This product is not supported for your selected Datadog site. ().

gcp_networksecurity_client_tls_policy

ancestors

Type: UNORDERED_LIST_STRING

client_certificate

Type: STRUCT
Provider name: clientCertificate
Description: Optional. Defines a mechanism to provision client identity (public and private keys) for peer to peer authentication. The presence of this dictates mTLS.

  • certificate_provider_instance
    Type: STRUCT
    Provider name: certificateProviderInstance
    Description: The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
    • plugin_instance
      Type: STRING
      Provider name: pluginInstance
      Description: Required. Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to “google_cloud_private_spiffe” to use Certificate Authority Service certificate provider instance.
  • grpc_endpoint
    Type: STRUCT
    Provider name: grpcEndpoint
    Description: gRPC specific configuration to access the gRPC server to obtain the cert and private key.
    • target_uri
      Type: STRING
      Provider name: targetUri
      Description: Required. The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.

create_time

Type: TIMESTAMP
Provider name: createTime
Description: Output only. The timestamp when the resource was created.

description

Type: STRING
Provider name: description
Description: Optional. Free-text description of the resource.

labels

Type: UNORDERED_LIST_STRING

name

Type: STRING
Provider name: name
Description: Required. Name of the ClientTlsPolicy resource. It matches the pattern projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}

organization_id

Type: STRING

parent

Type: STRING

project_id

Type: STRING

project_number

Type: STRING

resource_name

Type: STRING

server_validation_ca

Type: UNORDERED_LIST_STRUCT
Provider name: serverValidationCa
Description: Optional. Defines the mechanism to obtain the Certificate Authority certificate to validate the server certificate. If empty, client does not validate the server certificate.

  • certificate_provider_instance
    Type: STRUCT
    Provider name: certificateProviderInstance
    Description: The certificate provider instance specification that will be passed to the data plane, which will be used to load necessary credential information.
    • plugin_instance
      Type: STRING
      Provider name: pluginInstance
      Description: Required. Plugin instance name, used to locate and load CertificateProvider instance configuration. Set to “google_cloud_private_spiffe” to use Certificate Authority Service certificate provider instance.
  • grpc_endpoint
    Type: STRUCT
    Provider name: grpcEndpoint
    Description: gRPC specific configuration to access the gRPC server to obtain the CA certificate.
    • target_uri
      Type: STRING
      Provider name: targetUri
      Description: Required. The target URI of the gRPC endpoint. Only UDS path is supported, and should start with “unix:”.

sni

Type: STRING
Provider name: sni
Description: Optional. Server Name Indication string to present to the server during TLS handshake. E.g: “secure.example.com”.

tags

Type: UNORDERED_LIST_STRING

update_time

Type: TIMESTAMP
Provider name: updateTime
Description: Output only. The timestamp when the resource was updated.