Package com.azure.resourcemanager.compute.models

Interface DiskEncryptionSet.DefinitionStages.WithSystemAssignedIdentityBasedAccessOrCreate

All Superinterfaces:

Creatable<DiskEncryptionSet>, DiskEncryptionSet.DefinitionStages.WithAutomaticKeyRotation, DiskEncryptionSet.DefinitionStages.WithCreate, HasName, Indexable, Resource.DefinitionWithTags<DiskEncryptionSet.DefinitionStages.WithCreate>

All Known Subinterfaces:

DiskEncryptionSet.Definition

Enclosing interface:

DiskEncryptionSet.DefinitionStages

public static interface DiskEncryptionSet.DefinitionStages.WithSystemAssignedIdentityBasedAccessOrCreate
extends DiskEncryptionSet.DefinitionStages.WithCreate

The stage of the System Assigned Managed Service Identity enabled disk encryption set allowing to set access methods for the key vault.

Method Summary

Modifier and Type	Method	Description
DiskEncryptionSet.DefinitionStages.WithCreate	withRoleBasedAccessToCurrentKeyVault()	Specifies that disk encryption set's system assigned identity should have the RBAC based access with default BuiltInRole.KEY_VAULT_CRYPTO_SERVICE_ENCRYPTION_USER on the current Azure key vault that's associated with it.
DiskEncryptionSet.DefinitionStages.WithCreate	withRoleBasedAccessToCurrentKeyVault(BuiltInRole builtInRole)	Specifies that disk encryption set's system assigned identity should have the given RBAC based access (described by the role) on the current Azure key vault that's associated with it.

Methods inherited from interface com.azure.resourcemanager.resources.fluentcore.model.Creatable

create, create, createAsync, createAsync

Methods inherited from interface com.azure.resourcemanager.compute.models.DiskEncryptionSet.DefinitionStages.WithAutomaticKeyRotation

withAutomaticKeyRotation

Methods inherited from interface com.azure.resourcemanager.resources.fluentcore.arm.models.HasName

name

Methods inherited from interface com.azure.resourcemanager.resources.fluentcore.model.Indexable

key

Methods inherited from interface com.azure.resourcemanager.resources.fluentcore.arm.models.Resource.DefinitionWithTags

withTag, withTags

Method Details

withRoleBasedAccessToCurrentKeyVault

DiskEncryptionSet.DefinitionStages.WithCreate withRoleBasedAccessToCurrentKeyVault(BuiltInRole builtInRole)

Specifies that disk encryption set's system assigned identity should have the given RBAC based access (described by the role) on the current Azure key vault that's associated with it.

Only works for key vaults that use the 'Azure role-based access control' permission model.

If you prefer Access Policy based access for Azure Key Vault (like the examples from Portal or CLI), instead of calling this method, you may want to call Vault-related methods after creating the DiskEncryptionSet instance.

Parameters:

builtInRole - access role to assigned to the disk encryption set's local identity

Returns:

the next stage of the definition

withRoleBasedAccessToCurrentKeyVault

DiskEncryptionSet.DefinitionStages.WithCreate withRoleBasedAccessToCurrentKeyVault()

Specifies that disk encryption set's system assigned identity should have the RBAC based access with default BuiltInRole.KEY_VAULT_CRYPTO_SERVICE_ENCRYPTION_USER on the current Azure key vault that's associated with it.

Only works for key vaults that use the 'Azure role-based access control' permission model.

If you prefer Access Policy based access for Azure Key Vault (like the examples from Portal or CLI), instead of calling this method, you may want to call Vault-related methods after creating the DiskEncryptionSet instance.

Returns:

the next stage of the definition