Fortios v0.0.5, Apr 9 24

Fortios v0.0.5 published on Tuesday, Apr 9, 2024 by pulumiverse

fortios.system.Csf

Explore with Pulumi AI

Fortios v0.0.5 published on Tuesday, Apr 9, 2024 by pulumiverse

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";

const trname = new fortios.system.Csf("trname", {
    configurationSync: "default",
    groupPassword: "tmp",
    managementIp: "0.0.0.0",
    managementPort: 33,
    status: "disable",
    upstreamIp: "0.0.0.0",
    upstreamPort: 8013,
});

import pulumi
import pulumiverse_fortios as fortios

trname = fortios.system.Csf("trname",
    configuration_sync="default",
    group_password="tmp",
    management_ip="0.0.0.0",
    management_port=33,
    status="disable",
    upstream_ip="0.0.0.0",
    upstream_port=8013)

package main

import (
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
	"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/system"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := system.NewCsf(ctx, "trname", &system.CsfArgs{
			ConfigurationSync: pulumi.String("default"),
			GroupPassword:     pulumi.String("tmp"),
			ManagementIp:      pulumi.String("0.0.0.0"),
			ManagementPort:    pulumi.Int(33),
			Status:            pulumi.String("disable"),
			UpstreamIp:        pulumi.String("0.0.0.0"),
			UpstreamPort:      pulumi.Int(8013),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;

return await Deployment.RunAsync(() => 
{
    var trname = new Fortios.System.Csf("trname", new()
    {
        ConfigurationSync = "default",
        GroupPassword = "tmp",
        ManagementIp = "0.0.0.0",
        ManagementPort = 33,
        Status = "disable",
        UpstreamIp = "0.0.0.0",
        UpstreamPort = 8013,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.system.Csf;
import com.pulumi.fortios.system.CsfArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var trname = new Csf("trname", CsfArgs.builder()        
            .configurationSync("default")
            .groupPassword("tmp")
            .managementIp("0.0.0.0")
            .managementPort(33)
            .status("disable")
            .upstreamIp("0.0.0.0")
            .upstreamPort(8013)
            .build());

    }
}

resources:
  trname:
    type: fortios:system:Csf
    properties:
      configurationSync: default
      groupPassword: tmp
      managementIp: 0.0.0.0
      managementPort: 33
      status: disable
      upstreamIp: 0.0.0.0
      upstreamPort: 8013

Create Csf Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Csf(name: string, args: CsfArgs, opts?: CustomResourceOptions);

@overload
def Csf(resource_name: str,
        args: CsfArgs,
        opts: Optional[ResourceOptions] = None)

@overload
def Csf(resource_name: str,
        opts: Optional[ResourceOptions] = None,
        status: Optional[str] = None,
        fixed_key: Optional[str] = None,
        downstream_accprofile: Optional[str] = None,
        forticloud_account_enforcement: Optional[str] = None,
        downstream_access: Optional[str] = None,
        get_all_tables: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        fabric_connectors: Optional[Sequence[CsfFabricConnectorArgs]] = None,
        fabric_devices: Optional[Sequence[CsfFabricDeviceArgs]] = None,
        fabric_object_unification: Optional[str] = None,
        fabric_workers: Optional[int] = None,
        file_mgmt: Optional[str] = None,
        group_name: Optional[str] = None,
        file_quota_warning: Optional[int] = None,
        accept_auth_by_cert: Optional[str] = None,
        configuration_sync: Optional[str] = None,
        certificate: Optional[str] = None,
        file_quota: Optional[int] = None,
        group_password: Optional[str] = None,
        log_unification: Optional[str] = None,
        management_ip: Optional[str] = None,
        management_port: Optional[int] = None,
        saml_configuration_sync: Optional[str] = None,
        authorization_request_type: Optional[str] = None,
        trusted_lists: Optional[Sequence[CsfTrustedListArgs]] = None,
        uid: Optional[str] = None,
        upstream: Optional[str] = None,
        upstream_ip: Optional[str] = None,
        upstream_port: Optional[int] = None,
        vdomparam: Optional[str] = None)

func NewCsf(ctx *Context, name string, args CsfArgs, opts ...ResourceOption) (*Csf, error)

public Csf(string name, CsfArgs args, CustomResourceOptions? opts = null)

public Csf(String name, CsfArgs args)
public Csf(String name, CsfArgs args, CustomResourceOptions options)

type: fortios:system:Csf
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args CsfArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args CsfArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args CsfArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CsfArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args CsfArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var csfResource = new Fortios.System.Csf("csfResource", new()
{
    Status = "string",
    FixedKey = "string",
    DownstreamAccprofile = "string",
    ForticloudAccountEnforcement = "string",
    DownstreamAccess = "string",
    GetAllTables = "string",
    DynamicSortSubtable = "string",
    FabricConnectors = new[]
    {
        new Fortios.System.Inputs.CsfFabricConnectorArgs
        {
            Accprofile = "string",
            ConfigurationWriteAccess = "string",
            Serial = "string",
            Vdoms = new[]
            {
                new Fortios.System.Inputs.CsfFabricConnectorVdomArgs
                {
                    Name = "string",
                },
            },
        },
    },
    FabricDevices = new[]
    {
        new Fortios.System.Inputs.CsfFabricDeviceArgs
        {
            AccessToken = "string",
            DeviceIp = "string",
            DeviceType = "string",
            HttpsPort = 0,
            Login = "string",
            Name = "string",
            Password = "string",
        },
    },
    FabricObjectUnification = "string",
    FabricWorkers = 0,
    FileMgmt = "string",
    GroupName = "string",
    FileQuotaWarning = 0,
    AcceptAuthByCert = "string",
    ConfigurationSync = "string",
    Certificate = "string",
    FileQuota = 0,
    GroupPassword = "string",
    LogUnification = "string",
    ManagementIp = "string",
    ManagementPort = 0,
    SamlConfigurationSync = "string",
    AuthorizationRequestType = "string",
    TrustedLists = new[]
    {
        new Fortios.System.Inputs.CsfTrustedListArgs
        {
            Action = "string",
            AuthorizationType = "string",
            Certificate = "string",
            DownstreamAuthorization = "string",
            HaMembers = "string",
            Index = 0,
            Name = "string",
            Serial = "string",
        },
    },
    Uid = "string",
    Upstream = "string",
    UpstreamIp = "string",
    UpstreamPort = 0,
    Vdomparam = "string",
});

example, err := system.NewCsf(ctx, "csfResource", &system.CsfArgs{
	Status:                       pulumi.String("string"),
	FixedKey:                     pulumi.String("string"),
	DownstreamAccprofile:         pulumi.String("string"),
	ForticloudAccountEnforcement: pulumi.String("string"),
	DownstreamAccess:             pulumi.String("string"),
	GetAllTables:                 pulumi.String("string"),
	DynamicSortSubtable:          pulumi.String("string"),
	FabricConnectors: system.CsfFabricConnectorArray{
		&system.CsfFabricConnectorArgs{
			Accprofile:               pulumi.String("string"),
			ConfigurationWriteAccess: pulumi.String("string"),
			Serial:                   pulumi.String("string"),
			Vdoms: system.CsfFabricConnectorVdomArray{
				&system.CsfFabricConnectorVdomArgs{
					Name: pulumi.String("string"),
				},
			},
		},
	},
	FabricDevices: system.CsfFabricDeviceArray{
		&system.CsfFabricDeviceArgs{
			AccessToken: pulumi.String("string"),
			DeviceIp:    pulumi.String("string"),
			DeviceType:  pulumi.String("string"),
			HttpsPort:   pulumi.Int(0),
			Login:       pulumi.String("string"),
			Name:        pulumi.String("string"),
			Password:    pulumi.String("string"),
		},
	},
	FabricObjectUnification:  pulumi.String("string"),
	FabricWorkers:            pulumi.Int(0),
	FileMgmt:                 pulumi.String("string"),
	GroupName:                pulumi.String("string"),
	FileQuotaWarning:         pulumi.Int(0),
	AcceptAuthByCert:         pulumi.String("string"),
	ConfigurationSync:        pulumi.String("string"),
	Certificate:              pulumi.String("string"),
	FileQuota:                pulumi.Int(0),
	GroupPassword:            pulumi.String("string"),
	LogUnification:           pulumi.String("string"),
	ManagementIp:             pulumi.String("string"),
	ManagementPort:           pulumi.Int(0),
	SamlConfigurationSync:    pulumi.String("string"),
	AuthorizationRequestType: pulumi.String("string"),
	TrustedLists: system.CsfTrustedListArray{
		&system.CsfTrustedListArgs{
			Action:                  pulumi.String("string"),
			AuthorizationType:       pulumi.String("string"),
			Certificate:             pulumi.String("string"),
			DownstreamAuthorization: pulumi.String("string"),
			HaMembers:               pulumi.String("string"),
			Index:                   pulumi.Int(0),
			Name:                    pulumi.String("string"),
			Serial:                  pulumi.String("string"),
		},
	},
	Uid:          pulumi.String("string"),
	Upstream:     pulumi.String("string"),
	UpstreamIp:   pulumi.String("string"),
	UpstreamPort: pulumi.Int(0),
	Vdomparam:    pulumi.String("string"),
})

var csfResource = new Csf("csfResource", CsfArgs.builder()
    .status("string")
    .fixedKey("string")
    .downstreamAccprofile("string")
    .forticloudAccountEnforcement("string")
    .downstreamAccess("string")
    .getAllTables("string")
    .dynamicSortSubtable("string")
    .fabricConnectors(CsfFabricConnectorArgs.builder()
        .accprofile("string")
        .configurationWriteAccess("string")
        .serial("string")
        .vdoms(CsfFabricConnectorVdomArgs.builder()
            .name("string")
            .build())
        .build())
    .fabricDevices(CsfFabricDeviceArgs.builder()
        .accessToken("string")
        .deviceIp("string")
        .deviceType("string")
        .httpsPort(0)
        .login("string")
        .name("string")
        .password("string")
        .build())
    .fabricObjectUnification("string")
    .fabricWorkers(0)
    .fileMgmt("string")
    .groupName("string")
    .fileQuotaWarning(0)
    .acceptAuthByCert("string")
    .configurationSync("string")
    .certificate("string")
    .fileQuota(0)
    .groupPassword("string")
    .logUnification("string")
    .managementIp("string")
    .managementPort(0)
    .samlConfigurationSync("string")
    .authorizationRequestType("string")
    .trustedLists(CsfTrustedListArgs.builder()
        .action("string")
        .authorizationType("string")
        .certificate("string")
        .downstreamAuthorization("string")
        .haMembers("string")
        .index(0)
        .name("string")
        .serial("string")
        .build())
    .uid("string")
    .upstream("string")
    .upstreamIp("string")
    .upstreamPort(0)
    .vdomparam("string")
    .build());

csf_resource = fortios.system.Csf("csfResource",
    status="string",
    fixed_key="string",
    downstream_accprofile="string",
    forticloud_account_enforcement="string",
    downstream_access="string",
    get_all_tables="string",
    dynamic_sort_subtable="string",
    fabric_connectors=[fortios.system.CsfFabricConnectorArgs(
        accprofile="string",
        configuration_write_access="string",
        serial="string",
        vdoms=[fortios.system.CsfFabricConnectorVdomArgs(
            name="string",
        )],
    )],
    fabric_devices=[fortios.system.CsfFabricDeviceArgs(
        access_token="string",
        device_ip="string",
        device_type="string",
        https_port=0,
        login="string",
        name="string",
        password="string",
    )],
    fabric_object_unification="string",
    fabric_workers=0,
    file_mgmt="string",
    group_name="string",
    file_quota_warning=0,
    accept_auth_by_cert="string",
    configuration_sync="string",
    certificate="string",
    file_quota=0,
    group_password="string",
    log_unification="string",
    management_ip="string",
    management_port=0,
    saml_configuration_sync="string",
    authorization_request_type="string",
    trusted_lists=[fortios.system.CsfTrustedListArgs(
        action="string",
        authorization_type="string",
        certificate="string",
        downstream_authorization="string",
        ha_members="string",
        index=0,
        name="string",
        serial="string",
    )],
    uid="string",
    upstream="string",
    upstream_ip="string",
    upstream_port=0,
    vdomparam="string")

const csfResource = new fortios.system.Csf("csfResource", {
    status: "string",
    fixedKey: "string",
    downstreamAccprofile: "string",
    forticloudAccountEnforcement: "string",
    downstreamAccess: "string",
    getAllTables: "string",
    dynamicSortSubtable: "string",
    fabricConnectors: [{
        accprofile: "string",
        configurationWriteAccess: "string",
        serial: "string",
        vdoms: [{
            name: "string",
        }],
    }],
    fabricDevices: [{
        accessToken: "string",
        deviceIp: "string",
        deviceType: "string",
        httpsPort: 0,
        login: "string",
        name: "string",
        password: "string",
    }],
    fabricObjectUnification: "string",
    fabricWorkers: 0,
    fileMgmt: "string",
    groupName: "string",
    fileQuotaWarning: 0,
    acceptAuthByCert: "string",
    configurationSync: "string",
    certificate: "string",
    fileQuota: 0,
    groupPassword: "string",
    logUnification: "string",
    managementIp: "string",
    managementPort: 0,
    samlConfigurationSync: "string",
    authorizationRequestType: "string",
    trustedLists: [{
        action: "string",
        authorizationType: "string",
        certificate: "string",
        downstreamAuthorization: "string",
        haMembers: "string",
        index: 0,
        name: "string",
        serial: "string",
    }],
    uid: "string",
    upstream: "string",
    upstreamIp: "string",
    upstreamPort: 0,
    vdomparam: "string",
});

type: fortios:system:Csf
properties:
    acceptAuthByCert: string
    authorizationRequestType: string
    certificate: string
    configurationSync: string
    downstreamAccess: string
    downstreamAccprofile: string
    dynamicSortSubtable: string
    fabricConnectors:
        - accprofile: string
          configurationWriteAccess: string
          serial: string
          vdoms:
            - name: string
    fabricDevices:
        - accessToken: string
          deviceIp: string
          deviceType: string
          httpsPort: 0
          login: string
          name: string
          password: string
    fabricObjectUnification: string
    fabricWorkers: 0
    fileMgmt: string
    fileQuota: 0
    fileQuotaWarning: 0
    fixedKey: string
    forticloudAccountEnforcement: string
    getAllTables: string
    groupName: string
    groupPassword: string
    logUnification: string
    managementIp: string
    managementPort: 0
    samlConfigurationSync: string
    status: string
    trustedLists:
        - action: string
          authorizationType: string
          certificate: string
          downstreamAuthorization: string
          haMembers: string
          index: 0
          name: string
          serial: string
    uid: string
    upstream: string
    upstreamIp: string
    upstreamPort: 0
    vdomparam: string

Csf Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Csf resource accepts the following input properties:

Status string: Enable/disable Security Fabric. Valid values: enable, disable.
AcceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
AuthorizationRequestType string: Authorization request type. Valid values: serial, certificate.
Certificate string: Certificate.
ConfigurationSync string: Configuration sync mode. Valid values: default, local.
DownstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
DownstreamAccprofile string: Default access profile for requests from downstream devices.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
FabricConnectors List<Pulumiverse.Fortios.System.Inputs.CsfFabricConnector>: Fabric connector configuration. The structure of fabric_connector block is documented below.
FabricDevices List<Pulumiverse.Fortios.System.Inputs.CsfFabricDevice>: Fabric device configuration. The structure of fabric_device block is documented below.
FabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
FabricWorkers int: Number of worker processes for Security Fabric daemon.
FileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
FileQuota int: Maximum amount of memory that can be used by the daemon files (in bytes).
FileQuotaWarning int: Warn when the set percentage of quota has been used.
FixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
ForticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
GroupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
GroupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
LogUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
ManagementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
ManagementPort int: Overriding port for management connection (Overrides admin port).
SamlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
TrustedLists List<Pulumiverse.Fortios.System.Inputs.CsfTrustedList>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
Uid string: Unique ID of the current CSF node
Upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamPort int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

Status string: Enable/disable Security Fabric. Valid values: enable, disable.
AcceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
AuthorizationRequestType string: Authorization request type. Valid values: serial, certificate.
Certificate string: Certificate.
ConfigurationSync string: Configuration sync mode. Valid values: default, local.
DownstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
DownstreamAccprofile string: Default access profile for requests from downstream devices.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
FabricConnectors []CsfFabricConnectorArgs: Fabric connector configuration. The structure of fabric_connector block is documented below.
FabricDevices []CsfFabricDeviceArgs: Fabric device configuration. The structure of fabric_device block is documented below.
FabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
FabricWorkers int: Number of worker processes for Security Fabric daemon.
FileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
FileQuota int: Maximum amount of memory that can be used by the daemon files (in bytes).
FileQuotaWarning int: Warn when the set percentage of quota has been used.
FixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
ForticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
GroupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
GroupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
LogUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
ManagementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
ManagementPort int: Overriding port for management connection (Overrides admin port).
SamlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
TrustedLists []CsfTrustedListArgs: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
Uid string: Unique ID of the current CSF node
Upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamPort int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

status String: Enable/disable Security Fabric. Valid values: enable, disable.
acceptAuthByCert String: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType String: Authorization request type. Valid values: serial, certificate.
certificate String: Certificate.
configurationSync String: Configuration sync mode. Valid values: default, local.
downstreamAccess String: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile String: Default access profile for requests from downstream devices.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors List<CsfFabricConnector>: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices List<CsfFabricDevice>: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification String: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers Integer: Number of worker processes for Security Fabric daemon.
fileMgmt String: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota Integer: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning Integer: Warn when the set percentage of quota has been used.
fixedKey String: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement String: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName String: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword String: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification String: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp String: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort Integer: Overriding port for management connection (Overrides admin port).
samlConfigurationSync String: SAML setting configuration synchronization. Valid values: default, local.
trustedLists List<CsfTrustedList>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid String: Unique ID of the current CSF node
upstream String: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp String: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort Integer: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

status string: Enable/disable Security Fabric. Valid values: enable, disable.
acceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType string: Authorization request type. Valid values: serial, certificate.
certificate string: Certificate.
configurationSync string: Configuration sync mode. Valid values: default, local.
downstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile string: Default access profile for requests from downstream devices.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors CsfFabricConnector[]: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices CsfFabricDevice[]: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers number: Number of worker processes for Security Fabric daemon.
fileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota number: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning number: Warn when the set percentage of quota has been used.
fixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort number: Overriding port for management connection (Overrides admin port).
samlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
trustedLists CsfTrustedList[]: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid string: Unique ID of the current CSF node
upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort number: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

status str: Enable/disable Security Fabric. Valid values: enable, disable.
accept_auth_by_cert str: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorization_request_type str: Authorization request type. Valid values: serial, certificate.
certificate str: Certificate.
configuration_sync str: Configuration sync mode. Valid values: default, local.
downstream_access str: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstream_accprofile str: Default access profile for requests from downstream devices.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabric_connectors Sequence[CsfFabricConnectorArgs]: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabric_devices Sequence[CsfFabricDeviceArgs]: Fabric device configuration. The structure of fabric_device block is documented below.
fabric_object_unification str: Fabric CMDB Object Unification Valid values: default, local.
fabric_workers int: Number of worker processes for Security Fabric daemon.
file_mgmt str: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
file_quota int: Maximum amount of memory that can be used by the daemon files (in bytes).
file_quota_warning int: Warn when the set percentage of quota has been used.
fixed_key str: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloud_account_enforcement str: Fabric FortiCloud account unification. Valid values: enable, disable.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
group_name str: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
group_password str: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
log_unification str: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
management_ip str: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
management_port int: Overriding port for management connection (Overrides admin port).
saml_configuration_sync str: SAML setting configuration synchronization. Valid values: default, local.
trusted_lists Sequence[CsfTrustedListArgs]: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid str: Unique ID of the current CSF node
upstream str: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstream_ip str: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstream_port int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

status String: Enable/disable Security Fabric. Valid values: enable, disable.
acceptAuthByCert String: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType String: Authorization request type. Valid values: serial, certificate.
certificate String: Certificate.
configurationSync String: Configuration sync mode. Valid values: default, local.
downstreamAccess String: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile String: Default access profile for requests from downstream devices.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors List<Property Map>: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices List<Property Map>: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification String: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers Number: Number of worker processes for Security Fabric daemon.
fileMgmt String: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota Number: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning Number: Warn when the set percentage of quota has been used.
fixedKey String: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement String: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName String: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword String: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification String: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp String: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort Number: Overriding port for management connection (Overrides admin port).
samlConfigurationSync String: SAML setting configuration synchronization. Valid values: default, local.
trustedLists List<Property Map>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid String: Unique ID of the current CSF node
upstream String: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp String: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort Number: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

Outputs

All input properties are implicitly available as output properties. Additionally, the Csf resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing Csf Resource

Get an existing Csf resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: CsfState, opts?: CustomResourceOptions): Csf

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        accept_auth_by_cert: Optional[str] = None,
        authorization_request_type: Optional[str] = None,
        certificate: Optional[str] = None,
        configuration_sync: Optional[str] = None,
        downstream_access: Optional[str] = None,
        downstream_accprofile: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        fabric_connectors: Optional[Sequence[CsfFabricConnectorArgs]] = None,
        fabric_devices: Optional[Sequence[CsfFabricDeviceArgs]] = None,
        fabric_object_unification: Optional[str] = None,
        fabric_workers: Optional[int] = None,
        file_mgmt: Optional[str] = None,
        file_quota: Optional[int] = None,
        file_quota_warning: Optional[int] = None,
        fixed_key: Optional[str] = None,
        forticloud_account_enforcement: Optional[str] = None,
        get_all_tables: Optional[str] = None,
        group_name: Optional[str] = None,
        group_password: Optional[str] = None,
        log_unification: Optional[str] = None,
        management_ip: Optional[str] = None,
        management_port: Optional[int] = None,
        saml_configuration_sync: Optional[str] = None,
        status: Optional[str] = None,
        trusted_lists: Optional[Sequence[CsfTrustedListArgs]] = None,
        uid: Optional[str] = None,
        upstream: Optional[str] = None,
        upstream_ip: Optional[str] = None,
        upstream_port: Optional[int] = None,
        vdomparam: Optional[str] = None) -> Csf

func GetCsf(ctx *Context, name string, id IDInput, state *CsfState, opts ...ResourceOption) (*Csf, error)

public static Csf Get(string name, Input<string> id, CsfState? state, CustomResourceOptions? opts = null)

public static Csf get(String name, Output<String> id, CsfState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AcceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
AuthorizationRequestType string: Authorization request type. Valid values: serial, certificate.
Certificate string: Certificate.
ConfigurationSync string: Configuration sync mode. Valid values: default, local.
DownstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
DownstreamAccprofile string: Default access profile for requests from downstream devices.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
FabricConnectors List<Pulumiverse.Fortios.System.Inputs.CsfFabricConnector>: Fabric connector configuration. The structure of fabric_connector block is documented below.
FabricDevices List<Pulumiverse.Fortios.System.Inputs.CsfFabricDevice>: Fabric device configuration. The structure of fabric_device block is documented below.
FabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
FabricWorkers int: Number of worker processes for Security Fabric daemon.
FileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
FileQuota int: Maximum amount of memory that can be used by the daemon files (in bytes).
FileQuotaWarning int: Warn when the set percentage of quota has been used.
FixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
ForticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
GroupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
GroupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
LogUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
ManagementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
ManagementPort int: Overriding port for management connection (Overrides admin port).
SamlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
Status string: Enable/disable Security Fabric. Valid values: enable, disable.
TrustedLists List<Pulumiverse.Fortios.System.Inputs.CsfTrustedList>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
Uid string: Unique ID of the current CSF node
Upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamPort int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

AcceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
AuthorizationRequestType string: Authorization request type. Valid values: serial, certificate.
Certificate string: Certificate.
ConfigurationSync string: Configuration sync mode. Valid values: default, local.
DownstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
DownstreamAccprofile string: Default access profile for requests from downstream devices.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
FabricConnectors []CsfFabricConnectorArgs: Fabric connector configuration. The structure of fabric_connector block is documented below.
FabricDevices []CsfFabricDeviceArgs: Fabric device configuration. The structure of fabric_device block is documented below.
FabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
FabricWorkers int: Number of worker processes for Security Fabric daemon.
FileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
FileQuota int: Maximum amount of memory that can be used by the daemon files (in bytes).
FileQuotaWarning int: Warn when the set percentage of quota has been used.
FixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
ForticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
GroupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
GroupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
LogUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
ManagementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
ManagementPort int: Overriding port for management connection (Overrides admin port).
SamlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
Status string: Enable/disable Security Fabric. Valid values: enable, disable.
TrustedLists []CsfTrustedListArgs: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
Uid string: Unique ID of the current CSF node
Upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
UpstreamPort int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

acceptAuthByCert String: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType String: Authorization request type. Valid values: serial, certificate.
certificate String: Certificate.
configurationSync String: Configuration sync mode. Valid values: default, local.
downstreamAccess String: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile String: Default access profile for requests from downstream devices.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors List<CsfFabricConnector>: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices List<CsfFabricDevice>: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification String: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers Integer: Number of worker processes for Security Fabric daemon.
fileMgmt String: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota Integer: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning Integer: Warn when the set percentage of quota has been used.
fixedKey String: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement String: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName String: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword String: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification String: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp String: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort Integer: Overriding port for management connection (Overrides admin port).
samlConfigurationSync String: SAML setting configuration synchronization. Valid values: default, local.
status String: Enable/disable Security Fabric. Valid values: enable, disable.
trustedLists List<CsfTrustedList>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid String: Unique ID of the current CSF node
upstream String: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp String: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort Integer: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

acceptAuthByCert string: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType string: Authorization request type. Valid values: serial, certificate.
certificate string: Certificate.
configurationSync string: Configuration sync mode. Valid values: default, local.
downstreamAccess string: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile string: Default access profile for requests from downstream devices.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors CsfFabricConnector[]: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices CsfFabricDevice[]: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification string: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers number: Number of worker processes for Security Fabric daemon.
fileMgmt string: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota number: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning number: Warn when the set percentage of quota has been used.
fixedKey string: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement string: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName string: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword string: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification string: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp string: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort number: Overriding port for management connection (Overrides admin port).
samlConfigurationSync string: SAML setting configuration synchronization. Valid values: default, local.
status string: Enable/disable Security Fabric. Valid values: enable, disable.
trustedLists CsfTrustedList[]: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid string: Unique ID of the current CSF node
upstream string: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp string: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort number: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

accept_auth_by_cert str: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorization_request_type str: Authorization request type. Valid values: serial, certificate.
certificate str: Certificate.
configuration_sync str: Configuration sync mode. Valid values: default, local.
downstream_access str: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstream_accprofile str: Default access profile for requests from downstream devices.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabric_connectors Sequence[CsfFabricConnectorArgs]: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabric_devices Sequence[CsfFabricDeviceArgs]: Fabric device configuration. The structure of fabric_device block is documented below.
fabric_object_unification str: Fabric CMDB Object Unification Valid values: default, local.
fabric_workers int: Number of worker processes for Security Fabric daemon.
file_mgmt str: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
file_quota int: Maximum amount of memory that can be used by the daemon files (in bytes).
file_quota_warning int: Warn when the set percentage of quota has been used.
fixed_key str: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloud_account_enforcement str: Fabric FortiCloud account unification. Valid values: enable, disable.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
group_name str: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
group_password str: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
log_unification str: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
management_ip str: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
management_port int: Overriding port for management connection (Overrides admin port).
saml_configuration_sync str: SAML setting configuration synchronization. Valid values: default, local.
status str: Enable/disable Security Fabric. Valid values: enable, disable.
trusted_lists Sequence[CsfTrustedListArgs]: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid str: Unique ID of the current CSF node
upstream str: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstream_ip str: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstream_port int: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

acceptAuthByCert String: Accept connections with unknown certificates and ask admin for approval. Valid values: disable, enable.
authorizationRequestType String: Authorization request type. Valid values: serial, certificate.
certificate String: Certificate.
configurationSync String: Configuration sync mode. Valid values: default, local.
downstreamAccess String: Enable/disable downstream device access to this device's configuration and data. Valid values: enable, disable.
downstreamAccprofile String: Default access profile for requests from downstream devices.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
fabricConnectors List<Property Map>: Fabric connector configuration. The structure of fabric_connector block is documented below.
fabricDevices List<Property Map>: Fabric device configuration. The structure of fabric_device block is documented below.
fabricObjectUnification String: Fabric CMDB Object Unification Valid values: default, local.
fabricWorkers Number: Number of worker processes for Security Fabric daemon.
fileMgmt String: Enable/disable Security Fabric daemon file management. Valid values: enable, disable.
fileQuota Number: Maximum amount of memory that can be used by the daemon files (in bytes).
fileQuotaWarning Number: Warn when the set percentage of quota has been used.
fixedKey String: Auto-generated fixed key used when this device is the root. (Will automatically be generated if not set.)
forticloudAccountEnforcement String: Fabric FortiCloud account unification. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
groupName String: Security Fabric group name. All FortiGates in a Security Fabric must have the same group name.
groupPassword String: Security Fabric group password. All FortiGates in a Security Fabric must have the same group password.
logUnification String: Enable/disable broadcast of discovery messages for log unification. Valid values: disable, enable.
managementIp String: Management IP address of this FortiGate. Used to log into this FortiGate from another FortiGate in the Security Fabric.
managementPort Number: Overriding port for management connection (Overrides admin port).
samlConfigurationSync String: SAML setting configuration synchronization. Valid values: default, local.
status String: Enable/disable Security Fabric. Valid values: enable, disable.
trustedLists List<Property Map>: Pre-authorized and blocked security fabric nodes. The structure of trusted_list block is documented below.
uid String: Unique ID of the current CSF node
upstream String: IP/FQDN of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamIp String: IP address of the FortiGate upstream from this FortiGate in the Security Fabric.
upstreamPort Number: The port number to use to communicate with the FortiGate upstream from this FortiGate in the Security Fabric (default = 8013).
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

Supporting Types

CsfFabricConnector, CsfFabricConnectorArgs

Accprofile string: Override access profile.
ConfigurationWriteAccess string: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
Serial string: Serial.
Vdoms List<Pulumiverse.Fortios.System.Inputs.CsfFabricConnectorVdom>: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

Accprofile string: Override access profile.
ConfigurationWriteAccess string: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
Serial string: Serial.
Vdoms []CsfFabricConnectorVdom: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

accprofile String: Override access profile.
configurationWriteAccess String: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
serial String: Serial.
vdoms List<CsfFabricConnectorVdom>: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

accprofile string: Override access profile.
configurationWriteAccess string: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
serial string: Serial.
vdoms CsfFabricConnectorVdom[]: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

accprofile str: Override access profile.
configuration_write_access str: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
serial str: Serial.
vdoms Sequence[CsfFabricConnectorVdom]: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

accprofile String: Override access profile.
configurationWriteAccess String: Enable/disable downstream device write access to configuration. Valid values: enable, disable.
serial String: Serial.
vdoms List<Property Map>: Virtual domains that the connector has access to. If none are set, the connector will only have access to the VDOM that it joins the Security Fabric through. The structure of vdom block is documented below.

CsfFabricConnectorVdom, CsfFabricConnectorVdomArgs

Name string: Virtual domain name.

Name string: Virtual domain name.

name String: Virtual domain name.

name string: Virtual domain name.

name str: Virtual domain name.

name String: Virtual domain name.

CsfFabricDevice, CsfFabricDeviceArgs

AccessToken string: Device access token.
DeviceIp string: Device IP.
DeviceType string: Device type. Valid values: fortimail.
HttpsPort int: HTTPS port for fabric device.
Login string: Device login name.
Name string: Device name.
Password string: Device login password.

AccessToken string: Device access token.
DeviceIp string: Device IP.
DeviceType string: Device type. Valid values: fortimail.
HttpsPort int: HTTPS port for fabric device.
Login string: Device login name.
Name string: Device name.
Password string: Device login password.

accessToken String: Device access token.
deviceIp String: Device IP.
deviceType String: Device type. Valid values: fortimail.
httpsPort Integer: HTTPS port for fabric device.
login String: Device login name.
name String: Device name.
password String: Device login password.

accessToken string: Device access token.
deviceIp string: Device IP.
deviceType string: Device type. Valid values: fortimail.
httpsPort number: HTTPS port for fabric device.
login string: Device login name.
name string: Device name.
password string: Device login password.

access_token str: Device access token.
device_ip str: Device IP.
device_type str: Device type. Valid values: fortimail.
https_port int: HTTPS port for fabric device.
login str: Device login name.
name str: Device name.
password str: Device login password.

accessToken String: Device access token.
deviceIp String: Device IP.
deviceType String: Device type. Valid values: fortimail.
httpsPort Number: HTTPS port for fabric device.
login String: Device login name.
name String: Device name.
password String: Device login password.

CsfTrustedList, CsfTrustedListArgs

Action string: Security fabric authorization action. Valid values: accept, deny.
AuthorizationType string: Authorization type. Valid values: serial, certificate.
Certificate string: Certificate.
DownstreamAuthorization string: Trust authorizations by this node's administrator. Valid values: enable, disable.
HaMembers string: HA members.
Index int: Index of the downstream in tree.
Name string: Name.
Serial string: Serial.

Action string: Security fabric authorization action. Valid values: accept, deny.
AuthorizationType string: Authorization type. Valid values: serial, certificate.
Certificate string: Certificate.
DownstreamAuthorization string: Trust authorizations by this node's administrator. Valid values: enable, disable.
HaMembers string: HA members.
Index int: Index of the downstream in tree.
Name string: Name.
Serial string: Serial.

action String: Security fabric authorization action. Valid values: accept, deny.
authorizationType String: Authorization type. Valid values: serial, certificate.
certificate String: Certificate.
downstreamAuthorization String: Trust authorizations by this node's administrator. Valid values: enable, disable.
haMembers String: HA members.
index Integer: Index of the downstream in tree.
name String: Name.
serial String: Serial.

action string: Security fabric authorization action. Valid values: accept, deny.
authorizationType string: Authorization type. Valid values: serial, certificate.
certificate string: Certificate.
downstreamAuthorization string: Trust authorizations by this node's administrator. Valid values: enable, disable.
haMembers string: HA members.
index number: Index of the downstream in tree.
name string: Name.
serial string: Serial.

action str: Security fabric authorization action. Valid values: accept, deny.
authorization_type str: Authorization type. Valid values: serial, certificate.
certificate str: Certificate.
downstream_authorization str: Trust authorizations by this node's administrator. Valid values: enable, disable.
ha_members str: HA members.
index int: Index of the downstream in tree.
name str: Name.
serial str: Serial.

action String: Security fabric authorization action. Valid values: accept, deny.
authorizationType String: Authorization type. Valid values: serial, certificate.
certificate String: Certificate.
downstreamAuthorization String: Trust authorizations by this node's administrator. Valid values: enable, disable.
haMembers String: HA members.
index Number: Index of the downstream in tree.
name String: Name.
serial String: Serial.

Import

System Csf can be imported using any of these accepted formats:

$ pulumi import fortios:system/csf:Csf labelname SystemCsf

If you do not want to import arguments of block:

$ export “FORTIOS_IMPORT_TABLE”=“false”

$ pulumi import fortios:system/csf:Csf labelname SystemCsf

$ unset “FORTIOS_IMPORT_TABLE”

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortios pulumiverse/pulumi-fortios
License: Apache-2.0
Notes: This Pulumi package is based on the fortios Terraform Provider.

Fortios v0.0.5 published on Tuesday, Apr 9, 2024 by pulumiverse

pulumiverse/pulumi-fortios

fortios.system.Csf

On this page

On this page

Example Usage

Create Csf Resource

Constructor syntax

Parameters

Constructor example

Csf Resource Properties

Inputs

Outputs

Look up Existing Csf Resource

Supporting Types

CsfFabricConnector, CsfFabricConnectorArgs

CsfFabricConnectorVdom, CsfFabricConnectorVdomArgs

CsfFabricDevice, CsfFabricDeviceArgs

CsfTrustedList, CsfTrustedListArgs

Import

Package Details

On this page

On this page