by the policy.
isPrivUsersManagedByDataSafe Boolean: Indicates whether the privileged user list is managed by Data Safe.

AuditPolicyAuditConditionEnableCondition, AuditPolicyAuditConditionEnableConditionArgs

EntityNames List<string>: List of users or roles that the policy must be enabled for.
EntitySelection string: The entity include or exclude selection.
EntityType string: The entity type that the policy must be enabled for.
OperationStatus string: The operation status that the policy must be enabled for.

EntityNames []string: List of users or roles that the policy must be enabled for.
EntitySelection string: The entity include or exclude selection.
EntityType string: The entity type that the policy must be enabled for.
OperationStatus string: The operation status that the policy must be enabled for.

entityNames List<String>: List of users or roles that the policy must be enabled for.
entitySelection String: The entity include or exclude selection.
entityType String: The entity type that the policy must be enabled for.
operationStatus String: The operation status that the policy must be enabled for.

entityNames string[]: List of users or roles that the policy must be enabled for.
entitySelection string: The entity include or exclude selection.
entityType string: The entity type that the policy must be enabled for.
operationStatus string: The operation status that the policy must be enabled for.

entity_names Sequence[str]: List of users or roles that the policy must be enabled for.
entity_selection str: The entity include or exclude selection.
entity_type str: The entity type that the policy must be enabled for.
operation_status str: The operation status that the policy must be enabled for.

entityNames List<String>: List of users or roles that the policy must be enabled for.
entitySelection String: The entity include or exclude selection.
entityType String: The entity type that the policy must be enabled for.
operationStatus String: The operation status that the policy must be enabled for.

AuditPolicyAuditSpecification, AuditPolicyAuditSpecificationArgs

AuditPolicyCategory string: The category to which the audit policy belongs.
AuditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
DatabasePolicyNames List<string>: Indicates the names of corresponding database policy ( or policies) in the target database.
EnableStatus string: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
EnabledEntities string: Indicates on whom the audit policy is enabled.
IsCreated bool: Indicates whether the policy is already created on the target database.
IsEnabledForAllUsers bool: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
IsSeededInDataSafe bool: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
IsSeededInTarget bool: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
IsViewOnly bool: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
PartiallyEnabledMsg string: Provides information about the policy that has been only partially enabled.

AuditPolicyCategory string: The category to which the audit policy belongs.
AuditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
DatabasePolicyNames []string: Indicates the names of corresponding database policy ( or policies) in the target database.
EnableStatus string: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
EnabledEntities string: Indicates on whom the audit policy is enabled.
IsCreated bool: Indicates whether the policy is already created on the target database.
IsEnabledForAllUsers bool: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
IsSeededInDataSafe bool: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
IsSeededInTarget bool: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
IsViewOnly bool: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
PartiallyEnabledMsg string: Provides information about the policy that has been only partially enabled.

auditPolicyCategory String: The category to which the audit policy belongs.
auditPolicyName String: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
databasePolicyNames List<String>: Indicates the names of corresponding database policy ( or policies) in the target database.
enableStatus String: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
enabledEntities String: Indicates on whom the audit policy is enabled.
isCreated Boolean: Indicates whether the policy is already created on the target database.
isEnabledForAllUsers Boolean: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
isSeededInDataSafe Boolean: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
isSeededInTarget Boolean: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
isViewOnly Boolean: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
partiallyEnabledMsg String: Provides information about the policy that has been only partially enabled.

auditPolicyCategory string: The category to which the audit policy belongs.
auditPolicyName string: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
databasePolicyNames string[]: Indicates the names of corresponding database policy ( or policies) in the target database.
enableStatus string: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
enabledEntities string: Indicates on whom the audit policy is enabled.
isCreated boolean: Indicates whether the policy is already created on the target database.
isEnabledForAllUsers boolean: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
isSeededInDataSafe boolean: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
isSeededInTarget boolean: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
isViewOnly boolean: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
partiallyEnabledMsg string: Provides information about the policy that has been only partially enabled.

audit_policy_category str: The category to which the audit policy belongs.
audit_policy_name str: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
database_policy_names Sequence[str]: Indicates the names of corresponding database policy ( or policies) in the target database.
enable_status str: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
enabled_entities str: Indicates on whom the audit policy is enabled.
is_created bool: Indicates whether the policy is already created on the target database.
is_enabled_for_all_users bool: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
is_seeded_in_data_safe bool: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
is_seeded_in_target bool: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
is_view_only bool: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
partially_enabled_msg str: Provides information about the policy that has been only partially enabled.

auditPolicyCategory String: The category to which the audit policy belongs.
auditPolicyName String: Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
databasePolicyNames List<String>: Indicates the names of corresponding database policy ( or policies) in the target database.
enableStatus String: Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
enabledEntities String: Indicates on whom the audit policy is enabled.
isCreated Boolean: Indicates whether the policy is already created on the target database.
isEnabledForAllUsers Boolean: Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
isSeededInDataSafe Boolean: Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
isSeededInTarget Boolean: Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
isViewOnly Boolean: Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
partiallyEnabledMsg String: Provides information about the policy that has been only partially enabled.

Import

AuditPolicies can be imported using the id, e.g.

$ pulumi import oci:DataSafe/auditPolicy:AuditPolicy test_audit_policy "id"

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi

pulumi/pulumi-oci

oci.DataSafe.AuditPolicy

On this page

On this page

Create AuditPolicy Resource

Constructor syntax

Parameters

Constructor example

AuditPolicy Resource Properties

Inputs

Outputs

Look up Existing AuditPolicy Resource

Supporting Types

AuditPolicyAuditCondition, AuditPolicyAuditConditionArgs

AuditPolicyAuditConditionEnableCondition, AuditPolicyAuditConditionEnableConditionArgs

AuditPolicyAuditSpecification, AuditPolicyAuditSpecificationArgs

Import

Package Details

On this page

On this page