Class ProfileServerSsl
f5bigip.ltm.ProfileServerSsl Manages server SSL profiles on a BIG-IP
Example Usage
using Pulumi;
using F5BigIP = Pulumi.F5BigIP;
class MyStack : Stack
{
public MyStack()
{
var test_ServerSsl = new F5BigIP.Ltm.ProfileServerSsl("test-ServerSsl", new F5BigIP.Ltm.ProfileServerSslArgs
{
Authenticate = "always",
Ciphers = "DEFAULT",
DefaultsFrom = "/Common/serverssl",
Name = "/Common/test-ServerSsl",
Partition = "Common",
});
}
}
Inherited Members
Namespace: Pulumi.F5BigIP.Ltm
Assembly: Pulumi.F5BigIP.dll
Syntax
public class ProfileServerSsl : CustomResourceConstructors
View SourceProfileServerSsl(String, ProfileServerSslArgs, CustomResourceOptions)
Create a ProfileServerSsl resource with the given unique name, arguments, and options.
Declaration
public ProfileServerSsl(string name, ProfileServerSslArgs args, CustomResourceOptions options = null)Parameters
| Type | Name | Description |
|---|---|---|
| System.String | name | The unique name of the resource |
| ProfileServerSslArgs | args | The arguments used to populate this resource's properties |
| CustomResourceOptions | options | A bag of options that control this resource's behavior |
Properties
View SourceAlertTimeout
Alert time out
Declaration
public Output<string> AlertTimeout { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Authenticate
Server authentication once / always (default is once).
Declaration
public Output<string> Authenticate { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
AuthenticateDepth
Client certificate chain traversal depth. Default 9.
Declaration
public Output<int> AuthenticateDepth { get; }Property Value
| Type | Description |
|---|---|
| Output<System.Int32> |
CacheSize
Cache size (sessions).
Declaration
public Output<int> CacheSize { get; }Property Value
| Type | Description |
|---|---|
| Output<System.Int32> |
CacheTimeout
Cache time out
Declaration
public Output<int> CacheTimeout { get; }Property Value
| Type | Description |
|---|---|
| Output<System.Int32> |
CaFile
Client certificate file path. Default None.
Declaration
public Output<string> CaFile { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Cert
Specifies the name of the certificate that the system uses for server-side SSL processing.
Declaration
public Output<string> Cert { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Chain
Specifies the certificates-key chain to associate with the SSL profile
Declaration
public Output<string> Chain { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Ciphers
Specifies the list of ciphers that the system supports. When creating a new profile, the default cipher list is provided by the parent profile.
Declaration
public Output<string> Ciphers { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
DefaultsFrom
The parent template of this monitor template. Once this value has been set, it cannot be changed. By default, this value is /Common/serverssl.
Declaration
public Output<string> DefaultsFrom { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
ExpireCertResponseControl
Response if the cert is expired (drop / ignore).
Declaration
public Output<string> ExpireCertResponseControl { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
FullPath
full path of the profile
Declaration
public Output<string> FullPath { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Generation
generation
Declaration
public Output<int> Generation { get; }Property Value
| Type | Description |
|---|---|
| Output<System.Int32> |
GenericAlert
Generic alerts enabled / disabled.
Declaration
public Output<string> GenericAlert { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
HandshakeTimeout
Handshake time out (seconds)
Declaration
public Output<string> HandshakeTimeout { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Key
Specifies the file name of the SSL key.
Declaration
public Output<string> Key { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Mode
ModSSL Methods enabled / disabled. Default is disabled.
Declaration
public Output<string> Mode { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
ModSslMethods
ModSSL Methods enabled / disabled. Default is disabled.
Declaration
public Output<string> ModSslMethods { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Name
Specifies the name of the profile. (type string)
Declaration
public Output<string> Name { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Partition
Device partition to manage resources on.
Declaration
public Output<string> Partition { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Passphrase
Client Certificate Constrained Delegation CA passphrase
Declaration
public Output<string> Passphrase { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
PeerCertMode
Specifies the way the system handles client certificates.When ignore, specifies that the system ignores certificates from client systems.When require, specifies that the system requires a client to present a valid certificate.When request, specifies that the system requests a valid certificate from a client but always authenticate the client.
Declaration
public Output<string> PeerCertMode { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
ProxySsl
Proxy SSL enabled / disabled. Default is disabled.
Declaration
public Output<string> ProxySsl { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
RenegotiatePeriod
Renogotiate Period (seconds)
Declaration
public Output<string> RenegotiatePeriod { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
RenegotiateSize
Renogotiate Size
Declaration
public Output<string> RenegotiateSize { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Renegotiation
Enables or disables SSL renegotiation.When creating a new profile, the setting is provided by the parent profile
Declaration
public Output<string> Renegotiation { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
RetainCertificate
When true, client certificate is retained in SSL session.
Declaration
public Output<string> RetainCertificate { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SecureRenegotiation
Specifies the method of secure renegotiations for SSL connections. When creating a new profile, the setting is provided by the parent profile.
When request is set the system request secure renegotation of SSL connections.
require is a default setting and when set the system permits initial SSL handshakes from clients but terminates renegotiations from unpatched clients.
The require-strict setting the system requires strict renegotiation of SSL connections. In this mode the system refuses connections to insecure servers, and terminates existing SSL connections to insecure servers
Declaration
public Output<string> SecureRenegotiation { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
ServerName
Specifies the fully qualified DNS hostname of the server used in Server Name Indication communications. When creating a new profile, the setting is provided by the parent profile.The server name can also be a wildcard string containing the asterisk * character.
Declaration
public Output<string> ServerName { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SessionMirroring
Session Mirroring (enabled / disabled)
Declaration
public Output<string> SessionMirroring { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SessionTicket
Session Ticket (enabled / disabled)
Declaration
public Output<string> SessionTicket { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SniDefault
Indicates that the system uses this profile as the default SSL profile when there is no match to the server name, or when the client provides no SNI extension support.When creating a new profile, the setting is provided by the parent profile. There can be only one SSL profile with this setting enabled.
Declaration
public Output<string> SniDefault { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SniRequire
Requires that the network peers also provide SNI support, this setting only takes effect when sni_default is set to true.When creating a new profile, the setting is provided by the parent profile
Declaration
public Output<string> SniRequire { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SslForwardProxy
SSL forward Proxy (enabled / disabled)
Declaration
public Output<string> SslForwardProxy { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SslForwardProxyBypass
SSL forward Proxy Bypass (enabled / disabled)
Declaration
public Output<string> SslForwardProxyBypass { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
SslSignHash
SSL sign hash (any, sha1, sha256, sha384)
Declaration
public Output<string> SslSignHash { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
StrictResume
Enables or disables the resumption of SSL sessions after an unclean shutdown.When creating a new profile, the setting is provided by the parent profile.
Declaration
public Output<string> StrictResume { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
TmOptions
Declaration
public Output<ImmutableArray<string>> TmOptions { get; }Property Value
| Type | Description |
|---|---|
| Output<System.Collections.Immutable.ImmutableArray<System.String>> |
UncleanShutdown
Unclean Shutdown (enabled / disabled)
Declaration
public Output<string> UncleanShutdown { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
UntrustedCertResponseControl
Unclean Shutdown (drop / ignore)
Declaration
public Output<string> UntrustedCertResponseControl { get; }Property Value
| Type | Description |
|---|---|
| Output<System.String> |
Methods
View SourceGet(String, Input<String>, ProfileServerSslState, CustomResourceOptions)
Get an existing ProfileServerSsl resource's state with the given name, ID, and optional extra properties used to qualify the lookup.
Declaration
public static ProfileServerSsl Get(string name, Input<string> id, ProfileServerSslState state = null, CustomResourceOptions options = null)Parameters
| Type | Name | Description |
|---|---|---|
| System.String | name | The unique name of the resulting resource. |
| Input<System.String> | id | The unique provider ID of the resource to lookup. |
| ProfileServerSslState | state | Any extra arguments used during the lookup. |
| CustomResourceOptions | options | A bag of options that control this resource's behavior |
Returns
| Type | Description |
|---|---|
| ProfileServerSsl |