1. Packages
  2. Checkpoint Provider
  3. API Docs
  4. ManagementThreatException
checkpoint 2.9.0 published on Monday, Apr 14, 2025 by checkpointsw

checkpoint.ManagementThreatException

Explore with Pulumi AI

This resource allows you to add/update/delete Check Point Threat Exception.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as checkpoint from "@pulumi/checkpoint";

const testManagementThreatRule = new checkpoint.ManagementThreatRule("testManagementThreatRule", {
    layer: "Standard Threat Prevention",
    position: {
        top: "top",
    },
});
const testManagementThreatException = new checkpoint.ManagementThreatException("testManagementThreatException", {
    layer: "Standard Threat Prevention",
    position: {
        top: "top",
    },
    ruleName: testManagementThreatRule.name,
});
Copy
import pulumi
import pulumi_checkpoint as checkpoint

test_management_threat_rule = checkpoint.ManagementThreatRule("testManagementThreatRule",
    layer="Standard Threat Prevention",
    position={
        "top": "top",
    })
test_management_threat_exception = checkpoint.ManagementThreatException("testManagementThreatException",
    layer="Standard Threat Prevention",
    position={
        "top": "top",
    },
    rule_name=test_management_threat_rule.name)
Copy
package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/checkpoint/v2/checkpoint"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		testManagementThreatRule, err := checkpoint.NewManagementThreatRule(ctx, "testManagementThreatRule", &checkpoint.ManagementThreatRuleArgs{
			Layer: pulumi.String("Standard Threat Prevention"),
			Position: pulumi.StringMap{
				"top": pulumi.String("top"),
			},
		})
		if err != nil {
			return err
		}
		_, err = checkpoint.NewManagementThreatException(ctx, "testManagementThreatException", &checkpoint.ManagementThreatExceptionArgs{
			Layer: pulumi.String("Standard Threat Prevention"),
			Position: pulumi.StringMap{
				"top": pulumi.String("top"),
			},
			RuleName: testManagementThreatRule.Name,
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Checkpoint = Pulumi.Checkpoint;

return await Deployment.RunAsync(() => 
{
    var testManagementThreatRule = new Checkpoint.ManagementThreatRule("testManagementThreatRule", new()
    {
        Layer = "Standard Threat Prevention",
        Position = 
        {
            { "top", "top" },
        },
    });

    var testManagementThreatException = new Checkpoint.ManagementThreatException("testManagementThreatException", new()
    {
        Layer = "Standard Threat Prevention",
        Position = 
        {
            { "top", "top" },
        },
        RuleName = testManagementThreatRule.Name,
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.checkpoint.ManagementThreatRule;
import com.pulumi.checkpoint.ManagementThreatRuleArgs;
import com.pulumi.checkpoint.ManagementThreatException;
import com.pulumi.checkpoint.ManagementThreatExceptionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var testManagementThreatRule = new ManagementThreatRule("testManagementThreatRule", ManagementThreatRuleArgs.builder()
            .layer("Standard Threat Prevention")
            .position(Map.of("top", "top"))
            .build());

        var testManagementThreatException = new ManagementThreatException("testManagementThreatException", ManagementThreatExceptionArgs.builder()
            .layer("Standard Threat Prevention")
            .position(Map.of("top", "top"))
            .ruleName(testManagementThreatRule.name())
            .build());

    }
}
Copy
resources:
  testManagementThreatRule:
    type: checkpoint:ManagementThreatRule
    properties:
      layer: Standard Threat Prevention
      position:
        top: top
  testManagementThreatException:
    type: checkpoint:ManagementThreatException
    properties:
      layer: Standard Threat Prevention
      position:
        top: top
      ruleName: ${testManagementThreatRule.name}
Copy

Create ManagementThreatException Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ManagementThreatException(name: string, args: ManagementThreatExceptionArgs, opts?: CustomResourceOptions);
@overload
def ManagementThreatException(resource_name: str,
                              args: ManagementThreatExceptionArgs,
                              opts: Optional[ResourceOptions] = None)

@overload
def ManagementThreatException(resource_name: str,
                              opts: Optional[ResourceOptions] = None,
                              position: Optional[Mapping[str, str]] = None,
                              name: Optional[str] = None,
                              install_ons: Optional[Sequence[str]] = None,
                              destinations: Optional[Sequence[str]] = None,
                              enabled: Optional[bool] = None,
                              exception_group_name: Optional[str] = None,
                              exception_group_uid: Optional[str] = None,
                              ignore_errors: Optional[bool] = None,
                              comments: Optional[str] = None,
                              action: Optional[str] = None,
                              layer: Optional[str] = None,
                              destination_negate: Optional[bool] = None,
                              management_threat_exception_id: Optional[str] = None,
                              ignore_warnings: Optional[bool] = None,
                              protected_scope_negate: Optional[bool] = None,
                              protected_scopes: Optional[Sequence[str]] = None,
                              protection_or_sites: Optional[Sequence[str]] = None,
                              rule_name: Optional[str] = None,
                              rule_uid: Optional[str] = None,
                              service_negate: Optional[bool] = None,
                              services: Optional[Sequence[str]] = None,
                              source_negate: Optional[bool] = None,
                              sources: Optional[Sequence[str]] = None,
                              track: Optional[str] = None)
func NewManagementThreatException(ctx *Context, name string, args ManagementThreatExceptionArgs, opts ...ResourceOption) (*ManagementThreatException, error)
public ManagementThreatException(string name, ManagementThreatExceptionArgs args, CustomResourceOptions? opts = null)
public ManagementThreatException(String name, ManagementThreatExceptionArgs args)
public ManagementThreatException(String name, ManagementThreatExceptionArgs args, CustomResourceOptions options)
type: checkpoint:ManagementThreatException
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. ManagementThreatExceptionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. ManagementThreatExceptionArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. ManagementThreatExceptionArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. ManagementThreatExceptionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. ManagementThreatExceptionArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var managementThreatExceptionResource = new Checkpoint.ManagementThreatException("managementThreatExceptionResource", new()
{
    Position = 
    {
        { "string", "string" },
    },
    Name = "string",
    InstallOns = new[]
    {
        "string",
    },
    Destinations = new[]
    {
        "string",
    },
    Enabled = false,
    ExceptionGroupName = "string",
    ExceptionGroupUid = "string",
    IgnoreErrors = false,
    Comments = "string",
    Action = "string",
    Layer = "string",
    DestinationNegate = false,
    ManagementThreatExceptionId = "string",
    IgnoreWarnings = false,
    ProtectedScopeNegate = false,
    ProtectedScopes = new[]
    {
        "string",
    },
    ProtectionOrSites = new[]
    {
        "string",
    },
    RuleName = "string",
    RuleUid = "string",
    ServiceNegate = false,
    Services = new[]
    {
        "string",
    },
    SourceNegate = false,
    Sources = new[]
    {
        "string",
    },
    Track = "string",
});
Copy
example, err := checkpoint.NewManagementThreatException(ctx, "managementThreatExceptionResource", &checkpoint.ManagementThreatExceptionArgs{
Position: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
InstallOns: pulumi.StringArray{
pulumi.String("string"),
},
Destinations: pulumi.StringArray{
pulumi.String("string"),
},
Enabled: pulumi.Bool(false),
ExceptionGroupName: pulumi.String("string"),
ExceptionGroupUid: pulumi.String("string"),
IgnoreErrors: pulumi.Bool(false),
Comments: pulumi.String("string"),
Action: pulumi.String("string"),
Layer: pulumi.String("string"),
DestinationNegate: pulumi.Bool(false),
ManagementThreatExceptionId: pulumi.String("string"),
IgnoreWarnings: pulumi.Bool(false),
ProtectedScopeNegate: pulumi.Bool(false),
ProtectedScopes: pulumi.StringArray{
pulumi.String("string"),
},
ProtectionOrSites: pulumi.StringArray{
pulumi.String("string"),
},
RuleName: pulumi.String("string"),
RuleUid: pulumi.String("string"),
ServiceNegate: pulumi.Bool(false),
Services: pulumi.StringArray{
pulumi.String("string"),
},
SourceNegate: pulumi.Bool(false),
Sources: pulumi.StringArray{
pulumi.String("string"),
},
Track: pulumi.String("string"),
})
Copy
var managementThreatExceptionResource = new ManagementThreatException("managementThreatExceptionResource", ManagementThreatExceptionArgs.builder()
    .position(Map.of("string", "string"))
    .name("string")
    .installOns("string")
    .destinations("string")
    .enabled(false)
    .exceptionGroupName("string")
    .exceptionGroupUid("string")
    .ignoreErrors(false)
    .comments("string")
    .action("string")
    .layer("string")
    .destinationNegate(false)
    .managementThreatExceptionId("string")
    .ignoreWarnings(false)
    .protectedScopeNegate(false)
    .protectedScopes("string")
    .protectionOrSites("string")
    .ruleName("string")
    .ruleUid("string")
    .serviceNegate(false)
    .services("string")
    .sourceNegate(false)
    .sources("string")
    .track("string")
    .build());
Copy
management_threat_exception_resource = checkpoint.ManagementThreatException("managementThreatExceptionResource",
    position={
        "string": "string",
    },
    name="string",
    install_ons=["string"],
    destinations=["string"],
    enabled=False,
    exception_group_name="string",
    exception_group_uid="string",
    ignore_errors=False,
    comments="string",
    action="string",
    layer="string",
    destination_negate=False,
    management_threat_exception_id="string",
    ignore_warnings=False,
    protected_scope_negate=False,
    protected_scopes=["string"],
    protection_or_sites=["string"],
    rule_name="string",
    rule_uid="string",
    service_negate=False,
    services=["string"],
    source_negate=False,
    sources=["string"],
    track="string")
Copy
const managementThreatExceptionResource = new checkpoint.ManagementThreatException("managementThreatExceptionResource", {
    position: {
        string: "string",
    },
    name: "string",
    installOns: ["string"],
    destinations: ["string"],
    enabled: false,
    exceptionGroupName: "string",
    exceptionGroupUid: "string",
    ignoreErrors: false,
    comments: "string",
    action: "string",
    layer: "string",
    destinationNegate: false,
    managementThreatExceptionId: "string",
    ignoreWarnings: false,
    protectedScopeNegate: false,
    protectedScopes: ["string"],
    protectionOrSites: ["string"],
    ruleName: "string",
    ruleUid: "string",
    serviceNegate: false,
    services: ["string"],
    sourceNegate: false,
    sources: ["string"],
    track: "string",
});
Copy
type: checkpoint:ManagementThreatException
properties:
    action: string
    comments: string
    destinationNegate: false
    destinations:
        - string
    enabled: false
    exceptionGroupName: string
    exceptionGroupUid: string
    ignoreErrors: false
    ignoreWarnings: false
    installOns:
        - string
    layer: string
    managementThreatExceptionId: string
    name: string
    position:
        string: string
    protectedScopeNegate: false
    protectedScopes:
        - string
    protectionOrSites:
        - string
    ruleName: string
    ruleUid: string
    serviceNegate: false
    services:
        - string
    sourceNegate: false
    sources:
        - string
    track: string
Copy

ManagementThreatException Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ManagementThreatException resource accepts the following input properties:

Position This property is required. Dictionary<string, string>
Position in the rulebase. Position blocks are documented below.
Action string
Action-the enforced profile.
Comments string
Comments string.
DestinationNegate bool
True if negate is set for destination.
Destinations List<string>
Collection of Network objects identified by the name or UID.
Enabled bool
Enable/Disable the rule.
ExceptionGroupName string
The name of the exception-group.
ExceptionGroupUid string
The UID of the exception-group.
IgnoreErrors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
IgnoreWarnings bool
Apply changes ignoring warnings.
InstallOns List<string>
Which Gateways identified by the name or UID to install the policy on.
Layer string
Layer that the rule belongs to identified by the name or UID.
ManagementThreatExceptionId string
Name string
The name of the exception.
ProtectedScopeNegate bool
True if negate is set for Protected Scope.
ProtectedScopes List<string>
Collection of objects defining Protected Scope identified by the name or UID.
ProtectionOrSites List<string>
Collection of protection or site objects identified by the name or UID.
RuleName string
The name of the parent rule.
RuleUid string
The UID of the parent rule.
ServiceNegate bool
True if negate is set for service.
Services List<string>
Collection of Network objects identified by the name or UID.
SourceNegate bool
True if negate is set for source.
Sources List<string>
Collection of Network objects identified by the name or UID.
Track string
Packet tracking.
Position This property is required. map[string]string
Position in the rulebase. Position blocks are documented below.
Action string
Action-the enforced profile.
Comments string
Comments string.
DestinationNegate bool
True if negate is set for destination.
Destinations []string
Collection of Network objects identified by the name or UID.
Enabled bool
Enable/Disable the rule.
ExceptionGroupName string
The name of the exception-group.
ExceptionGroupUid string
The UID of the exception-group.
IgnoreErrors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
IgnoreWarnings bool
Apply changes ignoring warnings.
InstallOns []string
Which Gateways identified by the name or UID to install the policy on.
Layer string
Layer that the rule belongs to identified by the name or UID.
ManagementThreatExceptionId string
Name string
The name of the exception.
ProtectedScopeNegate bool
True if negate is set for Protected Scope.
ProtectedScopes []string
Collection of objects defining Protected Scope identified by the name or UID.
ProtectionOrSites []string
Collection of protection or site objects identified by the name or UID.
RuleName string
The name of the parent rule.
RuleUid string
The UID of the parent rule.
ServiceNegate bool
True if negate is set for service.
Services []string
Collection of Network objects identified by the name or UID.
SourceNegate bool
True if negate is set for source.
Sources []string
Collection of Network objects identified by the name or UID.
Track string
Packet tracking.
position This property is required. Map<String,String>
Position in the rulebase. Position blocks are documented below.
action String
Action-the enforced profile.
comments String
Comments string.
destinationNegate Boolean
True if negate is set for destination.
destinations List<String>
Collection of Network objects identified by the name or UID.
enabled Boolean
Enable/Disable the rule.
exceptionGroupName String
The name of the exception-group.
exceptionGroupUid String
The UID of the exception-group.
ignoreErrors Boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings Boolean
Apply changes ignoring warnings.
installOns List<String>
Which Gateways identified by the name or UID to install the policy on.
layer String
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId String
name String
The name of the exception.
protectedScopeNegate Boolean
True if negate is set for Protected Scope.
protectedScopes List<String>
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites List<String>
Collection of protection or site objects identified by the name or UID.
ruleName String
The name of the parent rule.
ruleUid String
The UID of the parent rule.
serviceNegate Boolean
True if negate is set for service.
services List<String>
Collection of Network objects identified by the name or UID.
sourceNegate Boolean
True if negate is set for source.
sources List<String>
Collection of Network objects identified by the name or UID.
track String
Packet tracking.
position This property is required. {[key: string]: string}
Position in the rulebase. Position blocks are documented below.
action string
Action-the enforced profile.
comments string
Comments string.
destinationNegate boolean
True if negate is set for destination.
destinations string[]
Collection of Network objects identified by the name or UID.
enabled boolean
Enable/Disable the rule.
exceptionGroupName string
The name of the exception-group.
exceptionGroupUid string
The UID of the exception-group.
ignoreErrors boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings boolean
Apply changes ignoring warnings.
installOns string[]
Which Gateways identified by the name or UID to install the policy on.
layer string
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId string
name string
The name of the exception.
protectedScopeNegate boolean
True if negate is set for Protected Scope.
protectedScopes string[]
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites string[]
Collection of protection or site objects identified by the name or UID.
ruleName string
The name of the parent rule.
ruleUid string
The UID of the parent rule.
serviceNegate boolean
True if negate is set for service.
services string[]
Collection of Network objects identified by the name or UID.
sourceNegate boolean
True if negate is set for source.
sources string[]
Collection of Network objects identified by the name or UID.
track string
Packet tracking.
position This property is required. Mapping[str, str]
Position in the rulebase. Position blocks are documented below.
action str
Action-the enforced profile.
comments str
Comments string.
destination_negate bool
True if negate is set for destination.
destinations Sequence[str]
Collection of Network objects identified by the name or UID.
enabled bool
Enable/Disable the rule.
exception_group_name str
The name of the exception-group.
exception_group_uid str
The UID of the exception-group.
ignore_errors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignore_warnings bool
Apply changes ignoring warnings.
install_ons Sequence[str]
Which Gateways identified by the name or UID to install the policy on.
layer str
Layer that the rule belongs to identified by the name or UID.
management_threat_exception_id str
name str
The name of the exception.
protected_scope_negate bool
True if negate is set for Protected Scope.
protected_scopes Sequence[str]
Collection of objects defining Protected Scope identified by the name or UID.
protection_or_sites Sequence[str]
Collection of protection or site objects identified by the name or UID.
rule_name str
The name of the parent rule.
rule_uid str
The UID of the parent rule.
service_negate bool
True if negate is set for service.
services Sequence[str]
Collection of Network objects identified by the name or UID.
source_negate bool
True if negate is set for source.
sources Sequence[str]
Collection of Network objects identified by the name or UID.
track str
Packet tracking.
position This property is required. Map<String>
Position in the rulebase. Position blocks are documented below.
action String
Action-the enforced profile.
comments String
Comments string.
destinationNegate Boolean
True if negate is set for destination.
destinations List<String>
Collection of Network objects identified by the name or UID.
enabled Boolean
Enable/Disable the rule.
exceptionGroupName String
The name of the exception-group.
exceptionGroupUid String
The UID of the exception-group.
ignoreErrors Boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings Boolean
Apply changes ignoring warnings.
installOns List<String>
Which Gateways identified by the name or UID to install the policy on.
layer String
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId String
name String
The name of the exception.
protectedScopeNegate Boolean
True if negate is set for Protected Scope.
protectedScopes List<String>
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites List<String>
Collection of protection or site objects identified by the name or UID.
ruleName String
The name of the parent rule.
ruleUid String
The UID of the parent rule.
serviceNegate Boolean
True if negate is set for service.
services List<String>
Collection of Network objects identified by the name or UID.
sourceNegate Boolean
True if negate is set for source.
sources List<String>
Collection of Network objects identified by the name or UID.
track String
Packet tracking.

Outputs

All input properties are implicitly available as output properties. Additionally, the ManagementThreatException resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
Owner string
Owner UID.
Id string
The provider-assigned unique ID for this managed resource.
Owner string
Owner UID.
id String
The provider-assigned unique ID for this managed resource.
owner String
Owner UID.
id string
The provider-assigned unique ID for this managed resource.
owner string
Owner UID.
id str
The provider-assigned unique ID for this managed resource.
owner str
Owner UID.
id String
The provider-assigned unique ID for this managed resource.
owner String
Owner UID.

Look up Existing ManagementThreatException Resource

Get an existing ManagementThreatException resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ManagementThreatExceptionState, opts?: CustomResourceOptions): ManagementThreatException
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        action: Optional[str] = None,
        comments: Optional[str] = None,
        destination_negate: Optional[bool] = None,
        destinations: Optional[Sequence[str]] = None,
        enabled: Optional[bool] = None,
        exception_group_name: Optional[str] = None,
        exception_group_uid: Optional[str] = None,
        ignore_errors: Optional[bool] = None,
        ignore_warnings: Optional[bool] = None,
        install_ons: Optional[Sequence[str]] = None,
        layer: Optional[str] = None,
        management_threat_exception_id: Optional[str] = None,
        name: Optional[str] = None,
        owner: Optional[str] = None,
        position: Optional[Mapping[str, str]] = None,
        protected_scope_negate: Optional[bool] = None,
        protected_scopes: Optional[Sequence[str]] = None,
        protection_or_sites: Optional[Sequence[str]] = None,
        rule_name: Optional[str] = None,
        rule_uid: Optional[str] = None,
        service_negate: Optional[bool] = None,
        services: Optional[Sequence[str]] = None,
        source_negate: Optional[bool] = None,
        sources: Optional[Sequence[str]] = None,
        track: Optional[str] = None) -> ManagementThreatException
func GetManagementThreatException(ctx *Context, name string, id IDInput, state *ManagementThreatExceptionState, opts ...ResourceOption) (*ManagementThreatException, error)
public static ManagementThreatException Get(string name, Input<string> id, ManagementThreatExceptionState? state, CustomResourceOptions? opts = null)
public static ManagementThreatException get(String name, Output<String> id, ManagementThreatExceptionState state, CustomResourceOptions options)
resources:  _:    type: checkpoint:ManagementThreatException    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
Action string
Action-the enforced profile.
Comments string
Comments string.
DestinationNegate bool
True if negate is set for destination.
Destinations List<string>
Collection of Network objects identified by the name or UID.
Enabled bool
Enable/Disable the rule.
ExceptionGroupName string
The name of the exception-group.
ExceptionGroupUid string
The UID of the exception-group.
IgnoreErrors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
IgnoreWarnings bool
Apply changes ignoring warnings.
InstallOns List<string>
Which Gateways identified by the name or UID to install the policy on.
Layer string
Layer that the rule belongs to identified by the name or UID.
ManagementThreatExceptionId string
Name string
The name of the exception.
Owner string
Owner UID.
Position Dictionary<string, string>
Position in the rulebase. Position blocks are documented below.
ProtectedScopeNegate bool
True if negate is set for Protected Scope.
ProtectedScopes List<string>
Collection of objects defining Protected Scope identified by the name or UID.
ProtectionOrSites List<string>
Collection of protection or site objects identified by the name or UID.
RuleName string
The name of the parent rule.
RuleUid string
The UID of the parent rule.
ServiceNegate bool
True if negate is set for service.
Services List<string>
Collection of Network objects identified by the name or UID.
SourceNegate bool
True if negate is set for source.
Sources List<string>
Collection of Network objects identified by the name or UID.
Track string
Packet tracking.
Action string
Action-the enforced profile.
Comments string
Comments string.
DestinationNegate bool
True if negate is set for destination.
Destinations []string
Collection of Network objects identified by the name or UID.
Enabled bool
Enable/Disable the rule.
ExceptionGroupName string
The name of the exception-group.
ExceptionGroupUid string
The UID of the exception-group.
IgnoreErrors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
IgnoreWarnings bool
Apply changes ignoring warnings.
InstallOns []string
Which Gateways identified by the name or UID to install the policy on.
Layer string
Layer that the rule belongs to identified by the name or UID.
ManagementThreatExceptionId string
Name string
The name of the exception.
Owner string
Owner UID.
Position map[string]string
Position in the rulebase. Position blocks are documented below.
ProtectedScopeNegate bool
True if negate is set for Protected Scope.
ProtectedScopes []string
Collection of objects defining Protected Scope identified by the name or UID.
ProtectionOrSites []string
Collection of protection or site objects identified by the name or UID.
RuleName string
The name of the parent rule.
RuleUid string
The UID of the parent rule.
ServiceNegate bool
True if negate is set for service.
Services []string
Collection of Network objects identified by the name or UID.
SourceNegate bool
True if negate is set for source.
Sources []string
Collection of Network objects identified by the name or UID.
Track string
Packet tracking.
action String
Action-the enforced profile.
comments String
Comments string.
destinationNegate Boolean
True if negate is set for destination.
destinations List<String>
Collection of Network objects identified by the name or UID.
enabled Boolean
Enable/Disable the rule.
exceptionGroupName String
The name of the exception-group.
exceptionGroupUid String
The UID of the exception-group.
ignoreErrors Boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings Boolean
Apply changes ignoring warnings.
installOns List<String>
Which Gateways identified by the name or UID to install the policy on.
layer String
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId String
name String
The name of the exception.
owner String
Owner UID.
position Map<String,String>
Position in the rulebase. Position blocks are documented below.
protectedScopeNegate Boolean
True if negate is set for Protected Scope.
protectedScopes List<String>
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites List<String>
Collection of protection or site objects identified by the name or UID.
ruleName String
The name of the parent rule.
ruleUid String
The UID of the parent rule.
serviceNegate Boolean
True if negate is set for service.
services List<String>
Collection of Network objects identified by the name or UID.
sourceNegate Boolean
True if negate is set for source.
sources List<String>
Collection of Network objects identified by the name or UID.
track String
Packet tracking.
action string
Action-the enforced profile.
comments string
Comments string.
destinationNegate boolean
True if negate is set for destination.
destinations string[]
Collection of Network objects identified by the name or UID.
enabled boolean
Enable/Disable the rule.
exceptionGroupName string
The name of the exception-group.
exceptionGroupUid string
The UID of the exception-group.
ignoreErrors boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings boolean
Apply changes ignoring warnings.
installOns string[]
Which Gateways identified by the name or UID to install the policy on.
layer string
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId string
name string
The name of the exception.
owner string
Owner UID.
position {[key: string]: string}
Position in the rulebase. Position blocks are documented below.
protectedScopeNegate boolean
True if negate is set for Protected Scope.
protectedScopes string[]
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites string[]
Collection of protection or site objects identified by the name or UID.
ruleName string
The name of the parent rule.
ruleUid string
The UID of the parent rule.
serviceNegate boolean
True if negate is set for service.
services string[]
Collection of Network objects identified by the name or UID.
sourceNegate boolean
True if negate is set for source.
sources string[]
Collection of Network objects identified by the name or UID.
track string
Packet tracking.
action str
Action-the enforced profile.
comments str
Comments string.
destination_negate bool
True if negate is set for destination.
destinations Sequence[str]
Collection of Network objects identified by the name or UID.
enabled bool
Enable/Disable the rule.
exception_group_name str
The name of the exception-group.
exception_group_uid str
The UID of the exception-group.
ignore_errors bool
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignore_warnings bool
Apply changes ignoring warnings.
install_ons Sequence[str]
Which Gateways identified by the name or UID to install the policy on.
layer str
Layer that the rule belongs to identified by the name or UID.
management_threat_exception_id str
name str
The name of the exception.
owner str
Owner UID.
position Mapping[str, str]
Position in the rulebase. Position blocks are documented below.
protected_scope_negate bool
True if negate is set for Protected Scope.
protected_scopes Sequence[str]
Collection of objects defining Protected Scope identified by the name or UID.
protection_or_sites Sequence[str]
Collection of protection or site objects identified by the name or UID.
rule_name str
The name of the parent rule.
rule_uid str
The UID of the parent rule.
service_negate bool
True if negate is set for service.
services Sequence[str]
Collection of Network objects identified by the name or UID.
source_negate bool
True if negate is set for source.
sources Sequence[str]
Collection of Network objects identified by the name or UID.
track str
Packet tracking.
action String
Action-the enforced profile.
comments String
Comments string.
destinationNegate Boolean
True if negate is set for destination.
destinations List<String>
Collection of Network objects identified by the name or UID.
enabled Boolean
Enable/Disable the rule.
exceptionGroupName String
The name of the exception-group.
exceptionGroupUid String
The UID of the exception-group.
ignoreErrors Boolean
Apply changes ignoring errors. You won't be able to publish such a changes. If ignore-warnings flag was omitted - warnings will also be ignored.
ignoreWarnings Boolean
Apply changes ignoring warnings.
installOns List<String>
Which Gateways identified by the name or UID to install the policy on.
layer String
Layer that the rule belongs to identified by the name or UID.
managementThreatExceptionId String
name String
The name of the exception.
owner String
Owner UID.
position Map<String>
Position in the rulebase. Position blocks are documented below.
protectedScopeNegate Boolean
True if negate is set for Protected Scope.
protectedScopes List<String>
Collection of objects defining Protected Scope identified by the name or UID.
protectionOrSites List<String>
Collection of protection or site objects identified by the name or UID.
ruleName String
The name of the parent rule.
ruleUid String
The UID of the parent rule.
serviceNegate Boolean
True if negate is set for service.
services List<String>
Collection of Network objects identified by the name or UID.
sourceNegate Boolean
True if negate is set for source.
sources List<String>
Collection of Network objects identified by the name or UID.
track String
Packet tracking.

Import

checkpoint_management_threat_exception can be imported by using the following format: LAYER_UID;exception_group_uid or rule_uid;EXCEPTION_GROUP_UID or PARENT_RULE_UID;EXCEPTION_GROUP_UID

$ pulumi import checkpoint:index/managementThreatException:ManagementThreatException example "Standard Threat Prevention;exception_group_uid;9423d36f-2d66-4754-b9e2-e9f4493751e5;9423d36f-2d66-4754-b9e2-e9f4493751d3"
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
checkpoint checkpointsw/terraform-provider-checkpoint
License
Notes
This Pulumi package is based on the checkpoint Terraform Provider.