Provides a Cloudflare Access Mutual TLS Certificate Settings resource.
resource "cloudflare_access_mutual_tls_hostname_settings" "example" {
zone_id = "0da42c8d2132a9ddaf714f9e7c920711"
settings {
hostname = "example.com"
client_certificate_forwarding = true
china_network = false
}
}
account_id
(String) The account identifier to target for the resource.settings
(Block List) (see below for nested schema)zone_id
(String) The zone identifier to target for the resource.settings
Required:
hostname
(String) The hostname that these settings apply to.Optional:
china_network
(Boolean) Request client certificates for this hostname in China. Can only be set to true if this zone is china network enabled.client_certificate_forwarding
(Boolean) Client Certificate Forwarding is a feature that takes the client cert provided by the eyeball to the edge, and forwards it to the origin as a HTTP header to allow logging on the origin.Import is supported using the following syntax:
# Account level mTLS hostname settings import.
$ terraform import cloudflare_access_mutual_tls_hostname_settings.example account/<account_id>
# Zone level mTLS hostname settings import.
$ terraform import cloudflare_access_mutual_tls_hostname_settings.example zone/<zone_id>