fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectVpnCertificateCa

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as fortimanager from "@pulumi/fortimanager";

const trname = new fortimanager.ObjectVpnCertificateCa("trname", {
    autoUpdateDays: 5,
    autoUpdateDaysWarning: 1,
    ca: `-----BEGIN CERTIFICATE-----
MIIDADCCAeigAwIBAgIgRDM5NzdDMTU4MjdDQTk4Njc2RkU4RjZGQzIzMDU3MDUw
DQYJKoZIhvcNAQEFBQAwKzEWMBQGA1UEChMNRm9ydGluZXQgTHRkLjERMA8GA1UE
AxMIRm9ydGluZXQwHhcNMjEwMzE4MjIwOTUyWhcNMzEwMzIzMjIwOTUyWjArMRYw
FAYDVQQKEw1Gb3J0aW5ldCBMdGQuMREwDwYDVQQDEwhGb3J0aW5ldDCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKJuKUPF7vAFBoESVSkVSGhyvoEp0cFs
VtsS0iOTytJAyozSfNccthQcZTtfS4LDv7y0jKwvlnjqeCULVD9j65emaJQGCLgq
+cfxLOc7n3Un4JEEyuAjdaGPcrxMuvaZKiP/H5w9E/eY3OUuqCZJRkPjyJNFn8IW
ewPMiSlA1LrKcuwqLVrjJb0vhaqiJc+X4/LFgKU5D8PrtKaCotpJ5rwjQ3G4bl4/
L/BUrKiBnREQifRbS3bVQ05Zg2pqIm+xmOlpAV0yjR2yhwhd5KuCb53bZcaBtSLf
3Q2bCHEWZ2XQjMbXArPnt50N+oVk5kSENskl+47Km72gHDwhP1B63JcCAwEAAaMQ
MA4wDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQUFAAOCAQEAf1uOXvng/SYM28Aw
8yy1sTM2lmxnFMhYID3d2rXmsAgMZ3vVX3clmq4vYmrRNxhq6Ny8crrjllzLwRY0
hcHqP7ZBR+hJeYDaROFMFn6jeOcbmPWeRnEI0QUHkUCM5o6xnjqoP0iQmmcjPt4w
pgPH3AnGSl309xtqb8/FwUJuU0zppYzwDt/auP2ORkXcfWeXAhrgFnRpDKyEo7nN
/x/BtT3uPovNoJvnRngvLpFF670wK8ZGY781h/e7TIdFgpv512bJ/zk/ZAJsCKSy
nltfV9zv7+y0TsZ4BF/GDicCSAVtll1IyDp6nrUXFroAqcYnLCATfQqy8Xkxt8wS
9LpnyA==
-----END CERTIFICATE-----
`,
    range: "vdom",
    source: "user",
    sourceIp: "0.0.0.0",
    sslInspectionTrusted: "enable",
});

import pulumi
import pulumi_fortimanager as fortimanager

trname = fortimanager.ObjectVpnCertificateCa("trname",
    auto_update_days=5,
    auto_update_days_warning=1,
    ca="""-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
""",
    range="vdom",
    source="user",
    source_ip="0.0.0.0",
    ssl_inspection_trusted="enable")

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/fortimanager/fortimanager"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := fortimanager.NewObjectVpnCertificateCa(ctx, "trname", &fortimanager.ObjectVpnCertificateCaArgs{
			AutoUpdateDays:        pulumi.Float64(5),
			AutoUpdateDaysWarning: pulumi.Float64(1),
			Ca: pulumi.String(`-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
`),
			Range:                pulumi.String("vdom"),
			Source:               pulumi.String("user"),
			SourceIp:             pulumi.String("0.0.0.0"),
			SslInspectionTrusted: pulumi.String("enable"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortimanager = Pulumi.Fortimanager;

return await Deployment.RunAsync(() => 
{
    var trname = new Fortimanager.ObjectVpnCertificateCa("trname", new()
    {
        AutoUpdateDays = 5,
        AutoUpdateDaysWarning = 1,
        Ca = @"-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
",
        Range = "vdom",
        Source = "user",
        SourceIp = "0.0.0.0",
        SslInspectionTrusted = "enable",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortimanager.ObjectVpnCertificateCa;
import com.pulumi.fortimanager.ObjectVpnCertificateCaArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var trname = new ObjectVpnCertificateCa("trname", ObjectVpnCertificateCaArgs.builder()
            .autoUpdateDays(5)
            .autoUpdateDaysWarning(1)
            .ca("""
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
            """)
            .range("vdom")
            .source("user")
            .sourceIp("0.0.0.0")
            .sslInspectionTrusted("enable")
            .build());

    }
}

resources:
  trname:
    type: fortimanager:ObjectVpnCertificateCa
    properties:
      autoUpdateDays: 5
      autoUpdateDaysWarning: 1
      ca: |
        -----BEGIN CERTIFICATE-----
        MIIDADCCAeigAwIBAgIgRDM5NzdDMTU4MjdDQTk4Njc2RkU4RjZGQzIzMDU3MDUw
        DQYJKoZIhvcNAQEFBQAwKzEWMBQGA1UEChMNRm9ydGluZXQgTHRkLjERMA8GA1UE
        AxMIRm9ydGluZXQwHhcNMjEwMzE4MjIwOTUyWhcNMzEwMzIzMjIwOTUyWjArMRYw
        FAYDVQQKEw1Gb3J0aW5ldCBMdGQuMREwDwYDVQQDEwhGb3J0aW5ldDCCASIwDQYJ
        KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKJuKUPF7vAFBoESVSkVSGhyvoEp0cFs
        VtsS0iOTytJAyozSfNccthQcZTtfS4LDv7y0jKwvlnjqeCULVD9j65emaJQGCLgq
        +cfxLOc7n3Un4JEEyuAjdaGPcrxMuvaZKiP/H5w9E/eY3OUuqCZJRkPjyJNFn8IW
        ewPMiSlA1LrKcuwqLVrjJb0vhaqiJc+X4/LFgKU5D8PrtKaCotpJ5rwjQ3G4bl4/
        L/BUrKiBnREQifRbS3bVQ05Zg2pqIm+xmOlpAV0yjR2yhwhd5KuCb53bZcaBtSLf
        3Q2bCHEWZ2XQjMbXArPnt50N+oVk5kSENskl+47Km72gHDwhP1B63JcCAwEAAaMQ
        MA4wDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQUFAAOCAQEAf1uOXvng/SYM28Aw
        8yy1sTM2lmxnFMhYID3d2rXmsAgMZ3vVX3clmq4vYmrRNxhq6Ny8crrjllzLwRY0
        hcHqP7ZBR+hJeYDaROFMFn6jeOcbmPWeRnEI0QUHkUCM5o6xnjqoP0iQmmcjPt4w
        pgPH3AnGSl309xtqb8/FwUJuU0zppYzwDt/auP2ORkXcfWeXAhrgFnRpDKyEo7nN
        /x/BtT3uPovNoJvnRngvLpFF670wK8ZGY781h/e7TIdFgpv512bJ/zk/ZAJsCKSy
        nltfV9zv7+y0TsZ4BF/GDicCSAVtll1IyDp6nrUXFroAqcYnLCATfQqy8Xkxt8wS
        9LpnyA==
        -----END CERTIFICATE-----        
      range: vdom
      source: user
      sourceIp: 0.0.0.0
      sslInspectionTrusted: enable

Create ObjectVpnCertificateCa Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectVpnCertificateCa(name: string, args?: ObjectVpnCertificateCaArgs, opts?: CustomResourceOptions);

@overload
def ObjectVpnCertificateCa(resource_name: str,
                           args: Optional[ObjectVpnCertificateCaArgs] = None,
                           opts: Optional[ResourceOptions] = None)

@overload
def ObjectVpnCertificateCa(resource_name: str,
                           opts: Optional[ResourceOptions] = None,
                           _private_key: Optional[str] = None,
                           adom: Optional[str] = None,
                           auto_update_days: Optional[float] = None,
                           auto_update_days_warning: Optional[float] = None,
                           ca: Optional[str] = None,
                           ca_identifier: Optional[str] = None,
                           est_url: Optional[str] = None,
                           fabric_ca: Optional[str] = None,
                           last_updated: Optional[float] = None,
                           name: Optional[str] = None,
                           non_fabric_name: Optional[str] = None,
                           object_vpn_certificate_ca_id: Optional[str] = None,
                           obsolete: Optional[str] = None,
                           range: Optional[str] = None,
                           scep_url: Optional[str] = None,
                           scopetype: Optional[str] = None,
                           source: Optional[str] = None,
                           source_ip: Optional[str] = None,
                           ssl_inspection_trusted: Optional[str] = None,
                           trusted: Optional[str] = None)

func NewObjectVpnCertificateCa(ctx *Context, name string, args *ObjectVpnCertificateCaArgs, opts ...ResourceOption) (*ObjectVpnCertificateCa, error)

public ObjectVpnCertificateCa(string name, ObjectVpnCertificateCaArgs? args = null, CustomResourceOptions? opts = null)

public ObjectVpnCertificateCa(String name, ObjectVpnCertificateCaArgs args)
public ObjectVpnCertificateCa(String name, ObjectVpnCertificateCaArgs args, CustomResourceOptions options)

type: fortimanager:ObjectVpnCertificateCa
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectVpnCertificateCaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectVpnCertificateCaArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectVpnCertificateCaArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectVpnCertificateCaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectVpnCertificateCaArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectVpnCertificateCaResource = new Fortimanager.ObjectVpnCertificateCa("objectVpnCertificateCaResource", new()
{
    _privateKey = "string",
    Adom = "string",
    AutoUpdateDays = 0,
    AutoUpdateDaysWarning = 0,
    Ca = "string",
    CaIdentifier = "string",
    EstUrl = "string",
    FabricCa = "string",
    LastUpdated = 0,
    Name = "string",
    NonFabricName = "string",
    ObjectVpnCertificateCaId = "string",
    Obsolete = "string",
    Range = "string",
    ScepUrl = "string",
    Scopetype = "string",
    Source = "string",
    SourceIp = "string",
    SslInspectionTrusted = "string",
    Trusted = "string",
});

example, err := fortimanager.NewObjectVpnCertificateCa(ctx, "objectVpnCertificateCaResource", &fortimanager.ObjectVpnCertificateCaArgs{
_privateKey: pulumi.String("string"),
Adom: pulumi.String("string"),
AutoUpdateDays: pulumi.Float64(0),
AutoUpdateDaysWarning: pulumi.Float64(0),
Ca: pulumi.String("string"),
CaIdentifier: pulumi.String("string"),
EstUrl: pulumi.String("string"),
FabricCa: pulumi.String("string"),
LastUpdated: pulumi.Float64(0),
Name: pulumi.String("string"),
NonFabricName: pulumi.String("string"),
ObjectVpnCertificateCaId: pulumi.String("string"),
Obsolete: pulumi.String("string"),
Range: pulumi.String("string"),
ScepUrl: pulumi.String("string"),
Scopetype: pulumi.String("string"),
Source: pulumi.String("string"),
SourceIp: pulumi.String("string"),
SslInspectionTrusted: pulumi.String("string"),
Trusted: pulumi.String("string"),
})

var objectVpnCertificateCaResource = new ObjectVpnCertificateCa("objectVpnCertificateCaResource", ObjectVpnCertificateCaArgs.builder()
    ._privateKey("string")
    .adom("string")
    .autoUpdateDays(0)
    .autoUpdateDaysWarning(0)
    .ca("string")
    .caIdentifier("string")
    .estUrl("string")
    .fabricCa("string")
    .lastUpdated(0)
    .name("string")
    .nonFabricName("string")
    .objectVpnCertificateCaId("string")
    .obsolete("string")
    .range("string")
    .scepUrl("string")
    .scopetype("string")
    .source("string")
    .sourceIp("string")
    .sslInspectionTrusted("string")
    .trusted("string")
    .build());

object_vpn_certificate_ca_resource = fortimanager.ObjectVpnCertificateCa("objectVpnCertificateCaResource",
    _private_key="string",
    adom="string",
    auto_update_days=0,
    auto_update_days_warning=0,
    ca="string",
    ca_identifier="string",
    est_url="string",
    fabric_ca="string",
    last_updated=0,
    name="string",
    non_fabric_name="string",
    object_vpn_certificate_ca_id="string",
    obsolete="string",
    range="string",
    scep_url="string",
    scopetype="string",
    source="string",
    source_ip="string",
    ssl_inspection_trusted="string",
    trusted="string")

const objectVpnCertificateCaResource = new fortimanager.ObjectVpnCertificateCa("objectVpnCertificateCaResource", {
    _privateKey: "string",
    adom: "string",
    autoUpdateDays: 0,
    autoUpdateDaysWarning: 0,
    ca: "string",
    caIdentifier: "string",
    estUrl: "string",
    fabricCa: "string",
    lastUpdated: 0,
    name: "string",
    nonFabricName: "string",
    objectVpnCertificateCaId: "string",
    obsolete: "string",
    range: "string",
    scepUrl: "string",
    scopetype: "string",
    source: "string",
    sourceIp: "string",
    sslInspectionTrusted: "string",
    trusted: "string",
});

type: fortimanager:ObjectVpnCertificateCa
properties:
    _privateKey: string
    adom: string
    autoUpdateDays: 0
    autoUpdateDaysWarning: 0
    ca: string
    caIdentifier: string
    estUrl: string
    fabricCa: string
    lastUpdated: 0
    name: string
    nonFabricName: string
    objectVpnCertificateCaId: string
    obsolete: string
    range: string
    scepUrl: string
    scopetype: string
    source: string
    sourceIp: string
    sslInspectionTrusted: string
    trusted: string

ObjectVpnCertificateCa Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectVpnCertificateCa resource accepts the following input properties:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoUpdateDays double: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
AutoUpdateDaysWarning double: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
Ca string: CA certificate as a PEM file.
CaIdentifier string: CA identifier of the SCEP server.
EstUrl string: URL of the EST server.
FabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
LastUpdated double: Time at which CA was last updated.
Name string: Name.
NonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
ObjectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
Obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
Range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
ScepUrl string: URL of the SCEP server.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
SourceIp string: Source IP address for communications to the SCEP server.
SslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
Trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.
_privateKey string: _Private_Key.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoUpdateDays float64: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
AutoUpdateDaysWarning float64: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
Ca string: CA certificate as a PEM file.
CaIdentifier string: CA identifier of the SCEP server.
EstUrl string: URL of the EST server.
FabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
LastUpdated float64: Time at which CA was last updated.
Name string: Name.
NonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
ObjectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
Obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
Range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
ScepUrl string: URL of the SCEP server.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
SourceIp string: Source IP address for communications to the SCEP server.
SslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
Trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.
_privateKey string: _Private_Key.

_privateKey String: _Private_Key.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays Double: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning Double: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca String: CA certificate as a PEM file.
caIdentifier String: CA identifier of the SCEP server.
estUrl String: URL of the EST server.
fabricCa String: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated Double: Time at which CA was last updated.
name String: Name.
nonFabricName String: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId String: an identifier for the resource with format {{name}}.
obsolete String: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range String: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl String: URL of the SCEP server.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp String: Source IP address for communications to the SCEP server.
sslInspectionTrusted String: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted String: Enable/disable as a trusted CA. Valid values: disable, enable.

_privateKey string: _Private_Key.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays number: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning number: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca string: CA certificate as a PEM file.
caIdentifier string: CA identifier of the SCEP server.
estUrl string: URL of the EST server.
fabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated number: Time at which CA was last updated.
name string: Name.
nonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl string: URL of the SCEP server.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp string: Source IP address for communications to the SCEP server.
sslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.

_private_key str: _Private_Key.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auto_update_days float: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
auto_update_days_warning float: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca str: CA certificate as a PEM file.
ca_identifier str: CA identifier of the SCEP server.
est_url str: URL of the EST server.
fabric_ca str: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
last_updated float: Time at which CA was last updated.
name str: Name.
non_fabric_name str: Name used prior to becoming a Security Fabric synchronized CA.
object_vpn_certificate_ca_id str: an identifier for the resource with format {{name}}.
obsolete str: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range str: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scep_url str: URL of the SCEP server.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source str: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
source_ip str: Source IP address for communications to the SCEP server.
ssl_inspection_trusted str: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted str: Enable/disable as a trusted CA. Valid values: disable, enable.

_privateKey String: _Private_Key.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays Number: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning Number: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca String: CA certificate as a PEM file.
caIdentifier String: CA identifier of the SCEP server.
estUrl String: URL of the EST server.
fabricCa String: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated Number: Time at which CA was last updated.
name String: Name.
nonFabricName String: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId String: an identifier for the resource with format {{name}}.
obsolete String: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range String: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl String: URL of the SCEP server.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp String: Source IP address for communications to the SCEP server.
sslInspectionTrusted String: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted String: Enable/disable as a trusted CA. Valid values: disable, enable.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectVpnCertificateCa resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectVpnCertificateCa Resource

Get an existing ObjectVpnCertificateCa resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectVpnCertificateCaState, opts?: CustomResourceOptions): ObjectVpnCertificateCa

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        _private_key: Optional[str] = None,
        adom: Optional[str] = None,
        auto_update_days: Optional[float] = None,
        auto_update_days_warning: Optional[float] = None,
        ca: Optional[str] = None,
        ca_identifier: Optional[str] = None,
        est_url: Optional[str] = None,
        fabric_ca: Optional[str] = None,
        last_updated: Optional[float] = None,
        name: Optional[str] = None,
        non_fabric_name: Optional[str] = None,
        object_vpn_certificate_ca_id: Optional[str] = None,
        obsolete: Optional[str] = None,
        range: Optional[str] = None,
        scep_url: Optional[str] = None,
        scopetype: Optional[str] = None,
        source: Optional[str] = None,
        source_ip: Optional[str] = None,
        ssl_inspection_trusted: Optional[str] = None,
        trusted: Optional[str] = None) -> ObjectVpnCertificateCa

func GetObjectVpnCertificateCa(ctx *Context, name string, id IDInput, state *ObjectVpnCertificateCaState, opts ...ResourceOption) (*ObjectVpnCertificateCa, error)

public static ObjectVpnCertificateCa Get(string name, Input<string> id, ObjectVpnCertificateCaState? state, CustomResourceOptions? opts = null)

public static ObjectVpnCertificateCa get(String name, Output<String> id, ObjectVpnCertificateCaState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectVpnCertificateCa    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoUpdateDays double: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
AutoUpdateDaysWarning double: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
Ca string: CA certificate as a PEM file.
CaIdentifier string: CA identifier of the SCEP server.
EstUrl string: URL of the EST server.
FabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
LastUpdated double: Time at which CA was last updated.
Name string: Name.
NonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
ObjectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
Obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
Range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
ScepUrl string: URL of the SCEP server.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
SourceIp string: Source IP address for communications to the SCEP server.
SslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
Trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.
_privateKey string: _Private_Key.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoUpdateDays float64: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
AutoUpdateDaysWarning float64: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
Ca string: CA certificate as a PEM file.
CaIdentifier string: CA identifier of the SCEP server.
EstUrl string: URL of the EST server.
FabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
LastUpdated float64: Time at which CA was last updated.
Name string: Name.
NonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
ObjectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
Obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
Range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
ScepUrl string: URL of the SCEP server.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
SourceIp string: Source IP address for communications to the SCEP server.
SslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
Trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.
_privateKey string: _Private_Key.

_privateKey String: _Private_Key.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays Double: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning Double: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca String: CA certificate as a PEM file.
caIdentifier String: CA identifier of the SCEP server.
estUrl String: URL of the EST server.
fabricCa String: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated Double: Time at which CA was last updated.
name String: Name.
nonFabricName String: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId String: an identifier for the resource with format {{name}}.
obsolete String: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range String: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl String: URL of the SCEP server.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp String: Source IP address for communications to the SCEP server.
sslInspectionTrusted String: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted String: Enable/disable as a trusted CA. Valid values: disable, enable.

_privateKey string: _Private_Key.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays number: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning number: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca string: CA certificate as a PEM file.
caIdentifier string: CA identifier of the SCEP server.
estUrl string: URL of the EST server.
fabricCa string: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated number: Time at which CA was last updated.
name string: Name.
nonFabricName string: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId string: an identifier for the resource with format {{name}}.
obsolete string: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range string: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl string: URL of the SCEP server.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source string: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp string: Source IP address for communications to the SCEP server.
sslInspectionTrusted string: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted string: Enable/disable as a trusted CA. Valid values: disable, enable.

_private_key str: _Private_Key.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auto_update_days float: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
auto_update_days_warning float: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca str: CA certificate as a PEM file.
ca_identifier str: CA identifier of the SCEP server.
est_url str: URL of the EST server.
fabric_ca str: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
last_updated float: Time at which CA was last updated.
name str: Name.
non_fabric_name str: Name used prior to becoming a Security Fabric synchronized CA.
object_vpn_certificate_ca_id str: an identifier for the resource with format {{name}}.
obsolete str: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range str: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scep_url str: URL of the SCEP server.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source str: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
source_ip str: Source IP address for communications to the SCEP server.
ssl_inspection_trusted str: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted str: Enable/disable as a trusted CA. Valid values: disable, enable.

_privateKey String: _Private_Key.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoUpdateDays Number: Number of days to wait before requesting an updated CA certificate (0 - 4294967295, 0 = disabled).
autoUpdateDaysWarning Number: Number of days before an expiry-warning message is generated (0 - 4294967295, 0 = disabled).
ca String: CA certificate as a PEM file.
caIdentifier String: CA identifier of the SCEP server.
estUrl String: URL of the EST server.
fabricCa String: Enable/disable synchronization of CA across Security Fabric. Valid values: disable, enable.
lastUpdated Number: Time at which CA was last updated.
name String: Name.
nonFabricName String: Name used prior to becoming a Security Fabric synchronized CA.
objectVpnCertificateCaId String: an identifier for the resource with format {{name}}.
obsolete String: Enable/disable this CA as obsoleted. Valid values: disable, enable.
range String: Either global or VDOM IP address range for the CA certificate. Valid values: global, vdom.
scepUrl String: URL of the SCEP server.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source String: CA certificate source type. Valid values: factory, user, bundle, fortiguard.
sourceIp String: Source IP address for communications to the SCEP server.
sslInspectionTrusted String: Enable/disable this CA as a trusted CA for SSL inspection. Valid values: disable, enable.
trusted String: Enable/disable as a trusted CA. Valid values: disable, enable.

Import

ObjectVpn CertificateCa can be imported using any of these accepted formats:

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectVpnCertificateCa:ObjectVpnCertificateCa labelname {{name}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectVpnCertificateCa

On this page

On this page

Example Usage

Create ObjectVpnCertificateCa Resource

Constructor syntax

Parameters

Constructor example

ObjectVpnCertificateCa Resource Properties

Inputs

Outputs

Look up Existing ObjectVpnCertificateCa Resource

Import

Package Details

On this page

On this page