fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectDlpProfile

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Create ObjectDlpProfile Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectDlpProfile(name: string, args?: ObjectDlpProfileArgs, opts?: CustomResourceOptions);

@overload
def ObjectDlpProfile(resource_name: str,
                     args: Optional[ObjectDlpProfileArgs] = None,
                     opts: Optional[ResourceOptions] = None)

@overload
def ObjectDlpProfile(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     adom: Optional[str] = None,
                     comment: Optional[str] = None,
                     dlp_log: Optional[str] = None,
                     dynamic_sort_subtable: Optional[str] = None,
                     extended_log: Optional[str] = None,
                     feature_set: Optional[str] = None,
                     full_archive_protos: Optional[Sequence[str]] = None,
                     nac_quar_log: Optional[str] = None,
                     name: Optional[str] = None,
                     object_dlp_profile_id: Optional[str] = None,
                     replacemsg_group: Optional[str] = None,
                     rules: Optional[Sequence[ObjectDlpProfileRuleArgs]] = None,
                     scopetype: Optional[str] = None,
                     summary_protos: Optional[Sequence[str]] = None)

func NewObjectDlpProfile(ctx *Context, name string, args *ObjectDlpProfileArgs, opts ...ResourceOption) (*ObjectDlpProfile, error)

public ObjectDlpProfile(string name, ObjectDlpProfileArgs? args = null, CustomResourceOptions? opts = null)

public ObjectDlpProfile(String name, ObjectDlpProfileArgs args)
public ObjectDlpProfile(String name, ObjectDlpProfileArgs args, CustomResourceOptions options)

type: fortimanager:ObjectDlpProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectDlpProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectDlpProfileArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectDlpProfileArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectDlpProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectDlpProfileArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectDlpProfileResource = new Fortimanager.ObjectDlpProfile("objectDlpProfileResource", new()
{
    Adom = "string",
    Comment = "string",
    DlpLog = "string",
    DynamicSortSubtable = "string",
    ExtendedLog = "string",
    FeatureSet = "string",
    FullArchiveProtos = new[]
    {
        "string",
    },
    NacQuarLog = "string",
    Name = "string",
    ObjectDlpProfileId = "string",
    ReplacemsgGroup = "string",
    Rules = new[]
    {
        new Fortimanager.Inputs.ObjectDlpProfileRuleArgs
        {
            Action = "string",
            Archive = "string",
            Expiry = "string",
            FileSize = 0,
            FileType = "string",
            FilterBy = "string",
            Id = 0,
            Label = "string",
            MatchPercentage = 0,
            Name = "string",
            Protos = new[]
            {
                "string",
            },
            Sensitivities = new[]
            {
                "string",
            },
            Sensors = new[]
            {
                "string",
            },
            Severity = "string",
            Type = "string",
        },
    },
    Scopetype = "string",
    SummaryProtos = new[]
    {
        "string",
    },
});

example, err := fortimanager.NewObjectDlpProfile(ctx, "objectDlpProfileResource", &fortimanager.ObjectDlpProfileArgs{
Adom: pulumi.String("string"),
Comment: pulumi.String("string"),
DlpLog: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
ExtendedLog: pulumi.String("string"),
FeatureSet: pulumi.String("string"),
FullArchiveProtos: pulumi.StringArray{
pulumi.String("string"),
},
NacQuarLog: pulumi.String("string"),
Name: pulumi.String("string"),
ObjectDlpProfileId: pulumi.String("string"),
ReplacemsgGroup: pulumi.String("string"),
Rules: .ObjectDlpProfileRuleTypeArray{
&.ObjectDlpProfileRuleTypeArgs{
Action: pulumi.String("string"),
Archive: pulumi.String("string"),
Expiry: pulumi.String("string"),
FileSize: pulumi.Float64(0),
FileType: pulumi.String("string"),
FilterBy: pulumi.String("string"),
Id: pulumi.Float64(0),
Label: pulumi.String("string"),
MatchPercentage: pulumi.Float64(0),
Name: pulumi.String("string"),
Protos: pulumi.StringArray{
pulumi.String("string"),
},
Sensitivities: pulumi.StringArray{
pulumi.String("string"),
},
Sensors: pulumi.StringArray{
pulumi.String("string"),
},
Severity: pulumi.String("string"),
Type: pulumi.String("string"),
},
},
Scopetype: pulumi.String("string"),
SummaryProtos: pulumi.StringArray{
pulumi.String("string"),
},
})

var objectDlpProfileResource = new ObjectDlpProfile("objectDlpProfileResource", ObjectDlpProfileArgs.builder()
    .adom("string")
    .comment("string")
    .dlpLog("string")
    .dynamicSortSubtable("string")
    .extendedLog("string")
    .featureSet("string")
    .fullArchiveProtos("string")
    .nacQuarLog("string")
    .name("string")
    .objectDlpProfileId("string")
    .replacemsgGroup("string")
    .rules(ObjectDlpProfileRuleArgs.builder()
        .action("string")
        .archive("string")
        .expiry("string")
        .fileSize(0)
        .fileType("string")
        .filterBy("string")
        .id(0)
        .label("string")
        .matchPercentage(0)
        .name("string")
        .protos("string")
        .sensitivities("string")
        .sensors("string")
        .severity("string")
        .type("string")
        .build())
    .scopetype("string")
    .summaryProtos("string")
    .build());

object_dlp_profile_resource = fortimanager.ObjectDlpProfile("objectDlpProfileResource",
    adom="string",
    comment="string",
    dlp_log="string",
    dynamic_sort_subtable="string",
    extended_log="string",
    feature_set="string",
    full_archive_protos=["string"],
    nac_quar_log="string",
    name="string",
    object_dlp_profile_id="string",
    replacemsg_group="string",
    rules=[{
        "action": "string",
        "archive": "string",
        "expiry": "string",
        "file_size": 0,
        "file_type": "string",
        "filter_by": "string",
        "id": 0,
        "label": "string",
        "match_percentage": 0,
        "name": "string",
        "protos": ["string"],
        "sensitivities": ["string"],
        "sensors": ["string"],
        "severity": "string",
        "type": "string",
    }],
    scopetype="string",
    summary_protos=["string"])

const objectDlpProfileResource = new fortimanager.ObjectDlpProfile("objectDlpProfileResource", {
    adom: "string",
    comment: "string",
    dlpLog: "string",
    dynamicSortSubtable: "string",
    extendedLog: "string",
    featureSet: "string",
    fullArchiveProtos: ["string"],
    nacQuarLog: "string",
    name: "string",
    objectDlpProfileId: "string",
    replacemsgGroup: "string",
    rules: [{
        action: "string",
        archive: "string",
        expiry: "string",
        fileSize: 0,
        fileType: "string",
        filterBy: "string",
        id: 0,
        label: "string",
        matchPercentage: 0,
        name: "string",
        protos: ["string"],
        sensitivities: ["string"],
        sensors: ["string"],
        severity: "string",
        type: "string",
    }],
    scopetype: "string",
    summaryProtos: ["string"],
});

type: fortimanager:ObjectDlpProfile
properties:
    adom: string
    comment: string
    dlpLog: string
    dynamicSortSubtable: string
    extendedLog: string
    featureSet: string
    fullArchiveProtos:
        - string
    nacQuarLog: string
    name: string
    objectDlpProfileId: string
    replacemsgGroup: string
    rules:
        - action: string
          archive: string
          expiry: string
          fileSize: 0
          fileType: string
          filterBy: string
          id: 0
          label: string
          matchPercentage: 0
          name: string
          protos:
            - string
          sensitivities:
            - string
          sensors:
            - string
          severity: string
          type: string
    scopetype: string
    summaryProtos:
        - string

ObjectDlpProfile Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectDlpProfile resource accepts the following input properties:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
Comment string: Comment.
DlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
ExtendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
FeatureSet string: Flow/proxy feature set. Valid values: flow, proxy.
FullArchiveProtos List<string>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
NacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
Name string: Name of the DLP profile.
ObjectDlpProfileId string: an identifier for the resource with format {{name}}.
ReplacemsgGroup string: Replacement message group used by this DLP profile.
Rules List<ObjectDlpProfileRule>: Rule. The structure of rule block is documented below.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SummaryProtos List<string>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
Comment string: Comment.
DlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
ExtendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
FeatureSet string: Flow/proxy feature set. Valid values: flow, proxy.
FullArchiveProtos []string: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
NacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
Name string: Name of the DLP profile.
ObjectDlpProfileId string: an identifier for the resource with format {{name}}.
ReplacemsgGroup string: Replacement message group used by this DLP profile.
Rules []ObjectDlpProfileRuleTypeArgs: Rule. The structure of rule block is documented below.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SummaryProtos []string: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment String: Comment.
dlpLog String: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog String: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet String: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos List<String>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog String: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name String: Name of the DLP profile.
objectDlpProfileId String: an identifier for the resource with format {{name}}.
replacemsgGroup String: Replacement message group used by this DLP profile.
rules List<ObjectDlpProfileRule>: Rule. The structure of rule block is documented below.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos List<String>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment string: Comment.
dlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet string: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos string[]: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name string: Name of the DLP profile.
objectDlpProfileId string: an identifier for the resource with format {{name}}.
replacemsgGroup string: Replacement message group used by this DLP profile.
rules ObjectDlpProfileRule[]: Rule. The structure of rule block is documented below.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos string[]: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment str: Comment.
dlp_log str: Enable/disable DLP logging. Valid values: disable, enable.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extended_log str: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
feature_set str: Flow/proxy feature set. Valid values: flow, proxy.
full_archive_protos Sequence[str]: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nac_quar_log str: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name str: Name of the DLP profile.
object_dlp_profile_id str: an identifier for the resource with format {{name}}.
replacemsg_group str: Replacement message group used by this DLP profile.
rules Sequence[ObjectDlpProfileRuleArgs]: Rule. The structure of rule block is documented below.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summary_protos Sequence[str]: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment String: Comment.
dlpLog String: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog String: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet String: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos List<String>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog String: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name String: Name of the DLP profile.
objectDlpProfileId String: an identifier for the resource with format {{name}}.
replacemsgGroup String: Replacement message group used by this DLP profile.
rules List<Property Map>: Rule. The structure of rule block is documented below.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos List<String>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectDlpProfile resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectDlpProfile Resource

Get an existing ObjectDlpProfile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectDlpProfileState, opts?: CustomResourceOptions): ObjectDlpProfile

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        adom: Optional[str] = None,
        comment: Optional[str] = None,
        dlp_log: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        extended_log: Optional[str] = None,
        feature_set: Optional[str] = None,
        full_archive_protos: Optional[Sequence[str]] = None,
        nac_quar_log: Optional[str] = None,
        name: Optional[str] = None,
        object_dlp_profile_id: Optional[str] = None,
        replacemsg_group: Optional[str] = None,
        rules: Optional[Sequence[ObjectDlpProfileRuleArgs]] = None,
        scopetype: Optional[str] = None,
        summary_protos: Optional[Sequence[str]] = None) -> ObjectDlpProfile

func GetObjectDlpProfile(ctx *Context, name string, id IDInput, state *ObjectDlpProfileState, opts ...ResourceOption) (*ObjectDlpProfile, error)

public static ObjectDlpProfile Get(string name, Input<string> id, ObjectDlpProfileState? state, CustomResourceOptions? opts = null)

public static ObjectDlpProfile get(String name, Output<String> id, ObjectDlpProfileState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectDlpProfile    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
Comment string: Comment.
DlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
ExtendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
FeatureSet string: Flow/proxy feature set. Valid values: flow, proxy.
FullArchiveProtos List<string>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
NacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
Name string: Name of the DLP profile.
ObjectDlpProfileId string: an identifier for the resource with format {{name}}.
ReplacemsgGroup string: Replacement message group used by this DLP profile.
Rules List<ObjectDlpProfileRule>: Rule. The structure of rule block is documented below.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SummaryProtos List<string>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
Comment string: Comment.
DlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
ExtendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
FeatureSet string: Flow/proxy feature set. Valid values: flow, proxy.
FullArchiveProtos []string: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
NacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
Name string: Name of the DLP profile.
ObjectDlpProfileId string: an identifier for the resource with format {{name}}.
ReplacemsgGroup string: Replacement message group used by this DLP profile.
Rules []ObjectDlpProfileRuleTypeArgs: Rule. The structure of rule block is documented below.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SummaryProtos []string: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment String: Comment.
dlpLog String: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog String: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet String: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos List<String>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog String: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name String: Name of the DLP profile.
objectDlpProfileId String: an identifier for the resource with format {{name}}.
replacemsgGroup String: Replacement message group used by this DLP profile.
rules List<ObjectDlpProfileRule>: Rule. The structure of rule block is documented below.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos List<String>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment string: Comment.
dlpLog string: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog string: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet string: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos string[]: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog string: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name string: Name of the DLP profile.
objectDlpProfileId string: an identifier for the resource with format {{name}}.
replacemsgGroup string: Replacement message group used by this DLP profile.
rules ObjectDlpProfileRule[]: Rule. The structure of rule block is documented below.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos string[]: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment str: Comment.
dlp_log str: Enable/disable DLP logging. Valid values: disable, enable.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extended_log str: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
feature_set str: Flow/proxy feature set. Valid values: flow, proxy.
full_archive_protos Sequence[str]: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nac_quar_log str: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name str: Name of the DLP profile.
object_dlp_profile_id str: an identifier for the resource with format {{name}}.
replacemsg_group str: Replacement message group used by this DLP profile.
rules Sequence[ObjectDlpProfileRuleArgs]: Rule. The structure of rule block is documented below.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summary_protos Sequence[str]: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
comment String: Comment.
dlpLog String: Enable/disable DLP logging. Valid values: disable, enable.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
extendedLog String: Enable/disable extended logging for data leak prevention. Valid values: disable, enable.
featureSet String: Flow/proxy feature set. Valid values: flow, proxy.
fullArchiveProtos List<String>: Protocols to always content archive. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
nacQuarLog String: Enable/disable NAC quarantine logging. Valid values: disable, enable.
name String: Name of the DLP profile.
objectDlpProfileId String: an identifier for the resource with format {{name}}.
replacemsgGroup String: Replacement message group used by this DLP profile.
rules List<Property Map>: Rule. The structure of rule block is documented below.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
summaryProtos List<String>: Protocols to always log summary. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.

Supporting Types

ObjectDlpProfileRule, ObjectDlpProfileRuleArgs

Action string: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
Archive string: Enable/disable DLP archiving. Valid values: disable, enable.
Expiry string: Quarantine duration in days, hours, minutes (format = dddhhmm).
FileSize double: Match files this size or larger (0 - 4294967295 kbytes).
FileType string: Select the number of a DLP file pattern table to match.
FilterBy string: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
Id double: ID.
Label string: MIP label dictionary.
MatchPercentage double: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
Name string: Filter name.
Protos List<string>: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
Sensitivities List<string>: Select a DLP file pattern sensitivity to match.
Sensors List<string>: Select DLP sensors.
Severity string: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
Type string: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

Action string: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
Archive string: Enable/disable DLP archiving. Valid values: disable, enable.
Expiry string: Quarantine duration in days, hours, minutes (format = dddhhmm).
FileSize float64: Match files this size or larger (0 - 4294967295 kbytes).
FileType string: Select the number of a DLP file pattern table to match.
FilterBy string: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
Id float64: ID.
Label string: MIP label dictionary.
MatchPercentage float64: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
Name string: Filter name.
Protos []string: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
Sensitivities []string: Select a DLP file pattern sensitivity to match.
Sensors []string: Select DLP sensors.
Severity string: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
Type string: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

action String: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
archive String: Enable/disable DLP archiving. Valid values: disable, enable.
expiry String: Quarantine duration in days, hours, minutes (format = dddhhmm).
fileSize Double: Match files this size or larger (0 - 4294967295 kbytes).
fileType String: Select the number of a DLP file pattern table to match.
filterBy String: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
id Double: ID.
label String: MIP label dictionary.
matchPercentage Double: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
name String: Filter name.
protos List<String>: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
sensitivities List<String>: Select a DLP file pattern sensitivity to match.
sensors List<String>: Select DLP sensors.
severity String: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
type String: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

action string: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
archive string: Enable/disable DLP archiving. Valid values: disable, enable.
expiry string: Quarantine duration in days, hours, minutes (format = dddhhmm).
fileSize number: Match files this size or larger (0 - 4294967295 kbytes).
fileType string: Select the number of a DLP file pattern table to match.
filterBy string: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
id number: ID.
label string: MIP label dictionary.
matchPercentage number: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
name string: Filter name.
protos string[]: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
sensitivities string[]: Select a DLP file pattern sensitivity to match.
sensors string[]: Select DLP sensors.
severity string: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
type string: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

action str: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
archive str: Enable/disable DLP archiving. Valid values: disable, enable.
expiry str: Quarantine duration in days, hours, minutes (format = dddhhmm).
file_size float: Match files this size or larger (0 - 4294967295 kbytes).
file_type str: Select the number of a DLP file pattern table to match.
filter_by str: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
id float: ID.
label str: MIP label dictionary.
match_percentage float: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
name str: Filter name.
protos Sequence[str]: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
sensitivities Sequence[str]: Select a DLP file pattern sensitivity to match.
sensors Sequence[str]: Select DLP sensors.
severity str: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
type str: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

action String: Action to take with content that this DLP profile matches. Valid values: log-only, block, quarantine-ip, allow.
archive String: Enable/disable DLP archiving. Valid values: disable, enable.
expiry String: Quarantine duration in days, hours, minutes (format = dddhhmm).
fileSize Number: Match files this size or larger (0 - 4294967295 kbytes).
fileType String: Select the number of a DLP file pattern table to match.
filterBy String: Select the type of content to match. Valid values: fingerprint, sensor, encrypted, none, mip.
id Number: ID.
label String: MIP label dictionary.
matchPercentage Number: Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
name String: Filter name.
protos List<String>: Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-post, http-get, ftp, nntp, mapi, ssh, cifs.
sensitivities List<String>: Select a DLP file pattern sensitivity to match.
sensors List<String>: Select DLP sensors.
severity String: Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
type String: Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

Import

ObjectDlp Profile can be imported using any of these accepted formats:

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectDlpProfile:ObjectDlpProfile labelname {{name}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectDlpProfile

On this page

On this page

Create ObjectDlpProfile Resource

Constructor syntax

Parameters

Constructor example

ObjectDlpProfile Resource Properties

Inputs

Outputs

Look up Existing ObjectDlpProfile Resource

Supporting Types

ObjectDlpProfileRule, ObjectDlpProfileRuleArgs

Import

Package Details

On this page

On this page