The highest tagged major version is
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Domain ¶
type Domain struct {
pulumi.CustomResourceState
// The name of delegated administrator account used to perform Active Directory operations.
// If not specified, setupadmin will be used.
Admin pulumi.StringPtrOutput `pulumi:"admin"`
// The full names of the Google Compute Engine networks the domain instance is connected to. The domain is only available on networks listed in authorizedNetworks.
// If CIDR subnets overlap between networks, domain creation will fail.
AuthorizedNetworks pulumi.StringArrayOutput `pulumi:"authorizedNetworks"`
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
DomainName pulumi.StringOutput `pulumi:"domainName"`
// The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would
// be chosen for an Active Directory set up on an internal network.
Fqdn pulumi.StringOutput `pulumi:"fqdn"`
// Resource labels that can contain user-provided metadata
Labels pulumi.StringMapOutput `pulumi:"labels"`
// Locations where domain needs to be provisioned. [regions][compute/docs/regions-zones/]
// e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
Locations pulumi.StringArrayOutput `pulumi:"locations"`
// The unique name of the domain using the format: 'projects/{project}/locations/global/domains/{domainName}'.
Name pulumi.StringOutput `pulumi:"name"`
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringOutput `pulumi:"project"`
// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger.
// Ranges must be unique and non-overlapping with existing subnets in authorizedNetworks
ReservedIpRange pulumi.StringOutput `pulumi:"reservedIpRange"`
}
Creates a Microsoft AD domain
To get more information about Domain, see:
* [API documentation](https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains) * How-to Guides
- [Managed Microsoft Active Directory Quickstart](https://cloud.google.com/managed-microsoft-ad/docs/quickstarts)
## Example Usage
func GetDomain ¶
func GetDomain(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DomainState, opts ...pulumi.ResourceOption) (*Domain, error)
GetDomain gets an existing Domain resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDomain ¶
func NewDomain(ctx *pulumi.Context, name string, args *DomainArgs, opts ...pulumi.ResourceOption) (*Domain, error)
NewDomain registers a new resource with the given unique name, arguments, and options.
type DomainArgs ¶
type DomainArgs struct {
// The name of delegated administrator account used to perform Active Directory operations.
// If not specified, setupadmin will be used.
Admin pulumi.StringPtrInput
// The full names of the Google Compute Engine networks the domain instance is connected to. The domain is only available on networks listed in authorizedNetworks.
// If CIDR subnets overlap between networks, domain creation will fail.
AuthorizedNetworks pulumi.StringArrayInput
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
DomainName pulumi.StringInput
// Resource labels that can contain user-provided metadata
Labels pulumi.StringMapInput
// Locations where domain needs to be provisioned. [regions][compute/docs/regions-zones/]
// e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
Locations pulumi.StringArrayInput
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringPtrInput
// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger.
// Ranges must be unique and non-overlapping with existing subnets in authorizedNetworks
ReservedIpRange pulumi.StringInput
}
The set of arguments for constructing a Domain resource.
func (DomainArgs) ElementType ¶
func (DomainArgs) ElementType() reflect.Type
type DomainState ¶
type DomainState struct {
// The name of delegated administrator account used to perform Active Directory operations.
// If not specified, setupadmin will be used.
Admin pulumi.StringPtrInput
// The full names of the Google Compute Engine networks the domain instance is connected to. The domain is only available on networks listed in authorizedNetworks.
// If CIDR subnets overlap between networks, domain creation will fail.
AuthorizedNetworks pulumi.StringArrayInput
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
DomainName pulumi.StringPtrInput
// The fully-qualified domain name of the exposed domain used by clients to connect to the service. Similar to what would
// be chosen for an Active Directory set up on an internal network.
Fqdn pulumi.StringPtrInput
// Resource labels that can contain user-provided metadata
Labels pulumi.StringMapInput
// Locations where domain needs to be provisioned. [regions][compute/docs/regions-zones/]
// e.g. us-west1 or us-east4 Service supports up to 4 locations at once. Each location will use a /26 block.
Locations pulumi.StringArrayInput
// The unique name of the domain using the format: 'projects/{project}/locations/global/domains/{domainName}'.
Name pulumi.StringPtrInput
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringPtrInput
// The CIDR range of internal addresses that are reserved for this domain. Reserved networks must be /24 or larger.
// Ranges must be unique and non-overlapping with existing subnets in authorizedNetworks
ReservedIpRange pulumi.StringPtrInput
}
func (DomainState) ElementType ¶
func (DomainState) ElementType() reflect.Type
type DomainTrust ¶ added in v3.21.0
type DomainTrust struct {
pulumi.CustomResourceState
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
Domain pulumi.StringOutput `pulumi:"domain"`
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringOutput `pulumi:"project"`
// Whether the trusted side has forest/domain wide access or selective access to an approved set of resources.
SelectiveAuthentication pulumi.BoolPtrOutput `pulumi:"selectiveAuthentication"`
// The target DNS server IP addresses which can resolve the remote domain involved in the trust.
TargetDnsIpAddresses pulumi.StringArrayOutput `pulumi:"targetDnsIpAddresses"`
// The fully qualified target domain name which will be in trust with the current domain.
TargetDomainName pulumi.StringOutput `pulumi:"targetDomainName"`
// The trust direction, which decides if the current domain is trusted, trusting, or both.
// Possible values are `INBOUND`, `OUTBOUND`, and `BIDIRECTIONAL`.
TrustDirection pulumi.StringOutput `pulumi:"trustDirection"`
// The trust secret used for the handshake with the target domain. This will not be stored.
// **Note**: This property is sensitive and will not be displayed in the plan.
TrustHandshakeSecret pulumi.StringOutput `pulumi:"trustHandshakeSecret"`
// The type of trust represented by the trust resource.
// Possible values are `FOREST` and `EXTERNAL`.
TrustType pulumi.StringOutput `pulumi:"trustType"`
}
Adds a trust between Active Directory domains
To get more information about DomainTrust, see:
* [API documentation](https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains/attachTrust) * How-to Guides
- [Active Directory Trust](https://cloud.google.com/managed-microsoft-ad/docs/create-one-way-trust)
> **Warning:** All arguments including `trustHandshakeSecret` will be stored in the raw state as plain-text. [Read more about sensitive data in state](https://www.terraform.io/docs/state/sensitive-data.html).
## Example Usage
func GetDomainTrust ¶ added in v3.21.0
func GetDomainTrust(ctx *pulumi.Context, name string, id pulumi.IDInput, state *DomainTrustState, opts ...pulumi.ResourceOption) (*DomainTrust, error)
GetDomainTrust gets an existing DomainTrust resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewDomainTrust ¶ added in v3.21.0
func NewDomainTrust(ctx *pulumi.Context, name string, args *DomainTrustArgs, opts ...pulumi.ResourceOption) (*DomainTrust, error)
NewDomainTrust registers a new resource with the given unique name, arguments, and options.
type DomainTrustArgs ¶ added in v3.21.0
type DomainTrustArgs struct {
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
Domain pulumi.StringInput
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringPtrInput
// Whether the trusted side has forest/domain wide access or selective access to an approved set of resources.
SelectiveAuthentication pulumi.BoolPtrInput
// The target DNS server IP addresses which can resolve the remote domain involved in the trust.
TargetDnsIpAddresses pulumi.StringArrayInput
// The fully qualified target domain name which will be in trust with the current domain.
TargetDomainName pulumi.StringInput
// The trust direction, which decides if the current domain is trusted, trusting, or both.
// Possible values are `INBOUND`, `OUTBOUND`, and `BIDIRECTIONAL`.
TrustDirection pulumi.StringInput
// The trust secret used for the handshake with the target domain. This will not be stored.
// **Note**: This property is sensitive and will not be displayed in the plan.
TrustHandshakeSecret pulumi.StringInput
// The type of trust represented by the trust resource.
// Possible values are `FOREST` and `EXTERNAL`.
TrustType pulumi.StringInput
}
The set of arguments for constructing a DomainTrust resource.
func (DomainTrustArgs) ElementType ¶ added in v3.21.0
func (DomainTrustArgs) ElementType() reflect.Type
type DomainTrustState ¶ added in v3.21.0
type DomainTrustState struct {
// The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions,
// https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
Domain pulumi.StringPtrInput
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project pulumi.StringPtrInput
// Whether the trusted side has forest/domain wide access or selective access to an approved set of resources.
SelectiveAuthentication pulumi.BoolPtrInput
// The target DNS server IP addresses which can resolve the remote domain involved in the trust.
TargetDnsIpAddresses pulumi.StringArrayInput
// The fully qualified target domain name which will be in trust with the current domain.
TargetDomainName pulumi.StringPtrInput
// The trust direction, which decides if the current domain is trusted, trusting, or both.
// Possible values are `INBOUND`, `OUTBOUND`, and `BIDIRECTIONAL`.
TrustDirection pulumi.StringPtrInput
// The trust secret used for the handshake with the target domain. This will not be stored.
// **Note**: This property is sensitive and will not be displayed in the plan.
TrustHandshakeSecret pulumi.StringPtrInput
// The type of trust represented by the trust resource.
// Possible values are `FOREST` and `EXTERNAL`.
TrustType pulumi.StringPtrInput
}
func (DomainTrustState) ElementType ¶ added in v3.21.0
func (DomainTrustState) ElementType() reflect.Type
Source Files
Click to show internal directories.
Click to hide internal directories.