jit_network_access_policies

Creates, updates, deletes, gets or lists a jit_network_access_policies resource.

Overview

Name	`jit_network_access_policies`
Type	Resource
Id	`azure.security.jit_network_access_policies`

Fields

vw_jit_network_access_policies
jit_network_access_policies

Name	Datatype	Description
`id`	`text`	Resource Id
`name`	`text`	Resource name
`ascLocation`	`text`	field from the `properties` object
`jitNetworkAccessPolicyName`	`text`	field from the `properties` object
`kind`	`text`	Kind of the resource
`location`	`text`	Location where the resource is stored
`provisioning_state`	`text`	field from the `properties` object
`requests`	`text`	field from the `properties` object
`resourceGroupName`	`text`	field from the `properties` object
`subscriptionId`	`text`	field from the `properties` object
`type`	`text`	Resource type
`virtual_machines`	`text`	field from the `properties` object

Name	Datatype	Description
`id`	`string`	Resource Id
`name`	`string`	Resource name
`kind`	`string`	Kind of the resource
`location`	`string`	Location where the resource is stored
`properties`	`object`
`type`	`string`	Resource type

Methods

Name	Accessible by	Required Params	Description
`get`	`SELECT`	`ascLocation, jitNetworkAccessPolicyName, resourceGroupName, subscriptionId`	Policies for protecting resources using Just-in-Time access control for the subscription, location
`list`	`SELECT`	`subscriptionId`	Policies for protecting resources using Just-in-Time access control.
`list_by_region`	`SELECT`	`ascLocation, subscriptionId`	Policies for protecting resources using Just-in-Time access control for the subscription, location
`list_by_resource_group`	`SELECT`	`resourceGroupName, subscriptionId`	Policies for protecting resources using Just-in-Time access control for the subscription, location
`list_by_resource_group_and_region`	`SELECT`	`ascLocation, resourceGroupName, subscriptionId`	Policies for protecting resources using Just-in-Time access control for the subscription, location
`create_or_update`	`INSERT`	`ascLocation, jitNetworkAccessPolicyName, resourceGroupName, subscriptionId, data__properties`	Create a policy for protecting resources using Just-in-Time access control
`delete`	`DELETE`	`ascLocation, jitNetworkAccessPolicyName, resourceGroupName, subscriptionId`	Delete a Just-in-Time access control policy.
`initiate`	`EXEC`	`ascLocation, jitNetworkAccessPolicyInitiateType, jitNetworkAccessPolicyName, resourceGroupName, subscriptionId, data__virtualMachines`	Initiate a JIT access from a specific Just-in-Time policy configuration.

`SELECT` examples

Policies for protecting resources using Just-in-Time access control.

vw_jit_network_access_policies
jit_network_access_policies

SELECT
id,
name,
ascLocation,
jitNetworkAccessPolicyName,
kind,
location,
provisioning_state,
requests,
resourceGroupName,
subscriptionId,
type,
virtual_machines
FROM azure.security.vw_jit_network_access_policies
WHERE subscriptionId = '{{ subscriptionId }}';

SELECT
id,
name,
kind,
location,
properties,
type
FROM azure.security.jit_network_access_policies
WHERE subscriptionId = '{{ subscriptionId }}';

`INSERT` example

Use the following StackQL query and manifest file to create a new jit_network_access_policies resource.

All Properties
Manifest

/*+ create */
INSERT INTO azure.security.jit_network_access_policies (
ascLocation,
jitNetworkAccessPolicyName,
resourceGroupName,
subscriptionId,
data__properties,
properties,
kind
)
SELECT 
'{{ ascLocation }}',
'{{ jitNetworkAccessPolicyName }}',
'{{ resourceGroupName }}',
'{{ subscriptionId }}',
'{{ data__properties }}',
'{{ properties }}',
'{{ kind }}'
;

- name: your_resource_model_name
  props:
    - name: properties
      value:
        - name: virtualMachines
          value:
            - - name: id
                value: string
              - name: ports
                value:
                  - - name: number
                      value: []
                    - name: protocol
                      value: string
                    - name: allowedSourceAddressPrefix
                      value: string
                    - name: allowedSourceAddressPrefixes
                      value:
                        - string
                    - name: maxRequestAccessDuration
                      value: string
              - name: publicIpAddress
                value: string
        - name: requests
          value:
            - - name: virtualMachines
                value:
                  - - name: id
                      value: string
                    - name: ports
                      value:
                        - - name: allowedSourceAddressPrefix
                            value: string
                          - name: allowedSourceAddressPrefixes
                            value:
                              - string
                          - name: endTimeUtc
                            value: string
                          - name: status
                            value: string
                          - name: statusReason
                            value: string
                          - name: mappedPort
                            value: integer
              - name: startTimeUtc
                value: string
              - name: requestor
                value: string
              - name: justification
                value: string
        - name: provisioningState
          value: string
    - name: id
      value: string
    - name: name
      value: string
    - name: type
      value: string
    - name: kind
      value: string
    - name: location
      value: string

`DELETE` example

Deletes the specified jit_network_access_policies resource.

/*+ delete */
DELETE FROM azure.security.jit_network_access_policies
WHERE ascLocation = '{{ ascLocation }}'
AND jitNetworkAccessPolicyName = '{{ jitNetworkAccessPolicyName }}'
AND resourceGroupName = '{{ resourceGroupName }}'
AND subscriptionId = '{{ subscriptionId }}';

Overview​

Fields​

Methods​

SELECT examples​

INSERT example​

DELETE example​