certificate

package
v0.0.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 24, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Ca 

type Ca struct {
	pulumi.CustomResourceState

	// Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
	AutoUpdateDays pulumi.IntOutput `pulumi:"autoUpdateDays"`
	// Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
	AutoUpdateDaysWarning pulumi.IntOutput `pulumi:"autoUpdateDaysWarning"`
	// CA certificate as a PEM file.
	Ca pulumi.StringOutput `pulumi:"ca"`
	// CA identifier of the SCEP server.
	CaIdentifier pulumi.StringOutput `pulumi:"caIdentifier"`
	// URL of the EST server.
	EstUrl pulumi.StringOutput `pulumi:"estUrl"`
	// Time at which CA was last updated.
	LastUpdated pulumi.IntOutput `pulumi:"lastUpdated"`
	// Name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Enable/disable this CA as obsoleted. Valid values: `disable`, `enable`.
	Obsolete pulumi.StringOutput `pulumi:"obsolete"`
	// Either global or VDOM IP address range for the CA certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringOutput `pulumi:"range"`
	// URL of the SCEP server.
	ScepUrl pulumi.StringOutput `pulumi:"scepUrl"`
	// CA certificate source type.
	Source pulumi.StringOutput `pulumi:"source"`
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringOutput `pulumi:"sourceIp"`
	// Enable/disable this CA as a trusted CA for SSL inspection. Valid values: `enable`, `disable`.
	SslInspectionTrusted pulumi.StringOutput `pulumi:"sslInspectionTrusted"`
	// Enable/disable as a trusted CA. Valid values: `enable`, `disable`.
	Trusted pulumi.StringOutput `pulumi:"trusted"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

CA certificate.

## Import

VpnCertificate Ca can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/ca:Ca labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/ca:Ca labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetCa 

func GetCa(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *CaState, opts ...pulumi.ResourceOption) (*Ca, error)

GetCa gets an existing Ca resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewCa 

func NewCa(ctx *pulumi.Context,
	name string, args *CaArgs, opts ...pulumi.ResourceOption) (*Ca, error)

NewCa registers a new resource with the given unique name, arguments, and options.

func (*Ca) ElementType 

func (*Ca) ElementType() reflect.Type

func (*Ca) ToCaOutput 

func (i *Ca) ToCaOutput() CaOutput

func (*Ca) ToCaOutputWithContext 

func (i *Ca) ToCaOutputWithContext(ctx context.Context) CaOutput

type CaArgs 

type CaArgs struct {
	// Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
	AutoUpdateDays pulumi.IntPtrInput
	// Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
	AutoUpdateDaysWarning pulumi.IntPtrInput
	// CA certificate as a PEM file.
	Ca pulumi.StringInput
	// CA identifier of the SCEP server.
	CaIdentifier pulumi.StringPtrInput
	// URL of the EST server.
	EstUrl pulumi.StringPtrInput
	// Time at which CA was last updated.
	LastUpdated pulumi.IntPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Enable/disable this CA as obsoleted. Valid values: `disable`, `enable`.
	Obsolete pulumi.StringPtrInput
	// Either global or VDOM IP address range for the CA certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// URL of the SCEP server.
	ScepUrl pulumi.StringPtrInput
	// CA certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringPtrInput
	// Enable/disable this CA as a trusted CA for SSL inspection. Valid values: `enable`, `disable`.
	SslInspectionTrusted pulumi.StringPtrInput
	// Enable/disable as a trusted CA. Valid values: `enable`, `disable`.
	Trusted pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Ca resource.

func (CaArgs) ElementType 

func (CaArgs) ElementType() reflect.Type

type CaArray 

type CaArray []CaInput

func (CaArray) ElementType 

func (CaArray) ElementType() reflect.Type

func (CaArray) ToCaArrayOutput 

func (i CaArray) ToCaArrayOutput() CaArrayOutput

func (CaArray) ToCaArrayOutputWithContext 

func (i CaArray) ToCaArrayOutputWithContext(ctx context.Context) CaArrayOutput

type CaArrayInput 

type CaArrayInput interface {
	pulumi.Input

	ToCaArrayOutput() CaArrayOutput
	ToCaArrayOutputWithContext(context.Context) CaArrayOutput
}

CaArrayInput is an input type that accepts CaArray and CaArrayOutput values. You can construct a concrete instance of `CaArrayInput` via: 

CaArray{ CaArgs{...} }

type CaArrayOutput 

type CaArrayOutput struct{ *pulumi.OutputState }

func (CaArrayOutput) ElementType 

func (CaArrayOutput) ElementType() reflect.Type

func (CaArrayOutput) Index 

func (o CaArrayOutput) Index(i pulumi.IntInput) CaOutput

func (CaArrayOutput) ToCaArrayOutput 

func (o CaArrayOutput) ToCaArrayOutput() CaArrayOutput

func (CaArrayOutput) ToCaArrayOutputWithContext 

func (o CaArrayOutput) ToCaArrayOutputWithContext(ctx context.Context) CaArrayOutput

type CaInput 

type CaInput interface {
	pulumi.Input

	ToCaOutput() CaOutput
	ToCaOutputWithContext(ctx context.Context) CaOutput
}

type CaMap 

type CaMap map[string]CaInput

func (CaMap) ElementType 

func (CaMap) ElementType() reflect.Type

func (CaMap) ToCaMapOutput 

func (i CaMap) ToCaMapOutput() CaMapOutput

func (CaMap) ToCaMapOutputWithContext 

func (i CaMap) ToCaMapOutputWithContext(ctx context.Context) CaMapOutput

type CaMapInput 

type CaMapInput interface {
	pulumi.Input

	ToCaMapOutput() CaMapOutput
	ToCaMapOutputWithContext(context.Context) CaMapOutput
}

CaMapInput is an input type that accepts CaMap and CaMapOutput values. You can construct a concrete instance of `CaMapInput` via: 

CaMap{ "key": CaArgs{...} }

type CaMapOutput 

type CaMapOutput struct{ *pulumi.OutputState }

func (CaMapOutput) ElementType 

func (CaMapOutput) ElementType() reflect.Type

func (CaMapOutput) MapIndex 

func (o CaMapOutput) MapIndex(k pulumi.StringInput) CaOutput

func (CaMapOutput) ToCaMapOutput 

func (o CaMapOutput) ToCaMapOutput() CaMapOutput

func (CaMapOutput) ToCaMapOutputWithContext 

func (o CaMapOutput) ToCaMapOutputWithContext(ctx context.Context) CaMapOutput

type CaOutput 

type CaOutput struct{ *pulumi.OutputState }

func (CaOutput) AutoUpdateDays 

func (o CaOutput) AutoUpdateDays() pulumi.IntOutput

Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).

func (CaOutput) AutoUpdateDaysWarning 

func (o CaOutput) AutoUpdateDaysWarning() pulumi.IntOutput

Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).

func (CaOutput) Ca 

func (o CaOutput) Ca() pulumi.StringOutput

CA certificate as a PEM file.

func (CaOutput) CaIdentifier 

func (o CaOutput) CaIdentifier() pulumi.StringOutput

CA identifier of the SCEP server.

func (CaOutput) ElementType 

func (CaOutput) ElementType() reflect.Type

func (CaOutput) EstUrl 

func (o CaOutput) EstUrl() pulumi.StringOutput

URL of the EST server.

func (CaOutput) LastUpdated 

func (o CaOutput) LastUpdated() pulumi.IntOutput

Time at which CA was last updated.

func (CaOutput) Name 

func (o CaOutput) Name() pulumi.StringOutput

Name.

func (CaOutput) Obsolete 

func (o CaOutput) Obsolete() pulumi.StringOutput

Enable/disable this CA as obsoleted. Valid values: `disable`, `enable`.

func (CaOutput) Range 

func (o CaOutput) Range() pulumi.StringOutput

Either global or VDOM IP address range for the CA certificate. Valid values: `global`, `vdom`.

func (CaOutput) ScepUrl 

func (o CaOutput) ScepUrl() pulumi.StringOutput

URL of the SCEP server.

func (CaOutput) Source 

func (o CaOutput) Source() pulumi.StringOutput

CA certificate source type.

func (CaOutput) SourceIp 

func (o CaOutput) SourceIp() pulumi.StringOutput

Source IP address for communications to the SCEP server.

func (CaOutput) SslInspectionTrusted 

func (o CaOutput) SslInspectionTrusted() pulumi.StringOutput

Enable/disable this CA as a trusted CA for SSL inspection. Valid values: `enable`, `disable`.

func (CaOutput) ToCaOutput 

func (o CaOutput) ToCaOutput() CaOutput

func (CaOutput) ToCaOutputWithContext 

func (o CaOutput) ToCaOutputWithContext(ctx context.Context) CaOutput

func (CaOutput) Trusted 

func (o CaOutput) Trusted() pulumi.StringOutput

Enable/disable as a trusted CA. Valid values: `enable`, `disable`.

func (CaOutput) Vdomparam 

func (o CaOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type CaState 

type CaState struct {
	// Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
	AutoUpdateDays pulumi.IntPtrInput
	// Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
	AutoUpdateDaysWarning pulumi.IntPtrInput
	// CA certificate as a PEM file.
	Ca pulumi.StringPtrInput
	// CA identifier of the SCEP server.
	CaIdentifier pulumi.StringPtrInput
	// URL of the EST server.
	EstUrl pulumi.StringPtrInput
	// Time at which CA was last updated.
	LastUpdated pulumi.IntPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Enable/disable this CA as obsoleted. Valid values: `disable`, `enable`.
	Obsolete pulumi.StringPtrInput
	// Either global or VDOM IP address range for the CA certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// URL of the SCEP server.
	ScepUrl pulumi.StringPtrInput
	// CA certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringPtrInput
	// Enable/disable this CA as a trusted CA for SSL inspection. Valid values: `enable`, `disable`.
	SslInspectionTrusted pulumi.StringPtrInput
	// Enable/disable as a trusted CA. Valid values: `enable`, `disable`.
	Trusted pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (CaState) ElementType 

func (CaState) ElementType() reflect.Type

type Crl 

type Crl struct {
	pulumi.CustomResourceState

	// Certificate Revocation List as a PEM file.
	Crl pulumi.StringOutput `pulumi:"crl"`
	// HTTP server URL for CRL auto-update.
	HttpUrl pulumi.StringOutput `pulumi:"httpUrl"`
	// Time at which CRL was last updated.
	LastUpdated pulumi.IntOutput `pulumi:"lastUpdated"`
	// LDAP server user password.
	LdapPassword pulumi.StringPtrOutput `pulumi:"ldapPassword"`
	// LDAP server name for CRL auto-update.
	LdapServer pulumi.StringOutput `pulumi:"ldapServer"`
	// LDAP server user name.
	LdapUsername pulumi.StringOutput `pulumi:"ldapUsername"`
	// Name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Either global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringOutput `pulumi:"range"`
	// Local certificate for SCEP communication for CRL auto-update.
	ScepCert pulumi.StringOutput `pulumi:"scepCert"`
	// SCEP server URL for CRL auto-update.
	ScepUrl pulumi.StringOutput `pulumi:"scepUrl"`
	// Certificate source type.
	Source pulumi.StringOutput `pulumi:"source"`
	// Source IP address for communications to a HTTP or SCEP CA server.
	SourceIp pulumi.StringOutput `pulumi:"sourceIp"`
	// Time in seconds before the FortiGate checks for an updated CRL. Set to 0 to update only when it expires.
	UpdateInterval pulumi.IntOutput `pulumi:"updateInterval"`
	// VDOM for CRL update.
	UpdateVdom pulumi.StringOutput `pulumi:"updateVdom"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Certificate Revocation List as a PEM file.

## Import

VpnCertificate Crl can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/crl:Crl labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/crl:Crl labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetCrl 

func GetCrl(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *CrlState, opts ...pulumi.ResourceOption) (*Crl, error)

GetCrl gets an existing Crl resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewCrl 

func NewCrl(ctx *pulumi.Context,
	name string, args *CrlArgs, opts ...pulumi.ResourceOption) (*Crl, error)

NewCrl registers a new resource with the given unique name, arguments, and options.

func (*Crl) ElementType 

func (*Crl) ElementType() reflect.Type

func (*Crl) ToCrlOutput 

func (i *Crl) ToCrlOutput() CrlOutput

func (*Crl) ToCrlOutputWithContext 

func (i *Crl) ToCrlOutputWithContext(ctx context.Context) CrlOutput

type CrlArgs 

type CrlArgs struct {
	// Certificate Revocation List as a PEM file.
	Crl pulumi.StringPtrInput
	// HTTP server URL for CRL auto-update.
	HttpUrl pulumi.StringPtrInput
	// Time at which CRL was last updated.
	LastUpdated pulumi.IntPtrInput
	// LDAP server user password.
	LdapPassword pulumi.StringPtrInput
	// LDAP server name for CRL auto-update.
	LdapServer pulumi.StringPtrInput
	// LDAP server user name.
	LdapUsername pulumi.StringPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Either global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// Local certificate for SCEP communication for CRL auto-update.
	ScepCert pulumi.StringPtrInput
	// SCEP server URL for CRL auto-update.
	ScepUrl pulumi.StringPtrInput
	// Certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to a HTTP or SCEP CA server.
	SourceIp pulumi.StringPtrInput
	// Time in seconds before the FortiGate checks for an updated CRL. Set to 0 to update only when it expires.
	UpdateInterval pulumi.IntPtrInput
	// VDOM for CRL update.
	UpdateVdom pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Crl resource.

func (CrlArgs) ElementType 

func (CrlArgs) ElementType() reflect.Type

type CrlArray 

type CrlArray []CrlInput

func (CrlArray) ElementType 

func (CrlArray) ElementType() reflect.Type

func (CrlArray) ToCrlArrayOutput 

func (i CrlArray) ToCrlArrayOutput() CrlArrayOutput

func (CrlArray) ToCrlArrayOutputWithContext 

func (i CrlArray) ToCrlArrayOutputWithContext(ctx context.Context) CrlArrayOutput

type CrlArrayInput 

type CrlArrayInput interface {
	pulumi.Input

	ToCrlArrayOutput() CrlArrayOutput
	ToCrlArrayOutputWithContext(context.Context) CrlArrayOutput
}

CrlArrayInput is an input type that accepts CrlArray and CrlArrayOutput values. You can construct a concrete instance of `CrlArrayInput` via: 

CrlArray{ CrlArgs{...} }

type CrlArrayOutput 

type CrlArrayOutput struct{ *pulumi.OutputState }

func (CrlArrayOutput) ElementType 

func (CrlArrayOutput) ElementType() reflect.Type

func (CrlArrayOutput) Index 

func (o CrlArrayOutput) Index(i pulumi.IntInput) CrlOutput

func (CrlArrayOutput) ToCrlArrayOutput 

func (o CrlArrayOutput) ToCrlArrayOutput() CrlArrayOutput

func (CrlArrayOutput) ToCrlArrayOutputWithContext 

func (o CrlArrayOutput) ToCrlArrayOutputWithContext(ctx context.Context) CrlArrayOutput

type CrlInput 

type CrlInput interface {
	pulumi.Input

	ToCrlOutput() CrlOutput
	ToCrlOutputWithContext(ctx context.Context) CrlOutput
}

type CrlMap 

type CrlMap map[string]CrlInput

func (CrlMap) ElementType 

func (CrlMap) ElementType() reflect.Type

func (CrlMap) ToCrlMapOutput 

func (i CrlMap) ToCrlMapOutput() CrlMapOutput

func (CrlMap) ToCrlMapOutputWithContext 

func (i CrlMap) ToCrlMapOutputWithContext(ctx context.Context) CrlMapOutput

type CrlMapInput 

type CrlMapInput interface {
	pulumi.Input

	ToCrlMapOutput() CrlMapOutput
	ToCrlMapOutputWithContext(context.Context) CrlMapOutput
}

CrlMapInput is an input type that accepts CrlMap and CrlMapOutput values. You can construct a concrete instance of `CrlMapInput` via: 

CrlMap{ "key": CrlArgs{...} }

type CrlMapOutput 

type CrlMapOutput struct{ *pulumi.OutputState }

func (CrlMapOutput) ElementType 

func (CrlMapOutput) ElementType() reflect.Type

func (CrlMapOutput) MapIndex 

func (o CrlMapOutput) MapIndex(k pulumi.StringInput) CrlOutput

func (CrlMapOutput) ToCrlMapOutput 

func (o CrlMapOutput) ToCrlMapOutput() CrlMapOutput

func (CrlMapOutput) ToCrlMapOutputWithContext 

func (o CrlMapOutput) ToCrlMapOutputWithContext(ctx context.Context) CrlMapOutput

type CrlOutput 

type CrlOutput struct{ *pulumi.OutputState }

func (CrlOutput) Crl 

func (o CrlOutput) Crl() pulumi.StringOutput

Certificate Revocation List as a PEM file.

func (CrlOutput) ElementType 

func (CrlOutput) ElementType() reflect.Type

func (CrlOutput) HttpUrl 

func (o CrlOutput) HttpUrl() pulumi.StringOutput

HTTP server URL for CRL auto-update.

func (CrlOutput) LastUpdated 

func (o CrlOutput) LastUpdated() pulumi.IntOutput

Time at which CRL was last updated.

func (CrlOutput) LdapPassword 

func (o CrlOutput) LdapPassword() pulumi.StringPtrOutput

LDAP server user password.

func (CrlOutput) LdapServer 

func (o CrlOutput) LdapServer() pulumi.StringOutput

LDAP server name for CRL auto-update.

func (CrlOutput) LdapUsername 

func (o CrlOutput) LdapUsername() pulumi.StringOutput

LDAP server user name.

func (CrlOutput) Name 

func (o CrlOutput) Name() pulumi.StringOutput

Name.

func (CrlOutput) Range 

func (o CrlOutput) Range() pulumi.StringOutput

Either global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.

func (CrlOutput) ScepCert 

func (o CrlOutput) ScepCert() pulumi.StringOutput

Local certificate for SCEP communication for CRL auto-update.

func (CrlOutput) ScepUrl 

func (o CrlOutput) ScepUrl() pulumi.StringOutput

SCEP server URL for CRL auto-update.

func (CrlOutput) Source 

func (o CrlOutput) Source() pulumi.StringOutput

Certificate source type.

func (CrlOutput) SourceIp 

func (o CrlOutput) SourceIp() pulumi.StringOutput

Source IP address for communications to a HTTP or SCEP CA server.

func (CrlOutput) ToCrlOutput 

func (o CrlOutput) ToCrlOutput() CrlOutput

func (CrlOutput) ToCrlOutputWithContext 

func (o CrlOutput) ToCrlOutputWithContext(ctx context.Context) CrlOutput

func (CrlOutput) UpdateInterval 

func (o CrlOutput) UpdateInterval() pulumi.IntOutput

Time in seconds before the FortiGate checks for an updated CRL. Set to 0 to update only when it expires.

func (CrlOutput) UpdateVdom 

func (o CrlOutput) UpdateVdom() pulumi.StringOutput

VDOM for CRL update.

func (CrlOutput) Vdomparam 

func (o CrlOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type CrlState 

type CrlState struct {
	// Certificate Revocation List as a PEM file.
	Crl pulumi.StringPtrInput
	// HTTP server URL for CRL auto-update.
	HttpUrl pulumi.StringPtrInput
	// Time at which CRL was last updated.
	LastUpdated pulumi.IntPtrInput
	// LDAP server user password.
	LdapPassword pulumi.StringPtrInput
	// LDAP server name for CRL auto-update.
	LdapServer pulumi.StringPtrInput
	// LDAP server user name.
	LdapUsername pulumi.StringPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Either global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// Local certificate for SCEP communication for CRL auto-update.
	ScepCert pulumi.StringPtrInput
	// SCEP server URL for CRL auto-update.
	ScepUrl pulumi.StringPtrInput
	// Certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to a HTTP or SCEP CA server.
	SourceIp pulumi.StringPtrInput
	// Time in seconds before the FortiGate checks for an updated CRL. Set to 0 to update only when it expires.
	UpdateInterval pulumi.IntPtrInput
	// VDOM for CRL update.
	UpdateVdom pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (CrlState) ElementType 

func (CrlState) ElementType() reflect.Type

type Local 

type Local struct {
	pulumi.CustomResourceState

	// The URL for the ACME CA server (Let's Encrypt is the default provider).
	AcmeCaUrl pulumi.StringOutput `pulumi:"acmeCaUrl"`
	// A valid domain that resolves to this Fortigate.
	AcmeDomain pulumi.StringOutput `pulumi:"acmeDomain"`
	// Contact email address that is required by some CAs like LetsEncrypt.
	AcmeEmail pulumi.StringOutput `pulumi:"acmeEmail"`
	// Beginning of the renewal window (in days before certificate expiration, 30 by default).
	AcmeRenewWindow pulumi.IntOutput `pulumi:"acmeRenewWindow"`
	// Length of the RSA private key of the generated cert (Minimum 2048 bits).
	AcmeRsaKeySize pulumi.IntOutput `pulumi:"acmeRsaKeySize"`
	// Number of days to wait before expiry of an updated local certificate is requested (0 = disabled).
	AutoRegenerateDays pulumi.IntOutput `pulumi:"autoRegenerateDays"`
	// Number of days to wait before an expiry warning message is generated (0 = disabled).
	AutoRegenerateDaysWarning pulumi.IntOutput `pulumi:"autoRegenerateDaysWarning"`
	// CA identifier of the CA server for signing via SCEP.
	CaIdentifier pulumi.StringOutput `pulumi:"caIdentifier"`
	// PEM format certificate.
	Certificate pulumi.StringOutput `pulumi:"certificate"`
	// Path location inside CMP server.
	CmpPath pulumi.StringOutput `pulumi:"cmpPath"`
	// CMP auto-regeneration method. Valid values: `keyupate`, `renewal`.
	CmpRegenerationMethod pulumi.StringOutput `pulumi:"cmpRegenerationMethod"`
	// 'ADDRESS:PORT' for CMP server.
	CmpServer pulumi.StringOutput `pulumi:"cmpServer"`
	// CMP server certificate.
	CmpServerCert pulumi.StringOutput `pulumi:"cmpServerCert"`
	// Comment.
	Comments pulumi.StringOutput `pulumi:"comments"`
	// Certificate Signing Request.
	Csr pulumi.StringOutput `pulumi:"csr"`
	// Certificate enrollment protocol.
	EnrollProtocol pulumi.StringOutput `pulumi:"enrollProtocol"`
	// CA identifier of the CA server for signing via EST.
	EstCaId pulumi.StringOutput `pulumi:"estCaId"`
	// Certificate used to authenticate this FortiGate to EST server.
	EstClientCert pulumi.StringOutput `pulumi:"estClientCert"`
	// HTTP Authentication password for signing via EST.
	EstHttpPassword pulumi.StringOutput `pulumi:"estHttpPassword"`
	// HTTP Authentication username for signing via EST.
	EstHttpUsername pulumi.StringOutput `pulumi:"estHttpUsername"`
	// Address and port for EST server (e.g. https://example.com:1234).
	EstServer pulumi.StringOutput `pulumi:"estServer"`
	// EST server's certificate must be verifiable by this certificate to be authenticated.
	EstServerCert pulumi.StringOutput `pulumi:"estServerCert"`
	// EST SRP authentication password.
	EstSrpPassword pulumi.StringOutput `pulumi:"estSrpPassword"`
	// EST SRP authentication username.
	EstSrpUsername pulumi.StringOutput `pulumi:"estSrpUsername"`
	// Local ID the FortiGate uses for authentication as a VPN client.
	IkeLocalid pulumi.StringOutput `pulumi:"ikeLocalid"`
	// IKE local ID type. Valid values: `asn1dn`, `fqdn`.
	IkeLocalidType pulumi.StringOutput `pulumi:"ikeLocalidType"`
	// Time at which certificate was last updated.
	LastUpdated pulumi.IntOutput `pulumi:"lastUpdated"`
	// Name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Name encoding method for auto-regeneration. Valid values: `printable`, `utf8`.
	NameEncoding pulumi.StringOutput `pulumi:"nameEncoding"`
	// Password as a PEM file.
	Password pulumi.StringPtrOutput `pulumi:"password"`
	// PEM format key, encrypted with a password.
	PrivateKey pulumi.StringOutput `pulumi:"privateKey"`
	// Enable/disable retention of private key during SCEP renewal (default = disable). Valid values: `enable`, `disable`.
	PrivateKeyRetain pulumi.StringOutput `pulumi:"privateKeyRetain"`
	// Either a global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringOutput `pulumi:"range"`
	// SCEP server challenge password for auto-regeneration.
	ScepPassword pulumi.StringPtrOutput `pulumi:"scepPassword"`
	// SCEP server URL.
	ScepUrl pulumi.StringOutput `pulumi:"scepUrl"`
	// Certificate source type.
	Source pulumi.StringOutput `pulumi:"source"`
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringOutput `pulumi:"sourceIp"`
	// Certificate Signing Request State.
	State pulumi.StringOutput `pulumi:"state"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Local keys and certificates.

## Import

VpnCertificate Local can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/local:Local labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/local:Local labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetLocal 

func GetLocal(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *LocalState, opts ...pulumi.ResourceOption) (*Local, error)

GetLocal gets an existing Local resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewLocal 

func NewLocal(ctx *pulumi.Context,
	name string, args *LocalArgs, opts ...pulumi.ResourceOption) (*Local, error)

NewLocal registers a new resource with the given unique name, arguments, and options.

func (*Local) ElementType 

func (*Local) ElementType() reflect.Type

func (*Local) ToLocalOutput 

func (i *Local) ToLocalOutput() LocalOutput

func (*Local) ToLocalOutputWithContext 

func (i *Local) ToLocalOutputWithContext(ctx context.Context) LocalOutput

type LocalArgs 

type LocalArgs struct {
	// The URL for the ACME CA server (Let's Encrypt is the default provider).
	AcmeCaUrl pulumi.StringPtrInput
	// A valid domain that resolves to this Fortigate.
	AcmeDomain pulumi.StringPtrInput
	// Contact email address that is required by some CAs like LetsEncrypt.
	AcmeEmail pulumi.StringPtrInput
	// Beginning of the renewal window (in days before certificate expiration, 30 by default).
	AcmeRenewWindow pulumi.IntPtrInput
	// Length of the RSA private key of the generated cert (Minimum 2048 bits).
	AcmeRsaKeySize pulumi.IntPtrInput
	// Number of days to wait before expiry of an updated local certificate is requested (0 = disabled).
	AutoRegenerateDays pulumi.IntPtrInput
	// Number of days to wait before an expiry warning message is generated (0 = disabled).
	AutoRegenerateDaysWarning pulumi.IntPtrInput
	// CA identifier of the CA server for signing via SCEP.
	CaIdentifier pulumi.StringPtrInput
	// PEM format certificate.
	Certificate pulumi.StringPtrInput
	// Path location inside CMP server.
	CmpPath pulumi.StringPtrInput
	// CMP auto-regeneration method. Valid values: `keyupate`, `renewal`.
	CmpRegenerationMethod pulumi.StringPtrInput
	// 'ADDRESS:PORT' for CMP server.
	CmpServer pulumi.StringPtrInput
	// CMP server certificate.
	CmpServerCert pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Certificate Signing Request.
	Csr pulumi.StringPtrInput
	// Certificate enrollment protocol.
	EnrollProtocol pulumi.StringPtrInput
	// CA identifier of the CA server for signing via EST.
	EstCaId pulumi.StringPtrInput
	// Certificate used to authenticate this FortiGate to EST server.
	EstClientCert pulumi.StringPtrInput
	// HTTP Authentication password for signing via EST.
	EstHttpPassword pulumi.StringPtrInput
	// HTTP Authentication username for signing via EST.
	EstHttpUsername pulumi.StringPtrInput
	// Address and port for EST server (e.g. https://example.com:1234).
	EstServer pulumi.StringPtrInput
	// EST server's certificate must be verifiable by this certificate to be authenticated.
	EstServerCert pulumi.StringPtrInput
	// EST SRP authentication password.
	EstSrpPassword pulumi.StringPtrInput
	// EST SRP authentication username.
	EstSrpUsername pulumi.StringPtrInput
	// Local ID the FortiGate uses for authentication as a VPN client.
	IkeLocalid pulumi.StringPtrInput
	// IKE local ID type. Valid values: `asn1dn`, `fqdn`.
	IkeLocalidType pulumi.StringPtrInput
	// Time at which certificate was last updated.
	LastUpdated pulumi.IntPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Name encoding method for auto-regeneration. Valid values: `printable`, `utf8`.
	NameEncoding pulumi.StringPtrInput
	// Password as a PEM file.
	Password pulumi.StringPtrInput
	// PEM format key, encrypted with a password.
	PrivateKey pulumi.StringPtrInput
	// Enable/disable retention of private key during SCEP renewal (default = disable). Valid values: `enable`, `disable`.
	PrivateKeyRetain pulumi.StringPtrInput
	// Either a global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// SCEP server challenge password for auto-regeneration.
	ScepPassword pulumi.StringPtrInput
	// SCEP server URL.
	ScepUrl pulumi.StringPtrInput
	// Certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringPtrInput
	// Certificate Signing Request State.
	State pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Local resource.

func (LocalArgs) ElementType 

func (LocalArgs) ElementType() reflect.Type

type LocalArray 

type LocalArray []LocalInput

func (LocalArray) ElementType 

func (LocalArray) ElementType() reflect.Type

func (LocalArray) ToLocalArrayOutput 

func (i LocalArray) ToLocalArrayOutput() LocalArrayOutput

func (LocalArray) ToLocalArrayOutputWithContext 

func (i LocalArray) ToLocalArrayOutputWithContext(ctx context.Context) LocalArrayOutput

type LocalArrayInput 

type LocalArrayInput interface {
	pulumi.Input

	ToLocalArrayOutput() LocalArrayOutput
	ToLocalArrayOutputWithContext(context.Context) LocalArrayOutput
}

LocalArrayInput is an input type that accepts LocalArray and LocalArrayOutput values. You can construct a concrete instance of `LocalArrayInput` via: 

LocalArray{ LocalArgs{...} }

type LocalArrayOutput 

type LocalArrayOutput struct{ *pulumi.OutputState }

func (LocalArrayOutput) ElementType 

func (LocalArrayOutput) ElementType() reflect.Type

func (LocalArrayOutput) Index 

func (o LocalArrayOutput) Index(i pulumi.IntInput) LocalOutput

func (LocalArrayOutput) ToLocalArrayOutput 

func (o LocalArrayOutput) ToLocalArrayOutput() LocalArrayOutput

func (LocalArrayOutput) ToLocalArrayOutputWithContext 

func (o LocalArrayOutput) ToLocalArrayOutputWithContext(ctx context.Context) LocalArrayOutput

type LocalInput 

type LocalInput interface {
	pulumi.Input

	ToLocalOutput() LocalOutput
	ToLocalOutputWithContext(ctx context.Context) LocalOutput
}

type LocalMap 

type LocalMap map[string]LocalInput

func (LocalMap) ElementType 

func (LocalMap) ElementType() reflect.Type

func (LocalMap) ToLocalMapOutput 

func (i LocalMap) ToLocalMapOutput() LocalMapOutput

func (LocalMap) ToLocalMapOutputWithContext 

func (i LocalMap) ToLocalMapOutputWithContext(ctx context.Context) LocalMapOutput

type LocalMapInput 

type LocalMapInput interface {
	pulumi.Input

	ToLocalMapOutput() LocalMapOutput
	ToLocalMapOutputWithContext(context.Context) LocalMapOutput
}

LocalMapInput is an input type that accepts LocalMap and LocalMapOutput values. You can construct a concrete instance of `LocalMapInput` via: 

LocalMap{ "key": LocalArgs{...} }

type LocalMapOutput 

type LocalMapOutput struct{ *pulumi.OutputState }

func (LocalMapOutput) ElementType 

func (LocalMapOutput) ElementType() reflect.Type

func (LocalMapOutput) MapIndex 

func (o LocalMapOutput) MapIndex(k pulumi.StringInput) LocalOutput

func (LocalMapOutput) ToLocalMapOutput 

func (o LocalMapOutput) ToLocalMapOutput() LocalMapOutput

func (LocalMapOutput) ToLocalMapOutputWithContext 

func (o LocalMapOutput) ToLocalMapOutputWithContext(ctx context.Context) LocalMapOutput

type LocalOutput 

type LocalOutput struct{ *pulumi.OutputState }

func (LocalOutput) AcmeCaUrl 

func (o LocalOutput) AcmeCaUrl() pulumi.StringOutput

The URL for the ACME CA server (Let's Encrypt is the default provider).

func (LocalOutput) AcmeDomain 

func (o LocalOutput) AcmeDomain() pulumi.StringOutput

A valid domain that resolves to this Fortigate.

func (LocalOutput) AcmeEmail 

func (o LocalOutput) AcmeEmail() pulumi.StringOutput

Contact email address that is required by some CAs like LetsEncrypt.

func (LocalOutput) AcmeRenewWindow 

func (o LocalOutput) AcmeRenewWindow() pulumi.IntOutput

Beginning of the renewal window (in days before certificate expiration, 30 by default).

func (LocalOutput) AcmeRsaKeySize 

func (o LocalOutput) AcmeRsaKeySize() pulumi.IntOutput

Length of the RSA private key of the generated cert (Minimum 2048 bits).

func (LocalOutput) AutoRegenerateDays 

func (o LocalOutput) AutoRegenerateDays() pulumi.IntOutput

Number of days to wait before expiry of an updated local certificate is requested (0 = disabled).

func (LocalOutput) AutoRegenerateDaysWarning 

func (o LocalOutput) AutoRegenerateDaysWarning() pulumi.IntOutput

Number of days to wait before an expiry warning message is generated (0 = disabled).

func (LocalOutput) CaIdentifier 

func (o LocalOutput) CaIdentifier() pulumi.StringOutput

CA identifier of the CA server for signing via SCEP.

func (LocalOutput) Certificate 

func (o LocalOutput) Certificate() pulumi.StringOutput

PEM format certificate.

func (LocalOutput) CmpPath 

func (o LocalOutput) CmpPath() pulumi.StringOutput

Path location inside CMP server.

func (LocalOutput) CmpRegenerationMethod 

func (o LocalOutput) CmpRegenerationMethod() pulumi.StringOutput

CMP auto-regeneration method. Valid values: `keyupate`, `renewal`.

func (LocalOutput) CmpServer 

func (o LocalOutput) CmpServer() pulumi.StringOutput

'ADDRESS:PORT' for CMP server.

func (LocalOutput) CmpServerCert 

func (o LocalOutput) CmpServerCert() pulumi.StringOutput

CMP server certificate.

func (LocalOutput) Comments 

func (o LocalOutput) Comments() pulumi.StringOutput

Comment.

func (LocalOutput) Csr 

func (o LocalOutput) Csr() pulumi.StringOutput

Certificate Signing Request.

func (LocalOutput) ElementType 

func (LocalOutput) ElementType() reflect.Type

func (LocalOutput) EnrollProtocol 

func (o LocalOutput) EnrollProtocol() pulumi.StringOutput

Certificate enrollment protocol.

func (LocalOutput) EstCaId 

func (o LocalOutput) EstCaId() pulumi.StringOutput

CA identifier of the CA server for signing via EST.

func (LocalOutput) EstClientCert 

func (o LocalOutput) EstClientCert() pulumi.StringOutput

Certificate used to authenticate this FortiGate to EST server.

func (LocalOutput) EstHttpPassword 

func (o LocalOutput) EstHttpPassword() pulumi.StringOutput

HTTP Authentication password for signing via EST.

func (LocalOutput) EstHttpUsername 

func (o LocalOutput) EstHttpUsername() pulumi.StringOutput

HTTP Authentication username for signing via EST.

func (LocalOutput) EstServer 

func (o LocalOutput) EstServer() pulumi.StringOutput

Address and port for EST server (e.g. https://example.com:1234).

func (LocalOutput) EstServerCert 

func (o LocalOutput) EstServerCert() pulumi.StringOutput

EST server's certificate must be verifiable by this certificate to be authenticated.

func (LocalOutput) EstSrpPassword 

func (o LocalOutput) EstSrpPassword() pulumi.StringOutput

EST SRP authentication password.

func (LocalOutput) EstSrpUsername 

func (o LocalOutput) EstSrpUsername() pulumi.StringOutput

EST SRP authentication username.

func (LocalOutput) IkeLocalid 

func (o LocalOutput) IkeLocalid() pulumi.StringOutput

Local ID the FortiGate uses for authentication as a VPN client.

func (LocalOutput) IkeLocalidType 

func (o LocalOutput) IkeLocalidType() pulumi.StringOutput

IKE local ID type. Valid values: `asn1dn`, `fqdn`.

func (LocalOutput) LastUpdated 

func (o LocalOutput) LastUpdated() pulumi.IntOutput

Time at which certificate was last updated.

func (LocalOutput) Name 

func (o LocalOutput) Name() pulumi.StringOutput

Name.

func (LocalOutput) NameEncoding 

func (o LocalOutput) NameEncoding() pulumi.StringOutput

Name encoding method for auto-regeneration. Valid values: `printable`, `utf8`.

func (LocalOutput) Password 

func (o LocalOutput) Password() pulumi.StringPtrOutput

Password as a PEM file.

func (LocalOutput) PrivateKey 

func (o LocalOutput) PrivateKey() pulumi.StringOutput

PEM format key, encrypted with a password.

func (LocalOutput) PrivateKeyRetain 

func (o LocalOutput) PrivateKeyRetain() pulumi.StringOutput

Enable/disable retention of private key during SCEP renewal (default = disable). Valid values: `enable`, `disable`.

func (LocalOutput) Range 

func (o LocalOutput) Range() pulumi.StringOutput

Either a global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.

func (LocalOutput) ScepPassword 

func (o LocalOutput) ScepPassword() pulumi.StringPtrOutput

SCEP server challenge password for auto-regeneration.

func (LocalOutput) ScepUrl 

func (o LocalOutput) ScepUrl() pulumi.StringOutput

SCEP server URL.

func (LocalOutput) Source 

func (o LocalOutput) Source() pulumi.StringOutput

Certificate source type.

func (LocalOutput) SourceIp 

func (o LocalOutput) SourceIp() pulumi.StringOutput

Source IP address for communications to the SCEP server.

func (LocalOutput) State 

func (o LocalOutput) State() pulumi.StringOutput

Certificate Signing Request State.

func (LocalOutput) ToLocalOutput 

func (o LocalOutput) ToLocalOutput() LocalOutput

func (LocalOutput) ToLocalOutputWithContext 

func (o LocalOutput) ToLocalOutputWithContext(ctx context.Context) LocalOutput

func (LocalOutput) Vdomparam 

func (o LocalOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type LocalState 

type LocalState struct {
	// The URL for the ACME CA server (Let's Encrypt is the default provider).
	AcmeCaUrl pulumi.StringPtrInput
	// A valid domain that resolves to this Fortigate.
	AcmeDomain pulumi.StringPtrInput
	// Contact email address that is required by some CAs like LetsEncrypt.
	AcmeEmail pulumi.StringPtrInput
	// Beginning of the renewal window (in days before certificate expiration, 30 by default).
	AcmeRenewWindow pulumi.IntPtrInput
	// Length of the RSA private key of the generated cert (Minimum 2048 bits).
	AcmeRsaKeySize pulumi.IntPtrInput
	// Number of days to wait before expiry of an updated local certificate is requested (0 = disabled).
	AutoRegenerateDays pulumi.IntPtrInput
	// Number of days to wait before an expiry warning message is generated (0 = disabled).
	AutoRegenerateDaysWarning pulumi.IntPtrInput
	// CA identifier of the CA server for signing via SCEP.
	CaIdentifier pulumi.StringPtrInput
	// PEM format certificate.
	Certificate pulumi.StringPtrInput
	// Path location inside CMP server.
	CmpPath pulumi.StringPtrInput
	// CMP auto-regeneration method. Valid values: `keyupate`, `renewal`.
	CmpRegenerationMethod pulumi.StringPtrInput
	// 'ADDRESS:PORT' for CMP server.
	CmpServer pulumi.StringPtrInput
	// CMP server certificate.
	CmpServerCert pulumi.StringPtrInput
	// Comment.
	Comments pulumi.StringPtrInput
	// Certificate Signing Request.
	Csr pulumi.StringPtrInput
	// Certificate enrollment protocol.
	EnrollProtocol pulumi.StringPtrInput
	// CA identifier of the CA server for signing via EST.
	EstCaId pulumi.StringPtrInput
	// Certificate used to authenticate this FortiGate to EST server.
	EstClientCert pulumi.StringPtrInput
	// HTTP Authentication password for signing via EST.
	EstHttpPassword pulumi.StringPtrInput
	// HTTP Authentication username for signing via EST.
	EstHttpUsername pulumi.StringPtrInput
	// Address and port for EST server (e.g. https://example.com:1234).
	EstServer pulumi.StringPtrInput
	// EST server's certificate must be verifiable by this certificate to be authenticated.
	EstServerCert pulumi.StringPtrInput
	// EST SRP authentication password.
	EstSrpPassword pulumi.StringPtrInput
	// EST SRP authentication username.
	EstSrpUsername pulumi.StringPtrInput
	// Local ID the FortiGate uses for authentication as a VPN client.
	IkeLocalid pulumi.StringPtrInput
	// IKE local ID type. Valid values: `asn1dn`, `fqdn`.
	IkeLocalidType pulumi.StringPtrInput
	// Time at which certificate was last updated.
	LastUpdated pulumi.IntPtrInput
	// Name.
	Name pulumi.StringPtrInput
	// Name encoding method for auto-regeneration. Valid values: `printable`, `utf8`.
	NameEncoding pulumi.StringPtrInput
	// Password as a PEM file.
	Password pulumi.StringPtrInput
	// PEM format key, encrypted with a password.
	PrivateKey pulumi.StringPtrInput
	// Enable/disable retention of private key during SCEP renewal (default = disable). Valid values: `enable`, `disable`.
	PrivateKeyRetain pulumi.StringPtrInput
	// Either a global or VDOM IP address range for the certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// SCEP server challenge password for auto-regeneration.
	ScepPassword pulumi.StringPtrInput
	// SCEP server URL.
	ScepUrl pulumi.StringPtrInput
	// Certificate source type.
	Source pulumi.StringPtrInput
	// Source IP address for communications to the SCEP server.
	SourceIp pulumi.StringPtrInput
	// Certificate Signing Request State.
	State pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (LocalState) ElementType 

func (LocalState) ElementType() reflect.Type

type Ocspserver 

type Ocspserver struct {
	pulumi.CustomResourceState

	// OCSP server certificate.
	Cert pulumi.StringOutput `pulumi:"cert"`
	// OCSP server entry name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Secondary OCSP server certificate.
	SecondaryCert pulumi.StringOutput `pulumi:"secondaryCert"`
	// Secondary OCSP server URL.
	SecondaryUrl pulumi.StringOutput `pulumi:"secondaryUrl"`
	// Source IP address for communications to the OCSP server.
	SourceIp pulumi.StringOutput `pulumi:"sourceIp"`
	// Action when server is unavailable (revoke the certificate or ignore the result of the check). Valid values: `revoke`, `ignore`.
	UnavailAction pulumi.StringOutput `pulumi:"unavailAction"`
	// OCSP server URL.
	Url pulumi.StringOutput `pulumi:"url"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

OCSP server configuration.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewOcspserver(ctx, "trname", &vpn.OcspserverArgs{
			Cert:          pulumi.String("ACCVRAIZ1"),
			SourceIp:      pulumi.String("0.0.0.0"),
			UnavailAction: pulumi.String("revoke"),
			Url:           pulumi.String("www.tetserv.com"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnCertificate OcspServer can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/ocspserver:Ocspserver labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/ocspserver:Ocspserver labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetOcspserver 

func GetOcspserver(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *OcspserverState, opts ...pulumi.ResourceOption) (*Ocspserver, error)

GetOcspserver gets an existing Ocspserver resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewOcspserver 

func NewOcspserver(ctx *pulumi.Context,
	name string, args *OcspserverArgs, opts ...pulumi.ResourceOption) (*Ocspserver, error)

NewOcspserver registers a new resource with the given unique name, arguments, and options.

func (*Ocspserver) ElementType 

func (*Ocspserver) ElementType() reflect.Type

func (*Ocspserver) ToOcspserverOutput 

func (i *Ocspserver) ToOcspserverOutput() OcspserverOutput

func (*Ocspserver) ToOcspserverOutputWithContext 

func (i *Ocspserver) ToOcspserverOutputWithContext(ctx context.Context) OcspserverOutput

type OcspserverArgs 

type OcspserverArgs struct {
	// OCSP server certificate.
	Cert pulumi.StringPtrInput
	// OCSP server entry name.
	Name pulumi.StringPtrInput
	// Secondary OCSP server certificate.
	SecondaryCert pulumi.StringPtrInput
	// Secondary OCSP server URL.
	SecondaryUrl pulumi.StringPtrInput
	// Source IP address for communications to the OCSP server.
	SourceIp pulumi.StringPtrInput
	// Action when server is unavailable (revoke the certificate or ignore the result of the check). Valid values: `revoke`, `ignore`.
	UnavailAction pulumi.StringPtrInput
	// OCSP server URL.
	Url pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Ocspserver resource.

func (OcspserverArgs) ElementType 

func (OcspserverArgs) ElementType() reflect.Type

type OcspserverArray 

type OcspserverArray []OcspserverInput

func (OcspserverArray) ElementType 

func (OcspserverArray) ElementType() reflect.Type

func (OcspserverArray) ToOcspserverArrayOutput 

func (i OcspserverArray) ToOcspserverArrayOutput() OcspserverArrayOutput

func (OcspserverArray) ToOcspserverArrayOutputWithContext 

func (i OcspserverArray) ToOcspserverArrayOutputWithContext(ctx context.Context) OcspserverArrayOutput

type OcspserverArrayInput 

type OcspserverArrayInput interface {
	pulumi.Input

	ToOcspserverArrayOutput() OcspserverArrayOutput
	ToOcspserverArrayOutputWithContext(context.Context) OcspserverArrayOutput
}

OcspserverArrayInput is an input type that accepts OcspserverArray and OcspserverArrayOutput values. You can construct a concrete instance of `OcspserverArrayInput` via: 

OcspserverArray{ OcspserverArgs{...} }

type OcspserverArrayOutput 

type OcspserverArrayOutput struct{ *pulumi.OutputState }

func (OcspserverArrayOutput) ElementType 

func (OcspserverArrayOutput) ElementType() reflect.Type

func (OcspserverArrayOutput) Index 

func (o OcspserverArrayOutput) Index(i pulumi.IntInput) OcspserverOutput

func (OcspserverArrayOutput) ToOcspserverArrayOutput 

func (o OcspserverArrayOutput) ToOcspserverArrayOutput() OcspserverArrayOutput

func (OcspserverArrayOutput) ToOcspserverArrayOutputWithContext 

func (o OcspserverArrayOutput) ToOcspserverArrayOutputWithContext(ctx context.Context) OcspserverArrayOutput

type OcspserverInput 

type OcspserverInput interface {
	pulumi.Input

	ToOcspserverOutput() OcspserverOutput
	ToOcspserverOutputWithContext(ctx context.Context) OcspserverOutput
}

type OcspserverMap 

type OcspserverMap map[string]OcspserverInput

func (OcspserverMap) ElementType 

func (OcspserverMap) ElementType() reflect.Type

func (OcspserverMap) ToOcspserverMapOutput 

func (i OcspserverMap) ToOcspserverMapOutput() OcspserverMapOutput

func (OcspserverMap) ToOcspserverMapOutputWithContext 

func (i OcspserverMap) ToOcspserverMapOutputWithContext(ctx context.Context) OcspserverMapOutput

type OcspserverMapInput 

type OcspserverMapInput interface {
	pulumi.Input

	ToOcspserverMapOutput() OcspserverMapOutput
	ToOcspserverMapOutputWithContext(context.Context) OcspserverMapOutput
}

OcspserverMapInput is an input type that accepts OcspserverMap and OcspserverMapOutput values. You can construct a concrete instance of `OcspserverMapInput` via: 

OcspserverMap{ "key": OcspserverArgs{...} }

type OcspserverMapOutput 

type OcspserverMapOutput struct{ *pulumi.OutputState }

func (OcspserverMapOutput) ElementType 

func (OcspserverMapOutput) ElementType() reflect.Type

func (OcspserverMapOutput) MapIndex 

func (o OcspserverMapOutput) MapIndex(k pulumi.StringInput) OcspserverOutput

func (OcspserverMapOutput) ToOcspserverMapOutput 

func (o OcspserverMapOutput) ToOcspserverMapOutput() OcspserverMapOutput

func (OcspserverMapOutput) ToOcspserverMapOutputWithContext 

func (o OcspserverMapOutput) ToOcspserverMapOutputWithContext(ctx context.Context) OcspserverMapOutput

type OcspserverOutput 

type OcspserverOutput struct{ *pulumi.OutputState }

func (OcspserverOutput) Cert 

func (o OcspserverOutput) Cert() pulumi.StringOutput

OCSP server certificate.

func (OcspserverOutput) ElementType 

func (OcspserverOutput) ElementType() reflect.Type

func (OcspserverOutput) Name 

func (o OcspserverOutput) Name() pulumi.StringOutput

OCSP server entry name.

func (OcspserverOutput) SecondaryCert 

func (o OcspserverOutput) SecondaryCert() pulumi.StringOutput

Secondary OCSP server certificate.

func (OcspserverOutput) SecondaryUrl 

func (o OcspserverOutput) SecondaryUrl() pulumi.StringOutput

Secondary OCSP server URL.

func (OcspserverOutput) SourceIp 

func (o OcspserverOutput) SourceIp() pulumi.StringOutput

Source IP address for communications to the OCSP server.

func (OcspserverOutput) ToOcspserverOutput 

func (o OcspserverOutput) ToOcspserverOutput() OcspserverOutput

func (OcspserverOutput) ToOcspserverOutputWithContext 

func (o OcspserverOutput) ToOcspserverOutputWithContext(ctx context.Context) OcspserverOutput

func (OcspserverOutput) UnavailAction 

func (o OcspserverOutput) UnavailAction() pulumi.StringOutput

Action when server is unavailable (revoke the certificate or ignore the result of the check). Valid values: `revoke`, `ignore`.

func (OcspserverOutput) Url 

func (o OcspserverOutput) Url() pulumi.StringOutput

OCSP server URL.

func (OcspserverOutput) Vdomparam 

func (o OcspserverOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type OcspserverState 

type OcspserverState struct {
	// OCSP server certificate.
	Cert pulumi.StringPtrInput
	// OCSP server entry name.
	Name pulumi.StringPtrInput
	// Secondary OCSP server certificate.
	SecondaryCert pulumi.StringPtrInput
	// Secondary OCSP server URL.
	SecondaryUrl pulumi.StringPtrInput
	// Source IP address for communications to the OCSP server.
	SourceIp pulumi.StringPtrInput
	// Action when server is unavailable (revoke the certificate or ignore the result of the check). Valid values: `revoke`, `ignore`.
	UnavailAction pulumi.StringPtrInput
	// OCSP server URL.
	Url pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (OcspserverState) ElementType 

func (OcspserverState) ElementType() reflect.Type

type Remote 

type Remote struct {
	pulumi.CustomResourceState

	// Name.
	Name pulumi.StringOutput `pulumi:"name"`
	// Either the global or VDOM IP address range for the remote certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringOutput `pulumi:"range"`
	// Remote certificate.
	Remote pulumi.StringOutput `pulumi:"remote"`
	// Remote certificate source type.
	Source pulumi.StringOutput `pulumi:"source"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

Remote certificate as a PEM file.

## Import

VpnCertificate Remote can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/remote:Remote labelname {{name}} ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/remote:Remote labelname {{name}} ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetRemote 

func GetRemote(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *RemoteState, opts ...pulumi.ResourceOption) (*Remote, error)

GetRemote gets an existing Remote resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewRemote 

func NewRemote(ctx *pulumi.Context,
	name string, args *RemoteArgs, opts ...pulumi.ResourceOption) (*Remote, error)

NewRemote registers a new resource with the given unique name, arguments, and options.

func (*Remote) ElementType 

func (*Remote) ElementType() reflect.Type

func (*Remote) ToRemoteOutput 

func (i *Remote) ToRemoteOutput() RemoteOutput

func (*Remote) ToRemoteOutputWithContext 

func (i *Remote) ToRemoteOutputWithContext(ctx context.Context) RemoteOutput

type RemoteArgs 

type RemoteArgs struct {
	// Name.
	Name pulumi.StringPtrInput
	// Either the global or VDOM IP address range for the remote certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// Remote certificate.
	Remote pulumi.StringPtrInput
	// Remote certificate source type.
	Source pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Remote resource.

func (RemoteArgs) ElementType 

func (RemoteArgs) ElementType() reflect.Type

type RemoteArray 

type RemoteArray []RemoteInput

func (RemoteArray) ElementType 

func (RemoteArray) ElementType() reflect.Type

func (RemoteArray) ToRemoteArrayOutput 

func (i RemoteArray) ToRemoteArrayOutput() RemoteArrayOutput

func (RemoteArray) ToRemoteArrayOutputWithContext 

func (i RemoteArray) ToRemoteArrayOutputWithContext(ctx context.Context) RemoteArrayOutput

type RemoteArrayInput 

type RemoteArrayInput interface {
	pulumi.Input

	ToRemoteArrayOutput() RemoteArrayOutput
	ToRemoteArrayOutputWithContext(context.Context) RemoteArrayOutput
}

RemoteArrayInput is an input type that accepts RemoteArray and RemoteArrayOutput values. You can construct a concrete instance of `RemoteArrayInput` via: 

RemoteArray{ RemoteArgs{...} }

type RemoteArrayOutput 

type RemoteArrayOutput struct{ *pulumi.OutputState }

func (RemoteArrayOutput) ElementType 

func (RemoteArrayOutput) ElementType() reflect.Type

func (RemoteArrayOutput) Index 

func (o RemoteArrayOutput) Index(i pulumi.IntInput) RemoteOutput

func (RemoteArrayOutput) ToRemoteArrayOutput 

func (o RemoteArrayOutput) ToRemoteArrayOutput() RemoteArrayOutput

func (RemoteArrayOutput) ToRemoteArrayOutputWithContext 

func (o RemoteArrayOutput) ToRemoteArrayOutputWithContext(ctx context.Context) RemoteArrayOutput

type RemoteInput 

type RemoteInput interface {
	pulumi.Input

	ToRemoteOutput() RemoteOutput
	ToRemoteOutputWithContext(ctx context.Context) RemoteOutput
}

type RemoteMap 

type RemoteMap map[string]RemoteInput

func (RemoteMap) ElementType 

func (RemoteMap) ElementType() reflect.Type

func (RemoteMap) ToRemoteMapOutput 

func (i RemoteMap) ToRemoteMapOutput() RemoteMapOutput

func (RemoteMap) ToRemoteMapOutputWithContext 

func (i RemoteMap) ToRemoteMapOutputWithContext(ctx context.Context) RemoteMapOutput

type RemoteMapInput 

type RemoteMapInput interface {
	pulumi.Input

	ToRemoteMapOutput() RemoteMapOutput
	ToRemoteMapOutputWithContext(context.Context) RemoteMapOutput
}

RemoteMapInput is an input type that accepts RemoteMap and RemoteMapOutput values. You can construct a concrete instance of `RemoteMapInput` via: 

RemoteMap{ "key": RemoteArgs{...} }

type RemoteMapOutput 

type RemoteMapOutput struct{ *pulumi.OutputState }

func (RemoteMapOutput) ElementType 

func (RemoteMapOutput) ElementType() reflect.Type

func (RemoteMapOutput) MapIndex 

func (o RemoteMapOutput) MapIndex(k pulumi.StringInput) RemoteOutput

func (RemoteMapOutput) ToRemoteMapOutput 

func (o RemoteMapOutput) ToRemoteMapOutput() RemoteMapOutput

func (RemoteMapOutput) ToRemoteMapOutputWithContext 

func (o RemoteMapOutput) ToRemoteMapOutputWithContext(ctx context.Context) RemoteMapOutput

type RemoteOutput 

type RemoteOutput struct{ *pulumi.OutputState }

func (RemoteOutput) ElementType 

func (RemoteOutput) ElementType() reflect.Type

func (RemoteOutput) Name 

func (o RemoteOutput) Name() pulumi.StringOutput

Name.

func (RemoteOutput) Range 

func (o RemoteOutput) Range() pulumi.StringOutput

Either the global or VDOM IP address range for the remote certificate. Valid values: `global`, `vdom`.

func (RemoteOutput) Remote 

func (o RemoteOutput) Remote() pulumi.StringOutput

Remote certificate.

func (RemoteOutput) Source 

func (o RemoteOutput) Source() pulumi.StringOutput

Remote certificate source type.

func (RemoteOutput) ToRemoteOutput 

func (o RemoteOutput) ToRemoteOutput() RemoteOutput

func (RemoteOutput) ToRemoteOutputWithContext 

func (o RemoteOutput) ToRemoteOutputWithContext(ctx context.Context) RemoteOutput

func (RemoteOutput) Vdomparam 

func (o RemoteOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type RemoteState 

type RemoteState struct {
	// Name.
	Name pulumi.StringPtrInput
	// Either the global or VDOM IP address range for the remote certificate. Valid values: `global`, `vdom`.
	Range pulumi.StringPtrInput
	// Remote certificate.
	Remote pulumi.StringPtrInput
	// Remote certificate source type.
	Source pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (RemoteState) ElementType 

func (RemoteState) ElementType() reflect.Type

type Setting 

type Setting struct {
	pulumi.CustomResourceState

	// Number of days before a certificate expires to send a warning. Set to 0 to disable sending of the warning (0 - 100, default = 14).
	CertExpireWarning pulumi.IntOutput `pulumi:"certExpireWarning"`
	// 1024 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa1024 pulumi.StringOutput `pulumi:"certnameDsa1024"`
	// 2048 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa2048 pulumi.StringOutput `pulumi:"certnameDsa2048"`
	// 256 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa256 pulumi.StringOutput `pulumi:"certnameEcdsa256"`
	// 384 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa384 pulumi.StringOutput `pulumi:"certnameEcdsa384"`
	// 521 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa521 pulumi.StringOutput `pulumi:"certnameEcdsa521"`
	// 253 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd25519 pulumi.StringOutput `pulumi:"certnameEd25519"`
	// 456 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd448 pulumi.StringOutput `pulumi:"certnameEd448"`
	// 1024 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa1024 pulumi.StringOutput `pulumi:"certnameRsa1024"`
	// 2048 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa2048 pulumi.StringOutput `pulumi:"certnameRsa2048"`
	// 4096 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa4096 pulumi.StringOutput `pulumi:"certnameRsa4096"`
	// Enable/disable verification of the user certificate and pass authentication if any CA in the chain is trusted (default = enable). Valid values: `enable`, `disable`.
	CheckCaCert pulumi.StringOutput `pulumi:"checkCaCert"`
	// Enable/disable verification of the entire certificate chain and pass authentication only if the chain is complete and all of the CAs in the chain are trusted (default = disable). Valid values: `enable`, `disable`.
	CheckCaChain pulumi.StringOutput `pulumi:"checkCaChain"`
	// Enable/disable server certificate key usage checking in CMP mode (default = enable). Valid values: `enable`, `disable`.
	CmpKeyUsageChecking pulumi.StringOutput `pulumi:"cmpKeyUsageChecking"`
	// Enable/disable saving extra certificates in CMP mode. Valid values: `enable`, `disable`.
	CmpSaveExtraCerts pulumi.StringOutput `pulumi:"cmpSaveExtraCerts"`
	// When searching for a matching certificate, allow mutliple CN fields in certificate subject name (default = enable). Valid values: `disable`, `enable`.
	CnAllowMulti pulumi.StringOutput `pulumi:"cnAllowMulti"`
	// When searching for a matching certificate, control how to find matches in the cn attribute of the certificate subject name. Valid values: `substring`, `value`.
	CnMatch pulumi.StringOutput `pulumi:"cnMatch"`
	// CRL verification options. The structure of `crlVerification` block is documented below.
	CrlVerification SettingCrlVerificationOutput `pulumi:"crlVerification"`
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrOutput `pulumi:"getAllTables"`
	// Specify outgoing interface to reach server.
	Interface pulumi.StringOutput `pulumi:"interface"`
	// Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
	InterfaceSelectMethod pulumi.StringOutput `pulumi:"interfaceSelectMethod"`
	// Default OCSP server.
	OcspDefaultServer pulumi.StringOutput `pulumi:"ocspDefaultServer"`
	// Specify whether the OCSP URL is from certificate or configured OCSP server. Valid values: `certificate`, `server`.
	OcspOption pulumi.StringOutput `pulumi:"ocspOption"`
	// Enable/disable receiving certificates using the OCSP.
	OcspStatus pulumi.StringOutput `pulumi:"ocspStatus"`
	// Proxy server FQDN or IP for OCSP/CA queries during certificate verification.
	Proxy pulumi.StringOutput `pulumi:"proxy"`
	// Proxy server password.
	ProxyPassword pulumi.StringPtrOutput `pulumi:"proxyPassword"`
	// Proxy server port (1 - 65535, default = 8080).
	ProxyPort pulumi.IntOutput `pulumi:"proxyPort"`
	// Proxy server user name.
	ProxyUsername pulumi.StringOutput `pulumi:"proxyUsername"`
	// Source IP address for dynamic AIA and OCSP queries.
	SourceIp pulumi.StringOutput `pulumi:"sourceIp"`
	// Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).
	SslMinProtoVersion pulumi.StringOutput `pulumi:"sslMinProtoVersion"`
	// Source IP address to use to communicate with the OCSP server.
	SslOcspSourceIp pulumi.StringOutput `pulumi:"sslOcspSourceIp"`
	// Enable/disable strict mode CRL checking. Valid values: `enable`, `disable`.
	StrictCrlCheck pulumi.StringOutput `pulumi:"strictCrlCheck"`
	// Enable/disable strict mode OCSP checking. Valid values: `enable`, `disable`.
	StrictOcspCheck pulumi.StringOutput `pulumi:"strictOcspCheck"`
	// When searching for a matching certificate, control how to find matches in the certificate subject name. Valid values: `substring`, `value`.
	SubjectMatch pulumi.StringOutput `pulumi:"subjectMatch"`
	// When searching for a matching certificate, control how to do RDN set matching with certificate subject name (default = subset). Valid values: `subset`, `superset`.
	SubjectSet pulumi.StringOutput `pulumi:"subjectSet"`
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrOutput `pulumi:"vdomparam"`
}

VPN certificate setting.

## Example Usage

<!--Start PulumiCodeChooser --> ```go package main

import ( 

"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/vpn"

) 

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := vpn.NewSetting(ctx, "trname", &vpn.SettingArgs{
			CertnameDsa1024:    pulumi.String("Fortinet_SSL_DSA1024"),
			CertnameDsa2048:    pulumi.String("Fortinet_SSL_DSA2048"),
			CertnameEcdsa256:   pulumi.String("Fortinet_SSL_ECDSA256"),
			CertnameEcdsa384:   pulumi.String("Fortinet_SSL_ECDSA384"),
			CertnameRsa1024:    pulumi.String("Fortinet_SSL_RSA1024"),
			CertnameRsa2048:    pulumi.String("Fortinet_SSL_RSA2048"),
			CheckCaCert:        pulumi.String("enable"),
			CheckCaChain:       pulumi.String("disable"),
			CmpSaveExtraCerts:  pulumi.String("disable"),
			CnMatch:            pulumi.String("substring"),
			OcspOption:         pulumi.String("server"),
			OcspStatus:         pulumi.String("disable"),
			SslMinProtoVersion: pulumi.String("default"),
			StrictCrlCheck:     pulumi.String("disable"),
			StrictOcspCheck:    pulumi.String("disable"),
			SubjectMatch:       pulumi.String("substring"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

``` <!--End PulumiCodeChooser -->

## Import

VpnCertificate Setting can be imported using any of these accepted formats:

```sh $ pulumi import fortios:vpn/certificate/setting:Setting labelname VpnCertificateSetting ```

If you do not want to import arguments of block:

$ export "FORTIOS_IMPORT_TABLE"="false"

```sh $ pulumi import fortios:vpn/certificate/setting:Setting labelname VpnCertificateSetting ```

$ unset "FORTIOS_IMPORT_TABLE"

func GetSetting 

func GetSetting(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *SettingState, opts ...pulumi.ResourceOption) (*Setting, error)

GetSetting gets an existing Setting resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewSetting 

func NewSetting(ctx *pulumi.Context,
	name string, args *SettingArgs, opts ...pulumi.ResourceOption) (*Setting, error)

NewSetting registers a new resource with the given unique name, arguments, and options.

func (*Setting) ElementType 

func (*Setting) ElementType() reflect.Type

func (*Setting) ToSettingOutput 

func (i *Setting) ToSettingOutput() SettingOutput

func (*Setting) ToSettingOutputWithContext 

func (i *Setting) ToSettingOutputWithContext(ctx context.Context) SettingOutput

type SettingArgs 

type SettingArgs struct {
	// Number of days before a certificate expires to send a warning. Set to 0 to disable sending of the warning (0 - 100, default = 14).
	CertExpireWarning pulumi.IntPtrInput
	// 1024 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa1024 pulumi.StringInput
	// 2048 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa2048 pulumi.StringInput
	// 256 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa256 pulumi.StringInput
	// 384 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa384 pulumi.StringInput
	// 521 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa521 pulumi.StringPtrInput
	// 253 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd25519 pulumi.StringPtrInput
	// 456 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd448 pulumi.StringPtrInput
	// 1024 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa1024 pulumi.StringInput
	// 2048 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa2048 pulumi.StringInput
	// 4096 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa4096 pulumi.StringPtrInput
	// Enable/disable verification of the user certificate and pass authentication if any CA in the chain is trusted (default = enable). Valid values: `enable`, `disable`.
	CheckCaCert pulumi.StringPtrInput
	// Enable/disable verification of the entire certificate chain and pass authentication only if the chain is complete and all of the CAs in the chain are trusted (default = disable). Valid values: `enable`, `disable`.
	CheckCaChain pulumi.StringPtrInput
	// Enable/disable server certificate key usage checking in CMP mode (default = enable). Valid values: `enable`, `disable`.
	CmpKeyUsageChecking pulumi.StringPtrInput
	// Enable/disable saving extra certificates in CMP mode. Valid values: `enable`, `disable`.
	CmpSaveExtraCerts pulumi.StringPtrInput
	// When searching for a matching certificate, allow mutliple CN fields in certificate subject name (default = enable). Valid values: `disable`, `enable`.
	CnAllowMulti pulumi.StringPtrInput
	// When searching for a matching certificate, control how to find matches in the cn attribute of the certificate subject name. Valid values: `substring`, `value`.
	CnMatch pulumi.StringPtrInput
	// CRL verification options. The structure of `crlVerification` block is documented below.
	CrlVerification SettingCrlVerificationPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Specify outgoing interface to reach server.
	Interface pulumi.StringPtrInput
	// Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
	InterfaceSelectMethod pulumi.StringPtrInput
	// Default OCSP server.
	OcspDefaultServer pulumi.StringPtrInput
	// Specify whether the OCSP URL is from certificate or configured OCSP server. Valid values: `certificate`, `server`.
	OcspOption pulumi.StringPtrInput
	// Enable/disable receiving certificates using the OCSP.
	OcspStatus pulumi.StringPtrInput
	// Proxy server FQDN or IP for OCSP/CA queries during certificate verification.
	Proxy pulumi.StringPtrInput
	// Proxy server password.
	ProxyPassword pulumi.StringPtrInput
	// Proxy server port (1 - 65535, default = 8080).
	ProxyPort pulumi.IntPtrInput
	// Proxy server user name.
	ProxyUsername pulumi.StringPtrInput
	// Source IP address for dynamic AIA and OCSP queries.
	SourceIp pulumi.StringPtrInput
	// Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).
	SslMinProtoVersion pulumi.StringPtrInput
	// Source IP address to use to communicate with the OCSP server.
	SslOcspSourceIp pulumi.StringPtrInput
	// Enable/disable strict mode CRL checking. Valid values: `enable`, `disable`.
	StrictCrlCheck pulumi.StringPtrInput
	// Enable/disable strict mode OCSP checking. Valid values: `enable`, `disable`.
	StrictOcspCheck pulumi.StringPtrInput
	// When searching for a matching certificate, control how to find matches in the certificate subject name. Valid values: `substring`, `value`.
	SubjectMatch pulumi.StringPtrInput
	// When searching for a matching certificate, control how to do RDN set matching with certificate subject name (default = subset). Valid values: `subset`, `superset`.
	SubjectSet pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

The set of arguments for constructing a Setting resource.

func (SettingArgs) ElementType 

func (SettingArgs) ElementType() reflect.Type

type SettingArray 

type SettingArray []SettingInput

func (SettingArray) ElementType 

func (SettingArray) ElementType() reflect.Type

func (SettingArray) ToSettingArrayOutput 

func (i SettingArray) ToSettingArrayOutput() SettingArrayOutput

func (SettingArray) ToSettingArrayOutputWithContext 

func (i SettingArray) ToSettingArrayOutputWithContext(ctx context.Context) SettingArrayOutput

type SettingArrayInput 

type SettingArrayInput interface {
	pulumi.Input

	ToSettingArrayOutput() SettingArrayOutput
	ToSettingArrayOutputWithContext(context.Context) SettingArrayOutput
}

SettingArrayInput is an input type that accepts SettingArray and SettingArrayOutput values. You can construct a concrete instance of `SettingArrayInput` via: 

SettingArray{ SettingArgs{...} }

type SettingArrayOutput 

type SettingArrayOutput struct{ *pulumi.OutputState }

func (SettingArrayOutput) ElementType 

func (SettingArrayOutput) ElementType() reflect.Type

func (SettingArrayOutput) Index 

func (o SettingArrayOutput) Index(i pulumi.IntInput) SettingOutput

func (SettingArrayOutput) ToSettingArrayOutput 

func (o SettingArrayOutput) ToSettingArrayOutput() SettingArrayOutput

func (SettingArrayOutput) ToSettingArrayOutputWithContext 

func (o SettingArrayOutput) ToSettingArrayOutputWithContext(ctx context.Context) SettingArrayOutput

type SettingCrlVerification 

type SettingCrlVerification struct {
	// CRL verification option when CRL of any certificate in chain is absent (default = ignore). Valid values: `ignore`, `revoke`.
	ChainCrlAbsence *string `pulumi:"chainCrlAbsence"`
	// CRL verification option when CRL is expired (default = ignore). Valid values: `ignore`, `revoke`.
	Expiry *string `pulumi:"expiry"`
	// CRL verification option when leaf CRL is absent (default = ignore). Valid values: `ignore`, `revoke`.
	LeafCrlAbsence *string `pulumi:"leafCrlAbsence"`
}

type SettingCrlVerificationArgs 

type SettingCrlVerificationArgs struct {
	// CRL verification option when CRL of any certificate in chain is absent (default = ignore). Valid values: `ignore`, `revoke`.
	ChainCrlAbsence pulumi.StringPtrInput `pulumi:"chainCrlAbsence"`
	// CRL verification option when CRL is expired (default = ignore). Valid values: `ignore`, `revoke`.
	Expiry pulumi.StringPtrInput `pulumi:"expiry"`
	// CRL verification option when leaf CRL is absent (default = ignore). Valid values: `ignore`, `revoke`.
	LeafCrlAbsence pulumi.StringPtrInput `pulumi:"leafCrlAbsence"`
}

func (SettingCrlVerificationArgs) ElementType 

func (SettingCrlVerificationArgs) ElementType() reflect.Type

func (SettingCrlVerificationArgs) ToSettingCrlVerificationOutput 

func (i SettingCrlVerificationArgs) ToSettingCrlVerificationOutput() SettingCrlVerificationOutput

func (SettingCrlVerificationArgs) ToSettingCrlVerificationOutputWithContext 

func (i SettingCrlVerificationArgs) ToSettingCrlVerificationOutputWithContext(ctx context.Context) SettingCrlVerificationOutput

func (SettingCrlVerificationArgs) ToSettingCrlVerificationPtrOutput 

func (i SettingCrlVerificationArgs) ToSettingCrlVerificationPtrOutput() SettingCrlVerificationPtrOutput

func (SettingCrlVerificationArgs) ToSettingCrlVerificationPtrOutputWithContext 

func (i SettingCrlVerificationArgs) ToSettingCrlVerificationPtrOutputWithContext(ctx context.Context) SettingCrlVerificationPtrOutput

type SettingCrlVerificationInput 

type SettingCrlVerificationInput interface {
	pulumi.Input

	ToSettingCrlVerificationOutput() SettingCrlVerificationOutput
	ToSettingCrlVerificationOutputWithContext(context.Context) SettingCrlVerificationOutput
}

SettingCrlVerificationInput is an input type that accepts SettingCrlVerificationArgs and SettingCrlVerificationOutput values. You can construct a concrete instance of `SettingCrlVerificationInput` via: 

SettingCrlVerificationArgs{...}

type SettingCrlVerificationOutput 

type SettingCrlVerificationOutput struct{ *pulumi.OutputState }

func (SettingCrlVerificationOutput) ChainCrlAbsence 

func (o SettingCrlVerificationOutput) ChainCrlAbsence() pulumi.StringPtrOutput

CRL verification option when CRL of any certificate in chain is absent (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationOutput) ElementType 

func (SettingCrlVerificationOutput) ElementType() reflect.Type

func (SettingCrlVerificationOutput) Expiry 

func (o SettingCrlVerificationOutput) Expiry() pulumi.StringPtrOutput

CRL verification option when CRL is expired (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationOutput) LeafCrlAbsence 

func (o SettingCrlVerificationOutput) LeafCrlAbsence() pulumi.StringPtrOutput

CRL verification option when leaf CRL is absent (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationOutput) ToSettingCrlVerificationOutput 

func (o SettingCrlVerificationOutput) ToSettingCrlVerificationOutput() SettingCrlVerificationOutput

func (SettingCrlVerificationOutput) ToSettingCrlVerificationOutputWithContext 

func (o SettingCrlVerificationOutput) ToSettingCrlVerificationOutputWithContext(ctx context.Context) SettingCrlVerificationOutput

func (SettingCrlVerificationOutput) ToSettingCrlVerificationPtrOutput 

func (o SettingCrlVerificationOutput) ToSettingCrlVerificationPtrOutput() SettingCrlVerificationPtrOutput

func (SettingCrlVerificationOutput) ToSettingCrlVerificationPtrOutputWithContext 

func (o SettingCrlVerificationOutput) ToSettingCrlVerificationPtrOutputWithContext(ctx context.Context) SettingCrlVerificationPtrOutput

type SettingCrlVerificationPtrInput 

type SettingCrlVerificationPtrInput interface {
	pulumi.Input

	ToSettingCrlVerificationPtrOutput() SettingCrlVerificationPtrOutput
	ToSettingCrlVerificationPtrOutputWithContext(context.Context) SettingCrlVerificationPtrOutput
}

SettingCrlVerificationPtrInput is an input type that accepts SettingCrlVerificationArgs, SettingCrlVerificationPtr and SettingCrlVerificationPtrOutput values. You can construct a concrete instance of `SettingCrlVerificationPtrInput` via: 

        SettingCrlVerificationArgs{...}

or:

        nil

func SettingCrlVerificationPtr 

func SettingCrlVerificationPtr(v *SettingCrlVerificationArgs) SettingCrlVerificationPtrInput

type SettingCrlVerificationPtrOutput 

type SettingCrlVerificationPtrOutput struct{ *pulumi.OutputState }

func (SettingCrlVerificationPtrOutput) ChainCrlAbsence 

func (o SettingCrlVerificationPtrOutput) ChainCrlAbsence() pulumi.StringPtrOutput

CRL verification option when CRL of any certificate in chain is absent (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationPtrOutput) Elem 

func (o SettingCrlVerificationPtrOutput) Elem() SettingCrlVerificationOutput

func (SettingCrlVerificationPtrOutput) ElementType 

func (SettingCrlVerificationPtrOutput) ElementType() reflect.Type

func (SettingCrlVerificationPtrOutput) Expiry 

func (o SettingCrlVerificationPtrOutput) Expiry() pulumi.StringPtrOutput

CRL verification option when CRL is expired (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationPtrOutput) LeafCrlAbsence 

func (o SettingCrlVerificationPtrOutput) LeafCrlAbsence() pulumi.StringPtrOutput

CRL verification option when leaf CRL is absent (default = ignore). Valid values: `ignore`, `revoke`.

func (SettingCrlVerificationPtrOutput) ToSettingCrlVerificationPtrOutput 

func (o SettingCrlVerificationPtrOutput) ToSettingCrlVerificationPtrOutput() SettingCrlVerificationPtrOutput

func (SettingCrlVerificationPtrOutput) ToSettingCrlVerificationPtrOutputWithContext 

func (o SettingCrlVerificationPtrOutput) ToSettingCrlVerificationPtrOutputWithContext(ctx context.Context) SettingCrlVerificationPtrOutput

type SettingInput 

type SettingInput interface {
	pulumi.Input

	ToSettingOutput() SettingOutput
	ToSettingOutputWithContext(ctx context.Context) SettingOutput
}

type SettingMap 

type SettingMap map[string]SettingInput

func (SettingMap) ElementType 

func (SettingMap) ElementType() reflect.Type

func (SettingMap) ToSettingMapOutput 

func (i SettingMap) ToSettingMapOutput() SettingMapOutput

func (SettingMap) ToSettingMapOutputWithContext 

func (i SettingMap) ToSettingMapOutputWithContext(ctx context.Context) SettingMapOutput

type SettingMapInput 

type SettingMapInput interface {
	pulumi.Input

	ToSettingMapOutput() SettingMapOutput
	ToSettingMapOutputWithContext(context.Context) SettingMapOutput
}

SettingMapInput is an input type that accepts SettingMap and SettingMapOutput values. You can construct a concrete instance of `SettingMapInput` via: 

SettingMap{ "key": SettingArgs{...} }

type SettingMapOutput 

type SettingMapOutput struct{ *pulumi.OutputState }

func (SettingMapOutput) ElementType 

func (SettingMapOutput) ElementType() reflect.Type

func (SettingMapOutput) MapIndex 

func (o SettingMapOutput) MapIndex(k pulumi.StringInput) SettingOutput

func (SettingMapOutput) ToSettingMapOutput 

func (o SettingMapOutput) ToSettingMapOutput() SettingMapOutput

func (SettingMapOutput) ToSettingMapOutputWithContext 

func (o SettingMapOutput) ToSettingMapOutputWithContext(ctx context.Context) SettingMapOutput

type SettingOutput 

type SettingOutput struct{ *pulumi.OutputState }

func (SettingOutput) CertExpireWarning 

func (o SettingOutput) CertExpireWarning() pulumi.IntOutput

Number of days before a certificate expires to send a warning. Set to 0 to disable sending of the warning (0 - 100, default = 14).

func (SettingOutput) CertnameDsa1024 

func (o SettingOutput) CertnameDsa1024() pulumi.StringOutput

1024 bit DSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameDsa2048 

func (o SettingOutput) CertnameDsa2048() pulumi.StringOutput

2048 bit DSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameEcdsa256 

func (o SettingOutput) CertnameEcdsa256() pulumi.StringOutput

256 bit ECDSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameEcdsa384 

func (o SettingOutput) CertnameEcdsa384() pulumi.StringOutput

384 bit ECDSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameEcdsa521 

func (o SettingOutput) CertnameEcdsa521() pulumi.StringOutput

521 bit ECDSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameEd25519 

func (o SettingOutput) CertnameEd25519() pulumi.StringOutput

253 bit EdDSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameEd448 

func (o SettingOutput) CertnameEd448() pulumi.StringOutput

456 bit EdDSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameRsa1024 

func (o SettingOutput) CertnameRsa1024() pulumi.StringOutput

1024 bit RSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameRsa2048 

func (o SettingOutput) CertnameRsa2048() pulumi.StringOutput

2048 bit RSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CertnameRsa4096 

func (o SettingOutput) CertnameRsa4096() pulumi.StringOutput

4096 bit RSA key certificate for re-signing server certificates for SSL inspection.

func (SettingOutput) CheckCaCert 

func (o SettingOutput) CheckCaCert() pulumi.StringOutput

Enable/disable verification of the user certificate and pass authentication if any CA in the chain is trusted (default = enable). Valid values: `enable`, `disable`.

func (SettingOutput) CheckCaChain 

func (o SettingOutput) CheckCaChain() pulumi.StringOutput

Enable/disable verification of the entire certificate chain and pass authentication only if the chain is complete and all of the CAs in the chain are trusted (default = disable). Valid values: `enable`, `disable`.

func (SettingOutput) CmpKeyUsageChecking 

func (o SettingOutput) CmpKeyUsageChecking() pulumi.StringOutput

Enable/disable server certificate key usage checking in CMP mode (default = enable). Valid values: `enable`, `disable`.

func (SettingOutput) CmpSaveExtraCerts 

func (o SettingOutput) CmpSaveExtraCerts() pulumi.StringOutput

Enable/disable saving extra certificates in CMP mode. Valid values: `enable`, `disable`.

func (SettingOutput) CnAllowMulti 

func (o SettingOutput) CnAllowMulti() pulumi.StringOutput

When searching for a matching certificate, allow mutliple CN fields in certificate subject name (default = enable). Valid values: `disable`, `enable`.

func (SettingOutput) CnMatch 

func (o SettingOutput) CnMatch() pulumi.StringOutput

When searching for a matching certificate, control how to find matches in the cn attribute of the certificate subject name. Valid values: `substring`, `value`.

func (SettingOutput) CrlVerification 

func (o SettingOutput) CrlVerification() SettingCrlVerificationOutput

CRL verification options. The structure of `crlVerification` block is documented below.

func (SettingOutput) ElementType 

func (SettingOutput) ElementType() reflect.Type

func (SettingOutput) GetAllTables 

func (o SettingOutput) GetAllTables() pulumi.StringPtrOutput

Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.

func (SettingOutput) Interface 

func (o SettingOutput) Interface() pulumi.StringOutput

Specify outgoing interface to reach server.

func (SettingOutput) InterfaceSelectMethod 

func (o SettingOutput) InterfaceSelectMethod() pulumi.StringOutput

Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.

func (SettingOutput) OcspDefaultServer 

func (o SettingOutput) OcspDefaultServer() pulumi.StringOutput

Default OCSP server.

func (SettingOutput) OcspOption 

func (o SettingOutput) OcspOption() pulumi.StringOutput

Specify whether the OCSP URL is from certificate or configured OCSP server. Valid values: `certificate`, `server`.

func (SettingOutput) OcspStatus 

func (o SettingOutput) OcspStatus() pulumi.StringOutput

Enable/disable receiving certificates using the OCSP.

func (SettingOutput) Proxy 

func (o SettingOutput) Proxy() pulumi.StringOutput

Proxy server FQDN or IP for OCSP/CA queries during certificate verification.

func (SettingOutput) ProxyPassword 

func (o SettingOutput) ProxyPassword() pulumi.StringPtrOutput

Proxy server password.

func (SettingOutput) ProxyPort 

func (o SettingOutput) ProxyPort() pulumi.IntOutput

Proxy server port (1 - 65535, default = 8080).

func (SettingOutput) ProxyUsername 

func (o SettingOutput) ProxyUsername() pulumi.StringOutput

Proxy server user name.

func (SettingOutput) SourceIp 

func (o SettingOutput) SourceIp() pulumi.StringOutput

Source IP address for dynamic AIA and OCSP queries.

func (SettingOutput) SslMinProtoVersion 

func (o SettingOutput) SslMinProtoVersion() pulumi.StringOutput

Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).

func (SettingOutput) SslOcspSourceIp 

func (o SettingOutput) SslOcspSourceIp() pulumi.StringOutput

Source IP address to use to communicate with the OCSP server.

func (SettingOutput) StrictCrlCheck 

func (o SettingOutput) StrictCrlCheck() pulumi.StringOutput

Enable/disable strict mode CRL checking. Valid values: `enable`, `disable`.

func (SettingOutput) StrictOcspCheck 

func (o SettingOutput) StrictOcspCheck() pulumi.StringOutput

Enable/disable strict mode OCSP checking. Valid values: `enable`, `disable`.

func (SettingOutput) SubjectMatch 

func (o SettingOutput) SubjectMatch() pulumi.StringOutput

When searching for a matching certificate, control how to find matches in the certificate subject name. Valid values: `substring`, `value`.

func (SettingOutput) SubjectSet 

func (o SettingOutput) SubjectSet() pulumi.StringOutput

When searching for a matching certificate, control how to do RDN set matching with certificate subject name (default = subset). Valid values: `subset`, `superset`.

func (SettingOutput) ToSettingOutput 

func (o SettingOutput) ToSettingOutput() SettingOutput

func (SettingOutput) ToSettingOutputWithContext 

func (o SettingOutput) ToSettingOutputWithContext(ctx context.Context) SettingOutput

func (SettingOutput) Vdomparam 

func (o SettingOutput) Vdomparam() pulumi.StringPtrOutput

Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

type SettingState 

type SettingState struct {
	// Number of days before a certificate expires to send a warning. Set to 0 to disable sending of the warning (0 - 100, default = 14).
	CertExpireWarning pulumi.IntPtrInput
	// 1024 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa1024 pulumi.StringPtrInput
	// 2048 bit DSA key certificate for re-signing server certificates for SSL inspection.
	CertnameDsa2048 pulumi.StringPtrInput
	// 256 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa256 pulumi.StringPtrInput
	// 384 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa384 pulumi.StringPtrInput
	// 521 bit ECDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEcdsa521 pulumi.StringPtrInput
	// 253 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd25519 pulumi.StringPtrInput
	// 456 bit EdDSA key certificate for re-signing server certificates for SSL inspection.
	CertnameEd448 pulumi.StringPtrInput
	// 1024 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa1024 pulumi.StringPtrInput
	// 2048 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa2048 pulumi.StringPtrInput
	// 4096 bit RSA key certificate for re-signing server certificates for SSL inspection.
	CertnameRsa4096 pulumi.StringPtrInput
	// Enable/disable verification of the user certificate and pass authentication if any CA in the chain is trusted (default = enable). Valid values: `enable`, `disable`.
	CheckCaCert pulumi.StringPtrInput
	// Enable/disable verification of the entire certificate chain and pass authentication only if the chain is complete and all of the CAs in the chain are trusted (default = disable). Valid values: `enable`, `disable`.
	CheckCaChain pulumi.StringPtrInput
	// Enable/disable server certificate key usage checking in CMP mode (default = enable). Valid values: `enable`, `disable`.
	CmpKeyUsageChecking pulumi.StringPtrInput
	// Enable/disable saving extra certificates in CMP mode. Valid values: `enable`, `disable`.
	CmpSaveExtraCerts pulumi.StringPtrInput
	// When searching for a matching certificate, allow mutliple CN fields in certificate subject name (default = enable). Valid values: `disable`, `enable`.
	CnAllowMulti pulumi.StringPtrInput
	// When searching for a matching certificate, control how to find matches in the cn attribute of the certificate subject name. Valid values: `substring`, `value`.
	CnMatch pulumi.StringPtrInput
	// CRL verification options. The structure of `crlVerification` block is documented below.
	CrlVerification SettingCrlVerificationPtrInput
	// Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwish conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
	GetAllTables pulumi.StringPtrInput
	// Specify outgoing interface to reach server.
	Interface pulumi.StringPtrInput
	// Specify how to select outgoing interface to reach server. Valid values: `auto`, `sdwan`, `specify`.
	InterfaceSelectMethod pulumi.StringPtrInput
	// Default OCSP server.
	OcspDefaultServer pulumi.StringPtrInput
	// Specify whether the OCSP URL is from certificate or configured OCSP server. Valid values: `certificate`, `server`.
	OcspOption pulumi.StringPtrInput
	// Enable/disable receiving certificates using the OCSP.
	OcspStatus pulumi.StringPtrInput
	// Proxy server FQDN or IP for OCSP/CA queries during certificate verification.
	Proxy pulumi.StringPtrInput
	// Proxy server password.
	ProxyPassword pulumi.StringPtrInput
	// Proxy server port (1 - 65535, default = 8080).
	ProxyPort pulumi.IntPtrInput
	// Proxy server user name.
	ProxyUsername pulumi.StringPtrInput
	// Source IP address for dynamic AIA and OCSP queries.
	SourceIp pulumi.StringPtrInput
	// Minimum supported protocol version for SSL/TLS connections (default is to follow system global setting).
	SslMinProtoVersion pulumi.StringPtrInput
	// Source IP address to use to communicate with the OCSP server.
	SslOcspSourceIp pulumi.StringPtrInput
	// Enable/disable strict mode CRL checking. Valid values: `enable`, `disable`.
	StrictCrlCheck pulumi.StringPtrInput
	// Enable/disable strict mode OCSP checking. Valid values: `enable`, `disable`.
	StrictOcspCheck pulumi.StringPtrInput
	// When searching for a matching certificate, control how to find matches in the certificate subject name. Valid values: `substring`, `value`.
	SubjectMatch pulumi.StringPtrInput
	// When searching for a matching certificate, control how to do RDN set matching with certificate subject name (default = subset). Valid values: `subset`, `superset`.
	SubjectSet pulumi.StringPtrInput
	// Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
	Vdomparam pulumi.StringPtrInput
}

func (SettingState) ElementType 

func (SettingState) ElementType() reflect.Type

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.