REST Resource: projects.locations.sacRealms

Resource: SACRealm

Represents a Secure Access Connect (SAC) realm resource.

A Secure Access Connect realm establishes a connection between your Google Cloud project and an SSE service.

JSON representation
{
  "name": string,
  "createTime": string,
  "updateTime": string,
  "labels": {
    string: string,
    ...
  },
  "securityService": enum (SecurityService),
  "pairingKey": {
    object (PairingKey)
  },
  "state": enum (State),
  "symantecOptions": {
    object (SACRealmSymantecOptions)
  }
}
Fields
name

string

Identifier. Resource name, in the form projects/{project}/locations/global/sacRealms/{sacRealm}.

createTime

string (Timestamp format)

Output only. Timestamp when the realm was created.

Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".

updateTime

string (Timestamp format)

Output only. Timestamp when the realm was last updated.

Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".

labels

map (key: string, value: string)

Optional. Optional list of labels applied to the resource.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.

securityService

enum (SecurityService)

Immutable. SSE service provider associated with the realm.

pairingKey

object (PairingKey)

Output only. Key to be shared with SSE service provider during pairing.

state

enum (State)

Output only. State of the realm.

symantecOptions

object (SACRealmSymantecOptions)

Optional. Configuration required for Symantec realms.

SecurityService

SSE service provider

Enums
SECURITY_SERVICE_UNSPECIFIED The default value. This value is used if the state is omitted.
PALO_ALTO_PRISMA_ACCESS Palo Alto Networks Prisma Access.
SYMANTEC_CLOUD_SWG Symantec Cloud SWG.

PairingKey

Key to be shared with SSE service provider to establish global handshake.

JSON representation
{
  "key": string,
  "expireTime": string
}
Fields
key

string

Output only. Key value.

expireTime

string (Timestamp format)

Output only. Timestamp in UTC of when this resource is considered expired. It expires 7 days after creation.

Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".

State

State of the realm.

Enums
STATE_UNSPECIFIED No state specified. This should not be used.
PENDING_PARTNER_ATTACHMENT Has never been attached to a partner. Used only for Prisma Access.
PARTNER_ATTACHED Currently attached to a partner.
PARTNER_DETACHED Was once attached to a partner but has been detached.
KEY_EXPIRED Is not attached to a partner and has an expired pairing key. Used only for Prisma Access.

SACRealmSymantecOptions

Fields specific to realms using Symantec Cloud SWG.

JSON representation
{
  "availableSymantecSites": [
    string
  ],
  "secretPath": string,
  "symantecConnectionState": enum (SymantecConnectionState)
}
Fields
availableSymantecSites[]

string

Output only. Symantec site IDs which the user can choose to connect to.

secretPath

string

Optional. API Key used to call Symantec APIs on the user's behalf. Required if using Symantec Cloud SWG. P4SA account needs permissions granted to read this secret.

A secret ID, secret name, or secret URI can be specified, but it will be parsed and stored as a secret URI in the form projects/{projectNumber}/secrets/my-secret.

symantecConnectionState

enum (SymantecConnectionState)

Output only. Connection status to Symantec API.

SymantecConnectionState

Connection status to Symantec API.

Enums
SYMANTEC_CONNECTION_STATE_UNSPECIFIED No state specified. This should not be used.
SUCCEEDED Successfully made a request to Symantec API.
READ_SECRET_FAILED Cannot access the API key in the provided secretPath.
REQUEST_TO_SYMANTEC_FAILED Failed to get a successful response from Symantec API due to an invalid API key or Symantec API unavailability.

Methods

create

Creates a new SACRealm in a given project.

delete

Deletes the specified realm.

get

Returns the specified realm.

list

Lists SACRealms in a given project.