Azure Native v2 v2.90.0, Mar 27 25

These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.

Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi

azure-native-v2.attestation.AttestationProvider

Explore with Pulumi AI

These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.

Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi

pulumi/pulumi-azure-native

AttestationProviders_Create

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var attestationProvider = new AzureNative.Attestation.AttestationProvider("attestationProvider", new()
    {
        Location = "East US",
        Properties = new AzureNative.Attestation.Inputs.AttestationServiceCreationSpecificParamsArgs
        {
            PublicNetworkAccess = AzureNative.Attestation.PublicNetworkAccessType.Enabled,
            TpmAttestationAuthentication = AzureNative.Attestation.TpmAttestationAuthenticationType.Enabled,
        },
        ProviderName = "myattestationprovider",
        ResourceGroupName = "MyResourceGroup",
        Tags = 
        {
            { "Property1", "Value1" },
            { "Property2", "Value2" },
            { "Property3", "Value3" },
        },
    });

});

package main

import (
	attestation "github.com/pulumi/pulumi-azure-native-sdk/attestation/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := attestation.NewAttestationProvider(ctx, "attestationProvider", &attestation.AttestationProviderArgs{
			Location: pulumi.String("East US"),
			Properties: &attestation.AttestationServiceCreationSpecificParamsArgs{
				PublicNetworkAccess:          pulumi.String(attestation.PublicNetworkAccessTypeEnabled),
				TpmAttestationAuthentication: pulumi.String(attestation.TpmAttestationAuthenticationTypeEnabled),
			},
			ProviderName:      pulumi.String("myattestationprovider"),
			ResourceGroupName: pulumi.String("MyResourceGroup"),
			Tags: pulumi.StringMap{
				"Property1": pulumi.String("Value1"),
				"Property2": pulumi.String("Value2"),
				"Property3": pulumi.String("Value3"),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.attestation.AttestationProvider;
import com.pulumi.azurenative.attestation.AttestationProviderArgs;
import com.pulumi.azurenative.attestation.inputs.AttestationServiceCreationSpecificParamsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var attestationProvider = new AttestationProvider("attestationProvider", AttestationProviderArgs.builder()
            .location("East US")
            .properties(AttestationServiceCreationSpecificParamsArgs.builder()
                .publicNetworkAccess("Enabled")
                .tpmAttestationAuthentication("Enabled")
                .build())
            .providerName("myattestationprovider")
            .resourceGroupName("MyResourceGroup")
            .tags(Map.ofEntries(
                Map.entry("Property1", "Value1"),
                Map.entry("Property2", "Value2"),
                Map.entry("Property3", "Value3")
            ))
            .build());

    }
}

import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const attestationProvider = new azure_native.attestation.AttestationProvider("attestationProvider", {
    location: "East US",
    properties: {
        publicNetworkAccess: azure_native.attestation.PublicNetworkAccessType.Enabled,
        tpmAttestationAuthentication: azure_native.attestation.TpmAttestationAuthenticationType.Enabled,
    },
    providerName: "myattestationprovider",
    resourceGroupName: "MyResourceGroup",
    tags: {
        Property1: "Value1",
        Property2: "Value2",
        Property3: "Value3",
    },
});

import pulumi
import pulumi_azure_native as azure_native

attestation_provider = azure_native.attestation.AttestationProvider("attestationProvider",
    location="East US",
    properties={
        "public_network_access": azure_native.attestation.PublicNetworkAccessType.ENABLED,
        "tpm_attestation_authentication": azure_native.attestation.TpmAttestationAuthenticationType.ENABLED,
    },
    provider_name="myattestationprovider",
    resource_group_name="MyResourceGroup",
    tags={
        "Property1": "Value1",
        "Property2": "Value2",
        "Property3": "Value3",
    })

resources:
  attestationProvider:
    type: azure-native:attestation:AttestationProvider
    properties:
      location: East US
      properties:
        publicNetworkAccess: Enabled
        tpmAttestationAuthentication: Enabled
      providerName: myattestationprovider
      resourceGroupName: MyResourceGroup
      tags:
        Property1: Value1
        Property2: Value2
        Property3: Value3

Create AttestationProvider Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

TypeScript
Python
Go
C#
Java
YAML

new AttestationProvider(name: string, args: AttestationProviderArgs, opts?: CustomResourceOptions);

@overload
def AttestationProvider(resource_name: str,
                        args: AttestationProviderArgs,
                        opts: Optional[ResourceOptions] = None)

@overload
def AttestationProvider(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        properties: Optional[AttestationServiceCreationSpecificParamsArgs] = None,
                        resource_group_name: Optional[str] = None,
                        location: Optional[str] = None,
                        provider_name: Optional[str] = None,
                        tags: Optional[Mapping[str, str]] = None)

func NewAttestationProvider(ctx *Context, name string, args AttestationProviderArgs, opts ...ResourceOption) (*AttestationProvider, error)

public AttestationProvider(string name, AttestationProviderArgs args, CustomResourceOptions? opts = null)

public AttestationProvider(String name, AttestationProviderArgs args)
public AttestationProvider(String name, AttestationProviderArgs args, CustomResourceOptions options)

type: azure-native:attestation:AttestationProvider
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args AttestationProviderArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args AttestationProviderArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args AttestationProviderArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AttestationProviderArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args AttestationProviderArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

TypeScript
Python
Go
C#
Java
YAML

var attestationProviderResource = new AzureNative.Attestation.AttestationProvider("attestationProviderResource", new()
{
    Properties = 
    {
        { "policySigningCertificates", 
        {
            { "keys", new[]
            {
                
                {
                    { "kty", "string" },
                    { "dq", "string" },
                    { "p", "string" },
                    { "dp", "string" },
                    { "alg", "string" },
                    { "e", "string" },
                    { "k", "string" },
                    { "d", "string" },
                    { "kid", "string" },
                    { "n", "string" },
                    { "crv", "string" },
                    { "q", "string" },
                    { "qi", "string" },
                    { "use", "string" },
                    { "x", "string" },
                    { "x5c", new[]
                    {
                        "string",
                    } },
                    { "y", "string" },
                },
            } },
        } },
        { "publicNetworkAccess", "string" },
        { "tpmAttestationAuthentication", "string" },
    },
    ResourceGroupName = "string",
    Location = "string",
    ProviderName = "string",
    Tags = 
    {
        { "string", "string" },
    },
});

example, err := attestation.NewAttestationProvider(ctx, "attestationProviderResource", &attestation.AttestationProviderArgs{
	Properties: map[string]interface{}{
		"policySigningCertificates": map[string]interface{}{
			"keys": []map[string]interface{}{
				map[string]interface{}{
					"kty": "string",
					"dq":  "string",
					"p":   "string",
					"dp":  "string",
					"alg": "string",
					"e":   "string",
					"k":   "string",
					"d":   "string",
					"kid": "string",
					"n":   "string",
					"crv": "string",
					"q":   "string",
					"qi":  "string",
					"use": "string",
					"x":   "string",
					"x5c": []string{
						"string",
					},
					"y": "string",
				},
			},
		},
		"publicNetworkAccess":          "string",
		"tpmAttestationAuthentication": "string",
	},
	ResourceGroupName: "string",
	Location:          "string",
	ProviderName:      "string",
	Tags: map[string]interface{}{
		"string": "string",
	},
})

var attestationProviderResource = new AttestationProvider("attestationProviderResource", AttestationProviderArgs.builder()
    .properties(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
    .resourceGroupName("string")
    .location("string")
    .providerName("string")
    .tags(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
    .build());

attestation_provider_resource = azure_native.attestation.AttestationProvider("attestationProviderResource",
    properties={
        policySigningCertificates: {
            keys: [{
                kty: string,
                dq: string,
                p: string,
                dp: string,
                alg: string,
                e: string,
                k: string,
                d: string,
                kid: string,
                n: string,
                crv: string,
                q: string,
                qi: string,
                use: string,
                x: string,
                x5c: [string],
                y: string,
            }],
        },
        publicNetworkAccess: string,
        tpmAttestationAuthentication: string,
    },
    resource_group_name=string,
    location=string,
    provider_name=string,
    tags={
        string: string,
    })

const attestationProviderResource = new azure_native.attestation.AttestationProvider("attestationProviderResource", {
    properties: {
        policySigningCertificates: {
            keys: [{
                kty: "string",
                dq: "string",
                p: "string",
                dp: "string",
                alg: "string",
                e: "string",
                k: "string",
                d: "string",
                kid: "string",
                n: "string",
                crv: "string",
                q: "string",
                qi: "string",
                use: "string",
                x: "string",
                x5c: ["string"],
                y: "string",
            }],
        },
        publicNetworkAccess: "string",
        tpmAttestationAuthentication: "string",
    },
    resourceGroupName: "string",
    location: "string",
    providerName: "string",
    tags: {
        string: "string",
    },
});

type: azure-native:attestation:AttestationProvider
properties:
    location: string
    properties:
        policySigningCertificates:
            keys:
                - alg: string
                  crv: string
                  d: string
                  dp: string
                  dq: string
                  e: string
                  k: string
                  kid: string
                  kty: string
                  "n": string
                  p: string
                  q: string
                  qi: string
                  use: string
                  x: string
                  x5c:
                    - string
                  "y": string
        publicNetworkAccess: string
        tpmAttestationAuthentication: string
    providerName: string
    resourceGroupName: string
    tags:
        string: string

AttestationProvider Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The AttestationProvider resource accepts the following input properties:

Properties Pulumi.AzureNative.Attestation.Inputs.AttestationServiceCreationSpecificParams: Properties of the attestation provider
ResourceGroupName string: The name of the resource group. The name is case insensitive.
Location string: The supported Azure location where the attestation provider should be created.
ProviderName string: Name of the attestation provider.
Tags Dictionary<string, string>: The tags that will be assigned to the attestation provider.

Properties AttestationServiceCreationSpecificParamsArgs: Properties of the attestation provider
ResourceGroupName string: The name of the resource group. The name is case insensitive.
Location string: The supported Azure location where the attestation provider should be created.
ProviderName string: Name of the attestation provider.
Tags map[string]string: The tags that will be assigned to the attestation provider.

properties AttestationServiceCreationSpecificParams: Properties of the attestation provider
resourceGroupName String: The name of the resource group. The name is case insensitive.
location String: The supported Azure location where the attestation provider should be created.
providerName String: Name of the attestation provider.
tags Map<String,String>: The tags that will be assigned to the attestation provider.

properties AttestationServiceCreationSpecificParams: Properties of the attestation provider
resourceGroupName string: The name of the resource group. The name is case insensitive.
location string: The supported Azure location where the attestation provider should be created.
providerName string: Name of the attestation provider.
tags {[key: string]: string}: The tags that will be assigned to the attestation provider.

properties AttestationServiceCreationSpecificParamsArgs: Properties of the attestation provider
resource_group_name str: The name of the resource group. The name is case insensitive.
location str: The supported Azure location where the attestation provider should be created.
provider_name str: Name of the attestation provider.
tags Mapping[str, str]: The tags that will be assigned to the attestation provider.

properties Property Map: Properties of the attestation provider
resourceGroupName String: The name of the resource group. The name is case insensitive.
location String: The supported Azure location where the attestation provider should be created.
providerName String: Name of the attestation provider.
tags Map<String>: The tags that will be assigned to the attestation provider.

Outputs

All input properties are implicitly available as output properties. Additionally, the AttestationProvider resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Name string: The name of the resource
PrivateEndpointConnections List<Pulumi.AzureNative.Attestation.Outputs.PrivateEndpointConnectionResponse>: List of private endpoint connections associated with the attestation provider.
SystemData Pulumi.AzureNative.Attestation.Outputs.SystemDataResponse: The system metadata relating to this resource
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
AttestUri string: Gets the uri of attestation service
PublicNetworkAccess string: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
Status string: Status of attestation service.
TpmAttestationAuthentication string: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
TrustModel string: Trust model for the attestation provider.

Id string: The provider-assigned unique ID for this managed resource.
Name string: The name of the resource
PrivateEndpointConnections []PrivateEndpointConnectionResponse: List of private endpoint connections associated with the attestation provider.
SystemData SystemDataResponse: The system metadata relating to this resource
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
AttestUri string: Gets the uri of attestation service
PublicNetworkAccess string: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
Status string: Status of attestation service.
TpmAttestationAuthentication string: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
TrustModel string: Trust model for the attestation provider.

id String: The provider-assigned unique ID for this managed resource.
name String: The name of the resource
privateEndpointConnections List<PrivateEndpointConnectionResponse>: List of private endpoint connections associated with the attestation provider.
systemData SystemDataResponse: The system metadata relating to this resource
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
attestUri String: Gets the uri of attestation service
publicNetworkAccess String: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
status String: Status of attestation service.
tpmAttestationAuthentication String: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
trustModel String: Trust model for the attestation provider.

id string: The provider-assigned unique ID for this managed resource.
name string: The name of the resource
privateEndpointConnections PrivateEndpointConnectionResponse[]: List of private endpoint connections associated with the attestation provider.
systemData SystemDataResponse: The system metadata relating to this resource
type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
attestUri string: Gets the uri of attestation service
publicNetworkAccess string: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
status string: Status of attestation service.
tpmAttestationAuthentication string: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
trustModel string: Trust model for the attestation provider.

id str: The provider-assigned unique ID for this managed resource.
name str: The name of the resource
private_endpoint_connections Sequence[PrivateEndpointConnectionResponse]: List of private endpoint connections associated with the attestation provider.
system_data SystemDataResponse: The system metadata relating to this resource
type str: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
attest_uri str: Gets the uri of attestation service
public_network_access str: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
status str: Status of attestation service.
tpm_attestation_authentication str: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
trust_model str: Trust model for the attestation provider.

id String: The provider-assigned unique ID for this managed resource.
name String: The name of the resource
privateEndpointConnections List<Property Map>: List of private endpoint connections associated with the attestation provider.
systemData Property Map: The system metadata relating to this resource
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
attestUri String: Gets the uri of attestation service
publicNetworkAccess String: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
status String: Status of attestation service.
tpmAttestationAuthentication String: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.
trustModel String: Trust model for the attestation provider.

Supporting Types

AttestationServiceCreationSpecificParams
, AttestationServiceCreationSpecificParamsArgs

PolicySigningCertificates Pulumi.AzureNative.Attestation.Inputs.JSONWebKeySet: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
PublicNetworkAccess string | Pulumi.AzureNative.Attestation.PublicNetworkAccessType: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
TpmAttestationAuthentication string | Pulumi.AzureNative.Attestation.TpmAttestationAuthenticationType: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

PolicySigningCertificates JSONWebKeySet: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
PublicNetworkAccess string | PublicNetworkAccessType: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
TpmAttestationAuthentication string | TpmAttestationAuthenticationType: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

policySigningCertificates JSONWebKeySet: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
publicNetworkAccess String | PublicNetworkAccessType: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
tpmAttestationAuthentication String | TpmAttestationAuthenticationType: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

policySigningCertificates JSONWebKeySet: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
publicNetworkAccess string | PublicNetworkAccessType: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
tpmAttestationAuthentication string | TpmAttestationAuthenticationType: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

policy_signing_certificates JSONWebKeySet: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
public_network_access str | PublicNetworkAccessType: Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
tpm_attestation_authentication str | TpmAttestationAuthenticationType: The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

policySigningCertificates Property Map: JSON Web Key Set defining a set of X.509 Certificates that will represent the parent certificate for the signing certificate used for policy operations
publicNetworkAccess String | "Enabled" | "Disabled": Controls whether traffic from the public network is allowed to access the Attestation Provider APIs.
tpmAttestationAuthentication String | "Enabled" | "Disabled": The setting that controls whether authentication is enabled or disabled for TPM Attestation REST APIs.

JSONWebKey
, JSONWebKeyArgs

Kty string: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
Alg string: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
Crv string: The "crv" (curve) parameter identifies the curve type
D string: RSA private exponent or ECC private key
Dp string: RSA Private Key Parameter
Dq string: RSA Private Key Parameter
E string: RSA public exponent, in Base64
K string: Symmetric key
Kid string: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
N string: RSA modulus, in Base64
P string: RSA secret prime
Q string: RSA secret prime, with p < q
Qi string: RSA Private Key Parameter
Use string: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
X string: X coordinate for the Elliptic Curve point
X5c List<string>: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
Y string: Y coordinate for the Elliptic Curve point

Kty string: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
Alg string: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
Crv string: The "crv" (curve) parameter identifies the curve type
D string: RSA private exponent or ECC private key
Dp string: RSA Private Key Parameter
Dq string: RSA Private Key Parameter
E string: RSA public exponent, in Base64
K string: Symmetric key
Kid string: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
N string: RSA modulus, in Base64
P string: RSA secret prime
Q string: RSA secret prime, with p < q
Qi string: RSA Private Key Parameter
Use string: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
X string: X coordinate for the Elliptic Curve point
X5c []string: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
Y string: Y coordinate for the Elliptic Curve point

kty String: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
alg String: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
crv String: The "crv" (curve) parameter identifies the curve type
d String: RSA private exponent or ECC private key
dp String: RSA Private Key Parameter
dq String: RSA Private Key Parameter
e String: RSA public exponent, in Base64
k String: Symmetric key
kid String: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
n String: RSA modulus, in Base64
p String: RSA secret prime
q String: RSA secret prime, with p < q
qi String: RSA Private Key Parameter
use String: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
x String: X coordinate for the Elliptic Curve point
x5c List<String>: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
y String: Y coordinate for the Elliptic Curve point

kty string: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
alg string: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
crv string: The "crv" (curve) parameter identifies the curve type
d string: RSA private exponent or ECC private key
dp string: RSA Private Key Parameter
dq string: RSA Private Key Parameter
e string: RSA public exponent, in Base64
k string: Symmetric key
kid string: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
n string: RSA modulus, in Base64
p string: RSA secret prime
q string: RSA secret prime, with p < q
qi string: RSA Private Key Parameter
use string: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
x string: X coordinate for the Elliptic Curve point
x5c string[]: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
y string: Y coordinate for the Elliptic Curve point

kty str: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
alg str: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
crv str: The "crv" (curve) parameter identifies the curve type
d str: RSA private exponent or ECC private key
dp str: RSA Private Key Parameter
dq str: RSA Private Key Parameter
e str: RSA public exponent, in Base64
k str: Symmetric key
kid str: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
n str: RSA modulus, in Base64
p str: RSA secret prime
q str: RSA secret prime, with p < q
qi str: RSA Private Key Parameter
use str: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
x str: X coordinate for the Elliptic Curve point
x5c Sequence[str]: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
y str: Y coordinate for the Elliptic Curve point

kty String: The "kty" (key type) parameter identifies the cryptographic algorithm family used with the key, such as "RSA" or "EC". "kty" values should either be registered in the IANA "JSON Web Key Types" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The "kty" value is a case-sensitive string.
alg String: The "alg" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA "JSON Web Signature and Encryption Algorithms" registry established by [JWA] or be a value that contains a Collision- Resistant Name.
crv String: The "crv" (curve) parameter identifies the curve type
d String: RSA private exponent or ECC private key
dp String: RSA Private Key Parameter
dq String: RSA Private Key Parameter
e String: RSA public exponent, in Base64
k String: Symmetric key
kid String: The "kid" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the "kid" value is unspecified. When "kid" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct "kid" values. (One example in which different keys might use the same "kid" value is if they have different "kty" (key type) values but are considered to be equivalent alternatives by the application using them.) The "kid" value is a case-sensitive string.
n String: RSA modulus, in Base64
p String: RSA secret prime
q String: RSA secret prime, with p < q
qi String: RSA Private Key Parameter
use String: Use ("public key use") identifies the intended use of the public key. The "use" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly "sig" (signature) or "enc" (encryption).
x String: X coordinate for the Elliptic Curve point
x5c List<String>: The "x5c" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate.
y String: Y coordinate for the Elliptic Curve point

JSONWebKeySet
, JSONWebKeySetArgs

Keys List<Pulumi.AzureNative.Attestation.Inputs.JSONWebKey>: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

Keys []JSONWebKey: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

keys List<JSONWebKey>: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

keys JSONWebKey[]: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

keys Sequence[JSONWebKey]: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

keys List<Property Map>: The value of the "keys" parameter is an array of JWK values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired.

PrivateEndpointConnectionResponse
, PrivateEndpointConnectionResponseArgs

Id string: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
Name string: The name of the resource
PrivateLinkServiceConnectionState Pulumi.AzureNative.Attestation.Inputs.PrivateLinkServiceConnectionStateResponse: A collection of information about the state of the connection between service consumer and provider.
ProvisioningState string: The provisioning state of the private endpoint connection resource.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
PrivateEndpoint Pulumi.AzureNative.Attestation.Inputs.PrivateEndpointResponse: The resource of private end point.

Id string: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
Name string: The name of the resource
PrivateLinkServiceConnectionState PrivateLinkServiceConnectionStateResponse: A collection of information about the state of the connection between service consumer and provider.
ProvisioningState string: The provisioning state of the private endpoint connection resource.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
PrivateEndpoint PrivateEndpointResponse: The resource of private end point.

id String: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
name String: The name of the resource
privateLinkServiceConnectionState PrivateLinkServiceConnectionStateResponse: A collection of information about the state of the connection between service consumer and provider.
provisioningState String: The provisioning state of the private endpoint connection resource.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
privateEndpoint PrivateEndpointResponse: The resource of private end point.

id string: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
name string: The name of the resource
privateLinkServiceConnectionState PrivateLinkServiceConnectionStateResponse: A collection of information about the state of the connection between service consumer and provider.
provisioningState string: The provisioning state of the private endpoint connection resource.
type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
privateEndpoint PrivateEndpointResponse: The resource of private end point.

id str: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
name str: The name of the resource
private_link_service_connection_state PrivateLinkServiceConnectionStateResponse: A collection of information about the state of the connection between service consumer and provider.
provisioning_state str: The provisioning state of the private endpoint connection resource.
type str: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
private_endpoint PrivateEndpointResponse: The resource of private end point.

id String: Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
name String: The name of the resource
privateLinkServiceConnectionState Property Map: A collection of information about the state of the connection between service consumer and provider.
provisioningState String: The provisioning state of the private endpoint connection resource.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
privateEndpoint Property Map: The resource of private end point.

PrivateEndpointResponse
, PrivateEndpointResponseArgs

Id string: The ARM identifier for Private Endpoint

Id string: The ARM identifier for Private Endpoint

id String: The ARM identifier for Private Endpoint

id string: The ARM identifier for Private Endpoint

id str: The ARM identifier for Private Endpoint

id String: The ARM identifier for Private Endpoint

PrivateLinkServiceConnectionStateResponse
, PrivateLinkServiceConnectionStateResponseArgs

ActionsRequired string: A message indicating if changes on the service provider require any updates on the consumer.
Description string: The reason for approval/rejection of the connection.
Status string: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

ActionsRequired string: A message indicating if changes on the service provider require any updates on the consumer.
Description string: The reason for approval/rejection of the connection.
Status string: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

actionsRequired String: A message indicating if changes on the service provider require any updates on the consumer.
description String: The reason for approval/rejection of the connection.
status String: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

actionsRequired string: A message indicating if changes on the service provider require any updates on the consumer.
description string: The reason for approval/rejection of the connection.
status string: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

actions_required str: A message indicating if changes on the service provider require any updates on the consumer.
description str: The reason for approval/rejection of the connection.
status str: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

actionsRequired String: A message indicating if changes on the service provider require any updates on the consumer.
description String: The reason for approval/rejection of the connection.
status String: Indicates whether the connection has been Approved/Rejected/Removed by the owner of the service.

PublicNetworkAccessType
, PublicNetworkAccessTypeArgs

Enabled: EnabledEnables public network connectivity to the Attestation Provider REST APIs.
Disabled: DisabledDisables public network connectivity to the Attestation Provider REST APIs.

PublicNetworkAccessTypeEnabled: EnabledEnables public network connectivity to the Attestation Provider REST APIs.
PublicNetworkAccessTypeDisabled: DisabledDisables public network connectivity to the Attestation Provider REST APIs.

Enabled: EnabledEnables public network connectivity to the Attestation Provider REST APIs.
Disabled: DisabledDisables public network connectivity to the Attestation Provider REST APIs.

Enabled: EnabledEnables public network connectivity to the Attestation Provider REST APIs.
Disabled: DisabledDisables public network connectivity to the Attestation Provider REST APIs.

ENABLED: EnabledEnables public network connectivity to the Attestation Provider REST APIs.
DISABLED: DisabledDisables public network connectivity to the Attestation Provider REST APIs.

"Enabled": EnabledEnables public network connectivity to the Attestation Provider REST APIs.
"Disabled": DisabledDisables public network connectivity to the Attestation Provider REST APIs.

SystemDataResponse
, SystemDataResponseArgs

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

createdAt string: The timestamp of resource creation (UTC).
createdBy string: The identity that created the resource.
createdByType string: The type of identity that created the resource.
lastModifiedAt string: The timestamp of resource last modification (UTC)
lastModifiedBy string: The identity that last modified the resource.
lastModifiedByType string: The type of identity that last modified the resource.

created_at str: The timestamp of resource creation (UTC).
created_by str: The identity that created the resource.
created_by_type str: The type of identity that created the resource.
last_modified_at str: The timestamp of resource last modification (UTC)
last_modified_by str: The identity that last modified the resource.
last_modified_by_type str: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

TpmAttestationAuthenticationType
, TpmAttestationAuthenticationTypeArgs

Enabled: EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
Disabled: DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

TpmAttestationAuthenticationTypeEnabled: EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
TpmAttestationAuthenticationTypeDisabled: DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

Enabled: EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
Disabled: DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

Enabled: EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
Disabled: DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

ENABLED: EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
DISABLED: DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

"Enabled": EnabledEnables the requirement of authentication for TPM Attestation REST APIs.
"Disabled": DisabledDisables the requirement of authentication for TPM Attestation REST APIs.

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:attestation:AttestationProvider myattestationprovider /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Attestation/attestationProviders/{providerName}

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: azure-native-v2 pulumi/pulumi-azure-native
License: Apache-2.0

These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.

Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi

pulumi/pulumi-azure-native

azure-native-v2.attestation.AttestationProvider

On this page

On this page

Example Usage

AttestationProviders_Create

Create AttestationProvider Resource

Constructor syntax

Parameters

Constructor example

AttestationProvider Resource Properties

Inputs

Outputs

Supporting Types

AttestationServiceCreationSpecificParams
, AttestationServiceCreationSpecificParamsArgs

JSONWebKey
, JSONWebKeyArgs

JSONWebKeySet
, JSONWebKeySetArgs

PrivateEndpointConnectionResponse
, PrivateEndpointConnectionResponseArgs

PrivateEndpointResponse
, PrivateEndpointResponseArgs

PrivateLinkServiceConnectionStateResponse
, PrivateLinkServiceConnectionStateResponseArgs

PublicNetworkAccessType
, PublicNetworkAccessTypeArgs

SystemDataResponse
, SystemDataResponseArgs

TpmAttestationAuthenticationType
, TpmAttestationAuthenticationTypeArgs

Import

Package Details

On this page

On this page

azure-native-v2.attestation.AttestationProvider

On this page

On this page

Example Usage

AttestationProviders_Create

Create AttestationProvider Resource

Constructor syntax

Parameters

Constructor example

AttestationProvider Resource Properties

Inputs

Outputs

Supporting Types

AttestationServiceCreationSpecificParams, AttestationServiceCreationSpecificParamsArgs

JSONWebKey, JSONWebKeyArgs

JSONWebKeySet, JSONWebKeySetArgs

PrivateEndpointConnectionResponse, PrivateEndpointConnectionResponseArgs

PrivateEndpointResponse, PrivateEndpointResponseArgs

PrivateLinkServiceConnectionStateResponse, PrivateLinkServiceConnectionStateResponseArgs

PublicNetworkAccessType, PublicNetworkAccessTypeArgs

SystemDataResponse, SystemDataResponseArgs

TpmAttestationAuthenticationType, TpmAttestationAuthenticationTypeArgs

Import

Package Details

On this page

On this page

AttestationServiceCreationSpecificParams
, AttestationServiceCreationSpecificParamsArgs

JSONWebKey
, JSONWebKeyArgs

JSONWebKeySet
, JSONWebKeySetArgs

PrivateEndpointConnectionResponse
, PrivateEndpointConnectionResponseArgs

PrivateEndpointResponse
, PrivateEndpointResponseArgs

PrivateLinkServiceConnectionStateResponse
, PrivateLinkServiceConnectionStateResponseArgs

PublicNetworkAccessType
, PublicNetworkAccessTypeArgs

SystemDataResponse
, SystemDataResponseArgs

TpmAttestationAuthenticationType
, TpmAttestationAuthenticationTypeArgs