Docs Home
We recommend using Azure Native.
Azure v6.21.0 published on Friday, Mar 7, 2025 by Pulumi
azure.iot.SecurityDeviceGroup
Explore with Pulumi AI
Manages a Iot Security Device Group.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleIoTHub = new azure.iot.IoTHub("example", {
name: "example-IoTHub",
resourceGroupName: example.name,
location: example.location,
sku: {
name: "S1",
capacity: 1,
},
});
const exampleSecuritySolution = new azure.iot.SecuritySolution("example", {
name: "example-Iot-Security-Solution",
resourceGroupName: example.name,
location: example.location,
displayName: "Iot Security Solution",
iothubIds: [exampleIoTHub.id],
});
const exampleSecurityDeviceGroup = new azure.iot.SecurityDeviceGroup("example", {
name: "example-device-security-group",
iothubId: exampleIoTHub.id,
allowRule: {
connectionToIpsNotAlloweds: ["10.0.0.0/24"],
},
rangeRules: [{
type: "ActiveConnectionsNotInAllowedRange",
min: 0,
max: 30,
duration: "PT5M",
}],
}, {
dependsOn: [exampleSecuritySolution],
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_io_t_hub = azure.iot.IoTHub("example",
name="example-IoTHub",
resource_group_name=example.name,
location=example.location,
sku={
"name": "S1",
"capacity": 1,
})
example_security_solution = azure.iot.SecuritySolution("example",
name="example-Iot-Security-Solution",
resource_group_name=example.name,
location=example.location,
display_name="Iot Security Solution",
iothub_ids=[example_io_t_hub.id])
example_security_device_group = azure.iot.SecurityDeviceGroup("example",
name="example-device-security-group",
iothub_id=example_io_t_hub.id,
allow_rule={
"connection_to_ips_not_alloweds": ["10.0.0.0/24"],
},
range_rules=[{
"type": "ActiveConnectionsNotInAllowedRange",
"min": 0,
"max": 30,
"duration": "PT5M",
}],
opts = pulumi.ResourceOptions(depends_on=[example_security_solution]))
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/iot"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleIoTHub, err := iot.NewIoTHub(ctx, "example", &iot.IoTHubArgs{
Name: pulumi.String("example-IoTHub"),
ResourceGroupName: example.Name,
Location: example.Location,
Sku: &iot.IoTHubSkuArgs{
Name: pulumi.String("S1"),
Capacity: pulumi.Int(1),
},
})
if err != nil {
return err
}
exampleSecuritySolution, err := iot.NewSecuritySolution(ctx, "example", &iot.SecuritySolutionArgs{
Name: pulumi.String("example-Iot-Security-Solution"),
ResourceGroupName: example.Name,
Location: example.Location,
DisplayName: pulumi.String("Iot Security Solution"),
IothubIds: pulumi.StringArray{
exampleIoTHub.ID(),
},
})
if err != nil {
return err
}
_, err = iot.NewSecurityDeviceGroup(ctx, "example", &iot.SecurityDeviceGroupArgs{
Name: pulumi.String("example-device-security-group"),
IothubId: exampleIoTHub.ID(),
AllowRule: &iot.SecurityDeviceGroupAllowRuleArgs{
ConnectionToIpsNotAlloweds: pulumi.StringArray{
pulumi.String("10.0.0.0/24"),
},
},
RangeRules: iot.SecurityDeviceGroupRangeRuleArray{
&iot.SecurityDeviceGroupRangeRuleArgs{
Type: pulumi.String("ActiveConnectionsNotInAllowedRange"),
Min: pulumi.Int(0),
Max: pulumi.Int(30),
Duration: pulumi.String("PT5M"),
},
},
}, pulumi.DependsOn([]pulumi.Resource{
exampleSecuritySolution,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleIoTHub = new Azure.Iot.IoTHub("example", new()
{
Name = "example-IoTHub",
ResourceGroupName = example.Name,
Location = example.Location,
Sku = new Azure.Iot.Inputs.IoTHubSkuArgs
{
Name = "S1",
Capacity = 1,
},
});
var exampleSecuritySolution = new Azure.Iot.SecuritySolution("example", new()
{
Name = "example-Iot-Security-Solution",
ResourceGroupName = example.Name,
Location = example.Location,
DisplayName = "Iot Security Solution",
IothubIds = new[]
{
exampleIoTHub.Id,
},
});
var exampleSecurityDeviceGroup = new Azure.Iot.SecurityDeviceGroup("example", new()
{
Name = "example-device-security-group",
IothubId = exampleIoTHub.Id,
AllowRule = new Azure.Iot.Inputs.SecurityDeviceGroupAllowRuleArgs
{
ConnectionToIpsNotAlloweds = new[]
{
"10.0.0.0/24",
},
},
RangeRules = new[]
{
new Azure.Iot.Inputs.SecurityDeviceGroupRangeRuleArgs
{
Type = "ActiveConnectionsNotInAllowedRange",
Min = 0,
Max = 30,
Duration = "PT5M",
},
},
}, new CustomResourceOptions
{
DependsOn =
{
exampleSecuritySolution,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.iot.IoTHub;
import com.pulumi.azure.iot.IoTHubArgs;
import com.pulumi.azure.iot.inputs.IoTHubSkuArgs;
import com.pulumi.azure.iot.SecuritySolution;
import com.pulumi.azure.iot.SecuritySolutionArgs;
import com.pulumi.azure.iot.SecurityDeviceGroup;
import com.pulumi.azure.iot.SecurityDeviceGroupArgs;
import com.pulumi.azure.iot.inputs.SecurityDeviceGroupAllowRuleArgs;
import com.pulumi.azure.iot.inputs.SecurityDeviceGroupRangeRuleArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleIoTHub = new IoTHub("exampleIoTHub", IoTHubArgs.builder()
.name("example-IoTHub")
.resourceGroupName(example.name())
.location(example.location())
.sku(IoTHubSkuArgs.builder()
.name("S1")
.capacity("1")
.build())
.build());
var exampleSecuritySolution = new SecuritySolution("exampleSecuritySolution", SecuritySolutionArgs.builder()
.name("example-Iot-Security-Solution")
.resourceGroupName(example.name())
.location(example.location())
.displayName("Iot Security Solution")
.iothubIds(exampleIoTHub.id())
.build());
var exampleSecurityDeviceGroup = new SecurityDeviceGroup("exampleSecurityDeviceGroup", SecurityDeviceGroupArgs.builder()
.name("example-device-security-group")
.iothubId(exampleIoTHub.id())
.allowRule(SecurityDeviceGroupAllowRuleArgs.builder()
.connectionToIpsNotAlloweds("10.0.0.0/24")
.build())
.rangeRules(SecurityDeviceGroupRangeRuleArgs.builder()
.type("ActiveConnectionsNotInAllowedRange")
.min(0)
.max(30)
.duration("PT5M")
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(exampleSecuritySolution)
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleIoTHub:
type: azure:iot:IoTHub
name: example
properties:
name: example-IoTHub
resourceGroupName: ${example.name}
location: ${example.location}
sku:
name: S1
capacity: '1'
exampleSecuritySolution:
type: azure:iot:SecuritySolution
name: example
properties:
name: example-Iot-Security-Solution
resourceGroupName: ${example.name}
location: ${example.location}
displayName: Iot Security Solution
iothubIds:
- ${exampleIoTHub.id}
exampleSecurityDeviceGroup:
type: azure:iot:SecurityDeviceGroup
name: example
properties:
name: example-device-security-group
iothubId: ${exampleIoTHub.id}
allowRule:
connectionToIpsNotAlloweds:
- 10.0.0.0/24
rangeRules:
- type: ActiveConnectionsNotInAllowedRange
min: 0
max: 30
duration: PT5M
options:
dependsOn:
- ${exampleSecuritySolution}
Create SecurityDeviceGroup Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecurityDeviceGroup(name: string, args: SecurityDeviceGroupArgs, opts?: CustomResourceOptions);@overload
def SecurityDeviceGroup(resource_name: str,
args: SecurityDeviceGroupArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecurityDeviceGroup(resource_name: str,
opts: Optional[ResourceOptions] = None,
iothub_id: Optional[str] = None,
allow_rule: Optional[SecurityDeviceGroupAllowRuleArgs] = None,
name: Optional[str] = None,
range_rules: Optional[Sequence[SecurityDeviceGroupRangeRuleArgs]] = None)func NewSecurityDeviceGroup(ctx *Context, name string, args SecurityDeviceGroupArgs, opts ...ResourceOption) (*SecurityDeviceGroup, error)public SecurityDeviceGroup(string name, SecurityDeviceGroupArgs args, CustomResourceOptions? opts = null)
public SecurityDeviceGroup(String name, SecurityDeviceGroupArgs args)
public SecurityDeviceGroup(String name, SecurityDeviceGroupArgs args, CustomResourceOptions options)
type: azure:iot:SecurityDeviceGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecurityDeviceGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecurityDeviceGroupArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecurityDeviceGroupArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecurityDeviceGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecurityDeviceGroupArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securityDeviceGroupResource = new Azure.Iot.SecurityDeviceGroup("securityDeviceGroupResource", new()
{
IothubId = "string",
AllowRule = new Azure.Iot.Inputs.SecurityDeviceGroupAllowRuleArgs
{
ConnectionFromIpsNotAlloweds = new[]
{
"string",
},
ConnectionToIpsNotAlloweds = new[]
{
"string",
},
LocalUsersNotAlloweds = new[]
{
"string",
},
ProcessesNotAlloweds = new[]
{
"string",
},
},
Name = "string",
RangeRules = new[]
{
new Azure.Iot.Inputs.SecurityDeviceGroupRangeRuleArgs
{
Duration = "string",
Max = 0,
Min = 0,
Type = "string",
},
},
});
example, err := iot.NewSecurityDeviceGroup(ctx, "securityDeviceGroupResource", &iot.SecurityDeviceGroupArgs{
IothubId: pulumi.String("string"),
AllowRule: &iot.SecurityDeviceGroupAllowRuleArgs{
ConnectionFromIpsNotAlloweds: pulumi.StringArray{
pulumi.String("string"),
},
ConnectionToIpsNotAlloweds: pulumi.StringArray{
pulumi.String("string"),
},
LocalUsersNotAlloweds: pulumi.StringArray{
pulumi.String("string"),
},
ProcessesNotAlloweds: pulumi.StringArray{
pulumi.String("string"),
},
},
Name: pulumi.String("string"),
RangeRules: iot.SecurityDeviceGroupRangeRuleArray{
&iot.SecurityDeviceGroupRangeRuleArgs{
Duration: pulumi.String("string"),
Max: pulumi.Int(0),
Min: pulumi.Int(0),
Type: pulumi.String("string"),
},
},
})
var securityDeviceGroupResource = new SecurityDeviceGroup("securityDeviceGroupResource", SecurityDeviceGroupArgs.builder()
.iothubId("string")
.allowRule(SecurityDeviceGroupAllowRuleArgs.builder()
.connectionFromIpsNotAlloweds("string")
.connectionToIpsNotAlloweds("string")
.localUsersNotAlloweds("string")
.processesNotAlloweds("string")
.build())
.name("string")
.rangeRules(SecurityDeviceGroupRangeRuleArgs.builder()
.duration("string")
.max(0)
.min(0)
.type("string")
.build())
.build());
security_device_group_resource = azure.iot.SecurityDeviceGroup("securityDeviceGroupResource",
iothub_id="string",
allow_rule={
"connection_from_ips_not_alloweds": ["string"],
"connection_to_ips_not_alloweds": ["string"],
"local_users_not_alloweds": ["string"],
"processes_not_alloweds": ["string"],
},
name="string",
range_rules=[{
"duration": "string",
"max": 0,
"min": 0,
"type": "string",
}])
const securityDeviceGroupResource = new azure.iot.SecurityDeviceGroup("securityDeviceGroupResource", {
iothubId: "string",
allowRule: {
connectionFromIpsNotAlloweds: ["string"],
connectionToIpsNotAlloweds: ["string"],
localUsersNotAlloweds: ["string"],
processesNotAlloweds: ["string"],
},
name: "string",
rangeRules: [{
duration: "string",
max: 0,
min: 0,
type: "string",
}],
});
type: azure:iot:SecurityDeviceGroup
properties:
allowRule:
connectionFromIpsNotAlloweds:
- string
connectionToIpsNotAlloweds:
- string
localUsersNotAlloweds:
- string
processesNotAlloweds:
- string
iothubId: string
name: string
rangeRules:
- duration: string
max: 0
min: 0
type: string
SecurityDeviceGroup Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecurityDeviceGroup resource accepts the following input properties:
- Iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- Allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - Name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- Range
Rules List<SecurityDevice Group Range Rule> - One or more
range_ruleblocks as defined below.
- Iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- Allow
Rule SecurityDevice Group Allow Rule Args - an
allow_ruleblocks as defined below. - Name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- Range
Rules []SecurityDevice Group Range Rule Args - One or more
range_ruleblocks as defined below.
- iothub
Id String - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - name String
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules List<SecurityDevice Group Range Rule> - One or more
range_ruleblocks as defined below.
- iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules SecurityDevice Group Range Rule[] - One or more
range_ruleblocks as defined below.
- iothub_
id str - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- allow_
rule SecurityDevice Group Allow Rule Args - an
allow_ruleblocks as defined below. - name str
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range_
rules Sequence[SecurityDevice Group Range Rule Args] - One or more
range_ruleblocks as defined below.
- iothub
Id String - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- allow
Rule Property Map - an
allow_ruleblocks as defined below. - name String
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules List<Property Map> - One or more
range_ruleblocks as defined below.
Outputs
All input properties are implicitly available as output properties. Additionally, the SecurityDeviceGroup resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing SecurityDeviceGroup Resource
Get an existing SecurityDeviceGroup resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecurityDeviceGroupState, opts?: CustomResourceOptions): SecurityDeviceGroup@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
allow_rule: Optional[SecurityDeviceGroupAllowRuleArgs] = None,
iothub_id: Optional[str] = None,
name: Optional[str] = None,
range_rules: Optional[Sequence[SecurityDeviceGroupRangeRuleArgs]] = None) -> SecurityDeviceGroupfunc GetSecurityDeviceGroup(ctx *Context, name string, id IDInput, state *SecurityDeviceGroupState, opts ...ResourceOption) (*SecurityDeviceGroup, error)public static SecurityDeviceGroup Get(string name, Input<string> id, SecurityDeviceGroupState? state, CustomResourceOptions? opts = null)public static SecurityDeviceGroup get(String name, Output<String> id, SecurityDeviceGroupState state, CustomResourceOptions options)resources: _: type: azure:iot:SecurityDeviceGroup get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - Iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- Name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- Range
Rules List<SecurityDevice Group Range Rule> - One or more
range_ruleblocks as defined below.
- Allow
Rule SecurityDevice Group Allow Rule Args - an
allow_ruleblocks as defined below. - Iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- Name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- Range
Rules []SecurityDevice Group Range Rule Args - One or more
range_ruleblocks as defined below.
- allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - iothub
Id String - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- name String
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules List<SecurityDevice Group Range Rule> - One or more
range_ruleblocks as defined below.
- allow
Rule SecurityDevice Group Allow Rule - an
allow_ruleblocks as defined below. - iothub
Id string - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- name string
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules SecurityDevice Group Range Rule[] - One or more
range_ruleblocks as defined below.
- allow_
rule SecurityDevice Group Allow Rule Args - an
allow_ruleblocks as defined below. - iothub_
id str - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- name str
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range_
rules Sequence[SecurityDevice Group Range Rule Args] - One or more
range_ruleblocks as defined below.
- allow
Rule Property Map - an
allow_ruleblocks as defined below. - iothub
Id String - The ID of the IoT Hub which to link the Security Device Group to. Changing this forces a new resource to be created.
- name String
- Specifies the name of the Device Security Group. Changing this forces a new resource to be created.
- range
Rules List<Property Map> - One or more
range_ruleblocks as defined below.
Supporting Types
SecurityDeviceGroupAllowRule, SecurityDeviceGroupAllowRuleArgs
- Connection
From List<string>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- Connection
To List<string>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- Local
Users List<string>Not Alloweds - Specifies which local user is not allowed to login in current device group.
- Processes
Not List<string>Alloweds - Specifies which process is not allowed to be executed in current device group.
- Connection
From []stringIps Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- Connection
To []stringIps Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- Local
Users []stringNot Alloweds - Specifies which local user is not allowed to login in current device group.
- Processes
Not []stringAlloweds - Specifies which process is not allowed to be executed in current device group.
- connection
From List<String>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- connection
To List<String>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- local
Users List<String>Not Alloweds - Specifies which local user is not allowed to login in current device group.
- processes
Not List<String>Alloweds - Specifies which process is not allowed to be executed in current device group.
- connection
From string[]Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- connection
To string[]Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- local
Users string[]Not Alloweds - Specifies which local user is not allowed to login in current device group.
- processes
Not string[]Alloweds - Specifies which process is not allowed to be executed in current device group.
- connection_
from_ Sequence[str]ips_ not_ alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- connection_
to_ Sequence[str]ips_ not_ alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- local_
users_ Sequence[str]not_ alloweds - Specifies which local user is not allowed to login in current device group.
- processes_
not_ Sequence[str]alloweds - Specifies which process is not allowed to be executed in current device group.
- connection
From List<String>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for inbound connection.
- connection
To List<String>Ips Not Alloweds - Specifies which IP is not allowed to be connected to in current device group for outbound connection.
- local
Users List<String>Not Alloweds - Specifies which local user is not allowed to login in current device group.
- processes
Not List<String>Alloweds - Specifies which process is not allowed to be executed in current device group.
SecurityDeviceGroupRangeRule, SecurityDeviceGroupRangeRuleArgs
- Duration string
- Specifies the time range. represented in ISO 8601 duration format.
- Max int
- The maximum threshold in the given time window.
- Min int
- The minimum threshold in the given time window.
- Type string
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
- Duration string
- Specifies the time range. represented in ISO 8601 duration format.
- Max int
- The maximum threshold in the given time window.
- Min int
- The minimum threshold in the given time window.
- Type string
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
- duration String
- Specifies the time range. represented in ISO 8601 duration format.
- max Integer
- The maximum threshold in the given time window.
- min Integer
- The minimum threshold in the given time window.
- type String
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
- duration string
- Specifies the time range. represented in ISO 8601 duration format.
- max number
- The maximum threshold in the given time window.
- min number
- The minimum threshold in the given time window.
- type string
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
- duration str
- Specifies the time range. represented in ISO 8601 duration format.
- max int
- The maximum threshold in the given time window.
- min int
- The minimum threshold in the given time window.
- type str
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
- duration String
- Specifies the time range. represented in ISO 8601 duration format.
- max Number
- The maximum threshold in the given time window.
- min Number
- The minimum threshold in the given time window.
- type String
- The type of supported rule type. Possible Values are
ActiveConnectionsNotInAllowedRange,AmqpC2DMessagesNotInAllowedRange,MqttC2DMessagesNotInAllowedRange,HttpC2DMessagesNotInAllowedRange,AmqpC2DRejectedMessagesNotInAllowedRange,MqttC2DRejectedMessagesNotInAllowedRange,HttpC2DRejectedMessagesNotInAllowedRange,AmqpD2CMessagesNotInAllowedRange,MqttD2CMessagesNotInAllowedRange,HttpD2CMessagesNotInAllowedRange,DirectMethodInvokesNotInAllowedRange,FailedLocalLoginsNotInAllowedRange,FileUploadsNotInAllowedRange,QueuePurgesNotInAllowedRange,TwinUpdatesNotInAllowedRangeandUnauthorizedOperationsNotInAllowedRange.
Import
Iot Security Device Group can be imported using the resource id, e.g.
$ pulumi import azure:iot/securityDeviceGroup:SecurityDeviceGroup example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/resGroup1/providers/Microsoft.Devices/iotHubs/hub1/providers/Microsoft.Security/deviceSecurityGroups/group1
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azurermTerraform Provider.