Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
CertificateProfile resource
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as scm from "@pulumi/scm";
const scmCp1 = new scm.CertificateProfile("scm_cp_1", {
folder: "Shared",
name: "scm_cp_1",
domain: "test",
useCrl: true,
useOcsp: true,
blockUnknownCert: true,
blockTimeoutCert: true,
blockUnauthenticatedCert: true,
blockExpiredCert: true,
crlReceiveTimeout: "5",
ocspReceiveTimeout: "5",
certStatusTimeout: "5",
caCertificates: [{
name: "Forward-Trust-CA",
defaultOcspUrl: "http://test.com",
ocspVerifyCert: "Forward-Trust-CA-ECDSA",
templateName: "something",
}],
usernameField: {
subject: "common-name",
},
});
import pulumi
import pulumi_scm as scm
scm_cp1 = scm.CertificateProfile("scm_cp_1",
folder="Shared",
name="scm_cp_1",
domain="test",
use_crl=True,
use_ocsp=True,
block_unknown_cert=True,
block_timeout_cert=True,
block_unauthenticated_cert=True,
block_expired_cert=True,
crl_receive_timeout="5",
ocsp_receive_timeout="5",
cert_status_timeout="5",
ca_certificates=[{
"name": "Forward-Trust-CA",
"default_ocsp_url": "http://test.com",
"ocsp_verify_cert": "Forward-Trust-CA-ECDSA",
"template_name": "something",
}],
username_field={
"subject": "common-name",
})
package main
import (
"github.com/pulumi/pulumi-scm/sdk/go/scm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := scm.NewCertificateProfile(ctx, "scm_cp_1", &scm.CertificateProfileArgs{
Folder: pulumi.String("Shared"),
Name: pulumi.String("scm_cp_1"),
Domain: pulumi.String("test"),
UseCrl: pulumi.Bool(true),
UseOcsp: pulumi.Bool(true),
BlockUnknownCert: pulumi.Bool(true),
BlockTimeoutCert: pulumi.Bool(true),
BlockUnauthenticatedCert: pulumi.Bool(true),
BlockExpiredCert: pulumi.Bool(true),
CrlReceiveTimeout: pulumi.String("5"),
OcspReceiveTimeout: pulumi.String("5"),
CertStatusTimeout: pulumi.String("5"),
CaCertificates: scm.CertificateProfileCaCertificateArray{
&scm.CertificateProfileCaCertificateArgs{
Name: pulumi.String("Forward-Trust-CA"),
DefaultOcspUrl: pulumi.String("http://test.com"),
OcspVerifyCert: pulumi.String("Forward-Trust-CA-ECDSA"),
TemplateName: pulumi.String("something"),
},
},
UsernameField: &scm.CertificateProfileUsernameFieldArgs{
Subject: pulumi.String("common-name"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Scm = Pulumi.Scm;
return await Deployment.RunAsync(() =>
{
var scmCp1 = new Scm.CertificateProfile("scm_cp_1", new()
{
Folder = "Shared",
Name = "scm_cp_1",
Domain = "test",
UseCrl = true,
UseOcsp = true,
BlockUnknownCert = true,
BlockTimeoutCert = true,
BlockUnauthenticatedCert = true,
BlockExpiredCert = true,
CrlReceiveTimeout = "5",
OcspReceiveTimeout = "5",
CertStatusTimeout = "5",
CaCertificates = new[]
{
new Scm.Inputs.CertificateProfileCaCertificateArgs
{
Name = "Forward-Trust-CA",
DefaultOcspUrl = "http://test.com",
OcspVerifyCert = "Forward-Trust-CA-ECDSA",
TemplateName = "something",
},
},
UsernameField = new Scm.Inputs.CertificateProfileUsernameFieldArgs
{
Subject = "common-name",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.scm.CertificateProfile;
import com.pulumi.scm.CertificateProfileArgs;
import com.pulumi.scm.inputs.CertificateProfileCaCertificateArgs;
import com.pulumi.scm.inputs.CertificateProfileUsernameFieldArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var scmCp1 = new CertificateProfile("scmCp1", CertificateProfileArgs.builder()
.folder("Shared")
.name("scm_cp_1")
.domain("test")
.useCrl(true)
.useOcsp(true)
.blockUnknownCert(true)
.blockTimeoutCert(true)
.blockUnauthenticatedCert(true)
.blockExpiredCert(true)
.crlReceiveTimeout("5")
.ocspReceiveTimeout("5")
.certStatusTimeout("5")
.caCertificates(CertificateProfileCaCertificateArgs.builder()
.name("Forward-Trust-CA")
.defaultOcspUrl("http://test.com")
.ocspVerifyCert("Forward-Trust-CA-ECDSA")
.templateName("something")
.build())
.usernameField(CertificateProfileUsernameFieldArgs.builder()
.subject("common-name")
.build())
.build());
}
}
resources:
scmCp1:
type: scm:CertificateProfile
name: scm_cp_1
properties:
folder: Shared
name: scm_cp_1
domain: test
useCrl: true
useOcsp: true
blockUnknownCert: true
blockTimeoutCert: true
blockUnauthenticatedCert: true
blockExpiredCert: true
crlReceiveTimeout: '5'
ocspReceiveTimeout: '5'
certStatusTimeout: '5'
caCertificates:
- name: Forward-Trust-CA
defaultOcspUrl: http://test.com
ocspVerifyCert: Forward-Trust-CA-ECDSA
templateName: something
usernameField:
subject: common-name
Create CertificateProfile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new CertificateProfile(name: string, args: CertificateProfileArgs, opts?: CustomResourceOptions);@overload
def CertificateProfile(resource_name: str,
args: CertificateProfileArgs,
opts: Optional[ResourceOptions] = None)
@overload
def CertificateProfile(resource_name: str,
opts: Optional[ResourceOptions] = None,
ca_certificates: Optional[Sequence[CertificateProfileCaCertificateArgs]] = None,
domain: Optional[str] = None,
ocsp_receive_timeout: Optional[str] = None,
block_unknown_cert: Optional[bool] = None,
block_timeout_cert: Optional[bool] = None,
cert_status_timeout: Optional[str] = None,
crl_receive_timeout: Optional[str] = None,
block_unauthenticated_cert: Optional[bool] = None,
folder: Optional[str] = None,
device: Optional[str] = None,
name: Optional[str] = None,
block_expired_cert: Optional[bool] = None,
snippet: Optional[str] = None,
use_crl: Optional[bool] = None,
use_ocsp: Optional[bool] = None,
username_field: Optional[CertificateProfileUsernameFieldArgs] = None)func NewCertificateProfile(ctx *Context, name string, args CertificateProfileArgs, opts ...ResourceOption) (*CertificateProfile, error)public CertificateProfile(string name, CertificateProfileArgs args, CustomResourceOptions? opts = null)
public CertificateProfile(String name, CertificateProfileArgs args)
public CertificateProfile(String name, CertificateProfileArgs args, CustomResourceOptions options)
type: scm:CertificateProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CertificateProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CertificateProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CertificateProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CertificateProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CertificateProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var certificateProfileResource = new Scm.CertificateProfile("certificateProfileResource", new()
{
CaCertificates = new[]
{
new Scm.Inputs.CertificateProfileCaCertificateArgs
{
Name = "string",
DefaultOcspUrl = "string",
OcspVerifyCert = "string",
TemplateName = "string",
},
},
Domain = "string",
OcspReceiveTimeout = "string",
BlockUnknownCert = false,
BlockTimeoutCert = false,
CertStatusTimeout = "string",
CrlReceiveTimeout = "string",
BlockUnauthenticatedCert = false,
Folder = "string",
Device = "string",
Name = "string",
BlockExpiredCert = false,
Snippet = "string",
UseCrl = false,
UseOcsp = false,
UsernameField = new Scm.Inputs.CertificateProfileUsernameFieldArgs
{
Subject = "string",
SubjectAlt = "string",
},
});
example, err := scm.NewCertificateProfile(ctx, "certificateProfileResource", &scm.CertificateProfileArgs{
CaCertificates: scm.CertificateProfileCaCertificateArray{
&scm.CertificateProfileCaCertificateArgs{
Name: pulumi.String("string"),
DefaultOcspUrl: pulumi.String("string"),
OcspVerifyCert: pulumi.String("string"),
TemplateName: pulumi.String("string"),
},
},
Domain: pulumi.String("string"),
OcspReceiveTimeout: pulumi.String("string"),
BlockUnknownCert: pulumi.Bool(false),
BlockTimeoutCert: pulumi.Bool(false),
CertStatusTimeout: pulumi.String("string"),
CrlReceiveTimeout: pulumi.String("string"),
BlockUnauthenticatedCert: pulumi.Bool(false),
Folder: pulumi.String("string"),
Device: pulumi.String("string"),
Name: pulumi.String("string"),
BlockExpiredCert: pulumi.Bool(false),
Snippet: pulumi.String("string"),
UseCrl: pulumi.Bool(false),
UseOcsp: pulumi.Bool(false),
UsernameField: &scm.CertificateProfileUsernameFieldArgs{
Subject: pulumi.String("string"),
SubjectAlt: pulumi.String("string"),
},
})
var certificateProfileResource = new CertificateProfile("certificateProfileResource", CertificateProfileArgs.builder()
.caCertificates(CertificateProfileCaCertificateArgs.builder()
.name("string")
.defaultOcspUrl("string")
.ocspVerifyCert("string")
.templateName("string")
.build())
.domain("string")
.ocspReceiveTimeout("string")
.blockUnknownCert(false)
.blockTimeoutCert(false)
.certStatusTimeout("string")
.crlReceiveTimeout("string")
.blockUnauthenticatedCert(false)
.folder("string")
.device("string")
.name("string")
.blockExpiredCert(false)
.snippet("string")
.useCrl(false)
.useOcsp(false)
.usernameField(CertificateProfileUsernameFieldArgs.builder()
.subject("string")
.subjectAlt("string")
.build())
.build());
certificate_profile_resource = scm.CertificateProfile("certificateProfileResource",
ca_certificates=[{
"name": "string",
"default_ocsp_url": "string",
"ocsp_verify_cert": "string",
"template_name": "string",
}],
domain="string",
ocsp_receive_timeout="string",
block_unknown_cert=False,
block_timeout_cert=False,
cert_status_timeout="string",
crl_receive_timeout="string",
block_unauthenticated_cert=False,
folder="string",
device="string",
name="string",
block_expired_cert=False,
snippet="string",
use_crl=False,
use_ocsp=False,
username_field={
"subject": "string",
"subject_alt": "string",
})
const certificateProfileResource = new scm.CertificateProfile("certificateProfileResource", {
caCertificates: [{
name: "string",
defaultOcspUrl: "string",
ocspVerifyCert: "string",
templateName: "string",
}],
domain: "string",
ocspReceiveTimeout: "string",
blockUnknownCert: false,
blockTimeoutCert: false,
certStatusTimeout: "string",
crlReceiveTimeout: "string",
blockUnauthenticatedCert: false,
folder: "string",
device: "string",
name: "string",
blockExpiredCert: false,
snippet: "string",
useCrl: false,
useOcsp: false,
usernameField: {
subject: "string",
subjectAlt: "string",
},
});
type: scm:CertificateProfile
properties:
blockExpiredCert: false
blockTimeoutCert: false
blockUnauthenticatedCert: false
blockUnknownCert: false
caCertificates:
- defaultOcspUrl: string
name: string
ocspVerifyCert: string
templateName: string
certStatusTimeout: string
crlReceiveTimeout: string
device: string
domain: string
folder: string
name: string
ocspReceiveTimeout: string
snippet: string
useCrl: false
useOcsp: false
usernameField:
subject: string
subjectAlt: string
CertificateProfile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The CertificateProfile resource accepts the following input properties:
- Ca
Certificates List<CertificateProfile Ca Certificate> - An ordered list of CA certificates
- Block
Expired boolCert - Block sessions with expired certificates?
- Block
Timeout boolCert - Block session if certificate status cannot be retrieved within timeout?
- Block
Unauthenticated boolCert - Block session if the certificate was not issued to the authenticating device?
- Block
Unknown boolCert - Block session if certificate status is unknown?
- Cert
Status stringTimeout - Certificate status timeout
- Crl
Receive stringTimeout - CRL receive timeout (seconds)
- Device string
- The device in which the resource is defined
- Domain string
- User domain
- Folder string
- The folder in which the resource is defined
- Name string
- The name of the certificate profile
- Ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- Snippet string
- The snippet in which the resource is defined
- Use
Crl bool - Use CRL?
- Use
Ocsp bool - Use OCSP?
- Username
Field CertificateProfile Username Field - Certificate username field
- Ca
Certificates []CertificateProfile Ca Certificate Args - An ordered list of CA certificates
- Block
Expired boolCert - Block sessions with expired certificates?
- Block
Timeout boolCert - Block session if certificate status cannot be retrieved within timeout?
- Block
Unauthenticated boolCert - Block session if the certificate was not issued to the authenticating device?
- Block
Unknown boolCert - Block session if certificate status is unknown?
- Cert
Status stringTimeout - Certificate status timeout
- Crl
Receive stringTimeout - CRL receive timeout (seconds)
- Device string
- The device in which the resource is defined
- Domain string
- User domain
- Folder string
- The folder in which the resource is defined
- Name string
- The name of the certificate profile
- Ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- Snippet string
- The snippet in which the resource is defined
- Use
Crl bool - Use CRL?
- Use
Ocsp bool - Use OCSP?
- Username
Field CertificateProfile Username Field Args - Certificate username field
- ca
Certificates List<CertificateProfile Ca Certificate> - An ordered list of CA certificates
- block
Expired BooleanCert - Block sessions with expired certificates?
- block
Timeout BooleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated BooleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown BooleanCert - Block session if certificate status is unknown?
- cert
Status StringTimeout - Certificate status timeout
- crl
Receive StringTimeout - CRL receive timeout (seconds)
- device String
- The device in which the resource is defined
- domain String
- User domain
- folder String
- The folder in which the resource is defined
- name String
- The name of the certificate profile
- ocsp
Receive StringTimeout - OCSP receive timeout (seconds)
- snippet String
- The snippet in which the resource is defined
- use
Crl Boolean - Use CRL?
- use
Ocsp Boolean - Use OCSP?
- username
Field CertificateProfile Username Field - Certificate username field
- ca
Certificates CertificateProfile Ca Certificate[] - An ordered list of CA certificates
- block
Expired booleanCert - Block sessions with expired certificates?
- block
Timeout booleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated booleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown booleanCert - Block session if certificate status is unknown?
- cert
Status stringTimeout - Certificate status timeout
- crl
Receive stringTimeout - CRL receive timeout (seconds)
- device string
- The device in which the resource is defined
- domain string
- User domain
- folder string
- The folder in which the resource is defined
- name string
- The name of the certificate profile
- ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- snippet string
- The snippet in which the resource is defined
- use
Crl boolean - Use CRL?
- use
Ocsp boolean - Use OCSP?
- username
Field CertificateProfile Username Field - Certificate username field
- ca_
certificates Sequence[CertificateProfile Ca Certificate Args] - An ordered list of CA certificates
- block_
expired_ boolcert - Block sessions with expired certificates?
- block_
timeout_ boolcert - Block session if certificate status cannot be retrieved within timeout?
- block_
unauthenticated_ boolcert - Block session if the certificate was not issued to the authenticating device?
- block_
unknown_ boolcert - Block session if certificate status is unknown?
- cert_
status_ strtimeout - Certificate status timeout
- crl_
receive_ strtimeout - CRL receive timeout (seconds)
- device str
- The device in which the resource is defined
- domain str
- User domain
- folder str
- The folder in which the resource is defined
- name str
- The name of the certificate profile
- ocsp_
receive_ strtimeout - OCSP receive timeout (seconds)
- snippet str
- The snippet in which the resource is defined
- use_
crl bool - Use CRL?
- use_
ocsp bool - Use OCSP?
- username_
field CertificateProfile Username Field Args - Certificate username field
- ca
Certificates List<Property Map> - An ordered list of CA certificates
- block
Expired BooleanCert - Block sessions with expired certificates?
- block
Timeout BooleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated BooleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown BooleanCert - Block session if certificate status is unknown?
- cert
Status StringTimeout - Certificate status timeout
- crl
Receive StringTimeout - CRL receive timeout (seconds)
- device String
- The device in which the resource is defined
- domain String
- User domain
- folder String
- The folder in which the resource is defined
- name String
- The name of the certificate profile
- ocsp
Receive StringTimeout - OCSP receive timeout (seconds)
- snippet String
- The snippet in which the resource is defined
- use
Crl Boolean - Use CRL?
- use
Ocsp Boolean - Use OCSP?
- username
Field Property Map - Certificate username field
Outputs
All input properties are implicitly available as output properties. Additionally, the CertificateProfile resource produces the following output properties:
Look up Existing CertificateProfile Resource
Get an existing CertificateProfile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CertificateProfileState, opts?: CustomResourceOptions): CertificateProfile@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
block_expired_cert: Optional[bool] = None,
block_timeout_cert: Optional[bool] = None,
block_unauthenticated_cert: Optional[bool] = None,
block_unknown_cert: Optional[bool] = None,
ca_certificates: Optional[Sequence[CertificateProfileCaCertificateArgs]] = None,
cert_status_timeout: Optional[str] = None,
crl_receive_timeout: Optional[str] = None,
device: Optional[str] = None,
domain: Optional[str] = None,
folder: Optional[str] = None,
name: Optional[str] = None,
ocsp_receive_timeout: Optional[str] = None,
snippet: Optional[str] = None,
tfid: Optional[str] = None,
use_crl: Optional[bool] = None,
use_ocsp: Optional[bool] = None,
username_field: Optional[CertificateProfileUsernameFieldArgs] = None) -> CertificateProfilefunc GetCertificateProfile(ctx *Context, name string, id IDInput, state *CertificateProfileState, opts ...ResourceOption) (*CertificateProfile, error)public static CertificateProfile Get(string name, Input<string> id, CertificateProfileState? state, CustomResourceOptions? opts = null)public static CertificateProfile get(String name, Output<String> id, CertificateProfileState state, CustomResourceOptions options)resources: _: type: scm:CertificateProfile get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Block
Expired boolCert - Block sessions with expired certificates?
- Block
Timeout boolCert - Block session if certificate status cannot be retrieved within timeout?
- Block
Unauthenticated boolCert - Block session if the certificate was not issued to the authenticating device?
- Block
Unknown boolCert - Block session if certificate status is unknown?
- Ca
Certificates List<CertificateProfile Ca Certificate> - An ordered list of CA certificates
- Cert
Status stringTimeout - Certificate status timeout
- Crl
Receive stringTimeout - CRL receive timeout (seconds)
- Device string
- The device in which the resource is defined
- Domain string
- User domain
- Folder string
- The folder in which the resource is defined
- Name string
- The name of the certificate profile
- Ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- Snippet string
- The snippet in which the resource is defined
- Tfid string
- Use
Crl bool - Use CRL?
- Use
Ocsp bool - Use OCSP?
- Username
Field CertificateProfile Username Field - Certificate username field
- Block
Expired boolCert - Block sessions with expired certificates?
- Block
Timeout boolCert - Block session if certificate status cannot be retrieved within timeout?
- Block
Unauthenticated boolCert - Block session if the certificate was not issued to the authenticating device?
- Block
Unknown boolCert - Block session if certificate status is unknown?
- Ca
Certificates []CertificateProfile Ca Certificate Args - An ordered list of CA certificates
- Cert
Status stringTimeout - Certificate status timeout
- Crl
Receive stringTimeout - CRL receive timeout (seconds)
- Device string
- The device in which the resource is defined
- Domain string
- User domain
- Folder string
- The folder in which the resource is defined
- Name string
- The name of the certificate profile
- Ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- Snippet string
- The snippet in which the resource is defined
- Tfid string
- Use
Crl bool - Use CRL?
- Use
Ocsp bool - Use OCSP?
- Username
Field CertificateProfile Username Field Args - Certificate username field
- block
Expired BooleanCert - Block sessions with expired certificates?
- block
Timeout BooleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated BooleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown BooleanCert - Block session if certificate status is unknown?
- ca
Certificates List<CertificateProfile Ca Certificate> - An ordered list of CA certificates
- cert
Status StringTimeout - Certificate status timeout
- crl
Receive StringTimeout - CRL receive timeout (seconds)
- device String
- The device in which the resource is defined
- domain String
- User domain
- folder String
- The folder in which the resource is defined
- name String
- The name of the certificate profile
- ocsp
Receive StringTimeout - OCSP receive timeout (seconds)
- snippet String
- The snippet in which the resource is defined
- tfid String
- use
Crl Boolean - Use CRL?
- use
Ocsp Boolean - Use OCSP?
- username
Field CertificateProfile Username Field - Certificate username field
- block
Expired booleanCert - Block sessions with expired certificates?
- block
Timeout booleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated booleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown booleanCert - Block session if certificate status is unknown?
- ca
Certificates CertificateProfile Ca Certificate[] - An ordered list of CA certificates
- cert
Status stringTimeout - Certificate status timeout
- crl
Receive stringTimeout - CRL receive timeout (seconds)
- device string
- The device in which the resource is defined
- domain string
- User domain
- folder string
- The folder in which the resource is defined
- name string
- The name of the certificate profile
- ocsp
Receive stringTimeout - OCSP receive timeout (seconds)
- snippet string
- The snippet in which the resource is defined
- tfid string
- use
Crl boolean - Use CRL?
- use
Ocsp boolean - Use OCSP?
- username
Field CertificateProfile Username Field - Certificate username field
- block_
expired_ boolcert - Block sessions with expired certificates?
- block_
timeout_ boolcert - Block session if certificate status cannot be retrieved within timeout?
- block_
unauthenticated_ boolcert - Block session if the certificate was not issued to the authenticating device?
- block_
unknown_ boolcert - Block session if certificate status is unknown?
- ca_
certificates Sequence[CertificateProfile Ca Certificate Args] - An ordered list of CA certificates
- cert_
status_ strtimeout - Certificate status timeout
- crl_
receive_ strtimeout - CRL receive timeout (seconds)
- device str
- The device in which the resource is defined
- domain str
- User domain
- folder str
- The folder in which the resource is defined
- name str
- The name of the certificate profile
- ocsp_
receive_ strtimeout - OCSP receive timeout (seconds)
- snippet str
- The snippet in which the resource is defined
- tfid str
- use_
crl bool - Use CRL?
- use_
ocsp bool - Use OCSP?
- username_
field CertificateProfile Username Field Args - Certificate username field
- block
Expired BooleanCert - Block sessions with expired certificates?
- block
Timeout BooleanCert - Block session if certificate status cannot be retrieved within timeout?
- block
Unauthenticated BooleanCert - Block session if the certificate was not issued to the authenticating device?
- block
Unknown BooleanCert - Block session if certificate status is unknown?
- ca
Certificates List<Property Map> - An ordered list of CA certificates
- cert
Status StringTimeout - Certificate status timeout
- crl
Receive StringTimeout - CRL receive timeout (seconds)
- device String
- The device in which the resource is defined
- domain String
- User domain
- folder String
- The folder in which the resource is defined
- name String
- The name of the certificate profile
- ocsp
Receive StringTimeout - OCSP receive timeout (seconds)
- snippet String
- The snippet in which the resource is defined
- tfid String
- use
Crl Boolean - Use CRL?
- use
Ocsp Boolean - Use OCSP?
- username
Field Property Map - Certificate username field
Supporting Types
CertificateProfileCaCertificate, CertificateProfileCaCertificateArgs
- Name string
- CA certificate name
- Default
Ocsp stringUrl - Default OCSP URL
- Ocsp
Verify stringCert - OCSP verify certificate
- Template
Name string - Template name/OID
- Name string
- CA certificate name
- Default
Ocsp stringUrl - Default OCSP URL
- Ocsp
Verify stringCert - OCSP verify certificate
- Template
Name string - Template name/OID
- name String
- CA certificate name
- default
Ocsp StringUrl - Default OCSP URL
- ocsp
Verify StringCert - OCSP verify certificate
- template
Name String - Template name/OID
- name string
- CA certificate name
- default
Ocsp stringUrl - Default OCSP URL
- ocsp
Verify stringCert - OCSP verify certificate
- template
Name string - Template name/OID
- name str
- CA certificate name
- default_
ocsp_ strurl - Default OCSP URL
- ocsp_
verify_ strcert - OCSP verify certificate
- template_
name str - Template name/OID
- name String
- CA certificate name
- default
Ocsp StringUrl - Default OCSP URL
- ocsp
Verify StringCert - OCSP verify certificate
- template
Name String - Template name/OID
CertificateProfileUsernameField, CertificateProfileUsernameFieldArgs
- Subject string
- Common name
- Subject
Alt string - Email address
- Subject string
- Common name
- Subject
Alt string - Email address
- subject String
- Common name
- subject
Alt String - Email address
- subject string
- Common name
- subject
Alt string - Email address
- subject str
- Common name
- subject_
alt str - Email address
- subject String
- Common name
- subject
Alt String - Email address
Package Details
- Repository
- scm pulumi/pulumi-scm
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
scmTerraform Provider.
Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
