fortimanager.ObjectVpnCertificateHsmlocal

fortimanager 1.15.0, Nov 13 25

fortimanager 1.15.0 published on Thursday, Nov 13, 2025 by fortinetdev

Schema (JSON)

fortinetdev/terraform-provider-fortimanager

fortimanager 1.15.0 published on Thursday, Nov 13, 2025 by fortinetdev

Schema (JSON)

fortinetdev/terraform-provider-fortimanager

Create ObjectVpnCertificateHsmlocal Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectVpnCertificateHsmlocal(name: string, args?: ObjectVpnCertificateHsmlocalArgs, opts?: CustomResourceOptions);

@overload
def ObjectVpnCertificateHsmlocal(resource_name: str,
                                 args: Optional[ObjectVpnCertificateHsmlocalArgs] = None,
                                 opts: Optional[ResourceOptions] = None)

@overload
def ObjectVpnCertificateHsmlocal(resource_name: str,
                                 opts: Optional[ResourceOptions] = None,
                                 adom: Optional[str] = None,
                                 api_version: Optional[str] = None,
                                 certificate: Optional[str] = None,
                                 comments: Optional[str] = None,
                                 gch_cloud_service_names: Optional[Sequence[str]] = None,
                                 gch_cryptokey: Optional[str] = None,
                                 gch_cryptokey_algorithm: Optional[str] = None,
                                 gch_cryptokey_version: Optional[str] = None,
                                 gch_keyring: Optional[str] = None,
                                 gch_location: Optional[str] = None,
                                 gch_project: Optional[str] = None,
                                 gch_url: Optional[str] = None,
                                 name: Optional[str] = None,
                                 object_vpn_certificate_hsmlocal_id: Optional[str] = None,
                                 range: Optional[str] = None,
                                 scopetype: Optional[str] = None,
                                 source: Optional[str] = None,
                                 tmp_cert_file: Optional[str] = None,
                                 vendor: Optional[str] = None)

func NewObjectVpnCertificateHsmlocal(ctx *Context, name string, args *ObjectVpnCertificateHsmlocalArgs, opts ...ResourceOption) (*ObjectVpnCertificateHsmlocal, error)

public ObjectVpnCertificateHsmlocal(string name, ObjectVpnCertificateHsmlocalArgs? args = null, CustomResourceOptions? opts = null)

public ObjectVpnCertificateHsmlocal(String name, ObjectVpnCertificateHsmlocalArgs args)
public ObjectVpnCertificateHsmlocal(String name, ObjectVpnCertificateHsmlocalArgs args, CustomResourceOptions options)

type: fortimanager:ObjectVpnCertificateHsmlocal
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectVpnCertificateHsmlocalArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectVpnCertificateHsmlocalArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectVpnCertificateHsmlocalArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectVpnCertificateHsmlocalArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectVpnCertificateHsmlocalArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectVpnCertificateHsmlocalResource = new Fortimanager.ObjectVpnCertificateHsmlocal("objectVpnCertificateHsmlocalResource", new()
{
    Adom = "string",
    ApiVersion = "string",
    Certificate = "string",
    Comments = "string",
    GchCloudServiceNames = new[]
    {
        "string",
    },
    GchCryptokey = "string",
    GchCryptokeyAlgorithm = "string",
    GchCryptokeyVersion = "string",
    GchKeyring = "string",
    GchLocation = "string",
    GchProject = "string",
    GchUrl = "string",
    Name = "string",
    ObjectVpnCertificateHsmlocalId = "string",
    Range = "string",
    Scopetype = "string",
    Source = "string",
    TmpCertFile = "string",
    Vendor = "string",
});

example, err := fortimanager.NewObjectVpnCertificateHsmlocal(ctx, "objectVpnCertificateHsmlocalResource", &fortimanager.ObjectVpnCertificateHsmlocalArgs{
	Adom:        pulumi.String("string"),
	ApiVersion:  pulumi.String("string"),
	Certificate: pulumi.String("string"),
	Comments:    pulumi.String("string"),
	GchCloudServiceNames: pulumi.StringArray{
		pulumi.String("string"),
	},
	GchCryptokey:                   pulumi.String("string"),
	GchCryptokeyAlgorithm:          pulumi.String("string"),
	GchCryptokeyVersion:            pulumi.String("string"),
	GchKeyring:                     pulumi.String("string"),
	GchLocation:                    pulumi.String("string"),
	GchProject:                     pulumi.String("string"),
	GchUrl:                         pulumi.String("string"),
	Name:                           pulumi.String("string"),
	ObjectVpnCertificateHsmlocalId: pulumi.String("string"),
	Range:                          pulumi.String("string"),
	Scopetype:                      pulumi.String("string"),
	Source:                         pulumi.String("string"),
	TmpCertFile:                    pulumi.String("string"),
	Vendor:                         pulumi.String("string"),
})

var objectVpnCertificateHsmlocalResource = new ObjectVpnCertificateHsmlocal("objectVpnCertificateHsmlocalResource", ObjectVpnCertificateHsmlocalArgs.builder()
    .adom("string")
    .apiVersion("string")
    .certificate("string")
    .comments("string")
    .gchCloudServiceNames("string")
    .gchCryptokey("string")
    .gchCryptokeyAlgorithm("string")
    .gchCryptokeyVersion("string")
    .gchKeyring("string")
    .gchLocation("string")
    .gchProject("string")
    .gchUrl("string")
    .name("string")
    .objectVpnCertificateHsmlocalId("string")
    .range("string")
    .scopetype("string")
    .source("string")
    .tmpCertFile("string")
    .vendor("string")
    .build());

object_vpn_certificate_hsmlocal_resource = fortimanager.ObjectVpnCertificateHsmlocal("objectVpnCertificateHsmlocalResource",
    adom="string",
    api_version="string",
    certificate="string",
    comments="string",
    gch_cloud_service_names=["string"],
    gch_cryptokey="string",
    gch_cryptokey_algorithm="string",
    gch_cryptokey_version="string",
    gch_keyring="string",
    gch_location="string",
    gch_project="string",
    gch_url="string",
    name="string",
    object_vpn_certificate_hsmlocal_id="string",
    range="string",
    scopetype="string",
    source="string",
    tmp_cert_file="string",
    vendor="string")

const objectVpnCertificateHsmlocalResource = new fortimanager.ObjectVpnCertificateHsmlocal("objectVpnCertificateHsmlocalResource", {
    adom: "string",
    apiVersion: "string",
    certificate: "string",
    comments: "string",
    gchCloudServiceNames: ["string"],
    gchCryptokey: "string",
    gchCryptokeyAlgorithm: "string",
    gchCryptokeyVersion: "string",
    gchKeyring: "string",
    gchLocation: "string",
    gchProject: "string",
    gchUrl: "string",
    name: "string",
    objectVpnCertificateHsmlocalId: "string",
    range: "string",
    scopetype: "string",
    source: "string",
    tmpCertFile: "string",
    vendor: "string",
});

type: fortimanager:ObjectVpnCertificateHsmlocal
properties:
    adom: string
    apiVersion: string
    certificate: string
    comments: string
    gchCloudServiceNames:
        - string
    gchCryptokey: string
    gchCryptokeyAlgorithm: string
    gchCryptokeyVersion: string
    gchKeyring: string
    gchLocation: string
    gchProject: string
    gchUrl: string
    name: string
    objectVpnCertificateHsmlocalId: string
    range: string
    scopetype: string
    source: string
    tmpCertFile: string
    vendor: string

ObjectVpnCertificateHsmlocal Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectVpnCertificateHsmlocal resource accepts the following input properties:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ApiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
Certificate string: PEM format certificate.
Comments string: Comment.
GchCloudServiceNames List<string>: Cloud service config name to generate access token.
GchCryptokey string: Google Cloud HSM cryptokey.
GchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
GchCryptokeyVersion string: Google Cloud HSM cryptokey version.
GchKeyring string: Google Cloud HSM keyring.
GchLocation string: Google Cloud HSM location.
GchProject string: Google Cloud HSM project ID.
GchUrl string: Gch-Url.
Name string: Name.
ObjectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
Range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: Certificate source type. Valid values: factory, user, bundle.
TmpCertFile string: Temporary certificate file.
Vendor string: HSM vendor. Valid values: unknown, gch.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ApiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
Certificate string: PEM format certificate.
Comments string: Comment.
GchCloudServiceNames []string: Cloud service config name to generate access token.
GchCryptokey string: Google Cloud HSM cryptokey.
GchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
GchCryptokeyVersion string: Google Cloud HSM cryptokey version.
GchKeyring string: Google Cloud HSM keyring.
GchLocation string: Google Cloud HSM location.
GchProject string: Google Cloud HSM project ID.
GchUrl string: Gch-Url.
Name string: Name.
ObjectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
Range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: Certificate source type. Valid values: factory, user, bundle.
TmpCertFile string: Temporary certificate file.
Vendor string: HSM vendor. Valid values: unknown, gch.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion String: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate String: PEM format certificate.
comments String: Comment.
gchCloudServiceNames List<String>: Cloud service config name to generate access token.
gchCryptokey String: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm String: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion String: Google Cloud HSM cryptokey version.
gchKeyring String: Google Cloud HSM keyring.
gchLocation String: Google Cloud HSM location.
gchProject String: Google Cloud HSM project ID.
gchUrl String: Gch-Url.
name String: Name.
objectVpnCertificateHsmlocalId String: an identifier for the resource with format {{name}}.
range String: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile String: Temporary certificate file.
vendor String: HSM vendor. Valid values: unknown, gch.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate string: PEM format certificate.
comments string: Comment.
gchCloudServiceNames string[]: Cloud service config name to generate access token.
gchCryptokey string: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion string: Google Cloud HSM cryptokey version.
gchKeyring string: Google Cloud HSM keyring.
gchLocation string: Google Cloud HSM location.
gchProject string: Google Cloud HSM project ID.
gchUrl string: Gch-Url.
name string: Name.
objectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source string: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile string: Temporary certificate file.
vendor string: HSM vendor. Valid values: unknown, gch.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
api_version str: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate str: PEM format certificate.
comments str: Comment.
gch_cloud_service_names Sequence[str]: Cloud service config name to generate access token.
gch_cryptokey str: Google Cloud HSM cryptokey.
gch_cryptokey_algorithm str: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gch_cryptokey_version str: Google Cloud HSM cryptokey version.
gch_keyring str: Google Cloud HSM keyring.
gch_location str: Google Cloud HSM location.
gch_project str: Google Cloud HSM project ID.
gch_url str: Gch-Url.
name str: Name.
object_vpn_certificate_hsmlocal_id str: an identifier for the resource with format {{name}}.
range str: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source str: Certificate source type. Valid values: factory, user, bundle.
tmp_cert_file str: Temporary certificate file.
vendor str: HSM vendor. Valid values: unknown, gch.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion String: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate String: PEM format certificate.
comments String: Comment.
gchCloudServiceNames List<String>: Cloud service config name to generate access token.
gchCryptokey String: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm String: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion String: Google Cloud HSM cryptokey version.
gchKeyring String: Google Cloud HSM keyring.
gchLocation String: Google Cloud HSM location.
gchProject String: Google Cloud HSM project ID.
gchUrl String: Gch-Url.
name String: Name.
objectVpnCertificateHsmlocalId String: an identifier for the resource with format {{name}}.
range String: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile String: Temporary certificate file.
vendor String: HSM vendor. Valid values: unknown, gch.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectVpnCertificateHsmlocal resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectVpnCertificateHsmlocal Resource

Get an existing ObjectVpnCertificateHsmlocal resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectVpnCertificateHsmlocalState, opts?: CustomResourceOptions): ObjectVpnCertificateHsmlocal

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        adom: Optional[str] = None,
        api_version: Optional[str] = None,
        certificate: Optional[str] = None,
        comments: Optional[str] = None,
        gch_cloud_service_names: Optional[Sequence[str]] = None,
        gch_cryptokey: Optional[str] = None,
        gch_cryptokey_algorithm: Optional[str] = None,
        gch_cryptokey_version: Optional[str] = None,
        gch_keyring: Optional[str] = None,
        gch_location: Optional[str] = None,
        gch_project: Optional[str] = None,
        gch_url: Optional[str] = None,
        name: Optional[str] = None,
        object_vpn_certificate_hsmlocal_id: Optional[str] = None,
        range: Optional[str] = None,
        scopetype: Optional[str] = None,
        source: Optional[str] = None,
        tmp_cert_file: Optional[str] = None,
        vendor: Optional[str] = None) -> ObjectVpnCertificateHsmlocal

func GetObjectVpnCertificateHsmlocal(ctx *Context, name string, id IDInput, state *ObjectVpnCertificateHsmlocalState, opts ...ResourceOption) (*ObjectVpnCertificateHsmlocal, error)

public static ObjectVpnCertificateHsmlocal Get(string name, Input<string> id, ObjectVpnCertificateHsmlocalState? state, CustomResourceOptions? opts = null)

public static ObjectVpnCertificateHsmlocal get(String name, Output<String> id, ObjectVpnCertificateHsmlocalState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectVpnCertificateHsmlocal    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ApiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
Certificate string: PEM format certificate.
Comments string: Comment.
GchCloudServiceNames List<string>: Cloud service config name to generate access token.
GchCryptokey string: Google Cloud HSM cryptokey.
GchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
GchCryptokeyVersion string: Google Cloud HSM cryptokey version.
GchKeyring string: Google Cloud HSM keyring.
GchLocation string: Google Cloud HSM location.
GchProject string: Google Cloud HSM project ID.
GchUrl string: Gch-Url.
Name string: Name.
ObjectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
Range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: Certificate source type. Valid values: factory, user, bundle.
TmpCertFile string: Temporary certificate file.
Vendor string: HSM vendor. Valid values: unknown, gch.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ApiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
Certificate string: PEM format certificate.
Comments string: Comment.
GchCloudServiceNames []string: Cloud service config name to generate access token.
GchCryptokey string: Google Cloud HSM cryptokey.
GchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
GchCryptokeyVersion string: Google Cloud HSM cryptokey version.
GchKeyring string: Google Cloud HSM keyring.
GchLocation string: Google Cloud HSM location.
GchProject string: Google Cloud HSM project ID.
GchUrl string: Gch-Url.
Name string: Name.
ObjectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
Range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: Certificate source type. Valid values: factory, user, bundle.
TmpCertFile string: Temporary certificate file.
Vendor string: HSM vendor. Valid values: unknown, gch.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion String: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate String: PEM format certificate.
comments String: Comment.
gchCloudServiceNames List<String>: Cloud service config name to generate access token.
gchCryptokey String: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm String: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion String: Google Cloud HSM cryptokey version.
gchKeyring String: Google Cloud HSM keyring.
gchLocation String: Google Cloud HSM location.
gchProject String: Google Cloud HSM project ID.
gchUrl String: Gch-Url.
name String: Name.
objectVpnCertificateHsmlocalId String: an identifier for the resource with format {{name}}.
range String: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile String: Temporary certificate file.
vendor String: HSM vendor. Valid values: unknown, gch.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion string: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate string: PEM format certificate.
comments string: Comment.
gchCloudServiceNames string[]: Cloud service config name to generate access token.
gchCryptokey string: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm string: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion string: Google Cloud HSM cryptokey version.
gchKeyring string: Google Cloud HSM keyring.
gchLocation string: Google Cloud HSM location.
gchProject string: Google Cloud HSM project ID.
gchUrl string: Gch-Url.
name string: Name.
objectVpnCertificateHsmlocalId string: an identifier for the resource with format {{name}}.
range string: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source string: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile string: Temporary certificate file.
vendor string: HSM vendor. Valid values: unknown, gch.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
api_version str: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate str: PEM format certificate.
comments str: Comment.
gch_cloud_service_names Sequence[str]: Cloud service config name to generate access token.
gch_cryptokey str: Google Cloud HSM cryptokey.
gch_cryptokey_algorithm str: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gch_cryptokey_version str: Google Cloud HSM cryptokey version.
gch_keyring str: Google Cloud HSM keyring.
gch_location str: Google Cloud HSM location.
gch_project str: Google Cloud HSM project ID.
gch_url str: Gch-Url.
name str: Name.
object_vpn_certificate_hsmlocal_id str: an identifier for the resource with format {{name}}.
range str: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source str: Certificate source type. Valid values: factory, user, bundle.
tmp_cert_file str: Temporary certificate file.
vendor str: HSM vendor. Valid values: unknown, gch.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
apiVersion String: API version for communicating with HSM. Valid values: unknown, gch-default.
certificate String: PEM format certificate.
comments String: Comment.
gchCloudServiceNames List<String>: Cloud service config name to generate access token.
gchCryptokey String: Google Cloud HSM cryptokey.
gchCryptokeyAlgorithm String: Google Cloud HSM cryptokey algorithm. Valid values: rsa-sign-pkcs1-2048-sha256, rsa-sign-pkcs1-3072-sha256, rsa-sign-pkcs1-4096-sha256, rsa-sign-pkcs1-4096-sha512, rsa-sign-pss-2048-sha256, rsa-sign-pss-3072-sha256, rsa-sign-pss-4096-sha256, rsa-sign-pss-4096-sha512, ec-sign-p256-sha256, ec-sign-p384-sha384, ec-sign-secp256k1-sha256.
gchCryptokeyVersion String: Google Cloud HSM cryptokey version.
gchKeyring String: Google Cloud HSM keyring.
gchLocation String: Google Cloud HSM location.
gchProject String: Google Cloud HSM project ID.
gchUrl String: Gch-Url.
name String: Name.
objectVpnCertificateHsmlocalId String: an identifier for the resource with format {{name}}.
range String: Either a global or VDOM IP address range for the certificate. Valid values: global, vdom.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: Certificate source type. Valid values: factory, user, bundle.
tmpCertFile String: Temporary certificate file.
vendor String: HSM vendor. Valid values: unknown, gch.

Import

ObjectVpn CertificateHsmLocal can be imported using any of these accepted formats:

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectVpnCertificateHsmlocal:ObjectVpnCertificateHsmlocal labelname {{name}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.15.0 published on Thursday, Nov 13, 2025 by fortinetdev

Schema (JSON)

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectVpnCertificateHsmlocal

On this page

On this page

Create ObjectVpnCertificateHsmlocal Resource

Constructor syntax

Parameters

Constructor example

ObjectVpnCertificateHsmlocal Resource Properties

Inputs

Outputs

Look up Existing ObjectVpnCertificateHsmlocal Resource

Import

Package Details

On this page

On this page