az network dns record-set tlsa
This command group is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Manage DNS TLSA records.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az network dns record-set tlsa add-record |
Add a TLSA record. |
Core | Experimental |
| az network dns record-set tlsa create |
Create a TLSA record set. |
Core | Experimental |
| az network dns record-set tlsa delete |
Delete a TLSA record set. |
Core | Experimental |
| az network dns record-set tlsa list |
List TLSA record sets in a zone. |
Core | Experimental |
| az network dns record-set tlsa remove-record |
Remove a TLSA record from its record set. |
Core | Experimental |
| az network dns record-set tlsa show |
Get a TLSA record set. |
Core | Experimental |
| az network dns record-set tlsa update |
Update a TLSA record set. |
Core | Experimental |
az network dns record-set tlsa add-record
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Add a TLSA record.
az network dns record-set tlsa add-record --certificate-data
--certificate-usage
--matching-type
--record-set-name
--resource-group
--selector
--zone-name
[--if-none-match]
[--ttl]Examples
Add a TLSA record.
az network dns record-set tlsa add-record -g MyResourceGroup -z www.mysite.com \
-n MyRecordSet --certificate-usage 3 --selector 1 --matching-type 1 \
--certificate-data 0C72AC70B745AC19998811B131D662C9AC69DBDBE7CB23E5B514B56664C5D3D6Required Parameters
This specifies the certificate association data to be matched.
The usage specifies the provided association that will be used to match the certificate presented in the TLS handshake.
The matching type specifies how the certificate association is presented.
The name of the record set relative to the zone. Creates a new record set if one does not exist.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
The selector specifies which part of the TLS certificate presented by the server will be matched against the association data.
The name of the zone.
Optional Parameters
Create the record set only if it does not already exist.
Record set TTL (time-to-live).
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa create
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Create a TLSA record set.
az network dns record-set tlsa create --name
--resource-group
--zone-name
[--if-match]
[--if-none-match]
[--metadata]
[--target-resource]
[--tm-profile]
[--ttl]Examples
Create a TLSA record set.
az network dns record-set tlsa create -g MyResourceGroup -z www.mysite.com -n MyRecordSet --metadata owner=WebTeamRequired Parameters
The name of the record set, relative to the name of the zone.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
The name of the DNS zone (without a terminating dot).
Optional Parameters
The etag of the record set. Omit this value to always overwrite the current record set. Specify the last-seen etag value to prevent accidentally overwriting any concurrent changes.
Set to '*' to allow a new record set to be created, but to prevent updating an existing record set. Other values will be ignored.
The metadata attached to the record set. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
ID of an Azure resource from which the DNS resource value is taken.
A reference to an Azure Traffic Manager Profile resource from where the DNS resource value is taken.
The TTL (time-to-live) of the records in the record set.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa delete
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Delete a TLSA record set.
az network dns record-set tlsa delete [--ids]
[--if-match]
[--name]
[--resource-group]
[--subscription]
[--yes]
[--zone-name]Examples
Delete a TLSA record set.
az network dns record-set tlsa delete -g MyResourceGroup -z www.mysite.com -n MyRecordSetOptional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Etag of the record set. Omit this value to always delete the current record set. Specify the last-seen etag value to prevent accidentally deleting any concurrent changes.
Name of the record set, relative to the name of the zone.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Do not prompt for confirmation.
Name of the DNS zone.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa list
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
List TLSA record sets in a zone.
az network dns record-set tlsa list --resource-group
--zone-name
[--max-items]
[--next-token]
[--recordsetnamesuffix]
[--top]Examples
List TLSA record sets in a zone.
az network dns record-set tlsa list -g MyResourceGroup -z www.mysite.comRequired Parameters
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
The name of the DNS zone (without a terminating dot).
Optional Parameters
Total number of items to return in the command's output. If the total number of items available is more than the value specified, a token is provided in the command's output. To resume pagination, provide the token value in --next-token argument of a subsequent command.
Token to specify where to start paginating. This is the token value from a previously truncated response.
The suffix label of the record set name that has to be used to filter the record set enumerations. If this parameter is specified, Enumeration will return only records that end with ..
The maximum number of record sets to return. If not specified, returns up to 100 record sets.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa remove-record
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Remove a TLSA record from its record set.
By default, if the last record in a set is removed, the record set is deleted. To retain the empty record set, include --keep-empty-record-set.
az network dns record-set tlsa remove-record --certificate-data
--certificate-usage
--matching-type
--record-set-name
--resource-group
--selector
--zone-name
[--keep-empty-record-set]Examples
Remove an TLSA record from its record set.
az network dns record-set tlsa remove-record -g MyResourceGroup -z www.mysite.com \
-n MyRecordSet --certificate-usage 3 --selector 1 --matching-type 1 \
--certificate-data 0C72AC70B745AC19998811B131D662C9AC69DBDBE7CB23E5B514B56664C5D3D6Required Parameters
This specifies the certificate association data to be matched.
The usage specifies the provided association that will be used to match the certificate presented in the TLS handshake.
The matching type specifies how the certificate association is presented.
The name of the record set relative to the zone.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
The selector specifies which part of the TLS certificate presented by the server will be matched against the association data.
The name of the zone.
Optional Parameters
Keep the empty record set if the last record is removed.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa show
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Get a TLSA record set.
az network dns record-set tlsa show [--ids]
[--name]
[--resource-group]
[--subscription]
[--zone-name]Examples
Get a TLSA record set.
az network dns record-set tlsa show -g MyResourceGroup -z www.mysite.com -n MyRecordSetOptional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the record set, relative to the name of the zone.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Name of the DNS zone.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az network dns record-set tlsa update
Command group 'network dns record-set tlsa' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Update a TLSA record set.
az network dns record-set tlsa update [--add]
[--force-string {0, 1, f, false, n, no, t, true, y, yes}]
[--ids]
[--if-match]
[--if-none-match]
[--metadata]
[--name]
[--remove]
[--resource-group]
[--set]
[--subscription]
[--target-resource]
[--tm-profile]
[--zone-name]Examples
Update a TLSA record set.
az network dns record-set tlsa update -g MyResourceGroup -z www.mysite.com -n MyRecordSet --metadata owner=WebTeamOptional Parameters
Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.
When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Etag of the record set. Omit this value to always overwrite the current record set. Specify the last-seen etag value to prevent accidentally overwriting any concurrent changes.
Set to * to allow a new record set to be created, but to prevent updating an existing record set. Other values will be ignored.
Metadata in space-separated key=value pairs. This overwrites any existing metadata. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Name of the record set, relative to the name of the zone.
Remove a property or an element from a list. Example: --remove property.list OR --remove propertyToRemove.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Update an object by specifying a property path and value to set. Example: --set property1.property2=.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
ID of an Azure resource from which the DNS resource value is taken.
A reference to an Azure Traffic Manager Profile resource from where the DNS resource value is taken.
Name of the DNS zone.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for