fortimanager 1.14.0, Apr 15 25

fortimanager 1.14.0 published on Tuesday, Apr 15, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallSslsshprofileFtps

Explore with Pulumi AI

fortimanager 1.14.0 published on Tuesday, Apr 15, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

import * as pulumi from "@pulumi/pulumi";
import * as fortimanager from "@pulumi/fortimanager";

const trnameObjectFirewallSslsshprofile = new fortimanager.ObjectFirewallSslsshprofile("trnameObjectFirewallSslsshprofile", {});
const trnameObjectFirewallSslsshprofileFtps = new fortimanager.ObjectFirewallSslsshprofileFtps("trnameObjectFirewallSslsshprofileFtps", {
    sslSshProfile: trnameObjectFirewallSslsshprofile.name,
    ports: [
        23,
        24,
    ],
    revokedServerCert: "ignore",
    sniServerCertCheck: "enable",
}, {
    dependsOn: [trnameObjectFirewallSslsshprofile],
});

import pulumi
import pulumi_fortimanager as fortimanager

trname_object_firewall_sslsshprofile = fortimanager.ObjectFirewallSslsshprofile("trnameObjectFirewallSslsshprofile")
trname_object_firewall_sslsshprofile_ftps = fortimanager.ObjectFirewallSslsshprofileFtps("trnameObjectFirewallSslsshprofileFtps",
    ssl_ssh_profile=trname_object_firewall_sslsshprofile.name,
    ports=[
        23,
        24,
    ],
    revoked_server_cert="ignore",
    sni_server_cert_check="enable",
    opts = pulumi.ResourceOptions(depends_on=[trname_object_firewall_sslsshprofile]))

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/fortimanager/fortimanager"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		trnameObjectFirewallSslsshprofile, err := fortimanager.NewObjectFirewallSslsshprofile(ctx, "trnameObjectFirewallSslsshprofile", nil)
		if err != nil {
			return err
		}
		_, err = fortimanager.NewObjectFirewallSslsshprofileFtps(ctx, "trnameObjectFirewallSslsshprofileFtps", &fortimanager.ObjectFirewallSslsshprofileFtpsArgs{
			SslSshProfile: trnameObjectFirewallSslsshprofile.Name,
			Ports: pulumi.Float64Array{
				pulumi.Float64(23),
				pulumi.Float64(24),
			},
			RevokedServerCert:  pulumi.String("ignore"),
			SniServerCertCheck: pulumi.String("enable"),
		}, pulumi.DependsOn([]pulumi.Resource{
			trnameObjectFirewallSslsshprofile,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortimanager = Pulumi.Fortimanager;

return await Deployment.RunAsync(() => 
{
    var trnameObjectFirewallSslsshprofile = new Fortimanager.ObjectFirewallSslsshprofile("trnameObjectFirewallSslsshprofile");

    var trnameObjectFirewallSslsshprofileFtps = new Fortimanager.ObjectFirewallSslsshprofileFtps("trnameObjectFirewallSslsshprofileFtps", new()
    {
        SslSshProfile = trnameObjectFirewallSslsshprofile.Name,
        Ports = new[]
        {
            23,
            24,
        },
        RevokedServerCert = "ignore",
        SniServerCertCheck = "enable",
    }, new CustomResourceOptions
    {
        DependsOn =
        {
            trnameObjectFirewallSslsshprofile,
        },
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortimanager.ObjectFirewallSslsshprofile;
import com.pulumi.fortimanager.ObjectFirewallSslsshprofileFtps;
import com.pulumi.fortimanager.ObjectFirewallSslsshprofileFtpsArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var trnameObjectFirewallSslsshprofile = new ObjectFirewallSslsshprofile("trnameObjectFirewallSslsshprofile");

        var trnameObjectFirewallSslsshprofileFtps = new ObjectFirewallSslsshprofileFtps("trnameObjectFirewallSslsshprofileFtps", ObjectFirewallSslsshprofileFtpsArgs.builder()
            .sslSshProfile(trnameObjectFirewallSslsshprofile.name())
            .ports(            
                23,
                24)
            .revokedServerCert("ignore")
            .sniServerCertCheck("enable")
            .build(), CustomResourceOptions.builder()
                .dependsOn(trnameObjectFirewallSslsshprofile)
                .build());

    }
}

resources:
  trnameObjectFirewallSslsshprofileFtps:
    type: fortimanager:ObjectFirewallSslsshprofileFtps
    properties:
      sslSshProfile: ${trnameObjectFirewallSslsshprofile.name}
      ports:
        - 23
        - 24
      revokedServerCert: ignore
      sniServerCertCheck: enable
    options:
      dependsOn:
        - ${trnameObjectFirewallSslsshprofile}
  trnameObjectFirewallSslsshprofile:
    type: fortimanager:ObjectFirewallSslsshprofile

Create ObjectFirewallSslsshprofileFtps Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

TypeScript
Python
Go
C#
Java
YAML

new ObjectFirewallSslsshprofileFtps(name: string, args: ObjectFirewallSslsshprofileFtpsArgs, opts?: CustomResourceOptions);

@overload
def ObjectFirewallSslsshprofileFtps(resource_name: str,
                                    args: ObjectFirewallSslsshprofileFtpsInitArgs,
                                    opts: Optional[ResourceOptions] = None)

@overload
def ObjectFirewallSslsshprofileFtps(resource_name: str,
                                    opts: Optional[ResourceOptions] = None,
                                    ssl_ssh_profile: Optional[str] = None,
                                    ports: Optional[Sequence[float]] = None,
                                    scopetype: Optional[str] = None,
                                    cert_validation_timeout: Optional[str] = None,
                                    client_cert_request: Optional[str] = None,
                                    client_certificate: Optional[str] = None,
                                    expired_server_cert: Optional[str] = None,
                                    invalid_server_cert: Optional[str] = None,
                                    min_allowed_ssl_version: Optional[str] = None,
                                    object_firewall_sslsshprofile_ftps_id: Optional[str] = None,
                                    adom: Optional[str] = None,
                                    cert_validation_failure: Optional[str] = None,
                                    sni_server_cert_check: Optional[str] = None,
                                    revoked_server_cert: Optional[str] = None,
                                    allow_invalid_server_cert: Optional[str] = None,
                                    status: Optional[str] = None,
                                    unsupported_ssl: Optional[str] = None,
                                    unsupported_ssl_cipher: Optional[str] = None,
                                    unsupported_ssl_negotiation: Optional[str] = None,
                                    unsupported_ssl_version: Optional[str] = None,
                                    untrusted_cert: Optional[str] = None,
                                    untrusted_server_cert: Optional[str] = None)

func NewObjectFirewallSslsshprofileFtps(ctx *Context, name string, args ObjectFirewallSslsshprofileFtpsArgs, opts ...ResourceOption) (*ObjectFirewallSslsshprofileFtps, error)

public ObjectFirewallSslsshprofileFtps(string name, ObjectFirewallSslsshprofileFtpsArgs args, CustomResourceOptions? opts = null)

public ObjectFirewallSslsshprofileFtps(String name, ObjectFirewallSslsshprofileFtpsArgs args)
public ObjectFirewallSslsshprofileFtps(String name, ObjectFirewallSslsshprofileFtpsArgs args, CustomResourceOptions options)

type: fortimanager:ObjectFirewallSslsshprofileFtps
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectFirewallSslsshprofileFtpsArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectFirewallSslsshprofileFtpsInitArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectFirewallSslsshprofileFtpsArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectFirewallSslsshprofileFtpsArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectFirewallSslsshprofileFtpsArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

TypeScript
Python
Go
C#
Java
YAML

var objectFirewallSslsshprofileFtpsResource = new Fortimanager.ObjectFirewallSslsshprofileFtps("objectFirewallSslsshprofileFtpsResource", new()
{
    SslSshProfile = "string",
    Ports = new[]
    {
        0,
    },
    Scopetype = "string",
    CertValidationTimeout = "string",
    ClientCertRequest = "string",
    ClientCertificate = "string",
    ExpiredServerCert = "string",
    InvalidServerCert = "string",
    MinAllowedSslVersion = "string",
    ObjectFirewallSslsshprofileFtpsId = "string",
    Adom = "string",
    CertValidationFailure = "string",
    SniServerCertCheck = "string",
    RevokedServerCert = "string",
    AllowInvalidServerCert = "string",
    Status = "string",
    UnsupportedSsl = "string",
    UnsupportedSslCipher = "string",
    UnsupportedSslNegotiation = "string",
    UnsupportedSslVersion = "string",
    UntrustedCert = "string",
    UntrustedServerCert = "string",
});

example, err := fortimanager.NewObjectFirewallSslsshprofileFtps(ctx, "objectFirewallSslsshprofileFtpsResource", &fortimanager.ObjectFirewallSslsshprofileFtpsArgs{
	SslSshProfile: pulumi.String("string"),
	Ports: pulumi.Float64Array{
		pulumi.Float64(0),
	},
	Scopetype:                         pulumi.String("string"),
	CertValidationTimeout:             pulumi.String("string"),
	ClientCertRequest:                 pulumi.String("string"),
	ClientCertificate:                 pulumi.String("string"),
	ExpiredServerCert:                 pulumi.String("string"),
	InvalidServerCert:                 pulumi.String("string"),
	MinAllowedSslVersion:              pulumi.String("string"),
	ObjectFirewallSslsshprofileFtpsId: pulumi.String("string"),
	Adom:                              pulumi.String("string"),
	CertValidationFailure:             pulumi.String("string"),
	SniServerCertCheck:                pulumi.String("string"),
	RevokedServerCert:                 pulumi.String("string"),
	AllowInvalidServerCert:            pulumi.String("string"),
	Status:                            pulumi.String("string"),
	UnsupportedSsl:                    pulumi.String("string"),
	UnsupportedSslCipher:              pulumi.String("string"),
	UnsupportedSslNegotiation:         pulumi.String("string"),
	UnsupportedSslVersion:             pulumi.String("string"),
	UntrustedCert:                     pulumi.String("string"),
	UntrustedServerCert:               pulumi.String("string"),
})

var objectFirewallSslsshprofileFtpsResource = new ObjectFirewallSslsshprofileFtps("objectFirewallSslsshprofileFtpsResource", ObjectFirewallSslsshprofileFtpsArgs.builder()
    .sslSshProfile("string")
    .ports(0)
    .scopetype("string")
    .certValidationTimeout("string")
    .clientCertRequest("string")
    .clientCertificate("string")
    .expiredServerCert("string")
    .invalidServerCert("string")
    .minAllowedSslVersion("string")
    .objectFirewallSslsshprofileFtpsId("string")
    .adom("string")
    .certValidationFailure("string")
    .sniServerCertCheck("string")
    .revokedServerCert("string")
    .allowInvalidServerCert("string")
    .status("string")
    .unsupportedSsl("string")
    .unsupportedSslCipher("string")
    .unsupportedSslNegotiation("string")
    .unsupportedSslVersion("string")
    .untrustedCert("string")
    .untrustedServerCert("string")
    .build());

object_firewall_sslsshprofile_ftps_resource = fortimanager.ObjectFirewallSslsshprofileFtps("objectFirewallSslsshprofileFtpsResource",
    ssl_ssh_profile="string",
    ports=[0],
    scopetype="string",
    cert_validation_timeout="string",
    client_cert_request="string",
    client_certificate="string",
    expired_server_cert="string",
    invalid_server_cert="string",
    min_allowed_ssl_version="string",
    object_firewall_sslsshprofile_ftps_id="string",
    adom="string",
    cert_validation_failure="string",
    sni_server_cert_check="string",
    revoked_server_cert="string",
    allow_invalid_server_cert="string",
    status="string",
    unsupported_ssl="string",
    unsupported_ssl_cipher="string",
    unsupported_ssl_negotiation="string",
    unsupported_ssl_version="string",
    untrusted_cert="string",
    untrusted_server_cert="string")

const objectFirewallSslsshprofileFtpsResource = new fortimanager.ObjectFirewallSslsshprofileFtps("objectFirewallSslsshprofileFtpsResource", {
    sslSshProfile: "string",
    ports: [0],
    scopetype: "string",
    certValidationTimeout: "string",
    clientCertRequest: "string",
    clientCertificate: "string",
    expiredServerCert: "string",
    invalidServerCert: "string",
    minAllowedSslVersion: "string",
    objectFirewallSslsshprofileFtpsId: "string",
    adom: "string",
    certValidationFailure: "string",
    sniServerCertCheck: "string",
    revokedServerCert: "string",
    allowInvalidServerCert: "string",
    status: "string",
    unsupportedSsl: "string",
    unsupportedSslCipher: "string",
    unsupportedSslNegotiation: "string",
    unsupportedSslVersion: "string",
    untrustedCert: "string",
    untrustedServerCert: "string",
});

type: fortimanager:ObjectFirewallSslsshprofileFtps
properties:
    adom: string
    allowInvalidServerCert: string
    certValidationFailure: string
    certValidationTimeout: string
    clientCertRequest: string
    clientCertificate: string
    expiredServerCert: string
    invalidServerCert: string
    minAllowedSslVersion: string
    objectFirewallSslsshprofileFtpsId: string
    ports:
        - 0
    revokedServerCert: string
    scopetype: string
    sniServerCertCheck: string
    sslSshProfile: string
    status: string
    unsupportedSsl: string
    unsupportedSslCipher: string
    unsupportedSslNegotiation: string
    unsupportedSslVersion: string
    untrustedCert: string
    untrustedServerCert: string

ObjectFirewallSslsshprofileFtps Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectFirewallSslsshprofileFtps resource accepts the following input properties:

SslSshProfile string: Ssl Ssh Profile.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AllowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
CertValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
CertValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
ClientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
ClientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
ExpiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
InvalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
MinAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ObjectFirewallSslsshprofileFtpsId string: an identifier for the resource.
Ports List<double>: Ports to use for scanning (1 - 65535, default = 443).
RevokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
Status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
UnsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
UnsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
UnsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
UnsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
UntrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
UntrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

SslSshProfile string: Ssl Ssh Profile.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AllowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
CertValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
CertValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
ClientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
ClientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
ExpiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
InvalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
MinAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ObjectFirewallSslsshprofileFtpsId string: an identifier for the resource.
Ports []float64: Ports to use for scanning (1 - 65535, default = 443).
RevokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
Status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
UnsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
UnsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
UnsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
UnsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
UntrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
UntrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

sslSshProfile String: Ssl Ssh Profile.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert String: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure String: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout String: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest String: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate String: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert String: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert String: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion String: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId String: an identifier for the resource.
ports List<Double>: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert String: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck String: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
status String: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl String: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher String: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation String: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion String: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

sslSshProfile string: Ssl Ssh Profile.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId string: an identifier for the resource.
ports number[]: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

ssl_ssh_profile str: Ssl Ssh Profile.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allow_invalid_server_cert str: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
cert_validation_failure str: Action based on certificate validation failure. Valid values: allow, block, ignore.
cert_validation_timeout str: Action based on certificate validation timeout. Valid values: allow, block, ignore.
client_cert_request str: Action based on client certificate request. Valid values: bypass, inspect, block.
client_certificate str: Action based on received client certificate. Valid values: bypass, inspect, block.
expired_server_cert str: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalid_server_cert str: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
min_allowed_ssl_version str: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
object_firewall_sslsshprofile_ftps_id str: an identifier for the resource.
ports Sequence[float]: Ports to use for scanning (1 - 65535, default = 443).
revoked_server_cert str: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sni_server_cert_check str: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
status str: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupported_ssl str: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupported_ssl_cipher str: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupported_ssl_negotiation str: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupported_ssl_version str: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrusted_cert str: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrusted_server_cert str: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

sslSshProfile String: Ssl Ssh Profile.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert String: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure String: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout String: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest String: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate String: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert String: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert String: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion String: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId String: an identifier for the resource.
ports List<Number>: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert String: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck String: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
status String: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl String: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher String: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation String: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion String: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectFirewallSslsshprofileFtps resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectFirewallSslsshprofileFtps Resource

Get an existing ObjectFirewallSslsshprofileFtps resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

TypeScript
Python
Go
C#
Java
YAML

public static get(name: string, id: Input<ID>, state?: ObjectFirewallSslsshprofileFtpsState, opts?: CustomResourceOptions): ObjectFirewallSslsshprofileFtps

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        adom: Optional[str] = None,
        allow_invalid_server_cert: Optional[str] = None,
        cert_validation_failure: Optional[str] = None,
        cert_validation_timeout: Optional[str] = None,
        client_cert_request: Optional[str] = None,
        client_certificate: Optional[str] = None,
        expired_server_cert: Optional[str] = None,
        invalid_server_cert: Optional[str] = None,
        min_allowed_ssl_version: Optional[str] = None,
        object_firewall_sslsshprofile_ftps_id: Optional[str] = None,
        ports: Optional[Sequence[float]] = None,
        revoked_server_cert: Optional[str] = None,
        scopetype: Optional[str] = None,
        sni_server_cert_check: Optional[str] = None,
        ssl_ssh_profile: Optional[str] = None,
        status: Optional[str] = None,
        unsupported_ssl: Optional[str] = None,
        unsupported_ssl_cipher: Optional[str] = None,
        unsupported_ssl_negotiation: Optional[str] = None,
        unsupported_ssl_version: Optional[str] = None,
        untrusted_cert: Optional[str] = None,
        untrusted_server_cert: Optional[str] = None) -> ObjectFirewallSslsshprofileFtps

func GetObjectFirewallSslsshprofileFtps(ctx *Context, name string, id IDInput, state *ObjectFirewallSslsshprofileFtpsState, opts ...ResourceOption) (*ObjectFirewallSslsshprofileFtps, error)

public static ObjectFirewallSslsshprofileFtps Get(string name, Input<string> id, ObjectFirewallSslsshprofileFtpsState? state, CustomResourceOptions? opts = null)

public static ObjectFirewallSslsshprofileFtps get(String name, Output<String> id, ObjectFirewallSslsshprofileFtpsState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectFirewallSslsshprofileFtps    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AllowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
CertValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
CertValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
ClientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
ClientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
ExpiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
InvalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
MinAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ObjectFirewallSslsshprofileFtpsId string: an identifier for the resource.
Ports List<double>: Ports to use for scanning (1 - 65535, default = 443).
RevokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
SslSshProfile string: Ssl Ssh Profile.
Status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
UnsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
UnsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
UnsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
UnsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
UntrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
UntrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AllowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
CertValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
CertValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
ClientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
ClientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
ExpiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
InvalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
MinAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ObjectFirewallSslsshprofileFtpsId string: an identifier for the resource.
Ports []float64: Ports to use for scanning (1 - 65535, default = 443).
RevokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
SslSshProfile string: Ssl Ssh Profile.
Status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
UnsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
UnsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
UnsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
UnsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
UntrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
UntrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert String: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure String: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout String: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest String: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate String: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert String: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert String: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion String: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId String: an identifier for the resource.
ports List<Double>: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert String: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck String: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
sslSshProfile String: Ssl Ssh Profile.
status String: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl String: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher String: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation String: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion String: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert string: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure string: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout string: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest string: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate string: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert string: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert string: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion string: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId string: an identifier for the resource.
ports number[]: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert string: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck string: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
sslSshProfile string: Ssl Ssh Profile.
status string: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl string: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher string: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation string: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion string: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert string: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allow_invalid_server_cert str: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
cert_validation_failure str: Action based on certificate validation failure. Valid values: allow, block, ignore.
cert_validation_timeout str: Action based on certificate validation timeout. Valid values: allow, block, ignore.
client_cert_request str: Action based on client certificate request. Valid values: bypass, inspect, block.
client_certificate str: Action based on received client certificate. Valid values: bypass, inspect, block.
expired_server_cert str: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalid_server_cert str: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
min_allowed_ssl_version str: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
object_firewall_sslsshprofile_ftps_id str: an identifier for the resource.
ports Sequence[float]: Ports to use for scanning (1 - 65535, default = 443).
revoked_server_cert str: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sni_server_cert_check str: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
ssl_ssh_profile str: Ssl Ssh Profile.
status str: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupported_ssl str: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupported_ssl_cipher str: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupported_ssl_negotiation str: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupported_ssl_version str: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrusted_cert str: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrusted_server_cert str: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
allowInvalidServerCert String: When enabled, allows SSL sessions whose server certificate validation failed. Valid values: disable, enable.
certValidationFailure String: Action based on certificate validation failure. Valid values: allow, block, ignore.
certValidationTimeout String: Action based on certificate validation timeout. Valid values: allow, block, ignore.
clientCertRequest String: Action based on client certificate request. Valid values: bypass, inspect, block.
clientCertificate String: Action based on received client certificate. Valid values: bypass, inspect, block.
expiredServerCert String: Action based on server certificate is expired. Valid values: allow, block, ignore.
invalidServerCert String: Allow or block the invalid SSL session server certificate. Valid values: allow, block.
minAllowedSslVersion String: Minimum SSL version to be allowed. Valid values: ssl-3.0, tls-1.0, tls-1.1, tls-1.2, tls-1.3.
objectFirewallSslsshprofileFtpsId String: an identifier for the resource.
ports List<Number>: Ports to use for scanning (1 - 65535, default = 443).
revokedServerCert String: Action based on server certificate is revoked. Valid values: allow, block, ignore.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sniServerCertCheck String: Check the SNI in the client hello message with the CN or SAN fields in the returned server certificate. Valid values: disable, enable, strict.
sslSshProfile String: Ssl Ssh Profile.
status String: Configure protocol inspection status. Valid values: disable, deep-inspection.
unsupportedSsl String: Action based on the SSL encryption used being unsupported. Valid values: bypass, inspect, block.
unsupportedSslCipher String: Action based on the SSL cipher used being unsupported. Valid values: allow, block.
unsupportedSslNegotiation String: Action based on the SSL negotiation used being unsupported. Valid values: allow, block.
unsupportedSslVersion String: Action based on the SSL version used being unsupported. Valid values: block, allow, inspect.
untrustedCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.
untrustedServerCert String: Allow, ignore, or block the untrusted SSL session server certificate. Valid values: allow, block, ignore.

Import

ObjectFirewall SslSshProfileFtps can be imported using any of these accepted formats:

Set import_options = [“ssl_ssh_profile=YOUR_VALUE”] in the provider section.

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectFirewallSslsshprofileFtps:ObjectFirewallSslsshprofileFtps labelname ObjectFirewallSslSshProfileFtps

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.14.0 published on Tuesday, Apr 15, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallSslsshprofileFtps

On this page

On this page

Example Usage

Create ObjectFirewallSslsshprofileFtps Resource

Constructor syntax

Parameters

Constructor example

ObjectFirewallSslsshprofileFtps Resource Properties

Inputs

Outputs

Look up Existing ObjectFirewallSslsshprofileFtps Resource

Import

Package Details

On this page

On this page