oci.DataSafe.getAuditPolicies
Explore with Pulumi AI
This data source provides the list of Audit Policies in Oracle Cloud Infrastructure Data Safe service.
Retrieves a list of all audited targets with their corresponding provisioned audit policies, and their provisioning conditions.
The ListAuditPolicies operation returns only the audit policies in the specified compartmentId
.
The list does not include any subcompartments of the compartmentId passed.
The parameter accessLevel
specifies whether to return only those compartments for which the
requestor has INSPECT permissions on at least one resource directly
or indirectly (ACCESSIBLE) (the resource can be in a subcompartment) or to return Not Authorized if
Principal doesn’t have access to even one of the child compartments. This is valid only when
compartmentIdInSubtree
is set to true
.
The parameter compartmentIdInSubtree
applies when you perform ListAuditPolicies on the
compartmentId
passed and when it is set to true, the entire hierarchy of compartments can be returned.
To get a full list of all compartments and subcompartments in the tenancy (root compartment),
set the parameter compartmentIdInSubtree
to true and accessLevel
to ACCESSIBLE.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testAuditPolicies = oci.DataSafe.getAuditPolicies({
compartmentId: compartmentId,
accessLevel: auditPolicyAccessLevel,
auditPolicyId: testAuditPolicy.id,
compartmentIdInSubtree: auditPolicyCompartmentIdInSubtree,
displayName: auditPolicyDisplayName,
state: auditPolicyState,
targetId: testTarget.id,
});
import pulumi
import pulumi_oci as oci
test_audit_policies = oci.DataSafe.get_audit_policies(compartment_id=compartment_id,
access_level=audit_policy_access_level,
audit_policy_id=test_audit_policy["id"],
compartment_id_in_subtree=audit_policy_compartment_id_in_subtree,
display_name=audit_policy_display_name,
state=audit_policy_state,
target_id=test_target["id"])
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/DataSafe"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := DataSafe.GetAuditPolicies(ctx, &datasafe.GetAuditPoliciesArgs{
CompartmentId: compartmentId,
AccessLevel: pulumi.StringRef(auditPolicyAccessLevel),
AuditPolicyId: pulumi.StringRef(testAuditPolicy.Id),
CompartmentIdInSubtree: pulumi.BoolRef(auditPolicyCompartmentIdInSubtree),
DisplayName: pulumi.StringRef(auditPolicyDisplayName),
State: pulumi.StringRef(auditPolicyState),
TargetId: pulumi.StringRef(testTarget.Id),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testAuditPolicies = Oci.DataSafe.GetAuditPolicies.Invoke(new()
{
CompartmentId = compartmentId,
AccessLevel = auditPolicyAccessLevel,
AuditPolicyId = testAuditPolicy.Id,
CompartmentIdInSubtree = auditPolicyCompartmentIdInSubtree,
DisplayName = auditPolicyDisplayName,
State = auditPolicyState,
TargetId = testTarget.Id,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.DataSafeFunctions;
import com.pulumi.oci.DataSafe.inputs.GetAuditPoliciesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testAuditPolicies = DataSafeFunctions.getAuditPolicies(GetAuditPoliciesArgs.builder()
.compartmentId(compartmentId)
.accessLevel(auditPolicyAccessLevel)
.auditPolicyId(testAuditPolicy.id())
.compartmentIdInSubtree(auditPolicyCompartmentIdInSubtree)
.displayName(auditPolicyDisplayName)
.state(auditPolicyState)
.targetId(testTarget.id())
.build());
}
}
variables:
testAuditPolicies:
fn::invoke:
Function: oci:DataSafe:getAuditPolicies
Arguments:
compartmentId: ${compartmentId}
accessLevel: ${auditPolicyAccessLevel}
auditPolicyId: ${testAuditPolicy.id}
compartmentIdInSubtree: ${auditPolicyCompartmentIdInSubtree}
displayName: ${auditPolicyDisplayName}
state: ${auditPolicyState}
targetId: ${testTarget.id}
Using getAuditPolicies
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getAuditPolicies(args: GetAuditPoliciesArgs, opts?: InvokeOptions): Promise<GetAuditPoliciesResult>
function getAuditPoliciesOutput(args: GetAuditPoliciesOutputArgs, opts?: InvokeOptions): Output<GetAuditPoliciesResult>
def get_audit_policies(access_level: Optional[str] = None,
audit_policy_id: Optional[str] = None,
compartment_id: Optional[str] = None,
compartment_id_in_subtree: Optional[bool] = None,
display_name: Optional[str] = None,
filters: Optional[Sequence[_datasafe.GetAuditPoliciesFilter]] = None,
state: Optional[str] = None,
target_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetAuditPoliciesResult
def get_audit_policies_output(access_level: Optional[pulumi.Input[str]] = None,
audit_policy_id: Optional[pulumi.Input[str]] = None,
compartment_id: Optional[pulumi.Input[str]] = None,
compartment_id_in_subtree: Optional[pulumi.Input[bool]] = None,
display_name: Optional[pulumi.Input[str]] = None,
filters: Optional[pulumi.Input[Sequence[pulumi.Input[_datasafe.GetAuditPoliciesFilterArgs]]]] = None,
state: Optional[pulumi.Input[str]] = None,
target_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetAuditPoliciesResult]
func GetAuditPolicies(ctx *Context, args *GetAuditPoliciesArgs, opts ...InvokeOption) (*GetAuditPoliciesResult, error)
func GetAuditPoliciesOutput(ctx *Context, args *GetAuditPoliciesOutputArgs, opts ...InvokeOption) GetAuditPoliciesResultOutput
> Note: This function is named GetAuditPolicies
in the Go SDK.
public static class GetAuditPolicies
{
public static Task<GetAuditPoliciesResult> InvokeAsync(GetAuditPoliciesArgs args, InvokeOptions? opts = null)
public static Output<GetAuditPoliciesResult> Invoke(GetAuditPoliciesInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetAuditPoliciesResult> getAuditPolicies(GetAuditPoliciesArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: oci:DataSafe/getAuditPolicies:getAuditPolicies
arguments:
# arguments dictionary
The following arguments are supported:
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Audit
Policy stringId - An optional filter to return only resources that match the specified id.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
List<Get
Audit Policies Filter> - State string
- The current state of the audit policy.
- Target
Id string - A filter to return only items related to a specific target OCID.
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- Audit
Policy stringId - An optional filter to return only resources that match the specified id.
- Compartment
Id boolIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- Display
Name string - A filter to return only resources that match the specified display name.
- Filters
[]Get
Audit Policies Filter - State string
- The current state of the audit policy.
- Target
Id string - A filter to return only items related to a specific target OCID.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- audit
Policy StringId - An optional filter to return only resources that match the specified id.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters
List<Get
Audit Policies Filter> - state String
- The current state of the audit policy.
- target
Id String - A filter to return only items related to a specific target OCID.
- compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- access
Level string - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- audit
Policy stringId - An optional filter to return only resources that match the specified id.
- compartment
Id booleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name string - A filter to return only resources that match the specified display name.
- filters
Get
Audit Policies Filter[] - state string
- The current state of the audit policy.
- target
Id string - A filter to return only items related to a specific target OCID.
- compartment_
id str - A filter to return only resources that match the specified compartment OCID.
- access_
level str - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- audit_
policy_ strid - An optional filter to return only resources that match the specified id.
- compartment_
id_ boolin_ subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display_
name str - A filter to return only resources that match the specified display name.
- filters
Sequence[datasafe.
Get Audit Policies Filter] - state str
- The current state of the audit policy.
- target_
id str - A filter to return only items related to a specific target OCID.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- access
Level String - Valid values are RESTRICTED and ACCESSIBLE. Default is RESTRICTED. Setting this to ACCESSIBLE returns only those compartments for which the user has INSPECT permissions directly or indirectly (permissions can be on a resource in a subcompartment). When set to RESTRICTED permissions are checked and no partial results are displayed.
- audit
Policy StringId - An optional filter to return only resources that match the specified id.
- compartment
Id BooleanIn Subtree - Default is false. When set to true, the hierarchy of compartments is traversed and all compartments and subcompartments in the tenancy are returned. Depends on the 'accessLevel' setting.
- display
Name String - A filter to return only resources that match the specified display name.
- filters List<Property Map>
- state String
- The current state of the audit policy.
- target
Id String - A filter to return only items related to a specific target OCID.
getAuditPolicies Result
The following output properties are available:
- Audit
Policy List<GetCollections Audit Policies Audit Policy Collection> - The list of audit_policy_collection.
- Compartment
Id string - The OCID of the compartment containing the audit policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Access
Level string - Audit
Policy stringId - Compartment
Id boolIn Subtree - Display
Name string - The display name of the audit policy.
- Filters
List<Get
Audit Policies Filter> - State string
- The current state of the audit policy.
- Target
Id string - The OCID of the target for which the audit policy is created.
- Audit
Policy []GetCollections Audit Policies Audit Policy Collection - The list of audit_policy_collection.
- Compartment
Id string - The OCID of the compartment containing the audit policy.
- Id string
- The provider-assigned unique ID for this managed resource.
- Access
Level string - Audit
Policy stringId - Compartment
Id boolIn Subtree - Display
Name string - The display name of the audit policy.
- Filters
[]Get
Audit Policies Filter - State string
- The current state of the audit policy.
- Target
Id string - The OCID of the target for which the audit policy is created.
- audit
Policy List<GetCollections Audit Policies Audit Policy Collection> - The list of audit_policy_collection.
- compartment
Id String - The OCID of the compartment containing the audit policy.
- id String
- The provider-assigned unique ID for this managed resource.
- access
Level String - audit
Policy StringId - compartment
Id BooleanIn Subtree - display
Name String - The display name of the audit policy.
- filters
List<Get
Audit Policies Filter> - state String
- The current state of the audit policy.
- target
Id String - The OCID of the target for which the audit policy is created.
- audit
Policy GetCollections Audit Policies Audit Policy Collection[] - The list of audit_policy_collection.
- compartment
Id string - The OCID of the compartment containing the audit policy.
- id string
- The provider-assigned unique ID for this managed resource.
- access
Level string - audit
Policy stringId - compartment
Id booleanIn Subtree - display
Name string - The display name of the audit policy.
- filters
Get
Audit Policies Filter[] - state string
- The current state of the audit policy.
- target
Id string - The OCID of the target for which the audit policy is created.
- audit_
policy_ Sequence[datasafe.collections Get Audit Policies Audit Policy Collection] - The list of audit_policy_collection.
- compartment_
id str - The OCID of the compartment containing the audit policy.
- id str
- The provider-assigned unique ID for this managed resource.
- access_
level str - audit_
policy_ strid - compartment_
id_ boolin_ subtree - display_
name str - The display name of the audit policy.
- filters
Sequence[datasafe.
Get Audit Policies Filter] - state str
- The current state of the audit policy.
- target_
id str - The OCID of the target for which the audit policy is created.
- audit
Policy List<Property Map>Collections - The list of audit_policy_collection.
- compartment
Id String - The OCID of the compartment containing the audit policy.
- id String
- The provider-assigned unique ID for this managed resource.
- access
Level String - audit
Policy StringId - compartment
Id BooleanIn Subtree - display
Name String - The display name of the audit policy.
- filters List<Property Map>
- state String
- The current state of the audit policy.
- target
Id String - The OCID of the target for which the audit policy is created.
Supporting Types
GetAuditPoliciesAuditPolicyCollection
GetAuditPoliciesAuditPolicyCollectionItem
- Audit
Conditions List<GetAudit Policies Audit Policy Collection Item Audit Condition> - Lists the audit policy provisioning conditions for the target database.
- Audit
Policy stringId - An optional filter to return only resources that match the specified id.
- Audit
Specifications List<GetAudit Policies Audit Policy Collection Item Audit Specification> - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- Dictionary<string, string>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- Description string
- Description of the audit policy.
- Display
Name string - A filter to return only resources that match the specified display name.
- Dictionary<string, string>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- Id string
- The OCID of the audit policy.
- Is
Data boolSafe Service Account Excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- Lifecycle
Details string - Details about the current state of the audit policy in Data Safe.
- Provision
Trigger int - Retrieve
From intTarget Trigger - State string
- The current state of the audit policy.
- Dictionary<string, string>
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Id string - A filter to return only items related to a specific target OCID.
- Time
Created string - The time the the audit policy was created, in the format defined by RFC3339.
- Time
Last stringProvisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- Time
Last stringRetrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- Time
Updated string - The last date and time the audit policy was updated, in the format defined by RFC3339.
- Audit
Conditions []GetAudit Policies Audit Policy Collection Item Audit Condition - Lists the audit policy provisioning conditions for the target database.
- Audit
Policy stringId - An optional filter to return only resources that match the specified id.
- Audit
Specifications []GetAudit Policies Audit Policy Collection Item Audit Specification - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- Compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- map[string]string
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- Description string
- Description of the audit policy.
- Display
Name string - A filter to return only resources that match the specified display name.
- map[string]string
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- Id string
- The OCID of the audit policy.
- Is
Data boolSafe Service Account Excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- Lifecycle
Details string - Details about the current state of the audit policy in Data Safe.
- Provision
Trigger int - Retrieve
From intTarget Trigger - State string
- The current state of the audit policy.
- map[string]string
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Id string - A filter to return only items related to a specific target OCID.
- Time
Created string - The time the the audit policy was created, in the format defined by RFC3339.
- Time
Last stringProvisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- Time
Last stringRetrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- Time
Updated string - The last date and time the audit policy was updated, in the format defined by RFC3339.
- audit
Conditions List<GetAudit Policies Audit Policy Collection Item Audit Condition> - Lists the audit policy provisioning conditions for the target database.
- audit
Policy StringId - An optional filter to return only resources that match the specified id.
- audit
Specifications List<GetAudit Policies Audit Policy Collection Item Audit Specification> - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- Map<String,String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- description String
- Description of the audit policy.
- display
Name String - A filter to return only resources that match the specified display name.
- Map<String,String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- id String
- The OCID of the audit policy.
- is
Data BooleanSafe Service Account Excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- lifecycle
Details String - Details about the current state of the audit policy in Data Safe.
- provision
Trigger Integer - retrieve
From IntegerTarget Trigger - state String
- The current state of the audit policy.
- Map<String,String>
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Id String - A filter to return only items related to a specific target OCID.
- time
Created String - The time the the audit policy was created, in the format defined by RFC3339.
- time
Last StringProvisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- time
Last StringRetrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- time
Updated String - The last date and time the audit policy was updated, in the format defined by RFC3339.
- audit
Conditions GetAudit Policies Audit Policy Collection Item Audit Condition[] - Lists the audit policy provisioning conditions for the target database.
- audit
Policy stringId - An optional filter to return only resources that match the specified id.
- audit
Specifications GetAudit Policies Audit Policy Collection Item Audit Specification[] - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- compartment
Id string - A filter to return only resources that match the specified compartment OCID.
- {[key: string]: string}
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- description string
- Description of the audit policy.
- display
Name string - A filter to return only resources that match the specified display name.
- {[key: string]: string}
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- id string
- The OCID of the audit policy.
- is
Data booleanSafe Service Account Excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- lifecycle
Details string - Details about the current state of the audit policy in Data Safe.
- provision
Trigger number - retrieve
From numberTarget Trigger - state string
- The current state of the audit policy.
- {[key: string]: string}
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Id string - A filter to return only items related to a specific target OCID.
- time
Created string - The time the the audit policy was created, in the format defined by RFC3339.
- time
Last stringProvisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- time
Last stringRetrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- time
Updated string - The last date and time the audit policy was updated, in the format defined by RFC3339.
- audit_
conditions Sequence[datasafe.Get Audit Policies Audit Policy Collection Item Audit Condition] - Lists the audit policy provisioning conditions for the target database.
- audit_
policy_ strid - An optional filter to return only resources that match the specified id.
- audit_
specifications Sequence[datasafe.Get Audit Policies Audit Policy Collection Item Audit Specification] - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- compartment_
id str - A filter to return only resources that match the specified compartment OCID.
- Mapping[str, str]
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- description str
- Description of the audit policy.
- display_
name str - A filter to return only resources that match the specified display name.
- Mapping[str, str]
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- id str
- The OCID of the audit policy.
- is_
data_ boolsafe_ service_ account_ excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- lifecycle_
details str - Details about the current state of the audit policy in Data Safe.
- provision_
trigger int - retrieve_
from_ inttarget_ trigger - state str
- The current state of the audit policy.
- Mapping[str, str]
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target_
id str - A filter to return only items related to a specific target OCID.
- time_
created str - The time the the audit policy was created, in the format defined by RFC3339.
- time_
last_ strprovisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- time_
last_ strretrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- time_
updated str - The last date and time the audit policy was updated, in the format defined by RFC3339.
- audit
Conditions List<Property Map> - Lists the audit policy provisioning conditions for the target database.
- audit
Policy StringId - An optional filter to return only resources that match the specified id.
- audit
Specifications List<Property Map> - Represents all available audit policy specifications relevant for the target database. For more details on available audit polcies, refer to documentation.
- compartment
Id String - A filter to return only resources that match the specified compartment OCID.
- Map<String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags Example:
{"Operations.CostCenter": "42"}
- description String
- Description of the audit policy.
- display
Name String - A filter to return only resources that match the specified display name.
- Map<String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags Example:
{"Department": "Finance"}
- id String
- The OCID of the audit policy.
- is
Data BooleanSafe Service Account Excluded - Option provided to users at the target to indicate whether the Data Safe service account has to be excluded while provisioning the audit policies.
- lifecycle
Details String - Details about the current state of the audit policy in Data Safe.
- provision
Trigger Number - retrieve
From NumberTarget Trigger - state String
- The current state of the audit policy.
- Map<String>
- System tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Id String - A filter to return only items related to a specific target OCID.
- time
Created String - The time the the audit policy was created, in the format defined by RFC3339.
- time
Last StringProvisioned - Indicates the last provisioning time of audit policies on the target, in the format defined by RFC3339.
- time
Last StringRetrieved - The time when the audit policies was last retrieved from this target, in the format defined by RFC3339.
- time
Updated String - The last date and time the audit policy was updated, in the format defined by RFC3339.
GetAuditPoliciesAuditPolicyCollectionItemAuditCondition
- Audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- Enable
Conditions List<GetAudit Policies Audit Policy Collection Item Audit Condition Enable Condition> - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- Is
Data boolSafe Service Account Audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- Is
Priv boolUsers Managed By Data Safe - Indicates whether the privileged user list is managed by Data Safe.
- Audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- Enable
Conditions []GetAudit Policies Audit Policy Collection Item Audit Condition Enable Condition - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- Is
Data boolSafe Service Account Audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- Is
Priv boolUsers Managed By Data Safe - Indicates whether the privileged user list is managed by Data Safe.
- audit
Policy StringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- enable
Conditions List<GetAudit Policies Audit Policy Collection Item Audit Condition Enable Condition> - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- is
Data BooleanSafe Service Account Audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- is
Priv BooleanUsers Managed By Data Safe - Indicates whether the privileged user list is managed by Data Safe.
- audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- enable
Conditions GetAudit Policies Audit Policy Collection Item Audit Condition Enable Condition[] - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- is
Data booleanSafe Service Account Audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- is
Priv booleanUsers Managed By Data Safe - Indicates whether the privileged user list is managed by Data Safe.
- audit_
policy_ strname - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- enable_
conditions Sequence[datasafe.Get Audit Policies Audit Policy Collection Item Audit Condition Enable Condition] - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- is_
data_ boolsafe_ service_ account_ audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- is_
priv_ boolusers_ managed_ by_ data_ safe - Indicates whether the privileged user list is managed by Data Safe.
- audit
Policy StringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- enable
Conditions List<Property Map> - Indicates the users/roles in the target database for which the audit policy is enforced, and the success/failure event condition to generate the audit event..
- is
Data BooleanSafe Service Account Audited - Indicates whether the Data Safe user activity on the target database will be audited by the policy.
- is
Priv BooleanUsers Managed By Data Safe - Indicates whether the privileged user list is managed by Data Safe.
GetAuditPoliciesAuditPolicyCollectionItemAuditConditionEnableCondition
- Entity
Names List<string> - List of users or roles that the policy must be enabled for.
- Entity
Selection string - The entity include or exclude selection.
- Entity
Type string - The entity type that the policy must be enabled for.
- Operation
Status string - The operation status that the policy must be enabled for.
- Entity
Names []string - List of users or roles that the policy must be enabled for.
- Entity
Selection string - The entity include or exclude selection.
- Entity
Type string - The entity type that the policy must be enabled for.
- Operation
Status string - The operation status that the policy must be enabled for.
- entity
Names List<String> - List of users or roles that the policy must be enabled for.
- entity
Selection String - The entity include or exclude selection.
- entity
Type String - The entity type that the policy must be enabled for.
- operation
Status String - The operation status that the policy must be enabled for.
- entity
Names string[] - List of users or roles that the policy must be enabled for.
- entity
Selection string - The entity include or exclude selection.
- entity
Type string - The entity type that the policy must be enabled for.
- operation
Status string - The operation status that the policy must be enabled for.
- entity_
names Sequence[str] - List of users or roles that the policy must be enabled for.
- entity_
selection str - The entity include or exclude selection.
- entity_
type str - The entity type that the policy must be enabled for.
- operation_
status str - The operation status that the policy must be enabled for.
- entity
Names List<String> - List of users or roles that the policy must be enabled for.
- entity
Selection String - The entity include or exclude selection.
- entity
Type String - The entity type that the policy must be enabled for.
- operation
Status String - The operation status that the policy must be enabled for.
GetAuditPoliciesAuditPolicyCollectionItemAuditSpecification
- Audit
Policy stringCategory - The category to which the audit policy belongs.
- Audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- Database
Policy List<string>Names - Indicates the names of corresponding database policy ( or policies) in the target database.
- Enable
Status string - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- Enabled
Entities string - Indicates on whom the audit policy is enabled.
- Is
Created bool - Indicates whether the policy is already created on the target database.
- Is
Enabled boolFor All Users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- Is
Seeded boolIn Data Safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- Is
Seeded boolIn Target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- Is
View boolOnly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- Partially
Enabled stringMsg - Provides information about the policy that has been only partially enabled.
- Audit
Policy stringCategory - The category to which the audit policy belongs.
- Audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- Database
Policy []stringNames - Indicates the names of corresponding database policy ( or policies) in the target database.
- Enable
Status string - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- Enabled
Entities string - Indicates on whom the audit policy is enabled.
- Is
Created bool - Indicates whether the policy is already created on the target database.
- Is
Enabled boolFor All Users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- Is
Seeded boolIn Data Safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- Is
Seeded boolIn Target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- Is
View boolOnly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- Partially
Enabled stringMsg - Provides information about the policy that has been only partially enabled.
- audit
Policy StringCategory - The category to which the audit policy belongs.
- audit
Policy StringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- database
Policy List<String>Names - Indicates the names of corresponding database policy ( or policies) in the target database.
- enable
Status String - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- enabled
Entities String - Indicates on whom the audit policy is enabled.
- is
Created Boolean - Indicates whether the policy is already created on the target database.
- is
Enabled BooleanFor All Users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- is
Seeded BooleanIn Data Safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- is
Seeded BooleanIn Target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- is
View BooleanOnly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- partially
Enabled StringMsg - Provides information about the policy that has been only partially enabled.
- audit
Policy stringCategory - The category to which the audit policy belongs.
- audit
Policy stringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- database
Policy string[]Names - Indicates the names of corresponding database policy ( or policies) in the target database.
- enable
Status string - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- enabled
Entities string - Indicates on whom the audit policy is enabled.
- is
Created boolean - Indicates whether the policy is already created on the target database.
- is
Enabled booleanFor All Users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- is
Seeded booleanIn Data Safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- is
Seeded booleanIn Target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- is
View booleanOnly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- partially
Enabled stringMsg - Provides information about the policy that has been only partially enabled.
- audit_
policy_ strcategory - The category to which the audit policy belongs.
- audit_
policy_ strname - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- database_
policy_ Sequence[str]names - Indicates the names of corresponding database policy ( or policies) in the target database.
- enable_
status str - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- enabled_
entities str - Indicates on whom the audit policy is enabled.
- is_
created bool - Indicates whether the policy is already created on the target database.
- is_
enabled_ boolfor_ all_ users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- is_
seeded_ boolin_ data_ safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- is_
seeded_ boolin_ target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- is_
view_ boolonly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- partially_
enabled_ strmsg - Provides information about the policy that has been only partially enabled.
- audit
Policy StringCategory - The category to which the audit policy belongs.
- audit
Policy StringName - Indicates the audit policy name. Refer to the documentation for seeded audit policy names. For custom policies, refer to the user-defined policy name created in the target database.
- database
Policy List<String>Names - Indicates the names of corresponding database policy ( or policies) in the target database.
- enable
Status String - Indicates whether the policy has been enabled, disabled or partially enabled in the target database. The status is PARTIALLY_ENABLED if any of the constituent database audit policies is not enabled.
- enabled
Entities String - Indicates on whom the audit policy is enabled.
- is
Created Boolean - Indicates whether the policy is already created on the target database.
- is
Enabled BooleanFor All Users - Indicates whether the policy by default is enabled for all users with no flexibility to alter the enablement conditions.
- is
Seeded BooleanIn Data Safe - Indicates whether the audit policy is one of the seeded policies provided by Oracle Data Safe.
- is
Seeded BooleanIn Target - Indicates whether the audit policy is one of the predefined policies provided by Oracle Database.
- is
View BooleanOnly - Indicates whether the audit policy is available for provisioning/ de-provisioning from Oracle Data Safe, or is only available for displaying the current provisioning status from the target.
- partially
Enabled StringMsg - Provides information about the policy that has been only partially enabled.
GetAuditPoliciesFilter
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
oci
Terraform Provider.