← Back to index

opnsense_acmeclient_account (Resource)

Manage ACME client accounts on OPNsense.

Example Usage

resource "opnsense_acmeclient_account" "example" {
  enabled     = true
  name        = "tf-example-account"
  email       = "admin@example.com"
  ca          = "letsencrypt"
  description = "Terraform test account"
}

Schema

Required

ca (String) Certification Authority identifier (for example letsencrypt).
email (String) Contact email address used for ACME registration.
name (String) Display name of the ACME account.

Optional

custom_ca (String) Custom CA configuration (used when ca is custom).
description (String) Optional description for the ACME account.
eab_hmac (String, Sensitive) External Account Binding HMAC key, if required by the CA.
eab_kid (String) External Account Binding key identifier, if required by the CA.
enabled (Boolean) Whether the ACME account is enabled.

Read-Only

id (String) UUID of the ACME client account.
key (String, Sensitive) Raw ACME account key material.
status_code (String) Latest ACME account status code reported by OPNsense.
status_last_update (String) Timestamp of the most recent ACME account status update.