For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/infrastructure/resource_catalog/azure_key_vault_key.md. A documentation index is available at /llms.txt.

azure_key_vault_key

attributes

Type: STRUCT
Provider name: properties.attributes
Description: The attributes of the key.

  • created
    Type: INT64
    Provider name: created
    Description: Creation time in seconds since 1970-01-01T00:00:00Z.
  • enabled
    Type: BOOLEAN
    Provider name: enabled
    Description: Determines whether or not the object is enabled.
  • exp
    Type: INT64
    Provider name: exp
    Description: Expiry date in seconds since 1970-01-01T00:00:00Z.
  • exportable
    Type: BOOLEAN
    Provider name: exportable
    Description: Indicates if the private key can be exported.
  • nbf
    Type: INT64
    Provider name: nbf
    Description: Not before date in seconds since 1970-01-01T00:00:00Z.
  • recovery_level
    Type: STRING
    Provider name: recoveryLevel
    Description: The deletion recovery level currently in effect for the object. If it contains ‘Purgeable’, then the object can be permanently deleted by a privileged user; otherwise, only the system can purge the object at the end of the retention interval.
  • updated
    Type: INT64
    Provider name: updated
    Description: Last updated time in seconds since 1970-01-01T00:00:00Z.

curve_name

Type: STRING
Provider name: properties.curveName
Description: The elliptic curve name. For valid values, see JsonWebKeyCurveName. Default for EC and EC-HSM keys is P-256

id

Type: STRING
Provider name: id
Description: Fully qualified identifier of the key vault resource.

key_ops

Type: UNORDERED_LIST_STRING
Provider name: properties.keyOps

key_size

Type: INT32
Provider name: properties.keySize
Description: The key size in bits. For example: 2048, 3072, or 4096 for RSA. Default for RSA and RSA-HSM keys is 2048. Exception made for bring your own key (BYOK), key exchange keys default to 4096.

key_uri

Type: STRING
Provider name: properties.keyUri
Description: The URI to retrieve the current version of the key.

key_uri_with_version

Type: STRING
Provider name: properties.keyUriWithVersion
Description: The URI to retrieve the specific version of the key.

kty

Type: STRING
Provider name: properties.kty
Description: The type of the key. For valid values, see JsonWebKeyType.

location

Type: STRING
Provider name: location
Description: Azure location of the key vault resource.

name

Type: STRING
Provider name: name
Description: Name of the key vault resource.

release_policy

Type: STRUCT
Provider name: properties.release_policy
Description: Key release policy in response. It will be used for both output and input. Omitted if empty

  • content_type
    Type: STRING
    Provider name: contentType
    Description: Content type and version of key release policy
  • data
    Type: STRING
    Provider name: data
    Description: Blob encoding the policy rules under which the key can be released.

resource_group

Type: STRING

rotation_policy

Type: STRUCT
Provider name: properties.rotationPolicy
Description: Key rotation policy in response. It will be used for both output and input. Omitted if empty

  • attributes
    Type: STRUCT
    Provider name: attributes
    Description: The attributes of key rotation policy.
    • created
      Type: INT64
      Provider name: created
      Description: Creation time in seconds since 1970-01-01T00:00:00Z.
    • expiry_time
      Type: STRING
      Provider name: expiryTime
      Description: The expiration time for the new key version. It should be in ISO8601 format. Eg: ‘P90D’, ‘P1Y’.
    • updated
      Type: INT64
      Provider name: updated
      Description: Last updated time in seconds since 1970-01-01T00:00:00Z.
  • lifetime_actions
    Type: UNORDERED_LIST_STRUCT
    Provider name: lifetimeActions
    Description: The lifetimeActions for key rotation action.
    • action
      Type: STRUCT
      Provider name: action
      Description: The action of key rotation policy lifetimeAction.
      • type
        Type: STRING
        Provider name: type
        Description: The type of action.
    • trigger
      Type: STRUCT
      Provider name: trigger
      Description: The trigger of key rotation policy lifetimeAction.
      • time_after_create
        Type: STRING
        Provider name: timeAfterCreate
        Description: The time duration after key creation to rotate the key. It only applies to rotate. It will be in ISO 8601 duration format. Eg: ‘P90D’, ‘P1Y’.
      • time_before_expiry
        Type: STRING
        Provider name: timeBeforeExpiry
        Description: The time duration before key expiring to rotate or notify. It will be in ISO 8601 duration format. Eg: ‘P90D’, ‘P1Y’.

subscription_id

Type: STRING

subscription_name

Type: STRING

tags

Type: UNORDERED_LIST_STRING

type

Type: STRING
Provider name: type
Description: Resource type of the key vault resource.