fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallAccessproxysshclientcert

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Create ObjectFirewallAccessproxysshclientcert Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectFirewallAccessproxysshclientcert(name: string, args?: ObjectFirewallAccessproxysshclientcertArgs, opts?: CustomResourceOptions);

@overload
def ObjectFirewallAccessproxysshclientcert(resource_name: str,
                                           args: Optional[ObjectFirewallAccessproxysshclientcertArgs] = None,
                                           opts: Optional[ResourceOptions] = None)

@overload
def ObjectFirewallAccessproxysshclientcert(resource_name: str,
                                           opts: Optional[ResourceOptions] = None,
                                           adom: Optional[str] = None,
                                           auth_ca: Optional[str] = None,
                                           cert_extensions: Optional[Sequence[ObjectFirewallAccessproxysshclientcertCertExtensionArgs]] = None,
                                           dynamic_sort_subtable: Optional[str] = None,
                                           name: Optional[str] = None,
                                           object_firewall_accessproxysshclientcert_id: Optional[str] = None,
                                           permit_agent_forwarding: Optional[str] = None,
                                           permit_port_forwarding: Optional[str] = None,
                                           permit_pty: Optional[str] = None,
                                           permit_user_rc: Optional[str] = None,
                                           permit_x11_forwarding: Optional[str] = None,
                                           scopetype: Optional[str] = None,
                                           source_address: Optional[str] = None)

func NewObjectFirewallAccessproxysshclientcert(ctx *Context, name string, args *ObjectFirewallAccessproxysshclientcertArgs, opts ...ResourceOption) (*ObjectFirewallAccessproxysshclientcert, error)

public ObjectFirewallAccessproxysshclientcert(string name, ObjectFirewallAccessproxysshclientcertArgs? args = null, CustomResourceOptions? opts = null)

public ObjectFirewallAccessproxysshclientcert(String name, ObjectFirewallAccessproxysshclientcertArgs args)
public ObjectFirewallAccessproxysshclientcert(String name, ObjectFirewallAccessproxysshclientcertArgs args, CustomResourceOptions options)

type: fortimanager:ObjectFirewallAccessproxysshclientcert
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectFirewallAccessproxysshclientcertArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectFirewallAccessproxysshclientcertArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectFirewallAccessproxysshclientcertArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectFirewallAccessproxysshclientcertArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectFirewallAccessproxysshclientcertArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectFirewallAccessproxysshclientcertResource = new Fortimanager.ObjectFirewallAccessproxysshclientcert("objectFirewallAccessproxysshclientcertResource", new()
{
    Adom = "string",
    AuthCa = "string",
    CertExtensions = new[]
    {
        new Fortimanager.Inputs.ObjectFirewallAccessproxysshclientcertCertExtensionArgs
        {
            Critical = "string",
            Data = "string",
            Name = "string",
            Type = "string",
        },
    },
    DynamicSortSubtable = "string",
    Name = "string",
    ObjectFirewallAccessproxysshclientcertId = "string",
    PermitAgentForwarding = "string",
    PermitPortForwarding = "string",
    PermitPty = "string",
    PermitUserRc = "string",
    PermitX11Forwarding = "string",
    Scopetype = "string",
    SourceAddress = "string",
});

example, err := fortimanager.NewObjectFirewallAccessproxysshclientcert(ctx, "objectFirewallAccessproxysshclientcertResource", &fortimanager.ObjectFirewallAccessproxysshclientcertArgs{
Adom: pulumi.String("string"),
AuthCa: pulumi.String("string"),
CertExtensions: .ObjectFirewallAccessproxysshclientcertCertExtensionTypeArray{
&.ObjectFirewallAccessproxysshclientcertCertExtensionTypeArgs{
Critical: pulumi.String("string"),
Data: pulumi.String("string"),
Name: pulumi.String("string"),
Type: pulumi.String("string"),
},
},
DynamicSortSubtable: pulumi.String("string"),
Name: pulumi.String("string"),
ObjectFirewallAccessproxysshclientcertId: pulumi.String("string"),
PermitAgentForwarding: pulumi.String("string"),
PermitPortForwarding: pulumi.String("string"),
PermitPty: pulumi.String("string"),
PermitUserRc: pulumi.String("string"),
PermitX11Forwarding: pulumi.String("string"),
Scopetype: pulumi.String("string"),
SourceAddress: pulumi.String("string"),
})

var objectFirewallAccessproxysshclientcertResource = new ObjectFirewallAccessproxysshclientcert("objectFirewallAccessproxysshclientcertResource", ObjectFirewallAccessproxysshclientcertArgs.builder()
    .adom("string")
    .authCa("string")
    .certExtensions(ObjectFirewallAccessproxysshclientcertCertExtensionArgs.builder()
        .critical("string")
        .data("string")
        .name("string")
        .type("string")
        .build())
    .dynamicSortSubtable("string")
    .name("string")
    .objectFirewallAccessproxysshclientcertId("string")
    .permitAgentForwarding("string")
    .permitPortForwarding("string")
    .permitPty("string")
    .permitUserRc("string")
    .permitX11Forwarding("string")
    .scopetype("string")
    .sourceAddress("string")
    .build());

object_firewall_accessproxysshclientcert_resource = fortimanager.ObjectFirewallAccessproxysshclientcert("objectFirewallAccessproxysshclientcertResource",
    adom="string",
    auth_ca="string",
    cert_extensions=[{
        "critical": "string",
        "data": "string",
        "name": "string",
        "type": "string",
    }],
    dynamic_sort_subtable="string",
    name="string",
    object_firewall_accessproxysshclientcert_id="string",
    permit_agent_forwarding="string",
    permit_port_forwarding="string",
    permit_pty="string",
    permit_user_rc="string",
    permit_x11_forwarding="string",
    scopetype="string",
    source_address="string")

const objectFirewallAccessproxysshclientcertResource = new fortimanager.ObjectFirewallAccessproxysshclientcert("objectFirewallAccessproxysshclientcertResource", {
    adom: "string",
    authCa: "string",
    certExtensions: [{
        critical: "string",
        data: "string",
        name: "string",
        type: "string",
    }],
    dynamicSortSubtable: "string",
    name: "string",
    objectFirewallAccessproxysshclientcertId: "string",
    permitAgentForwarding: "string",
    permitPortForwarding: "string",
    permitPty: "string",
    permitUserRc: "string",
    permitX11Forwarding: "string",
    scopetype: "string",
    sourceAddress: "string",
});

type: fortimanager:ObjectFirewallAccessproxysshclientcert
properties:
    adom: string
    authCa: string
    certExtensions:
        - critical: string
          data: string
          name: string
          type: string
    dynamicSortSubtable: string
    name: string
    objectFirewallAccessproxysshclientcertId: string
    permitAgentForwarding: string
    permitPortForwarding: string
    permitPty: string
    permitUserRc: string
    permitX11Forwarding: string
    scopetype: string
    sourceAddress: string

ObjectFirewallAccessproxysshclientcert Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectFirewallAccessproxysshclientcert resource accepts the following input properties:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthCa string: Name of the SSH server public key authentication CA.
CertExtensions List<ObjectFirewallAccessproxysshclientcertCertExtension>: Cert-Extension. The structure of cert_extension block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Name string: SSH client certificate name.
ObjectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
PermitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
PermitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
PermitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
PermitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
PermitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthCa string: Name of the SSH server public key authentication CA.
CertExtensions []ObjectFirewallAccessproxysshclientcertCertExtensionTypeArgs: Cert-Extension. The structure of cert_extension block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Name string: SSH client certificate name.
ObjectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
PermitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
PermitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
PermitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
PermitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
PermitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa String: Name of the SSH server public key authentication CA.
certExtensions List<ObjectFirewallAccessproxysshclientcertCertExtension>: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name String: SSH client certificate name.
objectFirewallAccessproxysshclientcertId String: an identifier for the resource with format {{name}}.
permitAgentForwarding String: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding String: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty String: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc String: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding String: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress String: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa string: Name of the SSH server public key authentication CA.
certExtensions ObjectFirewallAccessproxysshclientcertCertExtension[]: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name string: SSH client certificate name.
objectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
permitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auth_ca str: Name of the SSH server public key authentication CA.
cert_extensions Sequence[ObjectFirewallAccessproxysshclientcertCertExtensionArgs]: Cert-Extension. The structure of cert_extension block is documented below.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name str: SSH client certificate name.
object_firewall_accessproxysshclientcert_id str: an identifier for the resource with format {{name}}.
permit_agent_forwarding str: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permit_port_forwarding str: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permit_pty str: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permit_user_rc str: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permit_x11_forwarding str: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source_address str: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa String: Name of the SSH server public key authentication CA.
certExtensions List<Property Map>: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name String: SSH client certificate name.
objectFirewallAccessproxysshclientcertId String: an identifier for the resource with format {{name}}.
permitAgentForwarding String: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding String: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty String: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc String: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding String: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress String: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectFirewallAccessproxysshclientcert resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectFirewallAccessproxysshclientcert Resource

Get an existing ObjectFirewallAccessproxysshclientcert resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectFirewallAccessproxysshclientcertState, opts?: CustomResourceOptions): ObjectFirewallAccessproxysshclientcert

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        adom: Optional[str] = None,
        auth_ca: Optional[str] = None,
        cert_extensions: Optional[Sequence[ObjectFirewallAccessproxysshclientcertCertExtensionArgs]] = None,
        dynamic_sort_subtable: Optional[str] = None,
        name: Optional[str] = None,
        object_firewall_accessproxysshclientcert_id: Optional[str] = None,
        permit_agent_forwarding: Optional[str] = None,
        permit_port_forwarding: Optional[str] = None,
        permit_pty: Optional[str] = None,
        permit_user_rc: Optional[str] = None,
        permit_x11_forwarding: Optional[str] = None,
        scopetype: Optional[str] = None,
        source_address: Optional[str] = None) -> ObjectFirewallAccessproxysshclientcert

func GetObjectFirewallAccessproxysshclientcert(ctx *Context, name string, id IDInput, state *ObjectFirewallAccessproxysshclientcertState, opts ...ResourceOption) (*ObjectFirewallAccessproxysshclientcert, error)

public static ObjectFirewallAccessproxysshclientcert Get(string name, Input<string> id, ObjectFirewallAccessproxysshclientcertState? state, CustomResourceOptions? opts = null)

public static ObjectFirewallAccessproxysshclientcert get(String name, Output<String> id, ObjectFirewallAccessproxysshclientcertState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectFirewallAccessproxysshclientcert    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthCa string: Name of the SSH server public key authentication CA.
CertExtensions List<ObjectFirewallAccessproxysshclientcertCertExtension>: Cert-Extension. The structure of cert_extension block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Name string: SSH client certificate name.
ObjectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
PermitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
PermitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
PermitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
PermitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
PermitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthCa string: Name of the SSH server public key authentication CA.
CertExtensions []ObjectFirewallAccessproxysshclientcertCertExtensionTypeArgs: Cert-Extension. The structure of cert_extension block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Name string: SSH client certificate name.
ObjectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
PermitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
PermitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
PermitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
PermitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
PermitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa String: Name of the SSH server public key authentication CA.
certExtensions List<ObjectFirewallAccessproxysshclientcertCertExtension>: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name String: SSH client certificate name.
objectFirewallAccessproxysshclientcertId String: an identifier for the resource with format {{name}}.
permitAgentForwarding String: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding String: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty String: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc String: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding String: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress String: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa string: Name of the SSH server public key authentication CA.
certExtensions ObjectFirewallAccessproxysshclientcertCertExtension[]: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name string: SSH client certificate name.
objectFirewallAccessproxysshclientcertId string: an identifier for the resource with format {{name}}.
permitAgentForwarding string: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding string: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty string: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc string: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding string: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress string: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auth_ca str: Name of the SSH server public key authentication CA.
cert_extensions Sequence[ObjectFirewallAccessproxysshclientcertCertExtensionArgs]: Cert-Extension. The structure of cert_extension block is documented below.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name str: SSH client certificate name.
object_firewall_accessproxysshclientcert_id str: an identifier for the resource with format {{name}}.
permit_agent_forwarding str: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permit_port_forwarding str: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permit_pty str: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permit_user_rc str: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permit_x11_forwarding str: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source_address str: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authCa String: Name of the SSH server public key authentication CA.
certExtensions List<Property Map>: Cert-Extension. The structure of cert_extension block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
name String: SSH client certificate name.
objectFirewallAccessproxysshclientcertId String: an identifier for the resource with format {{name}}.
permitAgentForwarding String: Enable/disable appending permit-agent-forwarding certificate extension. Valid values: disable, enable.
permitPortForwarding String: Enable/disable appending permit-port-forwarding certificate extension. Valid values: disable, enable.
permitPty String: Enable/disable appending permit-pty certificate extension. Valid values: disable, enable.
permitUserRc String: Enable/disable appending permit-user-rc certificate extension. Valid values: disable, enable.
permitX11Forwarding String: Enable/disable appending permit-x11-forwarding certificate extension. Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceAddress String: Enable/disable appending source-address certificate critical option. This option ensure certificate only accepted from FortiGate source address. Valid values: disable, enable.

Supporting Types

ObjectFirewallAccessproxysshclientcertCertExtension, ObjectFirewallAccessproxysshclientcertCertExtensionArgs

Critical string: Critical option. Valid values: no, yes.
Data string: Data of certificate extension.
Name string: Name of certificate extension.
Type string: Type of certificate extension. Valid values: fixed, user.

Critical string: Critical option. Valid values: no, yes.
Data string: Data of certificate extension.
Name string: Name of certificate extension.
Type string: Type of certificate extension. Valid values: fixed, user.

critical String: Critical option. Valid values: no, yes.
data String: Data of certificate extension.
name String: Name of certificate extension.
type String: Type of certificate extension. Valid values: fixed, user.

critical string: Critical option. Valid values: no, yes.
data string: Data of certificate extension.
name string: Name of certificate extension.
type string: Type of certificate extension. Valid values: fixed, user.

critical str: Critical option. Valid values: no, yes.
data str: Data of certificate extension.
name str: Name of certificate extension.
type str: Type of certificate extension. Valid values: fixed, user.

critical String: Critical option. Valid values: no, yes.
data String: Data of certificate extension.
name String: Name of certificate extension.
type String: Type of certificate extension. Valid values: fixed, user.

Import

ObjectFirewall AccessProxySshClientCert can be imported using any of these accepted formats:

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectFirewallAccessproxysshclientcert:ObjectFirewallAccessproxysshclientcert labelname {{name}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallAccessproxysshclientcert

On this page

On this page

Create ObjectFirewallAccessproxysshclientcert Resource

Constructor syntax

Parameters

Constructor example

ObjectFirewallAccessproxysshclientcert Resource Properties

Inputs

Outputs

Look up Existing ObjectFirewallAccessproxysshclientcert Resource

Supporting Types

ObjectFirewallAccessproxysshclientcertCertExtension, ObjectFirewallAccessproxysshclientcertCertExtensionArgs

Import

Package Details

On this page

On this page