Package @pulumi/azuread

var azuread = require("@pulumi/azuread");
import * as azuread from "@pulumi/azuread";

Modules ▾

class Application

extends CustomResource

Manages an Application within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to both Read and write all applications and Sign in and read user profile within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const test = new azuread.Application("test", {
    availableToOtherTenants: false,
    homepage: "https://homepage",
    identifierUris: ["https://uri"],
    oauth2AllowImplicitFlow: true,
    replyUrls: ["https://replyurl"],
    requiredResourceAccesses: [
        {
            resourceAccesses: [
                {
                    id: "...",
                    type: "Role",
                },
                {
                    id: "...",
                    type: "Scope",
                },
                {
                    id: "...",
                    type: "Scope",
                },
            ],
            resourceAppId: "00000003-0000-0000-c000-000000000000",
        },
        {
            resourceAccesses: [{
                id: "...",
                type: "Scope",
            }],
            resourceAppId: "00000002-0000-0000-c000-000000000000",
        },
    ],
});

constructor

new Application(name: string, args?: ApplicationArgs, opts?: pulumi.CustomResourceOptions)

Create a Application resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method get

public static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ApplicationState, opts?: pulumi.CustomResourceOptions): Application

Get an existing Application resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property applicationId

public applicationId: pulumi.Output<string>;

The Application ID.

property availableToOtherTenants

public availableToOtherTenants: pulumi.Output<boolean | undefined>;

Is this Azure AD Application available to other tenants? Defaults to false.

property homepage

public homepage: pulumi.Output<string>;

The URL to the application’s home page. If no homepage is specified this defaults to https://{name}.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property identifierUris

public identifierUris: pulumi.Output<string[]>;

A list of user-defined URI(s) that uniquely identify a Web application within it’s Azure AD tenant, or within a verified custom domain if the application is multi-tenant.

property name

public name: pulumi.Output<string>;

The display name for the application.

property oauth2AllowImplicitFlow

public oauth2AllowImplicitFlow: pulumi.Output<boolean | undefined>;

Does this Azure AD Application allow OAuth2.0 implicit flow tokens? Defaults to false.

property replyUrls

public replyUrls: pulumi.Output<string[]>;

A list of URLs that user tokens are sent to for sign in, or the redirect URIs that OAuth 2.0 authorization codes and access tokens are sent to.

property requiredResourceAccesses

public requiredResourceAccesses: pulumi.Output<{
    resourceAccesses: {
        id: string;
        type: string;
    }[];
    resourceAppId: string;
}[] | undefined>;

A collection of required_resource_access blocks as documented below.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

class Group

extends CustomResource

Manages a Group within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to Read and write all groups within the Windows Azure Active Directory API. In addition it must also have either the Company Administrator or User Account Administrator Azure Active Directory roles assigned in order to be able to delete groups. You can assign one of the required Azure Active Directory Roles with the AzureAD PowerShell Module, which is available for Windows PowerShell or in the Azure Cloud Shell. Please refer to this documentation for more details.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const myGroup = new azuread.Group("my_group", {});

constructor

new Group(name: string, args?: GroupArgs, opts?: pulumi.CustomResourceOptions)

Create a Group resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method get

public static get(name: string, id: pulumi.Input<pulumi.ID>, state?: GroupState, opts?: pulumi.CustomResourceOptions): Group

Get an existing Group resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property name

public name: pulumi.Output<string>;

The display name for the Group.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

class Provider

extends ProviderResource

The provider type for the azuread package. By default, resources use package-wide configuration settings, however an explicit Provider instance may be created and passed during resource construction to achieve fine-grained programmatic control over provider settings. See the documentation for more information.

constructor

new Provider(name: string, args?: ProviderArgs, opts?: pulumi.ResourceOptions)

Create a Provider resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

class ServicePrincipal

extends CustomResource

Manages a Service Principal associated with an Application within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to both Read and write all applications and Sign in and read user profile within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const testApplication = new azuread.Application("test", {
    availableToOtherTenants: false,
    homepage: "http://homepage",
    identifierUris: ["http://uri"],
    oauth2AllowImplicitFlow: true,
    replyUrls: ["http://replyurl"],
});
const testServicePrincipal = new azuread.ServicePrincipal("test", {
    applicationId: testApplication.applicationId,
    tags: [
        "example",
        "tags",
        "here",
    ],
});

constructor

new ServicePrincipal(name: string, args: ServicePrincipalArgs, opts?: pulumi.CustomResourceOptions)

Create a ServicePrincipal resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method get

public static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ServicePrincipalState, opts?: pulumi.CustomResourceOptions): ServicePrincipal

Get an existing ServicePrincipal resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property applicationId

public applicationId: pulumi.Output<string>;

The ID of the Azure AD Application for which to create a Service Principal.

property displayName

public displayName: pulumi.Output<string>;

The Display Name of the Azure Active Directory Application associated with this Service Principal.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property tags

public tags: pulumi.Output<string[] | undefined>;

A list of tags to apply to the Service Principal.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

class ServicePrincipalPassword

extends CustomResource

Manages a Password associated with a Service Principal within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to both Read and write all applications and Sign in and read user profile within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const testApplication = new azuread.Application("test", {
    availableToOtherTenants: false,
    homepage: "http://homepage",
    identifierUris: ["http://uri"],
    oauth2AllowImplicitFlow: true,
    replyUrls: ["http://replyurl"],
});
const testServicePrincipal = new azuread.ServicePrincipal("test", {
    applicationId: testApplication.applicationId,
});
const testServicePrincipalPassword = new azuread.ServicePrincipalPassword("test", {
    endDate: "2020-01-01T01:02:03Z",
    servicePrincipalId: testServicePrincipal.id,
    value: "VT=uSgbTanZhyz@%nL9Hpd+Tfay_MRV#",
});

constructor

new ServicePrincipalPassword(name: string, args: ServicePrincipalPasswordArgs, opts?: pulumi.CustomResourceOptions)

Create a ServicePrincipalPassword resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method get

public static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ServicePrincipalPasswordState, opts?: pulumi.CustomResourceOptions): ServicePrincipalPassword

Get an existing ServicePrincipalPassword resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property endDate

public endDate: pulumi.Output<string>;

The End Date which the Password is valid until, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.

property endDateRelative

public endDateRelative: pulumi.Output<string | undefined>;

A relative duration for which the Password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property keyId

public keyId: pulumi.Output<string>;

A GUID used to uniquely identify this Key. If not specified a GUID will be created. Changing this field forces a new resource to be created.

property servicePrincipalId

public servicePrincipalId: pulumi.Output<string>;

The ID of the Service Principal for which this password should be created. Changing this field forces a new resource to be created.

property startDate

public startDate: pulumi.Output<string>;

The Start Date which the Password is valid from, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn’t specified, the current date is used. Changing this field forces a new resource to be created.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

property value

public value: pulumi.Output<string>;

The Password for this Service Principal.

class User

extends CustomResource

Manages a User within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to Directory.ReadWrite.All within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const testUser = new azuread.User("test_user", {
    displayName: "John Doe",
    mailNickname: "johnd",
    password: "SecretP@sswd99!",
    userPrincipalName: "john@hashicorp.com",
});

constructor

new User(name: string, args: UserArgs, opts?: pulumi.CustomResourceOptions)

Create a User resource with the given unique name, arguments, and options.

  • name The unique name of the resource.
  • args The arguments to use to populate this resource's properties.
  • opts A bag of options that control this resource's behavior.

method get

public static get(name: string, id: pulumi.Input<pulumi.ID>, state?: UserState, opts?: pulumi.CustomResourceOptions): User

Get an existing User resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

method getProvider

getProvider(moduleMember: string): ProviderResource | undefined

method isInstance

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

property accountEnabled

public accountEnabled: pulumi.Output<boolean | undefined>;

true if the account should be enabled, otherwise false. Defaults to true. * mail_nickname- (Optional) The mail alias for the user. Defaults to the user name part of the User Principal Name.

property displayName

public displayName: pulumi.Output<string>;

The name to display in the address book for the user.

property forcePasswordChange

public forcePasswordChange: pulumi.Output<boolean | undefined>;

true if the User is forced to change the password during the next sign-in. Defaults to false.

property id

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

property mail

public mail: pulumi.Output<string>;

The primary email address of the Azure AD User.

property mailNickname

public mailNickname: pulumi.Output<string>;

property password

public password: pulumi.Output<string>;

The password for the User. The password must satisfy minimum requirements as specified by the password policy. The maximum length is 16 characters.

property urn

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

property userPrincipalName

public userPrincipalName: pulumi.Output<string>;

The User Principal Name of the Azure AD User.

function getApplication

getApplication(args?: GetApplicationArgs, opts?: pulumi.InvokeOptions): Promise<GetApplicationResult>

Use this data source to access information about an existing Application within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to both Read and write all applications and Sign in and read user profile within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const test = pulumi.output(azuread.getApplication({
    name: "My First AzureAD Application",
}));

export const azureAdObjectId = test.id;

function getDomains

getDomains(args?: GetDomainsArgs, opts?: pulumi.InvokeOptions): Promise<GetDomainsResult>

Use this data source to access information about an existing Domains within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to Directory.Read.All within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const aadDomains = pulumi.output(azuread.getDomains({}));

export const domains = aadDomains.domains;

function getEnv

getEnv(vars: string[]): string | undefined

function getEnvBoolean

getEnvBoolean(vars: string[]): boolean | undefined

function getEnvNumber

getEnvNumber(vars: string[]): number | undefined

function getGroup

getGroup(args: GetGroupArgs, opts?: pulumi.InvokeOptions): Promise<GetGroupResult>

Gets information about an Azure Active Directory group.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to Read directory data within the Windows Azure Active Directory API.

Example Usage (by Group Display Name)

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const testGroup = pulumi.output(azuread.getGroup({
    name: "MyTestGroup",
}));

function getServicePrincipal

getServicePrincipal(args?: GetServicePrincipalArgs, opts?: pulumi.InvokeOptions): Promise<GetServicePrincipalResult>

Gets information about an existing Service Principal associated with an Application within Azure Active Directory.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to both Read and write all applications and Sign in and read user profile within the Windows Azure Active Directory API.

Example Usage (by Application Display Name)

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const test = pulumi.output(azuread.getServicePrincipal({
    displayName: "my-awesome-application",
}));

Example Usage (by Application ID)

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const test = pulumi.output(azuread.getServicePrincipal({
    applicationId: "00000000-0000-0000-0000-000000000000",
}));

Example Usage (by Object ID)

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const test = pulumi.output(azuread.getServicePrincipal({
    objectId: "00000000-0000-0000-0000-000000000000",
}));

function getUser

getUser(args: GetUserArgs, opts?: pulumi.InvokeOptions): Promise<GetUserResult>

Gets information about an Azure Active Directory user.

NOTE: If you’re authenticating using a Service Principal then it must have permissions to Read directory data within the Windows Azure Active Directory API.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

const testUser = pulumi.output(azuread.getUser({
    userPrincipalName: "john@hashicorp.com",
}));

function requireWithDefault

requireWithDefault<T>(req: () => T, def: T | undefined): T

interface ApplicationArgs

The set of arguments for constructing a Application resource.

property availableToOtherTenants

availableToOtherTenants?: pulumi.Input<boolean>;

Is this Azure AD Application available to other tenants? Defaults to false.

property homepage

homepage?: pulumi.Input<string>;

The URL to the application’s home page. If no homepage is specified this defaults to https://{name}.

property identifierUris

identifierUris?: pulumi.Input<pulumi.Input<string>[]>;

A list of user-defined URI(s) that uniquely identify a Web application within it’s Azure AD tenant, or within a verified custom domain if the application is multi-tenant.

property name

name?: pulumi.Input<string>;

The display name for the application.

property oauth2AllowImplicitFlow

oauth2AllowImplicitFlow?: pulumi.Input<boolean>;

Does this Azure AD Application allow OAuth2.0 implicit flow tokens? Defaults to false.

property replyUrls

replyUrls?: pulumi.Input<pulumi.Input<string>[]>;

A list of URLs that user tokens are sent to for sign in, or the redirect URIs that OAuth 2.0 authorization codes and access tokens are sent to.

property requiredResourceAccesses

requiredResourceAccesses?: pulumi.Input<pulumi.Input<{
    resourceAccesses: pulumi.Input<pulumi.Input<{
        id: pulumi.Input<string>;
        type: pulumi.Input<string>;
    }>[]>;
    resourceAppId: pulumi.Input<string>;
}>[]>;

A collection of required_resource_access blocks as documented below.

interface ApplicationState

Input properties used for looking up and filtering Application resources.

property applicationId

applicationId?: pulumi.Input<string>;

The Application ID.

property availableToOtherTenants

availableToOtherTenants?: pulumi.Input<boolean>;

Is this Azure AD Application available to other tenants? Defaults to false.

property homepage

homepage?: pulumi.Input<string>;

The URL to the application’s home page. If no homepage is specified this defaults to https://{name}.

property identifierUris

identifierUris?: pulumi.Input<pulumi.Input<string>[]>;

A list of user-defined URI(s) that uniquely identify a Web application within it’s Azure AD tenant, or within a verified custom domain if the application is multi-tenant.

property name

name?: pulumi.Input<string>;

The display name for the application.

property oauth2AllowImplicitFlow

oauth2AllowImplicitFlow?: pulumi.Input<boolean>;

Does this Azure AD Application allow OAuth2.0 implicit flow tokens? Defaults to false.

property replyUrls

replyUrls?: pulumi.Input<pulumi.Input<string>[]>;

A list of URLs that user tokens are sent to for sign in, or the redirect URIs that OAuth 2.0 authorization codes and access tokens are sent to.

property requiredResourceAccesses

requiredResourceAccesses?: pulumi.Input<pulumi.Input<{
    resourceAccesses: pulumi.Input<pulumi.Input<{
        id: pulumi.Input<string>;
        type: pulumi.Input<string>;
    }>[]>;
    resourceAppId: pulumi.Input<string>;
}>[]>;

A collection of required_resource_access blocks as documented below.

interface GetApplicationArgs

A collection of arguments for invoking getApplication.

property name

name?: string;

Specifies the name of the Application within Azure Active Directory.

property objectId

objectId?: string;

Specifies the Object ID of the Application within Azure Active Directory.

interface GetApplicationResult

A collection of values returned by getApplication.

property applicationId

applicationId: string;

the Application ID of the Azure Active Directory Application.

property availableToOtherTenants

availableToOtherTenants: boolean;

Is this Azure AD Application available to other tenants?

property homepage

homepage: string;

property id

id: string;

id is the provider-assigned unique ID for this managed resource.

property identifierUris

identifierUris: string[];

A list of user-defined URI(s) that uniquely identify a Web application within it’s Azure AD tenant, or within a verified custom domain if the application is multi-tenant.

property name

name: string;

property oauth2AllowImplicitFlow

oauth2AllowImplicitFlow: boolean;

Does this Azure AD Application allow OAuth2.0 implicit flow tokens?

property objectId

objectId: string;

the Object ID of the Azure Active Directory Application.

property replyUrls

replyUrls: string[];

A list of URLs that user tokens are sent to for sign in, or the redirect URIs that OAuth 2.0 authorization codes and access tokens are sent to.

property requiredResourceAccesses

requiredResourceAccesses: {
    resourceAccesses: {
        id: string;
        type: string;
    }[];
    resourceAppId: string;
}[];

A collection of required_resource_access blocks as documented below.

interface GetDomainsArgs

A collection of arguments for invoking getDomains.

property includeUnverified

includeUnverified?: boolean;

Set to true if unverified Azure AD Domains should be included. Defaults to false.

property onlyDefault

onlyDefault?: boolean;

Set to true to only return the default domain.

property onlyInitial

onlyInitial?: boolean;

Set to true to only return the initial domain, which is your primary Azure Active Directory tenant domain. Defaults to false.

interface GetDomainsResult

A collection of values returned by getDomains.

property domains

domains: {
    authenticationType: string;
    domainName: string;
    isDefault: boolean;
    isInitial: boolean;
    isVerified: boolean;
}[];

One or more domain blocks as defined below.

property id

id: string;

id is the provider-assigned unique ID for this managed resource.

property includeUnverified

includeUnverified?: boolean;

property onlyDefault

onlyDefault?: boolean;

property onlyInitial

onlyInitial?: boolean;

interface GetGroupArgs

A collection of arguments for invoking getGroup.

property name

name: string;

The Name of the Azure AD Group we want to lookup.

interface GetGroupResult

A collection of values returned by getGroup.

property id

id: string;

id is the provider-assigned unique ID for this managed resource.

property name

name: string;

interface GetServicePrincipalArgs

A collection of arguments for invoking getServicePrincipal.

property applicationId

applicationId?: string;

The ID of the Azure AD Application for which to create a Service Principal.

property displayName

displayName?: string;

The Display Name of the Azure AD Application associated with this Service Principal.

property objectId

objectId?: string;

The ID of the Azure AD Service Principal.

interface GetServicePrincipalResult

A collection of values returned by getServicePrincipal.

property applicationId

applicationId: string;

property displayName

displayName: string;

property id

id: string;

id is the provider-assigned unique ID for this managed resource.

property objectId

objectId: string;

interface GetUserArgs

A collection of arguments for invoking getUser.

property userPrincipalName

userPrincipalName: string;

The User Principal Name of the Azure AD User.

interface GetUserResult

A collection of values returned by getUser.

property accountEnabled

accountEnabled: boolean;

True if the account is enabled; otherwise False.

property displayName

displayName: string;

The Display Name of the Azure AD User.

property id

id: string;

id is the provider-assigned unique ID for this managed resource.

property mail

mail: string;

The primary email address of the Azure AD User.

property mailNickname

mailNickname: string;

The email alias of the Azure AD User.

property userPrincipalName

userPrincipalName: string;

The User Principal Name of the Azure AD User.

interface GroupArgs

The set of arguments for constructing a Group resource.

property name

name?: pulumi.Input<string>;

The display name for the Group.

interface GroupState

Input properties used for looking up and filtering Group resources.

property name

name?: pulumi.Input<string>;

The display name for the Group.

interface ProviderArgs

The set of arguments for constructing a Provider resource.

property clientCertificatePassword

clientCertificatePassword?: pulumi.Input<string>;

property clientCertificatePath

clientCertificatePath?: pulumi.Input<string>;

property clientId

clientId?: pulumi.Input<string>;

property clientSecret

clientSecret?: pulumi.Input<string>;

property environment

environment?: pulumi.Input<string>;

property msiEndpoint

msiEndpoint?: pulumi.Input<string>;

property subscriptionId

subscriptionId?: pulumi.Input<string>;

property tenantId

tenantId?: pulumi.Input<string>;

property useMsi

useMsi?: pulumi.Input<boolean>;

interface ServicePrincipalArgs

The set of arguments for constructing a ServicePrincipal resource.

property applicationId

applicationId: pulumi.Input<string>;

The ID of the Azure AD Application for which to create a Service Principal.

property tags

tags?: pulumi.Input<pulumi.Input<string>[]>;

A list of tags to apply to the Service Principal.

interface ServicePrincipalPasswordArgs

The set of arguments for constructing a ServicePrincipalPassword resource.

property endDate

endDate?: pulumi.Input<string>;

The End Date which the Password is valid until, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.

property endDateRelative

endDateRelative?: pulumi.Input<string>;

A relative duration for which the Password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.

property keyId

keyId?: pulumi.Input<string>;

A GUID used to uniquely identify this Key. If not specified a GUID will be created. Changing this field forces a new resource to be created.

property servicePrincipalId

servicePrincipalId: pulumi.Input<string>;

The ID of the Service Principal for which this password should be created. Changing this field forces a new resource to be created.

property startDate

startDate?: pulumi.Input<string>;

The Start Date which the Password is valid from, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn’t specified, the current date is used. Changing this field forces a new resource to be created.

property value

value: pulumi.Input<string>;

The Password for this Service Principal.

interface ServicePrincipalPasswordState

Input properties used for looking up and filtering ServicePrincipalPassword resources.

property endDate

endDate?: pulumi.Input<string>;

The End Date which the Password is valid until, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). Changing this field forces a new resource to be created.

property endDateRelative

endDateRelative?: pulumi.Input<string>;

A relative duration for which the Password is valid until, for example 240h (10 days) or 2400h30m. Changing this field forces a new resource to be created.

property keyId

keyId?: pulumi.Input<string>;

A GUID used to uniquely identify this Key. If not specified a GUID will be created. Changing this field forces a new resource to be created.

property servicePrincipalId

servicePrincipalId?: pulumi.Input<string>;

The ID of the Service Principal for which this password should be created. Changing this field forces a new resource to be created.

property startDate

startDate?: pulumi.Input<string>;

The Start Date which the Password is valid from, formatted as a RFC3339 date string (e.g. 2018-01-01T01:02:03Z). If this isn’t specified, the current date is used. Changing this field forces a new resource to be created.

property value

value?: pulumi.Input<string>;

The Password for this Service Principal.

interface ServicePrincipalState

Input properties used for looking up and filtering ServicePrincipal resources.

property applicationId

applicationId?: pulumi.Input<string>;

The ID of the Azure AD Application for which to create a Service Principal.

property displayName

displayName?: pulumi.Input<string>;

The Display Name of the Azure Active Directory Application associated with this Service Principal.

property tags

tags?: pulumi.Input<pulumi.Input<string>[]>;

A list of tags to apply to the Service Principal.

interface UserArgs

The set of arguments for constructing a User resource.

property accountEnabled

accountEnabled?: pulumi.Input<boolean>;

true if the account should be enabled, otherwise false. Defaults to true. * mail_nickname- (Optional) The mail alias for the user. Defaults to the user name part of the User Principal Name.

property displayName

displayName: pulumi.Input<string>;

The name to display in the address book for the user.

property forcePasswordChange

forcePasswordChange?: pulumi.Input<boolean>;

true if the User is forced to change the password during the next sign-in. Defaults to false.

property mailNickname

mailNickname?: pulumi.Input<string>;

property password

password: pulumi.Input<string>;

The password for the User. The password must satisfy minimum requirements as specified by the password policy. The maximum length is 16 characters.

property userPrincipalName

userPrincipalName: pulumi.Input<string>;

The User Principal Name of the Azure AD User.

interface UserState

Input properties used for looking up and filtering User resources.

property accountEnabled

accountEnabled?: pulumi.Input<boolean>;

true if the account should be enabled, otherwise false. Defaults to true. * mail_nickname- (Optional) The mail alias for the user. Defaults to the user name part of the User Principal Name.

property displayName

displayName?: pulumi.Input<string>;

The name to display in the address book for the user.

property forcePasswordChange

forcePasswordChange?: pulumi.Input<boolean>;

true if the User is forced to change the password during the next sign-in. Defaults to false.

property mail

mail?: pulumi.Input<string>;

The primary email address of the Azure AD User.

property mailNickname

mailNickname?: pulumi.Input<string>;

property password

password?: pulumi.Input<string>;

The password for the User. The password must satisfy minimum requirements as specified by the password policy. The maximum length is 16 characters.

property userPrincipalName

userPrincipalName?: pulumi.Input<string>;

The User Principal Name of the Azure AD User.