1. Packages
  2. Nsxt Provider
  3. API Docs
  4. PolicyParentSecurityPolicy
nsxt 3.8.0 published on Monday, Apr 14, 2025 by vmware

nsxt.PolicyParentSecurityPolicy

Explore with Pulumi AI

Create PolicyParentSecurityPolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new PolicyParentSecurityPolicy(name: string, args: PolicyParentSecurityPolicyArgs, opts?: CustomResourceOptions);
@overload
def PolicyParentSecurityPolicy(resource_name: str,
                               args: PolicyParentSecurityPolicyArgs,
                               opts: Optional[ResourceOptions] = None)

@overload
def PolicyParentSecurityPolicy(resource_name: str,
                               opts: Optional[ResourceOptions] = None,
                               display_name: Optional[str] = None,
                               category: Optional[str] = None,
                               locked: Optional[bool] = None,
                               description: Optional[str] = None,
                               context: Optional[PolicyParentSecurityPolicyContextArgs] = None,
                               domain: Optional[str] = None,
                               comments: Optional[str] = None,
                               nsx_id: Optional[str] = None,
                               policy_parent_security_policy_id: Optional[str] = None,
                               scopes: Optional[Sequence[str]] = None,
                               sequence_number: Optional[float] = None,
                               stateful: Optional[bool] = None,
                               tags: Optional[Sequence[PolicyParentSecurityPolicyTagArgs]] = None,
                               tcp_strict: Optional[bool] = None)
func NewPolicyParentSecurityPolicy(ctx *Context, name string, args PolicyParentSecurityPolicyArgs, opts ...ResourceOption) (*PolicyParentSecurityPolicy, error)
public PolicyParentSecurityPolicy(string name, PolicyParentSecurityPolicyArgs args, CustomResourceOptions? opts = null)
public PolicyParentSecurityPolicy(String name, PolicyParentSecurityPolicyArgs args)
public PolicyParentSecurityPolicy(String name, PolicyParentSecurityPolicyArgs args, CustomResourceOptions options)
type: nsxt:PolicyParentSecurityPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. PolicyParentSecurityPolicyArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. PolicyParentSecurityPolicyArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. PolicyParentSecurityPolicyArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. PolicyParentSecurityPolicyArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. PolicyParentSecurityPolicyArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var policyParentSecurityPolicyResource = new Nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", new()
{
    DisplayName = "string",
    Category = "string",
    Locked = false,
    Description = "string",
    Context = new Nsxt.Inputs.PolicyParentSecurityPolicyContextArgs
    {
        ProjectId = "string",
    },
    Domain = "string",
    Comments = "string",
    NsxId = "string",
    PolicyParentSecurityPolicyId = "string",
    Scopes = new[]
    {
        "string",
    },
    SequenceNumber = 0,
    Stateful = false,
    Tags = new[]
    {
        new Nsxt.Inputs.PolicyParentSecurityPolicyTagArgs
        {
            Scope = "string",
            Tag = "string",
        },
    },
    TcpStrict = false,
});
Copy
example, err := nsxt.NewPolicyParentSecurityPolicy(ctx, "policyParentSecurityPolicyResource", &nsxt.PolicyParentSecurityPolicyArgs{
	DisplayName: pulumi.String("string"),
	Category:    pulumi.String("string"),
	Locked:      pulumi.Bool(false),
	Description: pulumi.String("string"),
	Context: &nsxt.PolicyParentSecurityPolicyContextArgs{
		ProjectId: pulumi.String("string"),
	},
	Domain:                       pulumi.String("string"),
	Comments:                     pulumi.String("string"),
	NsxId:                        pulumi.String("string"),
	PolicyParentSecurityPolicyId: pulumi.String("string"),
	Scopes: pulumi.StringArray{
		pulumi.String("string"),
	},
	SequenceNumber: pulumi.Float64(0),
	Stateful:       pulumi.Bool(false),
	Tags: nsxt.PolicyParentSecurityPolicyTagArray{
		&nsxt.PolicyParentSecurityPolicyTagArgs{
			Scope: pulumi.String("string"),
			Tag:   pulumi.String("string"),
		},
	},
	TcpStrict: pulumi.Bool(false),
})
Copy
var policyParentSecurityPolicyResource = new PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", PolicyParentSecurityPolicyArgs.builder()
    .displayName("string")
    .category("string")
    .locked(false)
    .description("string")
    .context(PolicyParentSecurityPolicyContextArgs.builder()
        .projectId("string")
        .build())
    .domain("string")
    .comments("string")
    .nsxId("string")
    .policyParentSecurityPolicyId("string")
    .scopes("string")
    .sequenceNumber(0)
    .stateful(false)
    .tags(PolicyParentSecurityPolicyTagArgs.builder()
        .scope("string")
        .tag("string")
        .build())
    .tcpStrict(false)
    .build());
Copy
policy_parent_security_policy_resource = nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource",
    display_name="string",
    category="string",
    locked=False,
    description="string",
    context={
        "project_id": "string",
    },
    domain="string",
    comments="string",
    nsx_id="string",
    policy_parent_security_policy_id="string",
    scopes=["string"],
    sequence_number=0,
    stateful=False,
    tags=[{
        "scope": "string",
        "tag": "string",
    }],
    tcp_strict=False)
Copy
const policyParentSecurityPolicyResource = new nsxt.PolicyParentSecurityPolicy("policyParentSecurityPolicyResource", {
    displayName: "string",
    category: "string",
    locked: false,
    description: "string",
    context: {
        projectId: "string",
    },
    domain: "string",
    comments: "string",
    nsxId: "string",
    policyParentSecurityPolicyId: "string",
    scopes: ["string"],
    sequenceNumber: 0,
    stateful: false,
    tags: [{
        scope: "string",
        tag: "string",
    }],
    tcpStrict: false,
});
Copy
type: nsxt:PolicyParentSecurityPolicy
properties:
    category: string
    comments: string
    context:
        projectId: string
    description: string
    displayName: string
    domain: string
    locked: false
    nsxId: string
    policyParentSecurityPolicyId: string
    scopes:
        - string
    sequenceNumber: 0
    stateful: false
    tags:
        - scope: string
          tag: string
    tcpStrict: false
Copy

PolicyParentSecurityPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The PolicyParentSecurityPolicy resource accepts the following input properties:

Category This property is required. string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
DisplayName This property is required. string
Display name of the resource.
Comments string
Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContext
The context which the object belongs to
Description string
Description of the resource.
Domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
PolicyParentSecurityPolicyId string
ID of the Security Policy.
Scopes List<string>
The list of policy object paths where the rules in this policy will get applied.
SequenceNumber double
This field is used to resolve conflicts between security policies across domains.
Stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags List<PolicyParentSecurityPolicyTag>
A list of scope + tag pairs to associate with this policy.
TcpStrict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
Category This property is required. string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
DisplayName This property is required. string
Display name of the resource.
Comments string
Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContextArgs
The context which the object belongs to
Description string
Description of the resource.
Domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
PolicyParentSecurityPolicyId string
ID of the Security Policy.
Scopes []string
The list of policy object paths where the rules in this policy will get applied.
SequenceNumber float64
This field is used to resolve conflicts between security policies across domains.
Stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags []PolicyParentSecurityPolicyTagArgs
A list of scope + tag pairs to associate with this policy.
TcpStrict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category This property is required. String
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName This property is required. String
Display name of the resource.
comments String
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext
The context which the object belongs to
description String
Description of the resource.
domain String
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String
The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId String
ID of the Security Policy.
scopes List<String>
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Double
This field is used to resolve conflicts between security policies across domains.
stateful Boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<PolicyParentSecurityPolicyTag>
A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category This property is required. string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName This property is required. string
Display name of the resource.
comments string
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext
The context which the object belongs to
description string
Description of the resource.
domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId string
ID of the Security Policy.
scopes string[]
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber number
This field is used to resolve conflicts between security policies across domains.
stateful boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags PolicyParentSecurityPolicyTag[]
A list of scope + tag pairs to associate with this policy.
tcpStrict boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category This property is required. str
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
display_name This property is required. str
Display name of the resource.
comments str
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContextArgs
The context which the object belongs to
description str
Description of the resource.
domain str
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsx_id str
The NSX ID of this resource. If set, this ID will be used to create the resource.
policy_parent_security_policy_id str
ID of the Security Policy.
scopes Sequence[str]
The list of policy object paths where the rules in this policy will get applied.
sequence_number float
This field is used to resolve conflicts between security policies across domains.
stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags Sequence[PolicyParentSecurityPolicyTagArgs]
A list of scope + tag pairs to associate with this policy.
tcp_strict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category This property is required. String
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
displayName This property is required. String
Display name of the resource.
comments String
Comments for security policy lock/unlock.
context Property Map
The context which the object belongs to
description String
Description of the resource.
domain String
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String
The NSX ID of this resource. If set, this ID will be used to create the resource.
policyParentSecurityPolicyId String
ID of the Security Policy.
scopes List<String>
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Number
This field is used to resolve conflicts between security policies across domains.
stateful Boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<Property Map>
A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Outputs

All input properties are implicitly available as output properties. Additionally, the PolicyParentSecurityPolicy resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
Path string
The NSX path of the policy resource.
Revision double
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
Id string
The provider-assigned unique ID for this managed resource.
Path string
The NSX path of the policy resource.
Revision float64
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
id String
The provider-assigned unique ID for this managed resource.
path String
The NSX path of the policy resource.
revision Double
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
id string
The provider-assigned unique ID for this managed resource.
path string
The NSX path of the policy resource.
revision number
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
id str
The provider-assigned unique ID for this managed resource.
path str
The NSX path of the policy resource.
revision float
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
id String
The provider-assigned unique ID for this managed resource.
path String
The NSX path of the policy resource.
revision Number
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.

Look up Existing PolicyParentSecurityPolicy Resource

Get an existing PolicyParentSecurityPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: PolicyParentSecurityPolicyState, opts?: CustomResourceOptions): PolicyParentSecurityPolicy
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        category: Optional[str] = None,
        comments: Optional[str] = None,
        context: Optional[PolicyParentSecurityPolicyContextArgs] = None,
        description: Optional[str] = None,
        display_name: Optional[str] = None,
        domain: Optional[str] = None,
        locked: Optional[bool] = None,
        nsx_id: Optional[str] = None,
        path: Optional[str] = None,
        policy_parent_security_policy_id: Optional[str] = None,
        revision: Optional[float] = None,
        scopes: Optional[Sequence[str]] = None,
        sequence_number: Optional[float] = None,
        stateful: Optional[bool] = None,
        tags: Optional[Sequence[PolicyParentSecurityPolicyTagArgs]] = None,
        tcp_strict: Optional[bool] = None) -> PolicyParentSecurityPolicy
func GetPolicyParentSecurityPolicy(ctx *Context, name string, id IDInput, state *PolicyParentSecurityPolicyState, opts ...ResourceOption) (*PolicyParentSecurityPolicy, error)
public static PolicyParentSecurityPolicy Get(string name, Input<string> id, PolicyParentSecurityPolicyState? state, CustomResourceOptions? opts = null)
public static PolicyParentSecurityPolicy get(String name, Output<String> id, PolicyParentSecurityPolicyState state, CustomResourceOptions options)
resources:  _:    type: nsxt:PolicyParentSecurityPolicy    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
Category string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
Comments string
Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContext
The context which the object belongs to
Description string
Description of the resource.
DisplayName string
Display name of the resource.
Domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
Path string
The NSX path of the policy resource.
PolicyParentSecurityPolicyId string
ID of the Security Policy.
Revision double
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
Scopes List<string>
The list of policy object paths where the rules in this policy will get applied.
SequenceNumber double
This field is used to resolve conflicts between security policies across domains.
Stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags List<PolicyParentSecurityPolicyTag>
A list of scope + tag pairs to associate with this policy.
TcpStrict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
Category string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
Comments string
Comments for security policy lock/unlock.
Context PolicyParentSecurityPolicyContextArgs
The context which the object belongs to
Description string
Description of the resource.
DisplayName string
Display name of the resource.
Domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
Locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
NsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
Path string
The NSX path of the policy resource.
PolicyParentSecurityPolicyId string
ID of the Security Policy.
Revision float64
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
Scopes []string
The list of policy object paths where the rules in this policy will get applied.
SequenceNumber float64
This field is used to resolve conflicts between security policies across domains.
Stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
Tags []PolicyParentSecurityPolicyTagArgs
A list of scope + tag pairs to associate with this policy.
TcpStrict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category String
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments String
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext
The context which the object belongs to
description String
Description of the resource.
displayName String
Display name of the resource.
domain String
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String
The NSX ID of this resource. If set, this ID will be used to create the resource.
path String
The NSX path of the policy resource.
policyParentSecurityPolicyId String
ID of the Security Policy.
revision Double
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes List<String>
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Double
This field is used to resolve conflicts between security policies across domains.
stateful Boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<PolicyParentSecurityPolicyTag>
A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category string
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments string
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContext
The context which the object belongs to
description string
Description of the resource.
displayName string
Display name of the resource.
domain string
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId string
The NSX ID of this resource. If set, this ID will be used to create the resource.
path string
The NSX path of the policy resource.
policyParentSecurityPolicyId string
ID of the Security Policy.
revision number
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes string[]
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber number
This field is used to resolve conflicts between security policies across domains.
stateful boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags PolicyParentSecurityPolicyTag[]
A list of scope + tag pairs to associate with this policy.
tcpStrict boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category str
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments str
Comments for security policy lock/unlock.
context PolicyParentSecurityPolicyContextArgs
The context which the object belongs to
description str
Description of the resource.
display_name str
Display name of the resource.
domain str
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked bool
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsx_id str
The NSX ID of this resource. If set, this ID will be used to create the resource.
path str
The NSX path of the policy resource.
policy_parent_security_policy_id str
ID of the Security Policy.
revision float
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes Sequence[str]
The list of policy object paths where the rules in this policy will get applied.
sequence_number float
This field is used to resolve conflicts between security policies across domains.
stateful bool
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags Sequence[PolicyParentSecurityPolicyTagArgs]
A list of scope + tag pairs to associate with this policy.
tcp_strict bool
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
category String
Category of this policy. For local manager must be one of Ethernet, Emergency, Infrastructure, Environment, Application. For global manager must be one of: Infrastructure, Environment, Application.
comments String
Comments for security policy lock/unlock.
context Property Map
The context which the object belongs to
description String
Description of the resource.
displayName String
Display name of the resource.
domain String
The domain to use for the resource. This domain must already exist. For VMware Cloud on AWS use cgw. For Global Manager, please use site id for this field. If not specified, this field is default to default.
locked Boolean
Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
nsxId String
The NSX ID of this resource. If set, this ID will be used to create the resource.
path String
The NSX path of the policy resource.
policyParentSecurityPolicyId String
ID of the Security Policy.
revision Number
Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
scopes List<String>
The list of policy object paths where the rules in this policy will get applied.
sequenceNumber Number
This field is used to resolve conflicts between security policies across domains.
stateful Boolean
If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
tags List<Property Map>
A list of scope + tag pairs to associate with this policy.
tcpStrict Boolean
Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.

Supporting Types

PolicyParentSecurityPolicyContext
, PolicyParentSecurityPolicyContextArgs

ProjectId This property is required. string
The ID of the project which the object belongs to
ProjectId This property is required. string
The ID of the project which the object belongs to
projectId This property is required. String
The ID of the project which the object belongs to
projectId This property is required. string
The ID of the project which the object belongs to
project_id This property is required. str
The ID of the project which the object belongs to
projectId This property is required. String
The ID of the project which the object belongs to

PolicyParentSecurityPolicyTag
, PolicyParentSecurityPolicyTagArgs

Scope string
The list of policy object paths where the rules in this policy will get applied.
Tag string
A list of scope + tag pairs to associate with this policy.
Scope string
The list of policy object paths where the rules in this policy will get applied.
Tag string
A list of scope + tag pairs to associate with this policy.
scope String
The list of policy object paths where the rules in this policy will get applied.
tag String
A list of scope + tag pairs to associate with this policy.
scope string
The list of policy object paths where the rules in this policy will get applied.
tag string
A list of scope + tag pairs to associate with this policy.
scope str
The list of policy object paths where the rules in this policy will get applied.
tag str
A list of scope + tag pairs to associate with this policy.
scope String
The list of policy object paths where the rules in this policy will get applied.
tag String
A list of scope + tag pairs to associate with this policy.

Package Details

Repository
nsxt vmware/terraform-provider-nsxt
License
Notes
This Pulumi package is based on the nsxt Terraform Provider.