az confidentialledger
Note
This command group has commands that are defined in two or more extensions. Each extension will automatically install the first time you run an extension command. Learn more about extensions.
Manage Confidential Ledger.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az confidentialledger check-name-availability |
To check whether a resource name is available. |
Extension | GA |
| az confidentialledger create |
Create a Confidential Ledger with the specified ledger parameters. |
Extension | GA |
| az confidentialledger delete |
Delete an existing Confidential Ledger. |
Extension | GA |
| az confidentialledger list |
List the properties of all Confidential Ledgers. |
Extension | GA |
| az confidentialledger managedccfs |
Deploy and manage the Azure Managed CCF instances. |
Extension | Preview |
| az confidentialledger managedccfs create |
Create an instance of the Azure Managed CCF service. |
Extension | Preview |
| az confidentialledger managedccfs delete |
Delete a Managed CCF instance. |
Extension | Preview |
| az confidentialledger managedccfs list |
View the Azure Managed CCF instances in a resource group. |
Extension | Preview |
| az confidentialledger managedccfs show |
View the details of an instance. |
Extension | Preview |
| az confidentialledger managedccfs update |
Patch a Managed CCF instance. |
Extension | Preview |
| az confidentialledger managedccfs wait |
Place the CLI in a waiting state until a condition is met. |
Extension | Preview |
| az confidentialledger show |
Get the properties of a Confidential Ledger. |
Extension | GA |
| az confidentialledger update |
Update a Confidential Ledger with the specified ledger parameters. |
Extension | GA |
| az confidentialledger wait |
Place the CLI in a waiting state until a condition is met. |
Extension | GA |
az confidentialledger check-name-availability
To check whether a resource name is available.
az confidentialledger check-name-availability [--name]
[--type]Examples
CheckNameAvailability
az confidentialledger check-name-availability --type Microsoft.ConfidentialLedger/ledgers --name sample-nameOptional Parameters
The name of the resource for which availability needs to be checked.
The resource type.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger create
Create a Confidential Ledger with the specified ledger parameters.
az confidentialledger create --ledger-name
--resource-group
[--aad-based-security-principals]
[--application-type {CodeTransparency, ConfidentialLedger}]
[--cert-based-security-principals]
[--enclave-platform {AmdSevSnp, IntelSgx}]
[--host-level]
[--ledger-sku {Basic, Standard, Unknown}]
[--ledger-type {Private, Public, Unknown}]
[--location]
[--max-body-size-in-mb]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--node-count]
[--running-state {Active, Paused, Pausing, Resuming, Unknown}]
[--subject-name]
[--tags]
[--worker-threads]
[--write-lb-address-prefix]Examples
ConfidentialLedgerCreate with cert-based-security-principals
az confidentialledger create --resource-group DummyResourceGroupName --ledger-name DummyLedgerName --ledger-type Public --ledger-sku Standard --location EastUS --aad-based-security-principals "[{principal-id:34621747-6fc8-4771-a2eb-72f31c461f2e,tenant-id:bce123b9-2b7b-4975-8360-5ca0b9b1cd08,ledger-role-name:Administrator}]" --tags "{additionalProps1:'additional properties'}"ConfidentialLedgerCreate with cert-based-security-principals
az confidentialledger create --resource-group DummyResourceGroupName --ledger-name DummyLedgerName --ledger-type Public --ledger-sku Standard --location EastUS --cert-based-security-principals "[{cert:'-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----',ledger-role-name:Reader}]" --tags "{additionalProps1:'additional properties'}"Required Parameters
Name of the Confidential Ledger.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
Array of all AAD based Security Principals. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Application type of the Confidential Ledger.
Array of all cert based Security Principals. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Enclave platform of the Confidential Ledger.
CCF Property for the logging level for the untrusted host: Trace, Debug, Info, Fail, Fatal.
SKU associated with the ledger.
Type of Confidential Ledger.
The geo-location where the resource lives When not specified, the location of the resource group will be used.
CCF Property for the maximum size of the http request body: 1MB, 5MB, 10MB.
Do not wait for the long-running operation to finish.
Number of CCF nodes in the ACC Ledger.
Object representing RunningState for Ledger.
CCF Property for the subject name to include in the node certificate. Default: CN=CCF Node.
Resource tags. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Number of additional threads processing incoming client requests in the enclave (modify with care!).
Prefix for the write load balancer. Example: write.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger delete
Delete an existing Confidential Ledger.
az confidentialledger delete [--ids]
[--ledger-name]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--resource-group]
[--subscription]
[--yes]Examples
ConfidentialLedgerDelete
az confidentialledger delete --resource-group DummyResourceGroupName --ledger-name DummyLedgerNameOptional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the Confidential Ledger.
Do not wait for the long-running operation to finish.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Do not prompt for confirmation.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger list
List the properties of all Confidential Ledgers.
az confidentialledger list [--filter]
[--max-items]
[--next-token]
[--resource-group]Examples
ConfidentialLedgerListBySub
az confidentialledger listConfidentialLedgerListByResourceGroup
az confidentialledger list --resource-group DummyResourceGroupNameOptional Parameters
The filter to apply on the list operation. eg. $filter=ledgerType eq 'Public'.
Total number of items to return in the command's output. If the total number of items available is more than the value specified, a token is provided in the command's output. To resume pagination, provide the token value in --next-token argument of a subsequent command.
Token to specify where to start paginating. This is the token value from a previously truncated response.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger show
Get the properties of a Confidential Ledger.
az confidentialledger show [--ids]
[--ledger-name]
[--resource-group]
[--subscription]Examples
ConfidentialLedgerGet
az confidentialledger show --resource-group DummyResourceGroupName --ledger-name DummyLedgerNameOptional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the Confidential Ledger.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger update
Update a Confidential Ledger with the specified ledger parameters.
az confidentialledger update [--aad-based-security-principals]
[--add]
[--application-type {CodeTransparency, ConfidentialLedger}]
[--cert-based-security-principals]
[--enclave-platform {AmdSevSnp, IntelSgx}]
[--force-string {0, 1, f, false, n, no, t, true, y, yes}]
[--host-level]
[--ids]
[--ledger-name]
[--ledger-sku {Basic, Standard, Unknown}]
[--ledger-type {Private, Public, Unknown}]
[--max-body-size-in-mb]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--node-count]
[--remove]
[--resource-group]
[--running-state {Active, Paused, Pausing, Resuming, Unknown}]
[--set]
[--subject-name]
[--subscription]
[--tags]
[--worker-threads]
[--write-lb-address-prefix]Examples
ConfidentialLedgerUpdate
az confidentialledger update --resource-group DummyResourceGroupName --ledger-name DummyLedgerName --location EastUS --aad-based-security-principals "[{principal-id:34621747-6fc8-4771-a2eb-72f31c461f2e,tenant-id:bce123b9-2b7b-4975-8360-5ca0b9b1cd08,ledger-role-name:Contributor}]" --tags "{additionalProps1:'additional update properties'}"Optional Parameters
Array of all AAD based Security Principals. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.
Application type of the Confidential Ledger.
Array of all cert based Security Principals. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Enclave platform of the Confidential Ledger.
When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.
CCF Property for the logging level for the untrusted host: Trace, Debug, Info, Fail, Fatal.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the Confidential Ledger.
SKU associated with the ledger.
Type of Confidential Ledger.
CCF Property for the maximum size of the http request body: 1MB, 5MB, 10MB.
Do not wait for the long-running operation to finish.
Number of CCF nodes in the ACC Ledger.
Remove a property or an element from a list. Example: --remove property.list <indexToRemove> OR --remove propertyToRemove.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Object representing RunningState for Ledger.
Update an object by specifying a property path and value to set. Example: --set property1.property2=<value>.
CCF Property for the subject name to include in the node certificate. Default: CN=CCF Node.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Resource tags. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Number of additional threads processing incoming client requests in the enclave (modify with care!).
Prefix for the write load balancer. Example: write.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az confidentialledger wait
Place the CLI in a waiting state until a condition is met.
az confidentialledger wait [--created]
[--custom]
[--deleted]
[--exists]
[--ids]
[--interval]
[--ledger-name]
[--resource-group]
[--subscription]
[--timeout]
[--updated]Optional Parameters
Wait until created with 'provisioningState' at 'Succeeded'.
Wait until the condition satisfies a custom JMESPath query. E.g. provisioningState!='InProgress', instanceView.statuses[?code=='PowerState/running'].
Wait until deleted.
Wait until the resource exists.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Polling interval in seconds.
Name of the Confidential Ledger.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Maximum wait in seconds.
Wait until updated with provisioningState at 'Succeeded'.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
