Viewing docs for Harness v0.13.0
published on Friday, May 22, 2026 by Pulumi
published on Friday, May 22, 2026 by Pulumi
Viewing docs for Harness v0.13.0
published on Friday, May 22, 2026 by Pulumi
published on Friday, May 22, 2026 by Pulumi
Resource for creating an Azure key vault in Harness.
Example Usage
Manual Credentials
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const manual = new harness.platform.AzureKeyVaultConnector("manual", {
identifier: "identifier",
name: "name",
description: "example",
tags: ["foo:bar"],
clientId: "client_id",
secretKey: "account.secret_key",
tenantId: "tenant_id",
vaultName: "vault_name",
subscription: "subscription",
isDefault: false,
azureEnvironmentType: "AZURE",
});
import pulumi
import pulumi_harness as harness
manual = harness.platform.AzureKeyVaultConnector("manual",
identifier="identifier",
name="name",
description="example",
tags=["foo:bar"],
client_id="client_id",
secret_key="account.secret_key",
tenant_id="tenant_id",
vault_name="vault_name",
subscription="subscription",
is_default=False,
azure_environment_type="AZURE")
package main
import (
"github.com/pulumi/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := platform.NewAzureKeyVaultConnector(ctx, "manual", &platform.AzureKeyVaultConnectorArgs{
Identifier: pulumi.String("identifier"),
Name: pulumi.String("name"),
Description: pulumi.String("example"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
ClientId: pulumi.String("client_id"),
SecretKey: pulumi.String("account.secret_key"),
TenantId: pulumi.String("tenant_id"),
VaultName: pulumi.String("vault_name"),
Subscription: pulumi.String("subscription"),
IsDefault: pulumi.Bool(false),
AzureEnvironmentType: pulumi.String("AZURE"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var manual = new Harness.Platform.AzureKeyVaultConnector("manual", new()
{
Identifier = "identifier",
Name = "name",
Description = "example",
Tags = new[]
{
"foo:bar",
},
ClientId = "client_id",
SecretKey = "account.secret_key",
TenantId = "tenant_id",
VaultName = "vault_name",
Subscription = "subscription",
IsDefault = false,
AzureEnvironmentType = "AZURE",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.AzureKeyVaultConnector;
import com.pulumi.harness.platform.AzureKeyVaultConnectorArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var manual = new AzureKeyVaultConnector("manual", AzureKeyVaultConnectorArgs.builder()
.identifier("identifier")
.name("name")
.description("example")
.tags("foo:bar")
.clientId("client_id")
.secretKey("account.secret_key")
.tenantId("tenant_id")
.vaultName("vault_name")
.subscription("subscription")
.isDefault(false)
.azureEnvironmentType("AZURE")
.build());
}
}
resources:
manual:
type: harness:platform:AzureKeyVaultConnector
properties:
identifier: identifier
name: name
description: example
tags:
- foo:bar
clientId: client_id
secretKey: account.secret_key
tenantId: tenant_id
vaultName: vault_name
subscription: subscription
isDefault: false
azureEnvironmentType: AZURE
pulumi {
required_providers {
harness = {
source = "pulumi/harness"
}
}
}
resource "harness_platform_azurekeyvaultconnector" "manual" {
identifier = "identifier"
name = "name"
description = "example"
tags = ["foo:bar"]
client_id = "client_id"
secret_key = "account.secret_key"
tenant_id = "tenant_id"
vault_name = "vault_name"
subscription = "subscription"
is_default = false
azure_environment_type = "AZURE"
}
System-Assigned Managed Identity
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const systemMsi = new harness.platform.AzureKeyVaultConnector("system_msi", {
identifier: "system_msi_example",
name: "system_msi_example",
description: "Azure Key Vault using system-assigned managed identity",
tags: ["foo:bar"],
vaultName: "vault_name",
subscription: "subscription",
isDefault: false,
useManagedIdentity: true,
azureManagedIdentityType: "SystemAssignedManagedIdentity",
delegateSelectors: ["harness-delegate"],
azureEnvironmentType: "AZURE",
});
import pulumi
import pulumi_harness as harness
system_msi = harness.platform.AzureKeyVaultConnector("system_msi",
identifier="system_msi_example",
name="system_msi_example",
description="Azure Key Vault using system-assigned managed identity",
tags=["foo:bar"],
vault_name="vault_name",
subscription="subscription",
is_default=False,
use_managed_identity=True,
azure_managed_identity_type="SystemAssignedManagedIdentity",
delegate_selectors=["harness-delegate"],
azure_environment_type="AZURE")
package main
import (
"github.com/pulumi/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := platform.NewAzureKeyVaultConnector(ctx, "system_msi", &platform.AzureKeyVaultConnectorArgs{
Identifier: pulumi.String("system_msi_example"),
Name: pulumi.String("system_msi_example"),
Description: pulumi.String("Azure Key Vault using system-assigned managed identity"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
VaultName: pulumi.String("vault_name"),
Subscription: pulumi.String("subscription"),
IsDefault: pulumi.Bool(false),
UseManagedIdentity: pulumi.Bool(true),
AzureManagedIdentityType: pulumi.String("SystemAssignedManagedIdentity"),
DelegateSelectors: pulumi.StringArray{
pulumi.String("harness-delegate"),
},
AzureEnvironmentType: pulumi.String("AZURE"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var systemMsi = new Harness.Platform.AzureKeyVaultConnector("system_msi", new()
{
Identifier = "system_msi_example",
Name = "system_msi_example",
Description = "Azure Key Vault using system-assigned managed identity",
Tags = new[]
{
"foo:bar",
},
VaultName = "vault_name",
Subscription = "subscription",
IsDefault = false,
UseManagedIdentity = true,
AzureManagedIdentityType = "SystemAssignedManagedIdentity",
DelegateSelectors = new[]
{
"harness-delegate",
},
AzureEnvironmentType = "AZURE",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.AzureKeyVaultConnector;
import com.pulumi.harness.platform.AzureKeyVaultConnectorArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var systemMsi = new AzureKeyVaultConnector("systemMsi", AzureKeyVaultConnectorArgs.builder()
.identifier("system_msi_example")
.name("system_msi_example")
.description("Azure Key Vault using system-assigned managed identity")
.tags("foo:bar")
.vaultName("vault_name")
.subscription("subscription")
.isDefault(false)
.useManagedIdentity(true)
.azureManagedIdentityType("SystemAssignedManagedIdentity")
.delegateSelectors("harness-delegate")
.azureEnvironmentType("AZURE")
.build());
}
}
resources:
systemMsi:
type: harness:platform:AzureKeyVaultConnector
name: system_msi
properties:
identifier: system_msi_example
name: system_msi_example
description: Azure Key Vault using system-assigned managed identity
tags:
- foo:bar
vaultName: vault_name
subscription: subscription
isDefault: false
useManagedIdentity: true
azureManagedIdentityType: SystemAssignedManagedIdentity
delegateSelectors:
- harness-delegate
azureEnvironmentType: AZURE
pulumi {
required_providers {
harness = {
source = "pulumi/harness"
}
}
}
resource "harness_platform_azurekeyvaultconnector" "system_msi" {
identifier = "system_msi_example"
name = "system_msi_example"
description = "Azure Key Vault using system-assigned managed identity"
tags = ["foo:bar"]
vault_name = "vault_name"
subscription = "subscription"
is_default = false
use_managed_identity = true
azure_managed_identity_type = "SystemAssignedManagedIdentity"
delegate_selectors = ["harness-delegate"]
azure_environment_type = "AZURE"
}
User-Assigned Managed Identity
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const userMsi = new harness.platform.AzureKeyVaultConnector("user_msi", {
identifier: "user_msi_example",
name: "user_msi_example",
description: "Azure Key Vault using user-assigned managed identity",
tags: ["foo:bar"],
vaultName: "vault_name",
subscription: "subscription",
isDefault: false,
useManagedIdentity: true,
azureManagedIdentityType: "UserAssignedManagedIdentity",
managedClientId: "client_id_of_managed_identity",
delegateSelectors: ["harness-delegate"],
azureEnvironmentType: "AZURE",
});
import pulumi
import pulumi_harness as harness
user_msi = harness.platform.AzureKeyVaultConnector("user_msi",
identifier="user_msi_example",
name="user_msi_example",
description="Azure Key Vault using user-assigned managed identity",
tags=["foo:bar"],
vault_name="vault_name",
subscription="subscription",
is_default=False,
use_managed_identity=True,
azure_managed_identity_type="UserAssignedManagedIdentity",
managed_client_id="client_id_of_managed_identity",
delegate_selectors=["harness-delegate"],
azure_environment_type="AZURE")
package main
import (
"github.com/pulumi/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := platform.NewAzureKeyVaultConnector(ctx, "user_msi", &platform.AzureKeyVaultConnectorArgs{
Identifier: pulumi.String("user_msi_example"),
Name: pulumi.String("user_msi_example"),
Description: pulumi.String("Azure Key Vault using user-assigned managed identity"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
VaultName: pulumi.String("vault_name"),
Subscription: pulumi.String("subscription"),
IsDefault: pulumi.Bool(false),
UseManagedIdentity: pulumi.Bool(true),
AzureManagedIdentityType: pulumi.String("UserAssignedManagedIdentity"),
ManagedClientId: pulumi.String("client_id_of_managed_identity"),
DelegateSelectors: pulumi.StringArray{
pulumi.String("harness-delegate"),
},
AzureEnvironmentType: pulumi.String("AZURE"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var userMsi = new Harness.Platform.AzureKeyVaultConnector("user_msi", new()
{
Identifier = "user_msi_example",
Name = "user_msi_example",
Description = "Azure Key Vault using user-assigned managed identity",
Tags = new[]
{
"foo:bar",
},
VaultName = "vault_name",
Subscription = "subscription",
IsDefault = false,
UseManagedIdentity = true,
AzureManagedIdentityType = "UserAssignedManagedIdentity",
ManagedClientId = "client_id_of_managed_identity",
DelegateSelectors = new[]
{
"harness-delegate",
},
AzureEnvironmentType = "AZURE",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.AzureKeyVaultConnector;
import com.pulumi.harness.platform.AzureKeyVaultConnectorArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var userMsi = new AzureKeyVaultConnector("userMsi", AzureKeyVaultConnectorArgs.builder()
.identifier("user_msi_example")
.name("user_msi_example")
.description("Azure Key Vault using user-assigned managed identity")
.tags("foo:bar")
.vaultName("vault_name")
.subscription("subscription")
.isDefault(false)
.useManagedIdentity(true)
.azureManagedIdentityType("UserAssignedManagedIdentity")
.managedClientId("client_id_of_managed_identity")
.delegateSelectors("harness-delegate")
.azureEnvironmentType("AZURE")
.build());
}
}
resources:
userMsi:
type: harness:platform:AzureKeyVaultConnector
name: user_msi
properties:
identifier: user_msi_example
name: user_msi_example
description: Azure Key Vault using user-assigned managed identity
tags:
- foo:bar
vaultName: vault_name
subscription: subscription
isDefault: false
useManagedIdentity: true
azureManagedIdentityType: UserAssignedManagedIdentity
managedClientId: client_id_of_managed_identity
delegateSelectors:
- harness-delegate
azureEnvironmentType: AZURE
pulumi {
required_providers {
harness = {
source = "pulumi/harness"
}
}
}
resource "harness_platform_azurekeyvaultconnector" "user_msi" {
identifier = "user_msi_example"
name = "user_msi_example"
description = "Azure Key Vault using user-assigned managed identity"
tags = ["foo:bar"]
vault_name = "vault_name"
subscription = "subscription"
is_default = false
use_managed_identity = true
azure_managed_identity_type = "UserAssignedManagedIdentity"
managed_client_id = "client_id_of_managed_identity"
delegate_selectors = ["harness-delegate"]
azure_environment_type = "AZURE"
}
Create AzureKeyVaultConnector Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AzureKeyVaultConnector(name: string, args: AzureKeyVaultConnectorArgs, opts?: CustomResourceOptions);@overload
def AzureKeyVaultConnector(resource_name: str,
args: AzureKeyVaultConnectorArgs,
opts: Optional[ResourceOptions] = None)
@overload
def AzureKeyVaultConnector(resource_name: str,
opts: Optional[ResourceOptions] = None,
identifier: Optional[str] = None,
vault_name: Optional[str] = None,
subscription: Optional[str] = None,
managed_client_id: Optional[str] = None,
org_id: Optional[str] = None,
enable_purge: Optional[bool] = None,
delegate_selectors: Optional[Sequence[str]] = None,
is_default: Optional[bool] = None,
azure_environment_type: Optional[str] = None,
name: Optional[str] = None,
description: Optional[str] = None,
project_id: Optional[str] = None,
secret_key: Optional[str] = None,
client_id: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
tenant_id: Optional[str] = None,
use_managed_identity: Optional[bool] = None,
azure_managed_identity_type: Optional[str] = None)func NewAzureKeyVaultConnector(ctx *Context, name string, args AzureKeyVaultConnectorArgs, opts ...ResourceOption) (*AzureKeyVaultConnector, error)public AzureKeyVaultConnector(string name, AzureKeyVaultConnectorArgs args, CustomResourceOptions? opts = null)
public AzureKeyVaultConnector(String name, AzureKeyVaultConnectorArgs args)
public AzureKeyVaultConnector(String name, AzureKeyVaultConnectorArgs args, CustomResourceOptions options)
type: harness:platform:AzureKeyVaultConnector
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "harness_platform_azurekeyvaultconnector" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args AzureKeyVaultConnectorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AzureKeyVaultConnectorArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AzureKeyVaultConnectorArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AzureKeyVaultConnectorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AzureKeyVaultConnectorArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var azureKeyVaultConnectorResource = new Harness.Platform.AzureKeyVaultConnector("azureKeyVaultConnectorResource", new()
{
Identifier = "string",
VaultName = "string",
Subscription = "string",
ManagedClientId = "string",
OrgId = "string",
EnablePurge = false,
DelegateSelectors = new[]
{
"string",
},
IsDefault = false,
AzureEnvironmentType = "string",
Name = "string",
Description = "string",
ProjectId = "string",
SecretKey = "string",
ClientId = "string",
Tags = new[]
{
"string",
},
TenantId = "string",
UseManagedIdentity = false,
AzureManagedIdentityType = "string",
});
example, err := platform.NewAzureKeyVaultConnector(ctx, "azureKeyVaultConnectorResource", &platform.AzureKeyVaultConnectorArgs{
Identifier: pulumi.String("string"),
VaultName: pulumi.String("string"),
Subscription: pulumi.String("string"),
ManagedClientId: pulumi.String("string"),
OrgId: pulumi.String("string"),
EnablePurge: pulumi.Bool(false),
DelegateSelectors: pulumi.StringArray{
pulumi.String("string"),
},
IsDefault: pulumi.Bool(false),
AzureEnvironmentType: pulumi.String("string"),
Name: pulumi.String("string"),
Description: pulumi.String("string"),
ProjectId: pulumi.String("string"),
SecretKey: pulumi.String("string"),
ClientId: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
TenantId: pulumi.String("string"),
UseManagedIdentity: pulumi.Bool(false),
AzureManagedIdentityType: pulumi.String("string"),
})
resource "harness_platform_azurekeyvaultconnector" "azureKeyVaultConnectorResource" {
identifier = "string"
vault_name = "string"
subscription = "string"
managed_client_id = "string"
org_id = "string"
enable_purge = false
delegate_selectors = ["string"]
is_default = false
azure_environment_type = "string"
name = "string"
description = "string"
project_id = "string"
secret_key = "string"
client_id = "string"
tags = ["string"]
tenant_id = "string"
use_managed_identity = false
azure_managed_identity_type = "string"
}
var azureKeyVaultConnectorResource = new AzureKeyVaultConnector("azureKeyVaultConnectorResource", AzureKeyVaultConnectorArgs.builder()
.identifier("string")
.vaultName("string")
.subscription("string")
.managedClientId("string")
.orgId("string")
.enablePurge(false)
.delegateSelectors("string")
.isDefault(false)
.azureEnvironmentType("string")
.name("string")
.description("string")
.projectId("string")
.secretKey("string")
.clientId("string")
.tags("string")
.tenantId("string")
.useManagedIdentity(false)
.azureManagedIdentityType("string")
.build());
azure_key_vault_connector_resource = harness.platform.AzureKeyVaultConnector("azureKeyVaultConnectorResource",
identifier="string",
vault_name="string",
subscription="string",
managed_client_id="string",
org_id="string",
enable_purge=False,
delegate_selectors=["string"],
is_default=False,
azure_environment_type="string",
name="string",
description="string",
project_id="string",
secret_key="string",
client_id="string",
tags=["string"],
tenant_id="string",
use_managed_identity=False,
azure_managed_identity_type="string")
const azureKeyVaultConnectorResource = new harness.platform.AzureKeyVaultConnector("azureKeyVaultConnectorResource", {
identifier: "string",
vaultName: "string",
subscription: "string",
managedClientId: "string",
orgId: "string",
enablePurge: false,
delegateSelectors: ["string"],
isDefault: false,
azureEnvironmentType: "string",
name: "string",
description: "string",
projectId: "string",
secretKey: "string",
clientId: "string",
tags: ["string"],
tenantId: "string",
useManagedIdentity: false,
azureManagedIdentityType: "string",
});
type: harness:platform:AzureKeyVaultConnector
properties:
azureEnvironmentType: string
azureManagedIdentityType: string
clientId: string
delegateSelectors:
- string
description: string
enablePurge: false
identifier: string
isDefault: false
managedClientId: string
name: string
orgId: string
projectId: string
secretKey: string
subscription: string
tags:
- string
tenantId: string
useManagedIdentity: false
vaultName: string
AzureKeyVaultConnector Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AzureKeyVaultConnector resource accepts the following input properties:
- Identifier string
- Unique identifier of the resource.
- Subscription string
- Azure subscription ID.
- Vault
Name string - Name of the vault.
- Azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- Azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- Client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- Delegate
Selectors List<string> - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Enable
Purge bool - Boolean value to indicate if purge is enabled.
- Is
Default bool - Specifies whether or not is the default value.
- Managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- List<string>
- Tags to associate with the resource.
- Tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- Use
Managed boolIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- Identifier string
- Unique identifier of the resource.
- Subscription string
- Azure subscription ID.
- Vault
Name string - Name of the vault.
- Azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- Azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- Client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- Delegate
Selectors []string - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Enable
Purge bool - Boolean value to indicate if purge is enabled.
- Is
Default bool - Specifies whether or not is the default value.
- Managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- []string
- Tags to associate with the resource.
- Tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- Use
Managed boolIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- identifier string
- Unique identifier of the resource.
- subscription string
- Azure subscription ID.
- vault_
name string - Name of the vault.
- azure_
environment_ stringtype - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure_
managed_ stringidentity_ type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client_
id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate_
selectors list(string) - Tags to filter delegates for connection.
- description string
- Description of the resource.
- enable_
purge bool - Boolean value to indicate if purge is enabled.
- is_
default bool - Specifies whether or not is the default value.
- managed_
client_ stringid - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name string
- Name of the resource.
- org_
id string - Unique identifier of the organization.
- project_
id string - Unique identifier of the project.
- secret_
key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- list(string)
- Tags to associate with the resource.
- tenant_
id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use_
managed_ boolidentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- identifier String
- Unique identifier of the resource.
- subscription String
- Azure subscription ID.
- vault
Name String - Name of the vault.
- azure
Environment StringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed StringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id String - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- enable
Purge Boolean - Boolean value to indicate if purge is enabled.
- is
Default Boolean - Specifies whether or not is the default value.
- managed
Client StringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- secret
Key String - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- List<String>
- Tags to associate with the resource.
- tenant
Id String - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed BooleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- identifier string
- Unique identifier of the resource.
- subscription string
- Azure subscription ID.
- vault
Name string - Name of the vault.
- azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors string[] - Tags to filter delegates for connection.
- description string
- Description of the resource.
- enable
Purge boolean - Boolean value to indicate if purge is enabled.
- is
Default boolean - Specifies whether or not is the default value.
- managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- string[]
- Tags to associate with the resource.
- tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed booleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- identifier str
- Unique identifier of the resource.
- subscription str
- Azure subscription ID.
- vault_
name str - Name of the vault.
- azure_
environment_ strtype - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure_
managed_ stridentity_ type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client_
id str - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate_
selectors Sequence[str] - Tags to filter delegates for connection.
- description str
- Description of the resource.
- enable_
purge bool - Boolean value to indicate if purge is enabled.
- is_
default bool - Specifies whether or not is the default value.
- managed_
client_ strid - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- secret_
key str - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- Sequence[str]
- Tags to associate with the resource.
- tenant_
id str - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use_
managed_ boolidentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- identifier String
- Unique identifier of the resource.
- subscription String
- Azure subscription ID.
- vault
Name String - Name of the vault.
- azure
Environment StringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed StringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id String - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- enable
Purge Boolean - Boolean value to indicate if purge is enabled.
- is
Default Boolean - Specifies whether or not is the default value.
- managed
Client StringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- secret
Key String - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- List<String>
- Tags to associate with the resource.
- tenant
Id String - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed BooleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
Outputs
All input properties are implicitly available as output properties. Additionally, the AzureKeyVaultConnector resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing AzureKeyVaultConnector Resource
Get an existing AzureKeyVaultConnector resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AzureKeyVaultConnectorState, opts?: CustomResourceOptions): AzureKeyVaultConnector@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
azure_environment_type: Optional[str] = None,
azure_managed_identity_type: Optional[str] = None,
client_id: Optional[str] = None,
delegate_selectors: Optional[Sequence[str]] = None,
description: Optional[str] = None,
enable_purge: Optional[bool] = None,
identifier: Optional[str] = None,
is_default: Optional[bool] = None,
managed_client_id: Optional[str] = None,
name: Optional[str] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
secret_key: Optional[str] = None,
subscription: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
tenant_id: Optional[str] = None,
use_managed_identity: Optional[bool] = None,
vault_name: Optional[str] = None) -> AzureKeyVaultConnectorfunc GetAzureKeyVaultConnector(ctx *Context, name string, id IDInput, state *AzureKeyVaultConnectorState, opts ...ResourceOption) (*AzureKeyVaultConnector, error)public static AzureKeyVaultConnector Get(string name, Input<string> id, AzureKeyVaultConnectorState? state, CustomResourceOptions? opts = null)public static AzureKeyVaultConnector get(String name, Output<String> id, AzureKeyVaultConnectorState state, CustomResourceOptions options)resources: _: type: harness:platform:AzureKeyVaultConnector get: id: ${id}import {
to = harness_platform_azurekeyvaultconnector.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- Azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- Client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- Delegate
Selectors List<string> - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Enable
Purge bool - Boolean value to indicate if purge is enabled.
- Identifier string
- Unique identifier of the resource.
- Is
Default bool - Specifies whether or not is the default value.
- Managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- Subscription string
- Azure subscription ID.
- List<string>
- Tags to associate with the resource.
- Tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- Use
Managed boolIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- Vault
Name string - Name of the vault.
- Azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- Azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- Client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- Delegate
Selectors []string - Tags to filter delegates for connection.
- Description string
- Description of the resource.
- Enable
Purge bool - Boolean value to indicate if purge is enabled.
- Identifier string
- Unique identifier of the resource.
- Is
Default bool - Specifies whether or not is the default value.
- Managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- Name string
- Name of the resource.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- Secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- Subscription string
- Azure subscription ID.
- []string
- Tags to associate with the resource.
- Tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- Use
Managed boolIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- Vault
Name string - Name of the vault.
- azure_
environment_ stringtype - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure_
managed_ stringidentity_ type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client_
id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate_
selectors list(string) - Tags to filter delegates for connection.
- description string
- Description of the resource.
- enable_
purge bool - Boolean value to indicate if purge is enabled.
- identifier string
- Unique identifier of the resource.
- is_
default bool - Specifies whether or not is the default value.
- managed_
client_ stringid - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name string
- Name of the resource.
- org_
id string - Unique identifier of the organization.
- project_
id string - Unique identifier of the project.
- secret_
key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- subscription string
- Azure subscription ID.
- list(string)
- Tags to associate with the resource.
- tenant_
id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use_
managed_ boolidentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- vault_
name string - Name of the vault.
- azure
Environment StringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed StringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id String - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- enable
Purge Boolean - Boolean value to indicate if purge is enabled.
- identifier String
- Unique identifier of the resource.
- is
Default Boolean - Specifies whether or not is the default value.
- managed
Client StringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- secret
Key String - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- subscription String
- Azure subscription ID.
- List<String>
- Tags to associate with the resource.
- tenant
Id String - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed BooleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- vault
Name String - Name of the vault.
- azure
Environment stringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed stringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id string - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors string[] - Tags to filter delegates for connection.
- description string
- Description of the resource.
- enable
Purge boolean - Boolean value to indicate if purge is enabled.
- identifier string
- Unique identifier of the resource.
- is
Default boolean - Specifies whether or not is the default value.
- managed
Client stringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name string
- Name of the resource.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- secret
Key string - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- subscription string
- Azure subscription ID.
- string[]
- Tags to associate with the resource.
- tenant
Id string - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed booleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- vault
Name string - Name of the vault.
- azure_
environment_ strtype - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure_
managed_ stridentity_ type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client_
id str - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate_
selectors Sequence[str] - Tags to filter delegates for connection.
- description str
- Description of the resource.
- enable_
purge bool - Boolean value to indicate if purge is enabled.
- identifier str
- Unique identifier of the resource.
- is_
default bool - Specifies whether or not is the default value.
- managed_
client_ strid - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name str
- Name of the resource.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- secret_
key str - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- subscription str
- Azure subscription ID.
- Sequence[str]
- Tags to associate with the resource.
- tenant_
id str - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use_
managed_ boolidentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- vault_
name str - Name of the vault.
- azure
Environment StringType - Azure environment type. Possible values: AZURE or AZUREUSGOVERNMENT. Default value: AZURE
- azure
Managed StringIdentity Type - Azure Managed Identity type. Possible values: SystemAssignedManagedIdentity or UserAssignedManagedIdentity. Required when usemanagedidentity is true.
- client
Id String - Application ID of the Azure App. Required when usemanagedidentity is false.
- delegate
Selectors List<String> - Tags to filter delegates for connection.
- description String
- Description of the resource.
- enable
Purge Boolean - Boolean value to indicate if purge is enabled.
- identifier String
- Unique identifier of the resource.
- is
Default Boolean - Specifies whether or not is the default value.
- managed
Client StringId - Client Id of the ManagedIdentity resource. Required when azuremanagedidentity_type is UserAssignedManagedIdentity.
- name String
- Name of the resource.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- secret
Key String - The Harness text secret with the Azure authentication key as its value. Required when usemanagedidentity is false.
- subscription String
- Azure subscription ID.
- List<String>
- Tags to associate with the resource.
- tenant
Id String - The Azure Active Directory (Azure AD) directory ID where you created your application. Required when usemanagedidentity is false.
- use
Managed BooleanIdentity - Boolean value to indicate if managed identity is used to authenticate to Azure Key Vault.
- vault
Name String - Name of the vault.
Import
The pulumi import command can be used, for example:
Import account level azure key vault connector
$ pulumi import harness:platform/azureKeyVaultConnector:AzureKeyVaultConnector example <connector_id>
Import org level azure key vault connector
$ pulumi import harness:platform/azureKeyVaultConnector:AzureKeyVaultConnector example <ord_id>/<connector_id>
Import project level azure key vault connector
$ pulumi import harness:platform/azureKeyVaultConnector:AzureKeyVaultConnector example <org_id>/<project_id>/<connector_id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- harness pulumi/pulumi-harness
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
harnessTerraform Provider.
Viewing docs for Harness v0.13.0
published on Friday, May 22, 2026 by Pulumi
published on Friday, May 22, 2026 by Pulumi