Class ProfileClientSslState
Inheritance
System.Object
ProfileClientSslState
Inherited Members
System.Object.Equals(System.Object)
System.Object.Equals(System.Object, System.Object)
System.Object.GetHashCode()
System.Object.GetType()
System.Object.MemberwiseClone()
System.Object.ReferenceEquals(System.Object, System.Object)
System.Object.ToString()
Assembly: Pulumi.F5BigIP.dll
Syntax
public sealed class ProfileClientSslState : ResourceArgs
Constructors
View Source
ProfileClientSslState()
Declaration
public ProfileClientSslState()
Properties
View Source
AlertTimeout
Declaration
public Input<string> AlertTimeout { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
AllowNonSsl
Enables or disables acceptance of non-SSL connections, When creating a new profile, the setting is provided by the parent profile
Declaration
public Input<string> AllowNonSsl { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Authenticate
Specifies the frequency of client authentication for an SSL session.When once,specifies that the system authenticates the client once for an SSL session.
When always, specifies that the system authenticates the client once for an SSL session and also upon reuse of that session.
Declaration
public Input<string> Authenticate { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
AuthenticateDepth
Specifies the maximum number of certificates to be traversed in a client certificate chain
Declaration
public Input<int> AuthenticateDepth { get; set; }
Property Value
| Type |
Description |
| Input<System.Int32> |
|
View Source
CacheSize
Declaration
public Input<int> CacheSize { get; set; }
Property Value
| Type |
Description |
| Input<System.Int32> |
|
View Source
CacheTimeout
Declaration
public Input<int> CacheTimeout { get; set; }
Property Value
| Type |
Description |
| Input<System.Int32> |
|
View Source
CaFile
Client certificate file path. Default None.
Declaration
public Input<string> CaFile { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Cert
Specifies a cert name for use.
Declaration
public Input<string> Cert { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
CertExtensionIncludes
Cert extension includes for ssl forward proxy
Declaration
public InputList<string> CertExtensionIncludes { get; set; }
Property Value
View Source
CertKeyChains
Declaration
public InputList<ProfileClientSslCertKeyChainGetArgs> CertKeyChains { get; set; }
Property Value
View Source
CertLifeSpan
Life span of the certificate in days for ssl forward proxy
Declaration
public Input<int> CertLifeSpan { get; set; }
Property Value
| Type |
Description |
| Input<System.Int32> |
|
View Source
CertLookupByIpaddrPort
Cert lookup by ip address and port enabled / disabled
Declaration
public Input<string> CertLookupByIpaddrPort { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Chain
Contains a certificate chain that is relevant to the certificate and key mentioned earlier.This key is optional
Declaration
public Input<string> Chain { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Ciphers
Specifies the list of ciphers that the system supports. When creating a new profile, the default cipher list is provided by the parent profile.
Declaration
public Input<string> Ciphers { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ClientCertCa
Declaration
public Input<string> ClientCertCa { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
CrlFile
Certificate revocation file name
Declaration
public Input<string> CrlFile { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
DefaultsFrom
The parent template of this monitor template. Once this value has been set, it cannot be changed. By default, this value is the clientssl parent on the Common partition.
Declaration
public Input<string> DefaultsFrom { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ForwardProxyBypassDefaultAction
Forward proxy bypass default action. (enabled / disabled)
Declaration
public Input<string> ForwardProxyBypassDefaultAction { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
FullPath
Declaration
public Input<string> FullPath { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Generation
Declaration
public Input<int> Generation { get; set; }
Property Value
| Type |
Description |
| Input<System.Int32> |
|
View Source
GenericAlert
Generic alerts enabled / disabled.
Declaration
public Input<string> GenericAlert { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
HandshakeTimeout
Handshake time out (seconds)
Declaration
public Input<string> HandshakeTimeout { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
InheritCertKeychain
Declaration
public Input<string> InheritCertKeychain { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Key
Declaration
public Input<string> Key { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Mode
ModSSL Methods enabled / disabled. Default is disabled.
Declaration
public Input<string> Mode { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ModSslMethods
ModSSL Methods enabled / disabled. Default is disabled.
Declaration
public Input<string> ModSslMethods { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Name
Specifies the name of the profile. (type string)
Declaration
public Input<string> Name { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Partition
Device partition to manage resources on.
Declaration
public Input<string> Partition { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Passphrase
Client Certificate Constrained Delegation CA passphrase
Declaration
public Input<string> Passphrase { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
PeerCertMode
Specifies the way the system handles client certificates.When ignore, specifies that the system ignores certificates from client systems.When require, specifies that the system requires a client to present a valid certificate.When request, specifies that the system requests a valid certificate from a client but always authenticate the client.
Declaration
public Input<string> PeerCertMode { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ProxyCaCert
Declaration
public Input<string> ProxyCaCert { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ProxyCaKey
Declaration
public Input<string> ProxyCaKey { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ProxyCaPassphrase
Declaration
public Input<string> ProxyCaPassphrase { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ProxySsl
Proxy SSL enabled / disabled. Default is disabled.
Declaration
public Input<string> ProxySsl { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ProxySslPassthrough
Proxy SSL passthrough enabled / disabled. Default is disabled.
Declaration
public Input<string> ProxySslPassthrough { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
RenegotiatePeriod
Renogotiate Period (seconds)
Declaration
public Input<string> RenegotiatePeriod { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
RenegotiateSize
Declaration
public Input<string> RenegotiateSize { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
Renegotiation
Enables or disables SSL renegotiation.When creating a new profile, the setting is provided by the parent profile
Declaration
public Input<string> Renegotiation { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
RetainCertificate
When true, client certificate is retained in SSL session.
Declaration
public Input<string> RetainCertificate { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SecureRenegotiation
Specifies the method of secure renegotiations for SSL connections. When creating a new profile, the setting is provided by the parent profile.
When request is set the system request secure renegotation of SSL connections.
require is a default setting and when set the system permits initial SSL handshakes from clients but terminates renegotiations from unpatched clients.
The require-strict setting the system requires strict renegotiation of SSL connections. In this mode the system refuses connections to insecure servers, and terminates existing SSL connections to insecure servers
Declaration
public Input<string> SecureRenegotiation { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
ServerName
Specifies the fully qualified DNS hostname of the server used in Server Name Indication communications. When creating a new profile, the setting is provided by the parent profile.The server name can also be a wildcard string containing the asterisk * character.
Declaration
public Input<string> ServerName { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SessionMirroring
Session Mirroring (enabled / disabled)
Declaration
public Input<string> SessionMirroring { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SessionTicket
Session Ticket (enabled / disabled)
Declaration
public Input<string> SessionTicket { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SniDefault
Indicates that the system uses this profile as the default SSL profile when there is no match to the server name, or when the client provides no SNI extension support.When creating a new profile, the setting is provided by the parent profile.
There can be only one SSL profile with this setting enabled.
Declaration
public Input<string> SniDefault { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SniRequire
Requires that the network peers also provide SNI support, this setting only takes effect when sni_default is set to true.When creating a new profile, the setting is provided by the parent profile
Declaration
public Input<string> SniRequire { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SslForwardProxy
SSL forward Proxy (enabled / disabled)
Declaration
public Input<string> SslForwardProxy { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SslForwardProxyBypass
SSL forward Proxy Bypass (enabled / disabled)
Declaration
public Input<string> SslForwardProxyBypass { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
SslSignHash
SSL sign hash (any, sha1, sha256, sha384)
Declaration
public Input<string> SslSignHash { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
StrictResume
Enables or disables the resumption of SSL sessions after an unclean shutdown.When creating a new profile, the setting is provided by the parent profile.
Declaration
public Input<string> StrictResume { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|
View Source
TmOptions
Declaration
public InputList<string> TmOptions { get; set; }
Property Value
View Source
UncleanShutdown
Unclean Shutdown (enabled / disabled)
Declaration
public Input<string> UncleanShutdown { get; set; }
Property Value
| Type |
Description |
| Input<System.String> |
|