Resource: SACRealm
Represents a Secure Access Connect (SAC) realm resource.
A Secure Access Connect realm establishes a connection between your Google Cloud project and an SSE service.
JSON representation |
---|
{ "name": string, "createTime": string, "updateTime": string, "labels": { string: string, ... }, "securityService": enum ( |
Fields | |
---|---|
name |
Identifier. Resource name, in the form |
createTime |
Output only. Timestamp when the realm was created. Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
updateTime |
Output only. Timestamp when the realm was last updated. Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
labels |
Optional. Optional list of labels applied to the resource. An object containing a list of |
securityService |
Immutable. SSE service provider associated with the realm. |
pairingKey |
Output only. Key to be shared with SSE service provider during pairing. |
state |
Output only. State of the realm. |
symantecOptions |
Optional. Configuration required for Symantec realms. |
SecurityService
SSE service provider
Enums | |
---|---|
SECURITY_SERVICE_UNSPECIFIED |
The default value. This value is used if the state is omitted. |
PALO_ALTO_PRISMA_ACCESS |
Palo Alto Networks Prisma Access. |
SYMANTEC_CLOUD_SWG |
Symantec Cloud SWG. |
PairingKey
Key to be shared with SSE service provider to establish global handshake.
JSON representation |
---|
{ "key": string, "expireTime": string } |
Fields | |
---|---|
key |
Output only. Key value. |
expireTime |
Output only. Timestamp in UTC of when this resource is considered expired. It expires 7 days after creation. Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
State
State of the realm.
Enums | |
---|---|
STATE_UNSPECIFIED |
No state specified. This should not be used. |
PENDING_PARTNER_ATTACHMENT |
Has never been attached to a partner. Used only for Prisma Access. |
PARTNER_ATTACHED |
Currently attached to a partner. |
PARTNER_DETACHED |
Was once attached to a partner but has been detached. |
KEY_EXPIRED |
Is not attached to a partner and has an expired pairing key. Used only for Prisma Access. |
SACRealmSymantecOptions
Fields specific to realms using Symantec Cloud SWG.
JSON representation |
---|
{
"availableSymantecSites": [
string
],
"secretPath": string,
"symantecConnectionState": enum ( |
Fields | |
---|---|
availableSymantecSites[] |
Output only. Symantec site IDs which the user can choose to connect to. |
secretPath |
Optional. API Key used to call Symantec APIs on the user's behalf. Required if using Symantec Cloud SWG. P4SA account needs permissions granted to read this secret. A secret ID, secret name, or secret URI can be specified, but it will be parsed and stored as a secret URI in the form |
symantecConnectionState |
Output only. Connection status to Symantec API. |
SymantecConnectionState
Connection status to Symantec API.
Enums | |
---|---|
SYMANTEC_CONNECTION_STATE_UNSPECIFIED |
No state specified. This should not be used. |
SUCCEEDED |
Successfully made a request to Symantec API. |
READ_SECRET_FAILED |
Cannot access the API key in the provided secretPath . |
REQUEST_TO_SYMANTEC_FAILED |
Failed to get a successful response from Symantec API due to an invalid API key or Symantec API unavailability. |
Methods |
|
---|---|
|
Creates a new SACRealm in a given project. |
|
Deletes the specified realm. |
|
Returns the specified realm. |
|
Lists SACRealms in a given project. |