Share via

VaultProperties Class

  • Reference

Properties of the vault.

All required parameters must be populated in order to send to server.

Inheritance
azure.mgmt.keyvault._serialization.Model
VaultProperties

Constructor

VaultProperties(*, tenant_id: str, sku: _models.Sku, access_policies: List[_models.AccessPolicyEntry] | None = None, vault_uri: str | None = None, enabled_for_deployment: bool | None = None, enabled_for_disk_encryption: bool | None = None, enabled_for_template_deployment: bool | None = None, enable_soft_delete: bool | None = None, create_mode: str | _models.CreateMode | None = None, enable_purge_protection: bool | None = None, **kwargs: Any)

Keyword-Only Parameters

Name Description
tenant_id
str

The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. Required.
sku
Sku

SKU details. Required.
access_policies
list[AccessPolicyEntry]

An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. When createMode is set to recover, access policies are not required. Otherwise, access policies are required.
vault_uri
str

The URI of the vault for performing operations on keys and secrets.
enabled_for_deployment
bool

Property to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault.
enabled_for_disk_encryption
bool

Property to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys.
enabled_for_template_deployment
bool

Property to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault.
enable_soft_delete
bool

Property specifying whether recoverable deletion is enabled for this key vault. Setting this property to true activates the soft delete feature, whereby vaults or vault entities can be recovered after deletion. Enabling this functionality is irreversible

  • that is, the property does not accept false as its value.
create_mode
str or CreateMode

The vault's create mode to indicate whether the vault need to be recovered or not. Known values are: "recover" and "default".
enable_purge_protection
bool

Property specifying whether protection against purge is enabled for this vault. Setting this property to true activates protection against purge for this vault and its content - only the Key Vault service may initiate a hard, irrecoverable deletion. The setting is effective only if soft delete is also enabled. Enabling this functionality is irreversible - that is, the property does not accept false as its value.

Variables

Name Description
tenant_id
str

The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. Required.
sku
Sku

SKU details. Required.
access_policies
list[AccessPolicyEntry]

An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. When createMode is set to recover, access policies are not required. Otherwise, access policies are required.
vault_uri
str

The URI of the vault for performing operations on keys and secrets.
enabled_for_deployment
bool

Property to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault.
enabled_for_disk_encryption
bool

Property to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys.
enabled_for_template_deployment
bool

Property to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault.
enable_soft_delete
bool

Property specifying whether recoverable deletion is enabled for this key vault. Setting this property to true activates the soft delete feature, whereby vaults or vault entities can be recovered after deletion. Enabling this functionality is irreversible - that is, the property does not accept false as its value.
create_mode
str or CreateMode

The vault's create mode to indicate whether the vault need to be recovered or not. Known values are: "recover" and "default".
enable_purge_protection
bool

Property specifying whether protection against purge is enabled for this vault. Setting this property to true activates protection against purge for this vault and its content - only the Key Vault service may initiate a hard, irrecoverable deletion. The setting is effective only if soft delete is also enabled. Enabling this functionality is irreversible - that is, the property does not accept false as its value.