npm - @azure/arm-keyvault - Versions diffs - 3.2.0 → 4.0.0-alpha.20251125.3 - Mend

@azure/arm-keyvault 3.2.0 → 4.0.0-alpha.20251125.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (493) hide show

package/dist/commonjs/models/index.d.ts CHANGED Viewed

@@ -1,409 +1,409 @@
-import * as coreClient from "@azure/core-client";
-/** The parameters used to create a key. */
-export interface KeyCreateParameters {
-    /** The tags that will be assigned to the key. */
-    tags?: {
-        [propertyName: string]: string;
-    };
-    /** The properties of the key to be created. */
-    properties: KeyProperties;
+import type * as coreClient from "@azure/core-client";
+/** Result of the request to list Storage operations. It contains a list of operations and a URL link to get the next set of results. */
+export interface OperationListResult {
+    /** List of Storage operations supported by the Storage resource provider. */
+    value: Operation[];
+    /** The URL to get the next set of operations. */
+    nextLink?: string;
 }
-/** The properties of the key. */
-export interface KeyProperties {
-    /** The attributes of the key. */
-    attributes?: KeyAttributes;
-    /** The type of the key. For valid values, see JsonWebKeyType. */
-    kty?: JsonWebKeyType;
-    keyOps?: JsonWebKeyOperation[];
-    /** The key size in bits. For example: 2048, 3072, or 4096 for RSA. Default for RSA and RSA-HSM keys is 2048. Exception made for bring your own key (BYOK), key exchange keys default to 4096. */
-    keySize?: number;
-    /** The elliptic curve name. For valid values, see JsonWebKeyCurveName. Default for EC and EC-HSM keys is P-256 */
-    curveName?: JsonWebKeyCurveName;
+/** Key Vault REST API operation definition. */
+export interface Operation {
+    /** Operation name: {provider}/{resource}/{operation} */
+    name?: string;
+    /** Display metadata associated with the operation. */
+    display?: OperationDisplay;
+    /** The origin of operations. */
+    origin?: string;
+    /** Property to specify whether the action is a data action. */
+    isDataAction?: boolean;
+    /** One property of operation, include metric specifications. */
+    serviceSpecification?: ServiceSpecification;
+}
+/** Display metadata associated with the operation. */
+export interface OperationDisplay {
+    /** Service provider: Microsoft Key Vault. */
+    provider?: string;
+    /** Resource on which the operation is performed etc. */
+    resource?: string;
+    /** Type of operation: get, read, delete, etc. */
+    operation?: string;
+    /** Description of operation. */
+    description?: string;
+}
+/** One property of operation, include log specifications. */
+export interface ServiceSpecification {
+    /** Log specifications of operation. */
+    logSpecifications?: LogSpecification[];
+    /** Metric specifications of operation. */
+    metricSpecifications?: MetricSpecification[];
+}
+/** Log specification of operation. */
+export interface LogSpecification {
+    /** Name of log specification. */
+    name?: string;
+    /** Display name of log specification. */
+    displayName?: string;
+    /** Blob duration of specification. */
+    blobDuration?: string;
+}
+/** Metric specification of operation. */
+export interface MetricSpecification {
+    /** Name of metric specification. */
+    name?: string;
+    /** Display name of metric specification. */
+    displayName?: string;
+    /** Display description of metric specification. */
+    displayDescription?: string;
+    /** The metric unit. Possible values include: 'Bytes', 'Count', 'Milliseconds'. */
+    unit?: string;
+    /** The metric aggregation type. Possible values include: 'Average', 'Count', 'Total'. */
+    aggregationType?: string;
+    /** The supported aggregation types for the metrics. */
+    supportedAggregationTypes?: string[];
+    /** The supported time grain types for the metrics. */
+    supportedTimeGrainTypes?: string[];
+    /** The metric lock aggregation type. */
+    lockAggregationType?: string;
+    /** The dimensions of metric */
+    dimensions?: DimensionProperties[];
+    /** Property to specify whether to fill gap with zero. */
+    fillGapWithZero?: boolean;
+    /** The internal metric name. */
+    internalMetricName?: string;
+}
+/** Type of operation: get, read, delete, etc. */
+export interface DimensionProperties {
+    /** Name of dimension. */
+    name?: string;
+    /** Display name of dimension. */
+    displayName?: string;
+    /** Property to specify whether the dimension should be exported for Shoebox. */
+    toBeExportedForShoebox?: boolean;
+}
+/** An error response from Key Vault resource provider */
+export interface CloudError {
+    /** An error response from Key Vault resource provider */
+    error?: CloudErrorBody;
+}
+/** An error response from Key Vault resource provider */
+export interface CloudErrorBody {
+    /** Error code. This is a mnemonic that can be consumed programmatically. */
+    code?: string;
+    /** User friendly error message. The message is typically localized and may vary with service version. */
+    message?: string;
+}
+/** The parameters used to check the availability of the managed hsm name. */
+export interface CheckMhsmNameAvailabilityParameters {
+    /** The managed hsm name. */
+    name: string;
+}
+/** The CheckMhsmNameAvailability operation response. */
+export interface CheckMhsmNameAvailabilityResult {
     /**
-     * The URI to retrieve the current version of the key.
+     * A boolean value that indicates whether the name is available for you to use. If true, the name is available. If false, the name has already been taken or is invalid and cannot be used.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly keyUri?: string;
+    readonly nameAvailable?: boolean;
     /**
-     * The URI to retrieve the specific version of the key.
+     * The reason that a managed hsm name could not be used. The reason element is only returned if NameAvailable is false.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly keyUriWithVersion?: string;
-    /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
-    rotationPolicy?: RotationPolicy;
-    /** Key release policy in response. It will be used for both output and input. Omitted if empty */
-    releasePolicy?: KeyReleasePolicy;
+    readonly reason?: Reason;
+    /**
+     * An error message explaining the Reason value in more detail.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly message?: string;
 }
-/** The object attributes managed by the Azure Key Vault service. */
-export interface KeyAttributes {
-    /** Determines whether or not the object is enabled. */
-    enabled?: boolean;
-    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
-    notBefore?: number;
-    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
-    expires?: number;
+/** The parameters used to check the availability of the vault name. */
+export interface VaultCheckNameAvailabilityParameters {
+    /** The vault name. */
+    name: string;
+    /** The type of resource, Microsoft.KeyVault/vaults */
+    type: "Microsoft.KeyVault/vaults";
+}
+/** The CheckNameAvailability operation response. */
+export interface CheckNameAvailabilityResult {
     /**
-     * Creation time in seconds since 1970-01-01T00:00:00Z.
+     * A boolean value that indicates whether the name is available for you to use. If true, the name is available. If false, the name has already been taken or is invalid and cannot be used.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly created?: number;
+    readonly nameAvailable?: boolean;
     /**
-     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * The reason that a vault name could not be used. The Reason element is only returned if NameAvailable is false.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly updated?: number;
+    readonly reason?: Reason;
     /**
-     * The deletion recovery level currently in effect for the object. If it contains 'Purgeable', then the object can be permanently deleted by a privileged user; otherwise, only the system can purge the object at the end of the retention interval.
+     * An error message explaining the Reason value in more detail.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly recoveryLevel?: DeletionRecoveryLevel;
-    /** Indicates if the private key can be exported. */
-    exportable?: boolean;
+    readonly message?: string;
 }
-export interface RotationPolicy {
-    /** The attributes of key rotation policy. */
-    attributes?: KeyRotationPolicyAttributes;
-    /** The lifetimeActions for key rotation action. */
-    lifetimeActions?: LifetimeAction[];
+/** The response of a DeletedManagedHsm list operation. */
+export interface DeletedManagedHsmListResult {
+    /** The DeletedManagedHsm items on this page */
+    value: DeletedManagedHsm[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
-export interface KeyRotationPolicyAttributes {
+/** Properties of the deleted managed HSM. */
+export interface DeletedManagedHsmProperties {
     /**
-     * Creation time in seconds since 1970-01-01T00:00:00Z.
+     * The resource id of the original managed HSM.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly created?: number;
+    readonly mhsmId?: string;
     /**
-     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * The location of the original managed HSM.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly updated?: number;
-    /** The expiration time for the new key version. It should be in ISO8601 format. Eg: 'P90D', 'P1Y'. */
-    expiryTime?: string;
-}
-export interface LifetimeAction {
-    /** The trigger of key rotation policy lifetimeAction. */
-    trigger?: Trigger;
-    /** The action of key rotation policy lifetimeAction. */
-    action?: Action;
-}
-export interface Trigger {
-    /** The time duration after key creation to rotate the key. It only applies to rotate. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
-    timeAfterCreate?: string;
-    /** The time duration before key expiring to rotate or notify. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
-    timeBeforeExpiry?: string;
-}
-export interface Action {
-    /** The type of action. */
-    type?: KeyRotationPolicyActionType;
-}
-export interface KeyReleasePolicy {
-    /** Content type and version of key release policy */
-    contentType?: string;
-    /** Blob encoding the policy rules under which the key can be released. */
-    data?: Uint8Array;
+    readonly location?: string;
+    /**
+     * The deleted date.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly deletionDate?: Date;
+    /**
+     * The scheduled purged date.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly scheduledPurgeDate?: Date;
+    /**
+     * Purge protection status of the original managed HSM.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly purgeProtectionEnabled?: boolean;
+    /**
+     * Tags of the original managed HSM.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly tags?: {
+        [propertyName: string]: string;
+    };
 }
-/** Key Vault resource */
+/** Common fields that are returned in the response for all Azure Resource Manager resources */
 export interface Resource {
     /**
-     * Fully qualified identifier of the key vault resource.
+     * Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly id?: string;
     /**
-     * Name of the key vault resource.
+     * The name of the resource
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly name?: string;
     /**
-     * Resource type of the key vault resource.
+     * The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly type?: string;
     /**
-     * Azure location of the key vault resource.
+     * Azure Resource Manager metadata containing createdBy and modifiedBy information.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly location?: string;
+    readonly systemData?: SystemData;
+}
+/** Metadata pertaining to creation and last modification of the resource. */
+export interface SystemData {
+    /** The identity that created the resource. */
+    createdBy?: string;
+    /** The type of identity that created the resource. */
+    createdByType?: CreatedByType;
+    /** The timestamp of resource creation (UTC). */
+    createdAt?: Date;
+    /** The identity that last modified the resource. */
+    lastModifiedBy?: string;
+    /** The type of identity that last modified the resource. */
+    lastModifiedByType?: CreatedByType;
+    /** The timestamp of resource last modification (UTC) */
+    lastModifiedAt?: Date;
+}
+/** The error exception. */
+export interface ManagedHsmError {
     /**
-     * Tags assigned to the key vault resource.
+     * The server error.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly tags?: {
-        [propertyName: string]: string;
-    };
-}
-/** An error response from Key Vault resource provider */
-export interface CloudError {
-    /** An error response from Key Vault resource provider */
-    error?: CloudErrorBody;
+    readonly error?: ErrorModel;
 }
-/** An error response from Key Vault resource provider */
-export interface CloudErrorBody {
-    /** Error code. This is a mnemonic that can be consumed programmatically. */
-    code?: string;
-    /** User friendly error message. The message is typically localized and may vary with service version. */
-    message?: string;
-}
-/** The page of keys. */
-export interface KeyListResult {
-    /** The key resources. */
-    value?: Key[];
-    /** The URL to get the next page of keys. */
-    nextLink?: string;
-}
-/** The parameters used to create a key. */
-export interface ManagedHsmKeyCreateParameters {
-    /** The tags that will be assigned to the key. */
-    tags?: {
-        [propertyName: string]: string;
-    };
-    /** The properties of the key to be created. */
-    properties: ManagedHsmKeyProperties;
-}
-/** The properties of the key. */
-export interface ManagedHsmKeyProperties {
-    /** The attributes of the key. */
-    attributes?: ManagedHsmKeyAttributes;
-    /** The type of the key. For valid values, see JsonWebKeyType. */
-    kty?: JsonWebKeyType;
-    keyOps?: JsonWebKeyOperation[];
-    /** The key size in bits. For example: 2048, 3072, or 4096 for RSA. Default for RSA and RSA-HSM keys is 2048. Exception made for bring your own key (BYOK), key exchange keys default to 4096. */
-    keySize?: number;
-    /** The elliptic curve name. For valid values, see JsonWebKeyCurveName. Default for EC and EC-HSM keys is P-256 */
-    curveName?: JsonWebKeyCurveName;
-    /**
-     * The URI to retrieve the current version of the key.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly keyUri?: string;
-    /**
-     * The URI to retrieve the specific version of the key.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly keyUriWithVersion?: string;
-    /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
-    rotationPolicy?: ManagedHsmRotationPolicy;
-    /** Key release policy in response. It will be used for both output and input. Omitted if empty */
-    releasePolicy?: ManagedHsmKeyReleasePolicy;
-}
-/** The object attributes managed by the Azure Key Vault service. */
-export interface ManagedHsmKeyAttributes {
-    /** Determines whether or not the object is enabled. */
-    enabled?: boolean;
-    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
-    notBefore?: number;
-    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
-    expires?: number;
+/** The server error. */
+export interface ErrorModel {
     /**
-     * Creation time in seconds since 1970-01-01T00:00:00Z.
+     * The error code.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly created?: number;
+    readonly code?: string;
     /**
-     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * The error message.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly updated?: number;
+    readonly message?: string;
     /**
-     * The deletion recovery level currently in effect for the object. If it contains 'Purgeable', then the object can be permanently deleted by a privileged user; otherwise, only the system can purge the object at the end of the retention interval.
+     * The inner error, contains a more specific error code.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly recoveryLevel?: DeletionRecoveryLevel;
-    /** Indicates if the private key can be exported. */
-    exportable?: boolean;
+    readonly innerError?: ErrorModel;
 }
-export interface ManagedHsmRotationPolicy {
-    /** The attributes of key rotation policy. */
-    attributes?: ManagedHsmKeyRotationPolicyAttributes;
-    /** The lifetimeActions for key rotation action. */
-    lifetimeActions?: ManagedHsmLifetimeAction[];
+/** The response of a DeletedVault list operation. */
+export interface DeletedVaultListResult {
+    /** The DeletedVault items on this page */
+    value: DeletedVault[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
-export interface ManagedHsmKeyRotationPolicyAttributes {
+/** Properties of the deleted vault. */
+export interface DeletedVaultProperties {
     /**
-     * Creation time in seconds since 1970-01-01T00:00:00Z.
+     * The resource id of the original vault.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly created?: number;
+    readonly vaultId?: string;
     /**
-     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * The location of the original vault.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly updated?: number;
-    /** The expiration time for the new key version. It should be in ISO8601 format. Eg: 'P90D', 'P1Y'. */
-    expiryTime?: string;
-}
-export interface ManagedHsmLifetimeAction {
-    /** The trigger of key rotation policy lifetimeAction. */
-    trigger?: ManagedHsmTrigger;
-    /** The action of key rotation policy lifetimeAction. */
-    action?: ManagedHsmAction;
-}
-export interface ManagedHsmTrigger {
-    /** The time duration after key creation to rotate the key. It only applies to rotate. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
-    timeAfterCreate?: string;
-    /** The time duration before key expiring to rotate or notify. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
-    timeBeforeExpiry?: string;
-}
-export interface ManagedHsmAction {
-    /** The type of action. */
-    type?: KeyRotationPolicyActionType;
-}
-export interface ManagedHsmKeyReleasePolicy {
-    /** Content type and version of key release policy */
-    contentType?: string;
-    /** Blob encoding the policy rules under which the key can be released. */
-    data?: Uint8Array;
-}
-/** Common fields that are returned in the response for all Azure Resource Manager resources */
-export interface ProxyResourceWithoutSystemData {
+    readonly location?: string;
     /**
-     * Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
+     * The deleted date.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly id?: string;
+    readonly deletionDate?: Date;
     /**
-     * The name of the resource
+     * The scheduled purged date.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly name?: string;
+    readonly scheduledPurgeDate?: Date;
     /**
-     * The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
+     * Tags of the original vault.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly type?: string;
-    /** Resource tags. */
-    tags?: {
+    readonly tags?: {
         [propertyName: string]: string;
     };
+    /**
+     * Purge protection status of the original vault.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly purgeProtectionEnabled?: boolean;
 }
-/** The page of keys. */
-export interface ManagedHsmKeyListResult {
-    /** The key resources. */
-    value?: ManagedHsmKey[];
-    /** The URL to get the next page of keys. */
+/** The response of a ManagedHsm list operation. */
+export interface ManagedHsmListResult {
+    /** The ManagedHsm items on this page */
+    value: ManagedHsm[];
+    /** The link to the next page of items */
     nextLink?: string;
 }
-/** Parameters for creating or updating a vault */
-export interface VaultCreateOrUpdateParameters {
-    /** The supported Azure location where the key vault should be created. */
-    location: string;
-    /** The tags that will be assigned to the key vault. */
-    tags?: {
-        [propertyName: string]: string;
-    };
-    /** Properties of the vault */
-    properties: VaultProperties;
-}
-/** Properties of the vault */
-export interface VaultProperties {
-    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. */
-    tenantId: string;
-    /** SKU details */
-    sku: Sku;
-    /** An array of 0 to 1024 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. When `createMode` is set to `recover`, access policies are not required. Otherwise, access policies are required. */
-    accessPolicies?: AccessPolicyEntry[];
-    /** The URI of the vault for performing operations on keys and secrets. */
-    vaultUri?: string;
+/** Properties of the managed HSM Pool */
+export interface ManagedHsmProperties {
+    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool. */
+    tenantId?: string;
+    /** Array of initial administrators object ids for this managed hsm pool. */
+    initialAdminObjectIds?: string[];
     /**
-     * The resource id of HSM Pool.
+     * The URI of the managed hsm pool for performing operations on keys.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly hsmPoolResourceId?: string;
-    /** Property to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault. */
-    enabledForDeployment?: boolean;
-    /** Property to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys. */
-    enabledForDiskEncryption?: boolean;
-    /** Property to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault. */
-    enabledForTemplateDeployment?: boolean;
-    /** Property to specify whether the 'soft delete' functionality is enabled for this key vault. If it's not set to any value(true or false) when creating new key vault, it will be set to true by default. Once set to true, it cannot be reverted to false. */
+    readonly hsmUri?: string;
+    /** Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable. */
     enableSoftDelete?: boolean;
-    /** softDelete data retention days. It accepts >=7 and <=90. */
+    /** Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90. */
     softDeleteRetentionInDays?: number;
-    /** Property that controls how data actions are authorized. When true, the key vault will use Role Based Access Control (RBAC) for authorization of data actions, and the access policies specified in vault properties will be  ignored. When false, the key vault will use the access policies specified in vault properties, and any policy stored on Azure Resource Manager will be ignored. If null or not specified, the vault is created with the default value of false. Note that management actions are always authorized with RBAC. */
-    enableRbacAuthorization?: boolean;
-    /** The vault's create mode to indicate whether the vault need to be recovered or not. */
-    createMode?: CreateMode;
-    /** Property specifying whether protection against purge is enabled for this vault. Setting this property to true activates protection against purge for this vault and its content - only the Key Vault service may initiate a hard, irrecoverable deletion. The setting is effective only if soft delete is also enabled. Enabling this functionality is irreversible - that is, the property does not accept false as its value. */
+    /** Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible. */
     enablePurgeProtection?: boolean;
+    /** The create mode to indicate whether the resource is being created or is being recovered from a deleted resource. */
+    createMode?: CreateMode;
+    /**
+     * Resource Status Message.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly statusMessage?: string;
+    /**
+     * Provisioning state.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly provisioningState?: ProvisioningState;
     /** Rules governing the accessibility of the key vault from specific network locations. */
-    networkAcls?: NetworkRuleSet;
-    /** Provisioning state of the vault. */
-    provisioningState?: VaultProvisioningState;
+    networkAcls?: MhsmNetworkRuleSet;
+    /** List of all regions associated with the managed hsm pool. */
+    regions?: MhsmGeoReplicatedRegion[];
     /**
-     * List of private endpoint connections associated with the key vault.
+     * List of private endpoint connections associated with the managed hsm pool.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly privateEndpointConnections?: PrivateEndpointConnectionItem[];
-    /** Property to specify whether the vault will accept traffic from public internet. If set to 'disabled' all traffic except private endpoint traffic and that that originates from trusted services will be blocked. This will override the set firewall rules, meaning that even if the firewall rules are present we will not honor the rules. */
-    publicNetworkAccess?: string;
-}
-/** SKU details */
-export interface Sku {
-    /** SKU family name */
-    family: SkuFamily;
-    /** SKU name to specify whether the key vault is a standard vault or a premium vault. */
-    name: SkuName;
-}
-/** An identity that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
-export interface AccessPolicyEntry {
-    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. */
-    tenantId: string;
-    /** The object ID of a user, service principal or security group in the Azure Active Directory tenant for the vault. The object ID must be unique for the list of access policies. */
-    objectId: string;
-    /**  Application ID of the client making request on behalf of a principal */
-    applicationId?: string;
-    /** Permissions the identity has for keys, secrets and certificates. */
-    permissions: Permissions;
-}
-/** Permissions the identity has for keys, secrets, certificates and storage. */
-export interface Permissions {
-    /** Permissions to keys */
-    keys?: KeyPermissions[];
-    /** Permissions to secrets */
-    secrets?: SecretPermissions[];
-    /** Permissions to certificates */
-    certificates?: CertificatePermissions[];
-    /** Permissions to storage accounts */
-    storage?: StoragePermissions[];
+    readonly privateEndpointConnections?: MhsmPrivateEndpointConnectionItem[];
+    /** Control permission to the managed HSM from public networks. */
+    publicNetworkAccess?: PublicNetworkAccess;
+    /**
+     * The scheduled purge date in UTC.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly scheduledPurgeDate?: Date;
+    /**
+     * Managed HSM security domain properties.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly securityDomainProperties?: ManagedHSMSecurityDomainProperties;
 }
-/** A set of rules governing the network accessibility of a vault. */
-export interface NetworkRuleSet {
+/** A set of rules governing the network accessibility of a managed hsm pool. */
+export interface MhsmNetworkRuleSet {
     /** Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'.  If not specified the default is 'AzureServices'. */
     bypass?: NetworkRuleBypassOptions;
     /** The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated. */
     defaultAction?: NetworkRuleAction;
     /** The list of IP address rules. */
-    ipRules?: IPRule[];
+    ipRules?: MhsmipRule[];
+    /** The list of service tags. */
+    serviceTags?: MhsmServiceTagRule[];
     /** The list of virtual network rules. */
-    virtualNetworkRules?: VirtualNetworkRule[];
+    virtualNetworkRules?: MhsmVirtualNetworkRule[];
 }
-/** A rule governing the accessibility of a vault from a specific ip address or ip range. */
-export interface IPRule {
+/** A rule governing the accessibility of a managed HSM pool from a specific IP address or IP range. */
+export interface MhsmipRule {
     /** An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78). */
     value: string;
 }
-/** A rule governing the accessibility of a vault from a specific virtual network. */
-export interface VirtualNetworkRule {
+/** A rule governing the accessibility of a managed hsm pool from a specific service tags. */
+export interface MhsmServiceTagRule {
+    /** Name of the service tag. */
+    tag: string;
+}
+/** A rule governing the accessibility of a managed hsm pool from a specific virtual network. */
+export interface MhsmVirtualNetworkRule {
     /** Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'. */
     id: string;
-    /** Property to specify whether NRP will ignore the check if parent subnet has serviceEndpoints configured. */
-    ignoreMissingVnetServiceEndpoint?: boolean;
+}
+/** A region that this managed HSM Pool has been extended to. */
+export interface MhsmGeoReplicatedRegion {
+    /** Name of the geo replicated region. */
+    name?: string;
+    /**
+     * Provisioning state of the geo replicated region.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly provisioningState?: GeoReplicationRegionProvisioningState;
+    /** A boolean value that indicates whether the region is the primary region or a secondary region. */
+    isPrimary?: boolean;
 }
 /** Private endpoint connection item. */
-export interface PrivateEndpointConnectionItem {
+export interface MhsmPrivateEndpointConnectionItem {
     /** Id of private endpoint connection. */
     id?: string;
     /** Modified whenever there is a change in the state of private endpoint connection. */
     etag?: string;
     /** Properties of the private endpoint object. */
-    privateEndpoint?: PrivateEndpoint;
+    privateEndpoint?: MhsmPrivateEndpoint;
     /** Approval state of the private link connection. */
-    privateLinkServiceConnectionState?: PrivateLinkServiceConnectionState;
-    /** Provisioning state of the private endpoint connection. */
-    provisioningState?: PrivateEndpointConnectionProvisioningState;
+    privateLinkServiceConnectionState?: MhsmPrivateLinkServiceConnectionState;
+    /**
+     * Provisioning state of the private endpoint connection.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly provisioningState?: PrivateEndpointConnectionProvisioningState;
 }
 /** Private endpoint object properties. */
-export interface PrivateEndpoint {
+export interface MhsmPrivateEndpoint {
     /**
      * Full identifier of the private endpoint resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -411,7 +411,7 @@ export interface PrivateEndpoint {
     readonly id?: string;
 }
 /** An object that represents the approval state of the private link connection. */
-export interface PrivateLinkServiceConnectionState {
+export interface MhsmPrivateLinkServiceConnectionState {
     /** Indicates whether the connection has been approved, rejected or removed by the key vault owner. */
     status?: PrivateEndpointServiceConnectionStatus;
     /** The reason for approval or rejection. */
@@ -419,359 +419,314 @@ export interface PrivateLinkServiceConnectionState {
     /** A message indicating if changes on the service provider require any updates on the consumer. */
     actionsRequired?: ActionsRequired;
 }
-/** Resource information with extended details. */
-export interface Vault {
+/** The security domain properties of the managed hsm. */
+export interface ManagedHSMSecurityDomainProperties {
     /**
-     * Fully qualified identifier of the key vault resource.
+     * Activation Status
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly id?: string;
+    readonly activationStatus?: ActivationStatus;
     /**
-     * Name of the key vault resource.
+     * Activation Status Message.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly name?: string;
+    readonly activationStatusMessage?: string;
+}
+/** SKU details */
+export interface ManagedHsmSku {
+    /** SKU Family of the managed HSM Pool */
+    family: ManagedHsmSkuFamily;
+    /** SKU of the managed HSM Pool */
+    name: ManagedHsmSkuName;
+}
+/** Managed service identity (system assigned and/or user assigned identities) */
+export interface ManagedServiceIdentity {
     /**
-     * Resource type of the key vault resource.
+     * The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly type?: string;
-    /** Azure location of the key vault resource. */
-    location?: string;
-    /** Tags assigned to the key vault resource. */
-    tags?: {
-        [propertyName: string]: string;
-    };
+    readonly principalId?: string;
     /**
-     * System metadata for the key vault.
+     * The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly systemData?: SystemData;
-    /** Properties of the vault */
-    properties: VaultProperties;
+    readonly tenantId?: string;
+    /** Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed). */
+    type: ManagedServiceIdentityType;
+    /** The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests. */
+    userAssignedIdentities?: {
+        [propertyName: string]: UserAssignedIdentity | null;
+    };
 }
-/** Metadata pertaining to creation and last modification of the key vault resource. */
-export interface SystemData {
-    /** The identity that created the key vault resource. */
-    createdBy?: string;
-    /** The type of identity that created the key vault resource. */
-    createdByType?: IdentityType;
-    /** The timestamp of the key vault resource creation (UTC). */
-    createdAt?: Date;
-    /** The identity that last modified the key vault resource. */
-    lastModifiedBy?: string;
-    /** The type of identity that last modified the key vault resource. */
-    lastModifiedByType?: IdentityType;
-    /** The timestamp of the key vault resource last modification (UTC). */
-    lastModifiedAt?: Date;
+/** User assigned identity properties */
+export interface UserAssignedIdentity {
+    /**
+     * The principal ID of the assigned identity.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly principalId?: string;
+    /**
+     * The client ID of the assigned identity.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly clientId?: string;
 }
-/** Parameters for creating or updating a vault */
-export interface VaultPatchParameters {
-    /** The tags that will be assigned to the key vault. */
-    tags?: {
-        [propertyName: string]: string;
-    };
-    /** Properties of the vault */
-    properties?: VaultPatchProperties;
+/** The response of a Vault list operation. */
+export interface VaultListResult {
+    /** The Vault items on this page */
+    value: Vault[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
 /** Properties of the vault */
-export interface VaultPatchProperties {
+export interface VaultProperties {
     /** The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. */
-    tenantId?: string;
+    tenantId: string;
     /** SKU details */
-    sku?: Sku;
-    /** An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
+    sku: Sku;
+    /** An array of 0 to 1024 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. When `createMode` is set to `recover`, access policies are not required. Otherwise, access policies are required. */
     accessPolicies?: AccessPolicyEntry[];
+    /** The URI of the vault for performing operations on keys and secrets. */
+    vaultUri?: string;
+    /**
+     * The resource id of HSM Pool.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly hsmPoolResourceId?: string;
     /** Property to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault. */
     enabledForDeployment?: boolean;
     /** Property to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys. */
     enabledForDiskEncryption?: boolean;
     /** Property to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault. */
     enabledForTemplateDeployment?: boolean;
-    /** Property to specify whether the 'soft delete' functionality is enabled for this key vault. Once set to true, it cannot be reverted to false. */
+    /** Property to specify whether the 'soft delete' functionality is enabled for this key vault. If it's not set to any value(true or false) when creating new key vault, it will be set to true by default. Once set to true, it cannot be reverted to false. */
     enableSoftDelete?: boolean;
-    /** Property that controls how data actions are authorized. When true, the key vault will use Role Based Access Control (RBAC) for authorization of data actions, and the access policies specified in vault properties will be  ignored. When false, the key vault will use the access policies specified in vault properties, and any policy stored on Azure Resource Manager will be ignored. If null or not specified, the value of this property will not change. */
-    enableRbacAuthorization?: boolean;
     /** softDelete data retention days. It accepts >=7 and <=90. */
     softDeleteRetentionInDays?: number;
+    /** Property that controls how data actions are authorized. When true, the key vault will use Role Based Access Control (RBAC) for authorization of data actions, and the access policies specified in vault properties will be  ignored. When false, the key vault will use the access policies specified in vault properties, and any policy stored on Azure Resource Manager will be ignored. If null or not specified, the vault is created with the default value of false. Note that management actions are always authorized with RBAC. */
+    enableRbacAuthorization?: boolean;
     /** The vault's create mode to indicate whether the vault need to be recovered or not. */
     createMode?: CreateMode;
     /** Property specifying whether protection against purge is enabled for this vault. Setting this property to true activates protection against purge for this vault and its content - only the Key Vault service may initiate a hard, irrecoverable deletion. The setting is effective only if soft delete is also enabled. Enabling this functionality is irreversible - that is, the property does not accept false as its value. */
     enablePurgeProtection?: boolean;
-    /** A collection of rules governing the accessibility of the vault from specific network locations. */
+    /** Rules governing the accessibility of the key vault from specific network locations. */
     networkAcls?: NetworkRuleSet;
-    /** Property to specify whether the vault will accept traffic from public internet. If set to 'disabled' all traffic except private endpoint traffic and that that originates from trusted services will be blocked. This will override the set firewall rules, meaning that even if the firewall rules are present we will not honor the rules. */
-    publicNetworkAccess?: string;
-}
-/** Parameters for updating the access policy in a vault */
-export interface VaultAccessPolicyParameters {
-    /**
-     * The resource id of the access policy.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly id?: string;
+    /** Provisioning state of the vault. */
+    provisioningState?: VaultProvisioningState;
     /**
-     * The resource name of the access policy.
+     * List of private endpoint connections associated with the key vault.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly name?: string;
+    readonly privateEndpointConnections?: PrivateEndpointConnectionItem[];
+    /** Property to specify whether the vault will accept traffic from public internet. If set to 'disabled' all traffic except private endpoint traffic and that that originates from trusted services will be blocked. This will override the set firewall rules, meaning that even if the firewall rules are present we will not honor the rules. */
+    publicNetworkAccess?: string;
+}
+/** SKU details */
+export interface Sku {
+    /** SKU family name */
+    family: SkuFamily;
+    /** SKU name to specify whether the key vault is a standard vault or a premium vault. */
+    name: SkuName;
+}
+/** An identity that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
+export interface AccessPolicyEntry {
+    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. */
+    tenantId: string;
+    /** The object ID of a user, service principal or security group in the Azure Active Directory tenant for the vault. The object ID must be unique for the list of access policies. */
+    objectId: string;
+    /** Application ID of the client making request on behalf of a principal */
+    applicationId?: string;
+    /** Permissions the identity has for keys, secrets and certificates. */
+    permissions: Permissions;
+}
+/** Permissions the identity has for keys, secrets, certificates and storage. */
+export interface Permissions {
+    /** Permissions to keys */
+    keys?: KeyPermissions[];
+    /** Permissions to secrets */
+    secrets?: SecretPermissions[];
+    /** Permissions to certificates */
+    certificates?: CertificatePermissions[];
+    /** Permissions to storage accounts */
+    storage?: StoragePermissions[];
+}
+/** A set of rules governing the network accessibility of a vault. */
+export interface NetworkRuleSet {
+    /** Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'.  If not specified the default is 'AzureServices'. */
+    bypass?: NetworkRuleBypassOptions;
+    /** The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated. */
+    defaultAction?: NetworkRuleAction;
+    /** The list of IP address rules. */
+    ipRules?: IPRule[];
+    /** The list of virtual network rules. */
+    virtualNetworkRules?: VirtualNetworkRule[];
+}
+/** A rule governing the accessibility of a vault from a specific ip address or ip range. */
+export interface IPRule {
+    /** An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78). */
+    value: string;
+}
+/** A rule governing the accessibility of a vault from a specific virtual network. */
+export interface VirtualNetworkRule {
+    /** Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'. */
+    id: string;
+    /** Property to specify whether NRP will ignore the check if parent subnet has serviceEndpoints configured. */
+    ignoreMissingVnetServiceEndpoint?: boolean;
+}
+/** Private endpoint connection item. */
+export interface PrivateEndpointConnectionItem {
+    /** Id of private endpoint connection. */
+    id?: string;
+    /** Modified whenever there is a change in the state of private endpoint connection. */
+    etag?: string;
+    /** Properties of the private endpoint object. */
+    privateEndpoint?: PrivateEndpoint;
+    /** Approval state of the private link connection. */
+    privateLinkServiceConnectionState?: PrivateLinkServiceConnectionState;
     /**
-     * The resource name of the access policy.
+     * Provisioning state of the private endpoint connection.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly type?: string;
+    readonly provisioningState?: PrivateEndpointConnectionProvisioningState;
+}
+/** Private endpoint object properties. */
+export interface PrivateEndpoint {
     /**
-     * The resource type of the access policy.
+     * Full identifier of the private endpoint resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly location?: string;
-    /** Properties of the access policy */
-    properties: VaultAccessPolicyProperties;
-}
-/** Properties of the vault access policy */
-export interface VaultAccessPolicyProperties {
-    /** An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
-    accessPolicies: AccessPolicyEntry[];
+    readonly id?: string;
 }
-/** List of vaults */
-export interface VaultListResult {
-    /** The list of vaults. */
-    value?: Vault[];
-    /** The URL to get the next set of vaults. */
-    nextLink?: string;
+/** An object that represents the approval state of the private link connection. */
+export interface PrivateLinkServiceConnectionState {
+    /** Indicates whether the connection has been approved, rejected or removed by the key vault owner. */
+    status?: PrivateEndpointServiceConnectionStatus;
+    /** The reason for approval or rejection. */
+    description?: string;
+    /** A message indicating if changes on the service provider require any updates on the consumer. */
+    actionsRequired?: ActionsRequired;
 }
-/** List of vaults */
-export interface DeletedVaultListResult {
-    /** The list of deleted vaults. */
-    value?: DeletedVault[];
-    /** The URL to get the next set of deleted vaults. */
+/** The response of a ManagedHsmKey list operation. */
+export interface ManagedHsmKeyListResult {
+    /** The ManagedHsmKey items on this page */
+    value: ManagedHsmKey[];
+    /** The link to the next page of items */
     nextLink?: string;
 }
-/** Deleted vault information with extended details. */
-export interface DeletedVault {
-    /**
-     * The resource ID for the deleted key vault.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly id?: string;
+/** The properties of the key. */
+export interface ManagedHsmKeyProperties {
+    /** The attributes of the key. */
+    attributes?: ManagedHsmKeyAttributes;
+    /** The type of the key. For valid values, see JsonWebKeyType. */
+    kty?: JsonWebKeyType;
+    keyOps?: JsonWebKeyOperation[];
+    /** The key size in bits. For example: 2048, 3072, or 4096 for RSA. Default for RSA and RSA-HSM keys is 2048. Exception made for bring your own key (BYOK), key exchange keys default to 4096. */
+    keySize?: number;
+    /** The elliptic curve name. For valid values, see JsonWebKeyCurveName. Default for EC and EC-HSM keys is P-256 */
+    curveName?: JsonWebKeyCurveName;
     /**
-     * The name of the key vault.
+     * The URI to retrieve the current version of the key.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly name?: string;
+    readonly keyUri?: string;
     /**
-     * The resource type of the key vault.
+     * The URI to retrieve the specific version of the key.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly type?: string;
-    /** Properties of the vault */
-    properties?: DeletedVaultProperties;
+    readonly keyUriWithVersion?: string;
+    /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
+    rotationPolicy?: ManagedHsmRotationPolicy;
+    /** Key release policy in response. It will be used for both output and input. Omitted if empty */
+    releasePolicy?: ManagedHsmKeyReleasePolicy;
 }
-/** Properties of the deleted vault. */
-export interface DeletedVaultProperties {
-    /**
-     * The resource id of the original vault.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly vaultId?: string;
-    /**
-     * The location of the original vault.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly location?: string;
-    /**
-     * The deleted date.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly deletionDate?: Date;
-    /**
-     * The scheduled purged date.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly scheduledPurgeDate?: Date;
-    /**
-     * Tags of the original vault.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly tags?: {
-        [propertyName: string]: string;
-    };
-    /**
-     * Purge protection status of the original vault.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly purgeProtectionEnabled?: boolean;
-}
-/** List of vault resources. */
-export interface ResourceListResult {
-    /** The list of vault resources. */
-    value?: Resource[];
-    /** The URL to get the next set of vault resources. */
-    nextLink?: string;
-}
-/** The parameters used to check the availability of the vault name. */
-export interface VaultCheckNameAvailabilityParameters {
-    /** The vault name. */
-    name: string;
-    /** The type of resource, Microsoft.KeyVault/vaults */
-    type: "Microsoft.KeyVault/vaults";
-}
-/** The CheckNameAvailability operation response. */
-export interface CheckNameAvailabilityResult {
+/** The object attributes managed by the Azure Key Vault service. */
+export interface ManagedHsmKeyAttributes {
+    /** Determines whether or not the object is enabled. */
+    enabled?: boolean;
+    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
+    notBefore?: number;
+    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
+    expires?: number;
     /**
-     * A boolean value that indicates whether the name is available for you to use. If true, the name is available. If false, the name has already been taken or is invalid and cannot be used.
+     * Creation time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly nameAvailable?: boolean;
+    readonly created?: number;
     /**
-     * The reason that a vault name could not be used. The Reason element is only returned if NameAvailable is false.
+     * Last updated time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly reason?: Reason;
+    readonly updated?: number;
     /**
-     * An error message explaining the Reason value in more detail.
+     * The deletion recovery level currently in effect for the object. If it contains 'Purgeable', then the object can be permanently deleted by a privileged user; otherwise, only the system can purge the object at the end of the retention interval.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly message?: string;
-}
-/** List of private endpoint connections. */
-export interface PrivateEndpointConnectionListResult {
-    /** The list of private endpoint connections. */
-    value?: PrivateEndpointConnection[];
-    /** The URL to get the next set of private endpoint connections. */
-    nextLink?: string;
+    readonly recoveryLevel?: DeletionRecoveryLevel;
+    /** Indicates if the private key can be exported. */
+    exportable?: boolean;
 }
-/** A list of private link resources */
-export interface PrivateLinkResourceListResult {
-    /** Array of private link resources */
-    value?: PrivateLinkResource[];
+export interface ManagedHsmRotationPolicy {
+    /** The attributes of key rotation policy. */
+    attributes?: ManagedHsmKeyRotationPolicyAttributes;
+    /** The lifetimeActions for key rotation action. */
+    lifetimeActions?: ManagedHsmLifetimeAction[];
 }
-/** Properties of the managed HSM Pool */
-export interface ManagedHsmProperties {
-    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool. */
-    tenantId?: string;
-    /** Array of initial administrators object ids for this managed hsm pool. */
-    initialAdminObjectIds?: string[];
-    /**
-     * The URI of the managed hsm pool for performing operations on keys.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly hsmUri?: string;
-    /** Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable. */
-    enableSoftDelete?: boolean;
-    /** Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90. */
-    softDeleteRetentionInDays?: number;
-    /** Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible. */
-    enablePurgeProtection?: boolean;
-    /** The create mode to indicate whether the resource is being created or is being recovered from a deleted resource. */
-    createMode?: CreateMode;
-    /**
-     * Resource Status Message.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly statusMessage?: string;
-    /**
-     * Provisioning state.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly provisioningState?: ProvisioningState;
-    /** Rules governing the accessibility of the key vault from specific network locations. */
-    networkAcls?: MhsmNetworkRuleSet;
-    /** List of all regions associated with the managed hsm pool. */
-    regions?: MhsmGeoReplicatedRegion[];
-    /**
-     * List of private endpoint connections associated with the managed hsm pool.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly privateEndpointConnections?: MhsmPrivateEndpointConnectionItem[];
-    /** Control permission to the managed HSM from public networks. */
-    publicNetworkAccess?: PublicNetworkAccess;
+export interface ManagedHsmKeyRotationPolicyAttributes {
     /**
-     * The scheduled purge date in UTC.
+     * Creation time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly scheduledPurgeDate?: Date;
+    readonly created?: number;
     /**
-     * Managed HSM security domain properties.
+     * Last updated time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly securityDomainProperties?: ManagedHSMSecurityDomainProperties;
-}
-/** A set of rules governing the network accessibility of a managed hsm pool. */
-export interface MhsmNetworkRuleSet {
-    /** Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'.  If not specified the default is 'AzureServices'. */
-    bypass?: NetworkRuleBypassOptions;
-    /** The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated. */
-    defaultAction?: NetworkRuleAction;
-    /** The list of IP address rules. */
-    ipRules?: MhsmipRule[];
-    /** The list of virtual network rules. */
-    virtualNetworkRules?: MhsmVirtualNetworkRule[];
+    readonly updated?: number;
+    /** The expiration time for the new key version. It should be in ISO8601 format. Eg: 'P90D', 'P1Y'. */
+    expiryTime?: string;
 }
-/** A rule governing the accessibility of a managed HSM pool from a specific IP address or IP range. */
-export interface MhsmipRule {
-    /** An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78). */
-    value: string;
+export interface ManagedHsmLifetimeAction {
+    /** The trigger of key rotation policy lifetimeAction. */
+    trigger?: ManagedHsmTrigger;
+    /** The action of key rotation policy lifetimeAction. */
+    action?: ManagedHsmAction;
 }
-/** A rule governing the accessibility of a managed hsm pool from a specific virtual network. */
-export interface MhsmVirtualNetworkRule {
-    /** Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'. */
-    id: string;
+export interface ManagedHsmTrigger {
+    /** The time duration after key creation to rotate the key. It only applies to rotate. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
+    timeAfterCreate?: string;
+    /** The time duration before key expiring to rotate or notify. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
+    timeBeforeExpiry?: string;
 }
-/** A region that this managed HSM Pool has been extended to. */
-export interface MhsmGeoReplicatedRegion {
-    /** Name of the geo replicated region. */
-    name?: string;
-    /**
-     * Provisioning state of the geo replicated region.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly provisioningState?: GeoReplicationRegionProvisioningState;
-    /** A boolean value that indicates whether the region is the primary region or a secondary region. */
-    isPrimary?: boolean;
+export interface ManagedHsmAction {
+    /** The type of action. */
+    type?: KeyRotationPolicyActionType;
 }
-/** Private endpoint connection item. */
-export interface MhsmPrivateEndpointConnectionItem {
-    /** Id of private endpoint connection. */
-    id?: string;
-    /** Modified whenever there is a change in the state of private endpoint connection. */
-    etag?: string;
-    /** Properties of the private endpoint object. */
-    privateEndpoint?: MhsmPrivateEndpoint;
-    /** Approval state of the private link connection. */
-    privateLinkServiceConnectionState?: MhsmPrivateLinkServiceConnectionState;
-    /** Provisioning state of the private endpoint connection. */
-    provisioningState?: PrivateEndpointConnectionProvisioningState;
+export interface ManagedHsmKeyReleasePolicy {
+    /** Content type and version of key release policy */
+    contentType?: string;
+    /** Blob encoding the policy rules under which the key can be released. */
+    data?: Uint8Array;
 }
-/** Private endpoint object properties. */
-export interface MhsmPrivateEndpoint {
-    /**
-     * Full identifier of the private endpoint resource.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly id?: string;
+/** The parameters used to create a key. */
+export interface ManagedHsmKeyCreateParameters {
+    /** The tags that will be assigned to the key. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** The properties of the key to be created. */
+    properties: ManagedHsmKeyProperties;
 }
-/** An object that represents the approval state of the private link connection. */
-export interface MhsmPrivateLinkServiceConnectionState {
-    /** Indicates whether the connection has been approved, rejected or removed by the key vault owner. */
-    status?: PrivateEndpointServiceConnectionStatus;
-    /** The reason for approval or rejection. */
-    description?: string;
-    /** A message indicating if changes on the service provider require any updates on the consumer. */
-    actionsRequired?: ActionsRequired;
+/** List of private endpoint connections associated with a managed HSM Pools */
+export interface MhsmPrivateEndpointConnectionsListResult {
+    /** The MhsmPrivateEndpointConnection items on this page */
+    value: MhsmPrivateEndpointConnection[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
-/** The security domain properties of the managed hsm. */
-export interface ManagedHSMSecurityDomainProperties {
-    /**
-     * Activation Status
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly activationStatus?: ActivationStatus;
-    /**
-     * Activation Status Message.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly activationStatusMessage?: string;
+/** A list of private link resources */
+export interface MhsmPrivateLinkResourceListResult {
+    /** Array of private link resources */
+    value?: MhsmPrivateLinkResource[];
 }
 /** Managed HSM resource */
 export interface ManagedHsmResource {
@@ -806,261 +761,258 @@ export interface ManagedHsmResource {
     /** Managed service identity (system assigned and/or user assigned identities) */
     identity?: ManagedServiceIdentity;
 }
-/** SKU details */
-export interface ManagedHsmSku {
-    /** SKU Family of the managed HSM Pool */
-    family: ManagedHsmSkuFamily;
-    /** SKU of the managed HSM Pool */
-    name: ManagedHsmSkuName;
+/** List of regions associated with a managed HSM Pools */
+export interface MhsmRegionsListResult {
+    /** The MhsmGeoReplicatedRegion items on this page */
+    value: MhsmGeoReplicatedRegion[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
-/** Managed service identity (system assigned and/or user assigned identities) */
-export interface ManagedServiceIdentity {
-    /**
-     * The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly principalId?: string;
-    /**
-     * The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly tenantId?: string;
-    /** Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed). */
-    type: ManagedServiceIdentityType;
-    /** The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests. */
-    userAssignedIdentities?: {
-        [propertyName: string]: UserAssignedIdentity | null;
+/** Parameters for creating or updating a vault */
+export interface VaultCreateOrUpdateParameters {
+    /** The supported Azure location where the key vault should be created. */
+    location: string;
+    /** The tags that will be assigned to the key vault. */
+    tags?: {
+        [propertyName: string]: string;
     };
+    /** Properties of the vault */
+    properties: VaultProperties;
 }
-/** User assigned identity properties */
-export interface UserAssignedIdentity {
-    /**
-     * The principal ID of the assigned identity.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly principalId?: string;
-    /**
-     * The client ID of the assigned identity.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly clientId?: string;
+/** Parameters for creating or updating a vault */
+export interface VaultPatchParameters {
+    /** The tags that will be assigned to the key vault. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** Properties of the vault */
+    properties?: VaultPatchProperties;
 }
-/** The error exception. */
-export interface ManagedHsmError {
+/** Properties of the vault */
+export interface VaultPatchProperties {
+    /** The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. */
+    tenantId?: string;
+    /** SKU details */
+    sku?: Sku;
+    /** An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
+    accessPolicies?: AccessPolicyEntry[];
+    /** Property to specify whether Azure Virtual Machines are permitted to retrieve certificates stored as secrets from the key vault. */
+    enabledForDeployment?: boolean;
+    /** Property to specify whether Azure Disk Encryption is permitted to retrieve secrets from the vault and unwrap keys. */
+    enabledForDiskEncryption?: boolean;
+    /** Property to specify whether Azure Resource Manager is permitted to retrieve secrets from the key vault. */
+    enabledForTemplateDeployment?: boolean;
+    /** Property to specify whether the 'soft delete' functionality is enabled for this key vault. Once set to true, it cannot be reverted to false. */
+    enableSoftDelete?: boolean;
+    /** Property that controls how data actions are authorized. When true, the key vault will use Role Based Access Control (RBAC) for authorization of data actions, and the access policies specified in vault properties will be  ignored. When false, the key vault will use the access policies specified in vault properties, and any policy stored on Azure Resource Manager will be ignored. If null or not specified, the value of this property will not change. */
+    enableRbacAuthorization?: boolean;
+    /** softDelete data retention days. It accepts >=7 and <=90. */
+    softDeleteRetentionInDays?: number;
+    /** The vault's create mode to indicate whether the vault need to be recovered or not. */
+    createMode?: CreateMode;
+    /** Property specifying whether protection against purge is enabled for this vault. Setting this property to true activates protection against purge for this vault and its content - only the Key Vault service may initiate a hard, irrecoverable deletion. The setting is effective only if soft delete is also enabled. Enabling this functionality is irreversible - that is, the property does not accept false as its value. */
+    enablePurgeProtection?: boolean;
+    /** A collection of rules governing the accessibility of the vault from specific network locations. */
+    networkAcls?: NetworkRuleSet;
+    /** Property to specify whether the vault will accept traffic from public internet. If set to 'disabled' all traffic except private endpoint traffic and that that originates from trusted services will be blocked. This will override the set firewall rules, meaning that even if the firewall rules are present we will not honor the rules. */
+    publicNetworkAccess?: string;
+}
+/** Parameters for updating the access policy in a vault */
+export interface VaultAccessPolicyParameters {
     /**
-     * The server error.
+     * The resource id of the access policy.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly error?: ErrorModel;
-}
-/** The server error. */
-export interface ErrorModel {
+    readonly id?: string;
     /**
-     * The error code.
+     * The resource name of the access policy.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly code?: string;
+    readonly name?: string;
     /**
-     * The error message.
+     * The resource name of the access policy.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly message?: string;
+    readonly type?: string;
     /**
-     * The inner error, contains a more specific error code.
+     * The resource type of the access policy.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly innerError?: ErrorModel;
-}
-/** List of managed HSM Pools */
-export interface ManagedHsmListResult {
-    /** The list of managed HSM Pools. */
-    value?: ManagedHsm[];
-    /** The URL to get the next set of managed HSM Pools. */
-    nextLink?: string;
+    readonly location?: string;
+    /** Properties of the access policy */
+    properties: VaultAccessPolicyProperties;
 }
-/** List of private endpoint connections associated with a managed HSM Pools */
-export interface MhsmPrivateEndpointConnectionsListResult {
-    /** The private endpoint connection associated with a managed HSM Pools. */
-    value?: MhsmPrivateEndpointConnection[];
-    /** The URL to get the next set of managed HSM Pools. */
-    nextLink?: string;
+/** Properties of the vault access policy */
+export interface VaultAccessPolicyProperties {
+    /** An array of 0 to 16 identities that have access to the key vault. All identities in the array must use the same tenant ID as the key vault's tenant ID. */
+    accessPolicies: AccessPolicyEntry[];
 }
-/** List of deleted managed HSM Pools */
-export interface DeletedManagedHsmListResult {
-    /** The list of deleted managed HSM Pools. */
-    value?: DeletedManagedHsm[];
-    /** The URL to get the next set of deleted managed HSM Pools. */
+/** The response of a Key list operation. */
+export interface KeyListResult {
+    /** The Key items on this page */
+    value: Key[];
+    /** The link to the next page of items */
     nextLink?: string;
 }
-export interface DeletedManagedHsm {
-    /**
-     * The Azure Resource Manager resource ID for the deleted managed HSM Pool.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly id?: string;
+/** The properties of the key. */
+export interface KeyProperties {
+    /** The attributes of the key. */
+    attributes?: KeyAttributes;
+    /** The type of the key. For valid values, see JsonWebKeyType. */
+    kty?: JsonWebKeyType;
+    keyOps?: JsonWebKeyOperation[];
+    /** The key size in bits. For example: 2048, 3072, or 4096 for RSA. Default for RSA and RSA-HSM keys is 2048. Exception made for bring your own key (BYOK), key exchange keys default to 4096. */
+    keySize?: number;
+    /** The elliptic curve name. For valid values, see JsonWebKeyCurveName. Default for EC and EC-HSM keys is P-256 */
+    curveName?: JsonWebKeyCurveName;
     /**
-     * The name of the managed HSM Pool.
+     * The URI to retrieve the current version of the key.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly name?: string;
+    readonly keyUri?: string;
     /**
-     * The resource type of the managed HSM Pool.
+     * The URI to retrieve the specific version of the key.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly type?: string;
-    /** Properties of the deleted managed HSM */
-    properties?: DeletedManagedHsmProperties;
+    readonly keyUriWithVersion?: string;
+    /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
+    rotationPolicy?: RotationPolicy;
+    /** Key release policy in response. It will be used for both output and input. Omitted if empty */
+    releasePolicy?: KeyReleasePolicy;
 }
-/** Properties of the deleted managed HSM. */
-export interface DeletedManagedHsmProperties {
-    /**
-     * The resource id of the original managed HSM.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly mhsmId?: string;
+/** The object attributes managed by the Azure Key Vault service. */
+export interface KeyAttributes {
+    /** Determines whether or not the object is enabled. */
+    enabled?: boolean;
+    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
+    notBefore?: number;
+    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
+    expires?: number;
     /**
-     * The location of the original managed HSM.
+     * Creation time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly location?: string;
+    readonly created?: number;
     /**
-     * The deleted date.
+     * Last updated time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly deletionDate?: Date;
+    readonly updated?: number;
     /**
-     * The scheduled purged date.
+     * The deletion recovery level currently in effect for the object. If it contains 'Purgeable', then the object can be permanently deleted by a privileged user; otherwise, only the system can purge the object at the end of the retention interval.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly scheduledPurgeDate?: Date;
+    readonly recoveryLevel?: DeletionRecoveryLevel;
+    /** Indicates if the private key can be exported. */
+    exportable?: boolean;
+}
+export interface RotationPolicy {
+    /** The attributes of key rotation policy. */
+    attributes?: KeyRotationPolicyAttributes;
+    /** The lifetimeActions for key rotation action. */
+    lifetimeActions?: LifetimeAction[];
+}
+export interface KeyRotationPolicyAttributes {
     /**
-     * Purge protection status of the original managed HSM.
+     * Creation time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly purgeProtectionEnabled?: boolean;
+    readonly created?: number;
     /**
-     * Tags of the original managed HSM.
+     * Last updated time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly tags?: {
+    readonly updated?: number;
+    /** The expiration time for the new key version. It should be in ISO8601 format. Eg: 'P90D', 'P1Y'. */
+    expiryTime?: string;
+}
+export interface LifetimeAction {
+    /** The trigger of key rotation policy lifetimeAction. */
+    trigger?: Trigger;
+    /** The action of key rotation policy lifetimeAction. */
+    action?: Action;
+}
+export interface Trigger {
+    /** The time duration after key creation to rotate the key. It only applies to rotate. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
+    timeAfterCreate?: string;
+    /** The time duration before key expiring to rotate or notify. It will be in ISO 8601 duration format. Eg: 'P90D', 'P1Y'. */
+    timeBeforeExpiry?: string;
+}
+export interface Action {
+    /** The type of action. */
+    type?: KeyRotationPolicyActionType;
+}
+export interface KeyReleasePolicy {
+    /** Content type and version of key release policy */
+    contentType?: string;
+    /** Blob encoding the policy rules under which the key can be released. */
+    data?: Uint8Array;
+}
+/** The parameters used to create a key. */
+export interface KeyCreateParameters {
+    /** The tags that will be assigned to the key. */
+    tags?: {
         [propertyName: string]: string;
     };
+    /** The properties of the key to be created. */
+    properties: KeyProperties;
+}
+/** The response of a PrivateEndpointConnection list operation. */
+export interface PrivateEndpointConnectionListResult {
+    /** The PrivateEndpointConnection items on this page */
+    value: PrivateEndpointConnection[];
+    /** The link to the next page of items */
+    nextLink?: string;
 }
 /** A list of private link resources */
-export interface MhsmPrivateLinkResourceListResult {
+export interface PrivateLinkResourceListResult {
     /** Array of private link resources */
-    value?: MhsmPrivateLinkResource[];
+    value?: PrivateLinkResource[];
 }
-/** List of regions associated with a managed HSM Pools */
-export interface MhsmRegionsListResult {
-    /** The region associated with a managed HSM Pools. */
-    value?: MhsmGeoReplicatedRegion[];
-    /** The URL to get the next set of managed HSM Pools. */
+/** The response of a Secret list operation. */
+export interface SecretListResult {
+    /** The Secret items on this page */
+    value: Secret[];
+    /** The link to the next page of items */
     nextLink?: string;
 }
-/** The parameters used to check the availability of the managed hsm name. */
-export interface CheckMhsmNameAvailabilityParameters {
-    /** The managed hsm name. */
-    name: string;
-}
-/** The CheckMhsmNameAvailability operation response. */
-export interface CheckMhsmNameAvailabilityResult {
+/** Properties of the secret */
+export interface SecretProperties {
+    /** The value of the secret. NOTE: 'value' will never be returned from the service, as APIs using this model are is intended for internal use in ARM deployments. Users should use the data-plane REST service for interaction with vault secrets. */
+    value?: string;
+    /** The content type of the secret. */
+    contentType?: string;
+    /** The attributes of the secret. */
+    attributes?: SecretAttributes;
     /**
-     * A boolean value that indicates whether the name is available for you to use. If true, the name is available. If false, the name has already been taken or is invalid and cannot be used.
+     * The URI to retrieve the current version of the secret.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly nameAvailable?: boolean;
+    readonly secretUri?: string;
     /**
-     * The reason that a managed hsm name could not be used. The reason element is only returned if NameAvailable is false.
+     * The URI to retrieve the specific version of the secret.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly reason?: Reason;
+    readonly secretUriWithVersion?: string;
+}
+/** The object attributes managed by the KeyVault service. */
+export interface Attributes {
+    /** Determines whether the object is enabled. */
+    enabled?: boolean;
+    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
+    notBefore?: Date;
+    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
+    expires?: Date;
     /**
-     * An error message explaining the Reason value in more detail.
+     * Creation time in seconds since 1970-01-01T00:00:00Z.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly message?: string;
-}
-/** Result of the request to list Storage operations. It contains a list of operations and a URL link to get the next set of results. */
-export interface OperationListResult {
-    /** List of Storage operations supported by the Storage resource provider. */
-    value?: Operation[];
-    /** The URL to get the next set of operations. */
-    nextLink?: string;
-}
-/** Key Vault REST API operation definition. */
-export interface Operation {
-    /** Operation name: {provider}/{resource}/{operation} */
-    name?: string;
-    /** Display metadata associated with the operation. */
-    display?: OperationDisplay;
-    /** The origin of operations. */
-    origin?: string;
-    /** Property to specify whether the action is a data action. */
-    isDataAction?: boolean;
-    /** One property of operation, include metric specifications. */
-    serviceSpecification?: ServiceSpecification;
-}
-/** Display metadata associated with the operation. */
-export interface OperationDisplay {
-    /** Service provider: Microsoft Key Vault. */
-    provider?: string;
-    /** Resource on which the operation is performed etc. */
-    resource?: string;
-    /** Type of operation: get, read, delete, etc. */
-    operation?: string;
-    /** Description of operation. */
-    description?: string;
-}
-/** One property of operation, include log specifications. */
-export interface ServiceSpecification {
-    /** Log specifications of operation. */
-    logSpecifications?: LogSpecification[];
-    /** Metric specifications of operation. */
-    metricSpecifications?: MetricSpecification[];
-}
-/** Log specification of operation. */
-export interface LogSpecification {
-    /** Name of log specification. */
-    name?: string;
-    /** Display name of log specification. */
-    displayName?: string;
-    /** Blob duration of specification. */
-    blobDuration?: string;
-}
-/** Metric specification of operation. */
-export interface MetricSpecification {
-    /** Name of metric specification. */
-    name?: string;
-    /** Display name of metric specification. */
-    displayName?: string;
-    /** Display description of metric specification. */
-    displayDescription?: string;
-    /** The metric unit. Possible values include: 'Bytes', 'Count', 'Milliseconds'. */
-    unit?: string;
-    /** The metric aggregation type. Possible values include: 'Average', 'Count', 'Total'. */
-    aggregationType?: string;
-    /** The supported aggregation types for the metrics. */
-    supportedAggregationTypes?: string[];
-    /** The supported time grain types for the metrics. */
-    supportedTimeGrainTypes?: string[];
-    /** The metric lock aggregation type. */
-    lockAggregationType?: string;
-    /** The dimensions of metric */
-    dimensions?: DimensionProperties[];
-    /** Property to specify whether to fill gap with zero. */
-    fillGapWithZero?: boolean;
-    /** The internal metric name. */
-    internalMetricName?: string;
-}
-/** Type of operation: get, read, delete, etc. */
-export interface DimensionProperties {
-    /** Name of dimension. */
-    name?: string;
-    /** Display name of dimension. */
-    displayName?: string;
-    /** Property to specify whether the dimension should be exported for Shoebox. */
-    toBeExportedForShoebox?: boolean;
+    readonly created?: Date;
+    /**
+     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly updated?: Date;
 }
 /** Parameters for creating or updating a secret */
 export interface SecretCreateOrUpdateParameters {
@@ -1071,73 +1023,129 @@ export interface SecretCreateOrUpdateParameters {
     /** Properties of the secret */
     properties: SecretProperties;
 }
+/** Parameters for patching a secret */
+export interface SecretPatchParameters {
+    /** The tags that will be assigned to the secret. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** Properties of the secret */
+    properties?: SecretPatchProperties;
+}
 /** Properties of the secret */
-export interface SecretProperties {
-    /** The value of the secret. NOTE: 'value' will never be returned from the service, as APIs using this model are is intended for internal use in ARM deployments. Users should use the data-plane REST service for interaction with vault secrets. */
+export interface SecretPatchProperties {
+    /** The value of the secret. */
     value?: string;
     /** The content type of the secret. */
     contentType?: string;
     /** The attributes of the secret. */
     attributes?: SecretAttributes;
+}
+/** The list of vault resources. */
+export interface ResourceListResult {
+    /** The list of vault resources. */
+    value: TrackedResource[];
+    /** The URL to get the next set of vault resources. */
+    nextLink?: string;
+}
+/** The resource model definition for a Azure Resource Manager proxy resource. It will not have tags and a location */
+export interface ProxyResource extends Resource {
+}
+/** Resource information with extended details. */
+export interface ManagedHsm extends Resource {
+    /** Properties of the managed HSM */
+    properties?: ManagedHsmProperties;
+    /** Resource tags. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** The geo-location where the resource lives */
+    location?: string;
+    /** SKU details */
+    sku?: ManagedHsmSku;
+    /** Managed service identity */
+    identity?: ManagedServiceIdentity;
+}
+/** Private endpoint connection resource. */
+export interface MhsmPrivateEndpointConnection extends Resource {
+    /** Resource tags. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** The geo-location where the resource lives */
+    location?: string;
+    /** SKU details */
+    sku?: ManagedHsmSku;
+    /** Managed service identity */
+    identity?: ManagedServiceIdentity;
+    /** Modified whenever there is a change in the state of private endpoint connection. */
+    etag?: string;
+    /** Properties of the private endpoint object. */
+    privateEndpoint?: MhsmPrivateEndpoint;
+    /** Approval state of the private link connection. */
+    privateLinkServiceConnectionState?: MhsmPrivateLinkServiceConnectionState;
     /**
-     * The URI to retrieve the current version of the secret.
-     * NOTE: This property will not be serialized. It can only be populated by the server.
-     */
-    readonly secretUri?: string;
-    /**
-     * The URI to retrieve the specific version of the secret.
+     * Provisioning state of the private endpoint connection.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly secretUriWithVersion?: string;
+    readonly provisioningState?: PrivateEndpointConnectionProvisioningState;
 }
-/** The object attributes managed by the KeyVault service. */
-export interface Attributes {
-    /** Determines whether the object is enabled. */
-    enabled?: boolean;
-    /** Not before date in seconds since 1970-01-01T00:00:00Z. */
-    notBefore?: Date;
-    /** Expiry date in seconds since 1970-01-01T00:00:00Z. */
-    expires?: Date;
+/** The resource model definition for an Azure Resource Manager tracked top level resource which has 'tags' and a 'location' */
+export interface TrackedResource extends Resource {
+    /** Resource tags. */
+    tags?: {
+        [propertyName: string]: string;
+    };
+    /** The geo-location where the resource lives */
+    location: string;
+}
+/** A private link resource */
+export interface MhsmPrivateLinkResource extends ManagedHsmResource {
     /**
-     * Creation time in seconds since 1970-01-01T00:00:00Z.
+     * Group identifier of private link resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly created?: Date;
+    readonly groupId?: string;
     /**
-     * Last updated time in seconds since 1970-01-01T00:00:00Z.
+     * Required member names of private link resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly updated?: Date;
+    readonly requiredMembers?: string[];
+    /** Required DNS zone names of the the private link resource. */
+    requiredZoneNames?: string[];
 }
-/** Parameters for patching a secret */
-export interface SecretPatchParameters {
-    /** The tags that will be assigned to the secret. */
+/** The secret management attributes. */
+export interface SecretAttributes extends Attributes {
+}
+/** Concrete proxy resource types can be created by aliasing this type using a specific property type. */
+export interface DeletedManagedHsm extends ProxyResource {
+    /** Properties of the deleted managed HSM */
+    properties?: DeletedManagedHsmProperties;
+}
+/** Deleted vault information with extended details. */
+export interface DeletedVault extends ProxyResource {
+    /** Properties of the vault */
+    properties?: DeletedVaultProperties;
+}
+/** Resource information with extended details. */
+export interface Vault extends ProxyResource {
+    /** Properties of the vault */
+    properties: VaultProperties;
+    /** Azure location of the key vault resource. */
+    location?: string;
+    /** Tags assigned to the key vault resource. */
     tags?: {
         [propertyName: string]: string;
     };
-    /** Properties of the secret */
-    properties?: SecretPatchProperties;
-}
-/** Properties of the secret */
-export interface SecretPatchProperties {
-    /** The value of the secret. */
-    value?: string;
-    /** The content type of the secret. */
-    contentType?: string;
-    /** The attributes of the secret. */
-    attributes?: SecretAttributes;
-}
-/** List of secrets */
-export interface SecretListResult {
-    /** The list of secrets. */
-    value?: Secret[];
-    /** The URL to get the next set of secrets. */
-    nextLink?: string;
 }
 /** The key resource. */
-export interface Key extends Resource {
+export interface ManagedHsmKey extends ProxyResource {
+    /** Resource tags */
+    tags?: {
+        [propertyName: string]: string;
+    };
     /** The attributes of the key. */
-    attributes?: KeyAttributes;
+    attributes?: ManagedHsmKeyAttributes;
     /** The type of the key. For valid values, see JsonWebKeyType. */
     kty?: JsonWebKeyType;
     keyOps?: JsonWebKeyOperation[];
@@ -1156,45 +1164,26 @@ export interface Key extends Resource {
      */
     readonly keyUriWithVersion?: string;
     /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
-    rotationPolicy?: RotationPolicy;
+    rotationPolicy?: ManagedHsmRotationPolicy;
     /** Key release policy in response. It will be used for both output and input. Omitted if empty */
-    releasePolicy?: KeyReleasePolicy;
-}
-/** Private endpoint connection resource. */
-export interface PrivateEndpointConnection extends Resource {
-    /** Modified whenever there is a change in the state of private endpoint connection. */
-    etag?: string;
-    /** Properties of the private endpoint object. */
-    privateEndpoint?: PrivateEndpoint;
-    /** Approval state of the private link connection. */
-    privateLinkServiceConnectionState?: PrivateLinkServiceConnectionState;
-    /** Provisioning state of the private endpoint connection. */
-    provisioningState?: PrivateEndpointConnectionProvisioningState;
+    releasePolicy?: ManagedHsmKeyReleasePolicy;
 }
-/** A private link resource */
-export interface PrivateLinkResource extends Resource {
+/** The key resource. */
+export interface Key extends ProxyResource {
     /**
-     * Group identifier of private link resource.
+     * The supported Azure location where the managed HSM Pool should be created.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly groupId?: string;
+    readonly location?: string;
     /**
-     * Required member names of private link resource.
+     * Resource tags
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly requiredMembers?: string[];
-    /** Required DNS zone names of the the private link resource. */
-    requiredZoneNames?: string[];
-}
-/** Resource information with extended details. */
-export interface Secret extends Resource {
-    /** Properties of the secret */
-    properties: SecretProperties;
-}
-/** The key resource. */
-export interface ManagedHsmKey extends ProxyResourceWithoutSystemData {
+    readonly tags?: {
+        [propertyName: string]: string;
+    };
     /** The attributes of the key. */
-    attributes?: ManagedHsmKeyAttributes;
+    attributes?: KeyAttributes;
     /** The type of the key. For valid values, see JsonWebKeyType. */
     kty?: JsonWebKeyType;
     keyOps?: JsonWebKeyOperation[];
@@ -1213,221 +1202,452 @@ export interface ManagedHsmKey extends ProxyResourceWithoutSystemData {
      */
     readonly keyUriWithVersion?: string;
     /** Key rotation policy in response. It will be used for both output and input. Omitted if empty */
-    rotationPolicy?: ManagedHsmRotationPolicy;
+    rotationPolicy?: RotationPolicy;
     /** Key release policy in response. It will be used for both output and input. Omitted if empty */
-    releasePolicy?: ManagedHsmKeyReleasePolicy;
-}
-/** Resource information with extended details. */
-export interface ManagedHsm extends ManagedHsmResource {
-    /** Properties of the managed HSM */
-    properties?: ManagedHsmProperties;
+    releasePolicy?: KeyReleasePolicy;
 }
 /** Private endpoint connection resource. */
-export interface MhsmPrivateEndpointConnection extends ManagedHsmResource {
-    /** Modified whenever there is a change in the state of private endpoint connection. */
-    etag?: string;
-    /** Properties of the private endpoint object. */
-    privateEndpoint?: MhsmPrivateEndpoint;
-    /** Approval state of the private link connection. */
-    privateLinkServiceConnectionState?: MhsmPrivateLinkServiceConnectionState;
-    /** Provisioning state of the private endpoint connection. */
-    provisioningState?: PrivateEndpointConnectionProvisioningState;
-}
-/** A private link resource */
-export interface MhsmPrivateLinkResource extends ManagedHsmResource {
+export interface PrivateEndpointConnection extends ProxyResource {
     /**
-     * Group identifier of private link resource.
+     * Azure location of the key vault resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly groupId?: string;
+    readonly location?: string;
     /**
-     * Required member names of private link resource.
+     * Tags assigned to the key vault resource.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
-    readonly requiredMembers?: string[];
-    /** Required DNS zone names of the the private link resource. */
-    requiredZoneNames?: string[];
+    readonly tags?: {
+        [propertyName: string]: string;
+    };
+    /** Modified whenever there is a change in the state of private endpoint connection. */
+    etag?: string;
+    /** Properties of the private endpoint object. */
+    privateEndpoint?: PrivateEndpoint;
+    /** Approval state of the private link connection. */
+    privateLinkServiceConnectionState?: PrivateLinkServiceConnectionState;
+    /**
+     * Provisioning state of the private endpoint connection.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly provisioningState?: PrivateEndpointConnectionProvisioningState;
 }
-/** The secret management attributes. */
-export interface SecretAttributes extends Attributes {
+/** A private link resource */
+export interface PrivateLinkResource extends ProxyResource {
+    /**
+     * Azure location of the key vault resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly location?: string;
+    /**
+     * Tags assigned to the key vault resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly tags?: {
+        [propertyName: string]: string;
+    };
+    /**
+     * Group identifier of private link resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly groupId?: string;
+    /**
+     * Required member names of private link resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly requiredMembers?: string[];
+    /** Required DNS zone names of the the private link resource. */
+    requiredZoneNames?: string[];
 }
-/** Defines headers for PrivateEndpointConnections_put operation. */
-export interface PrivateEndpointConnectionsPutHeaders {
-    /** (specified only if operation does not finish synchronously) The recommended number of seconds to wait before calling the URI specified in Azure-AsyncOperation. */
-    retryAfter?: number;
-    /** (specified only if operation does not finish synchronously) The URI to poll for completion status. The response of this URI may be synchronous or asynchronous. */
-    azureAsyncOperation?: string;
+/** Resource information with extended details. */
+export interface Secret extends ProxyResource {
+    /** Properties of the secret */
+    properties: SecretProperties;
+    /**
+     * Azure location of the key vault resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly location?: string;
+    /**
+     * Tags assigned to the key vault resource.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly tags?: {
+        [propertyName: string]: string;
+    };
 }
-/** Defines headers for PrivateEndpointConnections_delete operation. */
-export interface PrivateEndpointConnectionsDeleteHeaders {
-    /** The recommended number of seconds to wait before calling the URI specified in the location header. */
-    retryAfter?: number;
-    /** The URI to poll for completion status. */
+/** Defines headers for ManagedHsms_purgeDeleted operation. */
+export interface ManagedHsmsPurgeDeletedHeaders {
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
 /** Defines headers for ManagedHsms_createOrUpdate operation. */
 export interface ManagedHsmsCreateOrUpdateHeaders {
-    /** The URI to poll for completion status. */
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
 /** Defines headers for ManagedHsms_update operation. */
 export interface ManagedHsmsUpdateHeaders {
-    /** The URI to poll for completion status. */
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
 /** Defines headers for ManagedHsms_delete operation. */
 export interface ManagedHsmsDeleteHeaders {
-    /** The URI to poll for completion status. */
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
-/** Defines headers for ManagedHsms_purgeDeleted operation. */
-export interface ManagedHsmsPurgeDeletedHeaders {
-    /** The URI to poll for completion status. */
+/** Defines headers for Vaults_purgeDeleted operation. */
+export interface VaultsPurgeDeletedHeaders {
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
+    location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
+}
+/** Defines headers for Vaults_createOrUpdate operation. */
+export interface VaultsCreateOrUpdateHeaders {
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
 /** Defines headers for MhsmPrivateEndpointConnections_put operation. */
 export interface MhsmPrivateEndpointConnectionsPutHeaders {
-    /** (specified only if operation does not finish synchronously) The recommended number of seconds to wait before calling the URI specified in Azure-AsyncOperation. */
-    retryAfter?: number;
     /** (specified only if operation does not finish synchronously) The URI to poll for completion status. The response of this URI may be synchronous or asynchronous. */
     azureAsyncOperation?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
 /** Defines headers for MhsmPrivateEndpointConnections_delete operation. */
 export interface MhsmPrivateEndpointConnectionsDeleteHeaders {
-    /** The URI to poll for completion status. */
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
     location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
 }
-/** Known values of {@link DeletionRecoveryLevel} that the service accepts. */
-export declare enum KnownDeletionRecoveryLevel {
-    /** Purgeable */
-    Purgeable = "Purgeable",
-    /** RecoverablePurgeable */
-    RecoverablePurgeable = "Recoverable+Purgeable",
-    /** Recoverable */
-    Recoverable = "Recoverable",
-    /** RecoverableProtectedSubscription */
-    RecoverableProtectedSubscription = "Recoverable+ProtectedSubscription"
+/** Defines headers for PrivateEndpointConnections_put operation. */
+export interface PrivateEndpointConnectionsPutHeaders {
+    /** (specified only if operation does not finish synchronously) The URI to poll for completion status. The response of this URI may be synchronous or asynchronous. */
+    azureAsyncOperation?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
+}
+/** Defines headers for PrivateEndpointConnections_delete operation. */
+export interface PrivateEndpointConnectionsDeleteHeaders {
+    /** The Location header contains the URL where the status of the long running operation can be checked. */
+    location?: string;
+    /** The Retry-After header can indicate how long the client should wait before polling the operation status. */
+    retryAfter?: number;
+}
+/** Known values of {@link Reason} that the service accepts. */
+export declare enum KnownReason {
+    /** AccountNameInvalid */
+    AccountNameInvalid = "AccountNameInvalid",
+    /** AlreadyExists */
+    AlreadyExists = "AlreadyExists"
 }
 /**
- * Defines values for DeletionRecoveryLevel. \
- * {@link KnownDeletionRecoveryLevel} can be used interchangeably with DeletionRecoveryLevel,
+ * Defines values for Reason. \
+ * {@link KnownReason} can be used interchangeably with Reason,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **Purgeable** \
- * **Recoverable+Purgeable** \
- * **Recoverable** \
- * **Recoverable+ProtectedSubscription**
+ * **AccountNameInvalid** \
+ * **AlreadyExists**
  */
-export type DeletionRecoveryLevel = string;
-/** Known values of {@link JsonWebKeyType} that the service accepts. */
-export declare enum KnownJsonWebKeyType {
-    /** EC */
-    EC = "EC",
-    /** ECHSM */
-    ECHSM = "EC-HSM",
-    /** RSA */
-    RSA = "RSA",
-    /** RSAHSM */
-    RSAHSM = "RSA-HSM"
+export type Reason = string;
+/** Known values of {@link CreatedByType} that the service accepts. */
+export declare enum KnownCreatedByType {
+    /** User */
+    User = "User",
+    /** Application */
+    Application = "Application",
+    /** ManagedIdentity */
+    ManagedIdentity = "ManagedIdentity",
+    /** Key */
+    Key = "Key"
 }
 /**
- * Defines values for JsonWebKeyType. \
- * {@link KnownJsonWebKeyType} can be used interchangeably with JsonWebKeyType,
+ * Defines values for CreatedByType. \
+ * {@link KnownCreatedByType} can be used interchangeably with CreatedByType,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **EC** \
- * **EC-HSM** \
- * **RSA** \
- * **RSA-HSM**
+ * **User** \
+ * **Application** \
+ * **ManagedIdentity** \
+ * **Key**
  */
-export type JsonWebKeyType = string;
-/** Known values of {@link JsonWebKeyOperation} that the service accepts. */
-export declare enum KnownJsonWebKeyOperation {
-    /** Encrypt */
-    Encrypt = "encrypt",
-    /** Decrypt */
-    Decrypt = "decrypt",
-    /** Sign */
-    Sign = "sign",
-    /** Verify */
-    Verify = "verify",
-    /** WrapKey */
-    WrapKey = "wrapKey",
-    /** UnwrapKey */
-    UnwrapKey = "unwrapKey",
-    /** Import */
-    Import = "import",
-    /** Release */
-    Release = "release"
+export type CreatedByType = string;
+/** Known values of {@link ProvisioningState} that the service accepts. */
+export declare enum KnownProvisioningState {
+    /** The managed HSM Pool has been full provisioned. */
+    Succeeded = "Succeeded",
+    /** The managed HSM Pool is currently being provisioned. */
+    Provisioning = "Provisioning",
+    /** Provisioning of the managed HSM Pool has failed. */
+    Failed = "Failed",
+    /** The managed HSM Pool is currently being updated. */
+    Updating = "Updating",
+    /** The managed HSM Pool is currently being deleted. */
+    Deleting = "Deleting",
+    /** The managed HSM pool is ready for normal use. */
+    Activated = "Activated",
+    /** The managed HSM pool is waiting for a security domain restore action. */
+    SecurityDomainRestore = "SecurityDomainRestore",
+    /** The managed HSM pool is being restored from full HSM backup. */
+    Restoring = "Restoring"
 }
 /**
- * Defines values for JsonWebKeyOperation. \
- * {@link KnownJsonWebKeyOperation} can be used interchangeably with JsonWebKeyOperation,
+ * Defines values for ProvisioningState. \
+ * {@link KnownProvisioningState} can be used interchangeably with ProvisioningState,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **encrypt** \
- * **decrypt** \
- * **sign** \
- * **verify** \
- * **wrapKey** \
- * **unwrapKey** \
- * **import** \
- * **release**
+ * **Succeeded**: The managed HSM Pool has been full provisioned. \
+ * **Provisioning**: The managed HSM Pool is currently being provisioned. \
+ * **Failed**: Provisioning of the managed HSM Pool has failed. \
+ * **Updating**: The managed HSM Pool is currently being updated. \
+ * **Deleting**: The managed HSM Pool is currently being deleted. \
+ * **Activated**: The managed HSM pool is ready for normal use. \
+ * **SecurityDomainRestore**: The managed HSM pool is waiting for a security domain restore action. \
+ * **Restoring**: The managed HSM pool is being restored from full HSM backup.
  */
-export type JsonWebKeyOperation = string;
-/** Known values of {@link JsonWebKeyCurveName} that the service accepts. */
-export declare enum KnownJsonWebKeyCurveName {
-    /** P256 */
-    P256 = "P-256",
-    /** P384 */
-    P384 = "P-384",
-    /** P521 */
-    P521 = "P-521",
-    /** P256K */
-    P256K = "P-256K"
+export type ProvisioningState = string;
+/** Known values of {@link NetworkRuleBypassOptions} that the service accepts. */
+export declare enum KnownNetworkRuleBypassOptions {
+    /** AzureServices */
+    AzureServices = "AzureServices",
+    /** None */
+    None = "None"
 }
 /**
- * Defines values for JsonWebKeyCurveName. \
- * {@link KnownJsonWebKeyCurveName} can be used interchangeably with JsonWebKeyCurveName,
+ * Defines values for NetworkRuleBypassOptions. \
+ * {@link KnownNetworkRuleBypassOptions} can be used interchangeably with NetworkRuleBypassOptions,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **P-256** \
- * **P-384** \
- * **P-521** \
- * **P-256K**
+ * **AzureServices** \
+ * **None**
  */
-export type JsonWebKeyCurveName = string;
-/** Known values of {@link SkuFamily} that the service accepts. */
-export declare enum KnownSkuFamily {
-    /** A */
-    A = "A"
+export type NetworkRuleBypassOptions = string;
+/** Known values of {@link NetworkRuleAction} that the service accepts. */
+export declare enum KnownNetworkRuleAction {
+    /** Allow */
+    Allow = "Allow",
+    /** Deny */
+    Deny = "Deny"
 }
 /**
- * Defines values for SkuFamily. \
- * {@link KnownSkuFamily} can be used interchangeably with SkuFamily,
+ * Defines values for NetworkRuleAction. \
+ * {@link KnownNetworkRuleAction} can be used interchangeably with NetworkRuleAction,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **A**
+ * **Allow** \
+ * **Deny**
  */
-export type SkuFamily = string;
-/** Known values of {@link KeyPermissions} that the service accepts. */
-export declare enum KnownKeyPermissions {
-    /** All */
-    All = "all",
-    /** Encrypt */
-    Encrypt = "encrypt",
-    /** Decrypt */
-    Decrypt = "decrypt",
-    /** WrapKey */
-    WrapKey = "wrapKey",
-    /** UnwrapKey */
-    UnwrapKey = "unwrapKey",
-    /** Sign */
-    Sign = "sign",
-    /** Verify */
-    Verify = "verify",
-    /** Get */
-    Get = "get",
+export type NetworkRuleAction = string;
+/** Known values of {@link GeoReplicationRegionProvisioningState} that the service accepts. */
+export declare enum KnownGeoReplicationRegionProvisioningState {
+    /** Preprovisioning */
+    Preprovisioning = "Preprovisioning",
+    /** Provisioning */
+    Provisioning = "Provisioning",
+    /** Succeeded */
+    Succeeded = "Succeeded",
+    /** Failed */
+    Failed = "Failed",
+    /** Deleting */
+    Deleting = "Deleting",
+    /** Cleanup */
+    Cleanup = "Cleanup"
+}
+/**
+ * Defines values for GeoReplicationRegionProvisioningState. \
+ * {@link KnownGeoReplicationRegionProvisioningState} can be used interchangeably with GeoReplicationRegionProvisioningState,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Preprovisioning** \
+ * **Provisioning** \
+ * **Succeeded** \
+ * **Failed** \
+ * **Deleting** \
+ * **Cleanup**
+ */
+export type GeoReplicationRegionProvisioningState = string;
+/** Known values of {@link PrivateEndpointServiceConnectionStatus} that the service accepts. */
+export declare enum KnownPrivateEndpointServiceConnectionStatus {
+    /** Pending */
+    Pending = "Pending",
+    /** Approved */
+    Approved = "Approved",
+    /** Rejected */
+    Rejected = "Rejected",
+    /** Disconnected */
+    Disconnected = "Disconnected"
+}
+/**
+ * Defines values for PrivateEndpointServiceConnectionStatus. \
+ * {@link KnownPrivateEndpointServiceConnectionStatus} can be used interchangeably with PrivateEndpointServiceConnectionStatus,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Pending** \
+ * **Approved** \
+ * **Rejected** \
+ * **Disconnected**
+ */
+export type PrivateEndpointServiceConnectionStatus = string;
+/** Known values of {@link ActionsRequired} that the service accepts. */
+export declare enum KnownActionsRequired {
+    /** None */
+    None = "None"
+}
+/**
+ * Defines values for ActionsRequired. \
+ * {@link KnownActionsRequired} can be used interchangeably with ActionsRequired,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **None**
+ */
+export type ActionsRequired = string;
+/** Known values of {@link PrivateEndpointConnectionProvisioningState} that the service accepts. */
+export declare enum KnownPrivateEndpointConnectionProvisioningState {
+    /** Succeeded */
+    Succeeded = "Succeeded",
+    /** Creating */
+    Creating = "Creating",
+    /** Updating */
+    Updating = "Updating",
+    /** Deleting */
+    Deleting = "Deleting",
+    /** Failed */
+    Failed = "Failed",
+    /** Disconnected */
+    Disconnected = "Disconnected"
+}
+/**
+ * Defines values for PrivateEndpointConnectionProvisioningState. \
+ * {@link KnownPrivateEndpointConnectionProvisioningState} can be used interchangeably with PrivateEndpointConnectionProvisioningState,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Succeeded** \
+ * **Creating** \
+ * **Updating** \
+ * **Deleting** \
+ * **Failed** \
+ * **Disconnected**
+ */
+export type PrivateEndpointConnectionProvisioningState = string;
+/** Known values of {@link PublicNetworkAccess} that the service accepts. */
+export declare enum KnownPublicNetworkAccess {
+    /** Enabled */
+    Enabled = "Enabled",
+    /** Disabled */
+    Disabled = "Disabled"
+}
+/**
+ * Defines values for PublicNetworkAccess. \
+ * {@link KnownPublicNetworkAccess} can be used interchangeably with PublicNetworkAccess,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Enabled** \
+ * **Disabled**
+ */
+export type PublicNetworkAccess = string;
+/** Known values of {@link ActivationStatus} that the service accepts. */
+export declare enum KnownActivationStatus {
+    /** The managed HSM Pool is active. */
+    Active = "Active",
+    /** The managed HSM Pool is not yet activated. */
+    NotActivated = "NotActivated",
+    /** An unknown error occurred while activating managed hsm. */
+    Unknown = "Unknown",
+    /** Failed to activate managed hsm. */
+    Failed = "Failed"
+}
+/**
+ * Defines values for ActivationStatus. \
+ * {@link KnownActivationStatus} can be used interchangeably with ActivationStatus,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Active**: The managed HSM Pool is active. \
+ * **NotActivated**: The managed HSM Pool is not yet activated. \
+ * **Unknown**: An unknown error occurred while activating managed hsm. \
+ * **Failed**: Failed to activate managed hsm.
+ */
+export type ActivationStatus = string;
+/** Known values of {@link ManagedHsmSkuFamily} that the service accepts. */
+export declare enum KnownManagedHsmSkuFamily {
+    /** B */
+    B = "B",
+    /** C */
+    C = "C"
+}
+/**
+ * Defines values for ManagedHsmSkuFamily. \
+ * {@link KnownManagedHsmSkuFamily} can be used interchangeably with ManagedHsmSkuFamily,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **B** \
+ * **C**
+ */
+export type ManagedHsmSkuFamily = string;
+/** Known values of {@link ManagedServiceIdentityType} that the service accepts. */
+export declare enum KnownManagedServiceIdentityType {
+    /** None */
+    None = "None",
+    /** SystemAssigned */
+    SystemAssigned = "SystemAssigned",
+    /** UserAssigned */
+    UserAssigned = "UserAssigned",
+    /** SystemAssignedUserAssigned */
+    SystemAssignedUserAssigned = "SystemAssigned,UserAssigned"
+}
+/**
+ * Defines values for ManagedServiceIdentityType. \
+ * {@link KnownManagedServiceIdentityType} can be used interchangeably with ManagedServiceIdentityType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **None** \
+ * **SystemAssigned** \
+ * **UserAssigned** \
+ * **SystemAssigned,UserAssigned**
+ */
+export type ManagedServiceIdentityType = string;
+/** Known values of {@link SkuFamily} that the service accepts. */
+export declare enum KnownSkuFamily {
+    /** A */
+    A = "A"
+}
+/**
+ * Defines values for SkuFamily. \
+ * {@link KnownSkuFamily} can be used interchangeably with SkuFamily,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **A**
+ */
+export type SkuFamily = string;
+/** Known values of {@link KeyPermissions} that the service accepts. */
+export declare enum KnownKeyPermissions {
+    /** All */
+    All = "all",
+    /** Encrypt */
+    Encrypt = "encrypt",
+    /** Decrypt */
+    Decrypt = "decrypt",
+    /** WrapKey */
+    WrapKey = "wrapKey",
+    /** UnwrapKey */
+    UnwrapKey = "unwrapKey",
+    /** Sign */
+    Sign = "sign",
+    /** Verify */
+    Verify = "verify",
+    /** Get */
+    Get = "get",
     /** List */
     List = "list",
     /** Create */
@@ -1636,38 +1856,6 @@ export declare enum KnownStoragePermissions {
  * **deletesas**
  */
 export type StoragePermissions = string;
-/** Known values of {@link NetworkRuleBypassOptions} that the service accepts. */
-export declare enum KnownNetworkRuleBypassOptions {
-    /** AzureServices */
-    AzureServices = "AzureServices",
-    /** None */
-    None = "None"
-}
-/**
- * Defines values for NetworkRuleBypassOptions. \
- * {@link KnownNetworkRuleBypassOptions} can be used interchangeably with NetworkRuleBypassOptions,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **AzureServices** \
- * **None**
- */
-export type NetworkRuleBypassOptions = string;
-/** Known values of {@link NetworkRuleAction} that the service accepts. */
-export declare enum KnownNetworkRuleAction {
-    /** Allow */
-    Allow = "Allow",
-    /** Deny */
-    Deny = "Deny"
-}
-/**
- * Defines values for NetworkRuleAction. \
- * {@link KnownNetworkRuleAction} can be used interchangeably with NetworkRuleAction,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **Allow** \
- * **Deny**
- */
-export type NetworkRuleAction = string;
 /** Known values of {@link VaultProvisioningState} that the service accepts. */
 export declare enum KnownVaultProvisioningState {
     /** Succeeded */
@@ -1684,435 +1872,169 @@ export declare enum KnownVaultProvisioningState {
  * **RegisteringDns**
  */
 export type VaultProvisioningState = string;
-/** Known values of {@link PrivateEndpointServiceConnectionStatus} that the service accepts. */
-export declare enum KnownPrivateEndpointServiceConnectionStatus {
-    /** Pending */
-    Pending = "Pending",
-    /** Approved */
-    Approved = "Approved",
-    /** Rejected */
-    Rejected = "Rejected",
-    /** Disconnected */
-    Disconnected = "Disconnected"
+/** Known values of {@link DeletionRecoveryLevel} that the service accepts. */
+export declare enum KnownDeletionRecoveryLevel {
+    /** Purgeable */
+    Purgeable = "Purgeable",
+    /** RecoverablePurgeable */
+    RecoverablePurgeable = "Recoverable+Purgeable",
+    /** Recoverable */
+    Recoverable = "Recoverable",
+    /** RecoverableProtectedSubscription */
+    RecoverableProtectedSubscription = "Recoverable+ProtectedSubscription"
 }
 /**
- * Defines values for PrivateEndpointServiceConnectionStatus. \
- * {@link KnownPrivateEndpointServiceConnectionStatus} can be used interchangeably with PrivateEndpointServiceConnectionStatus,
+ * Defines values for DeletionRecoveryLevel. \
+ * {@link KnownDeletionRecoveryLevel} can be used interchangeably with DeletionRecoveryLevel,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **Pending** \
- * **Approved** \
- * **Rejected** \
- * **Disconnected**
- */
-export type PrivateEndpointServiceConnectionStatus = string;
-/** Known values of {@link ActionsRequired} that the service accepts. */
-export declare enum KnownActionsRequired {
-    /** None */
-    None = "None"
-}
-/**
- * Defines values for ActionsRequired. \
- * {@link KnownActionsRequired} can be used interchangeably with ActionsRequired,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **None**
- */
-export type ActionsRequired = string;
-/** Known values of {@link PrivateEndpointConnectionProvisioningState} that the service accepts. */
-export declare enum KnownPrivateEndpointConnectionProvisioningState {
-    /** Succeeded */
-    Succeeded = "Succeeded",
-    /** Creating */
-    Creating = "Creating",
-    /** Updating */
-    Updating = "Updating",
-    /** Deleting */
-    Deleting = "Deleting",
-    /** Failed */
-    Failed = "Failed",
-    /** Disconnected */
-    Disconnected = "Disconnected"
-}
-/**
- * Defines values for PrivateEndpointConnectionProvisioningState. \
- * {@link KnownPrivateEndpointConnectionProvisioningState} can be used interchangeably with PrivateEndpointConnectionProvisioningState,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **Succeeded** \
- * **Creating** \
- * **Updating** \
- * **Deleting** \
- * **Failed** \
- * **Disconnected**
- */
-export type PrivateEndpointConnectionProvisioningState = string;
-/** Known values of {@link IdentityType} that the service accepts. */
-export declare enum KnownIdentityType {
-    /** User */
-    User = "User",
-    /** Application */
-    Application = "Application",
-    /** ManagedIdentity */
-    ManagedIdentity = "ManagedIdentity",
-    /** Key */
-    Key = "Key"
-}
-/**
- * Defines values for IdentityType. \
- * {@link KnownIdentityType} can be used interchangeably with IdentityType,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **User** \
- * **Application** \
- * **ManagedIdentity** \
- * **Key**
- */
-export type IdentityType = string;
-/** Known values of {@link ProvisioningState} that the service accepts. */
-export declare enum KnownProvisioningState {
-    /** The managed HSM Pool has been full provisioned. */
-    Succeeded = "Succeeded",
-    /** The managed HSM Pool is currently being provisioned. */
-    Provisioning = "Provisioning",
-    /** Provisioning of the managed HSM Pool has failed. */
-    Failed = "Failed",
-    /** The managed HSM Pool is currently being updated. */
-    Updating = "Updating",
-    /** The managed HSM Pool is currently being deleted. */
-    Deleting = "Deleting",
-    /** The managed HSM pool is ready for normal use. */
-    Activated = "Activated",
-    /** The managed HSM pool is waiting for a security domain restore action. */
-    SecurityDomainRestore = "SecurityDomainRestore",
-    /** The managed HSM pool is being restored from full HSM backup. */
-    Restoring = "Restoring"
-}
-/**
- * Defines values for ProvisioningState. \
- * {@link KnownProvisioningState} can be used interchangeably with ProvisioningState,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **Succeeded**: The managed HSM Pool has been full provisioned. \
- * **Provisioning**: The managed HSM Pool is currently being provisioned. \
- * **Failed**: Provisioning of the managed HSM Pool has failed. \
- * **Updating**: The managed HSM Pool is currently being updated. \
- * **Deleting**: The managed HSM Pool is currently being deleted. \
- * **Activated**: The managed HSM pool is ready for normal use. \
- * **SecurityDomainRestore**: The managed HSM pool is waiting for a security domain restore action. \
- * **Restoring**: The managed HSM pool is being restored from full HSM backup.
- */
-export type ProvisioningState = string;
-/** Known values of {@link GeoReplicationRegionProvisioningState} that the service accepts. */
-export declare enum KnownGeoReplicationRegionProvisioningState {
-    /** Preprovisioning */
-    Preprovisioning = "Preprovisioning",
-    /** Provisioning */
-    Provisioning = "Provisioning",
-    /** Succeeded */
-    Succeeded = "Succeeded",
-    /** Failed */
-    Failed = "Failed",
-    /** Deleting */
-    Deleting = "Deleting",
-    /** Cleanup */
-    Cleanup = "Cleanup"
-}
-/**
- * Defines values for GeoReplicationRegionProvisioningState. \
- * {@link KnownGeoReplicationRegionProvisioningState} can be used interchangeably with GeoReplicationRegionProvisioningState,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **Preprovisioning** \
- * **Provisioning** \
- * **Succeeded** \
- * **Failed** \
- * **Deleting** \
- * **Cleanup**
- */
-export type GeoReplicationRegionProvisioningState = string;
-/** Known values of {@link PublicNetworkAccess} that the service accepts. */
-export declare enum KnownPublicNetworkAccess {
-    /** Enabled */
-    Enabled = "Enabled",
-    /** Disabled */
-    Disabled = "Disabled"
-}
-/**
- * Defines values for PublicNetworkAccess. \
- * {@link KnownPublicNetworkAccess} can be used interchangeably with PublicNetworkAccess,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **Enabled** \
- * **Disabled**
+ * **Purgeable** \
+ * **Recoverable+Purgeable** \
+ * **Recoverable** \
+ * **Recoverable+ProtectedSubscription**
  */
-export type PublicNetworkAccess = string;
-/** Known values of {@link ActivationStatus} that the service accepts. */
-export declare enum KnownActivationStatus {
-    /** The managed HSM Pool is active. */
-    Active = "Active",
-    /** The managed HSM Pool is not yet activated. */
-    NotActivated = "NotActivated",
-    /** An unknown error occurred while activating managed hsm. */
-    Unknown = "Unknown",
-    /** Failed to activate managed hsm. */
-    Failed = "Failed"
+export type DeletionRecoveryLevel = string;
+/** Known values of {@link JsonWebKeyType} that the service accepts. */
+export declare enum KnownJsonWebKeyType {
+    /** EC */
+    EC = "EC",
+    /** ECHSM */
+    ECHSM = "EC-HSM",
+    /** RSA */
+    RSA = "RSA",
+    /** RSAHSM */
+    RSAHSM = "RSA-HSM"
 }
 /**
- * Defines values for ActivationStatus. \
- * {@link KnownActivationStatus} can be used interchangeably with ActivationStatus,
+ * Defines values for JsonWebKeyType. \
+ * {@link KnownJsonWebKeyType} can be used interchangeably with JsonWebKeyType,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **Active**: The managed HSM Pool is active. \
- * **NotActivated**: The managed HSM Pool is not yet activated. \
- * **Unknown**: An unknown error occurred while activating managed hsm. \
- * **Failed**: Failed to activate managed hsm.
+ * **EC** \
+ * **EC-HSM** \
+ * **RSA** \
+ * **RSA-HSM**
  */
-export type ActivationStatus = string;
-/** Known values of {@link ManagedHsmSkuFamily} that the service accepts. */
-export declare enum KnownManagedHsmSkuFamily {
-    /** B */
-    B = "B",
-    /** C */
-    C = "C"
+export type JsonWebKeyType = string;
+/** Known values of {@link JsonWebKeyOperation} that the service accepts. */
+export declare enum KnownJsonWebKeyOperation {
+    /** Encrypt */
+    Encrypt = "encrypt",
+    /** Decrypt */
+    Decrypt = "decrypt",
+    /** Sign */
+    Sign = "sign",
+    /** Verify */
+    Verify = "verify",
+    /** WrapKey */
+    WrapKey = "wrapKey",
+    /** UnwrapKey */
+    UnwrapKey = "unwrapKey",
+    /** Import */
+    Import = "import",
+    /** Release */
+    Release = "release"
 }
 /**
- * Defines values for ManagedHsmSkuFamily. \
- * {@link KnownManagedHsmSkuFamily} can be used interchangeably with ManagedHsmSkuFamily,
+ * Defines values for JsonWebKeyOperation. \
+ * {@link KnownJsonWebKeyOperation} can be used interchangeably with JsonWebKeyOperation,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **B** \
- * **C**
+ * **encrypt** \
+ * **decrypt** \
+ * **sign** \
+ * **verify** \
+ * **wrapKey** \
+ * **unwrapKey** \
+ * **import** \
+ * **release**
  */
-export type ManagedHsmSkuFamily = string;
-/** Known values of {@link ManagedServiceIdentityType} that the service accepts. */
-export declare enum KnownManagedServiceIdentityType {
-    /** None */
-    None = "None",
-    /** SystemAssigned */
-    SystemAssigned = "SystemAssigned",
-    /** UserAssigned */
-    UserAssigned = "UserAssigned",
-    /** SystemAssignedUserAssigned */
-    SystemAssignedUserAssigned = "SystemAssigned,UserAssigned"
+export type JsonWebKeyOperation = string;
+/** Known values of {@link JsonWebKeyCurveName} that the service accepts. */
+export declare enum KnownJsonWebKeyCurveName {
+    /** P256 */
+    P256 = "P-256",
+    /** P384 */
+    P384 = "P-384",
+    /** P521 */
+    P521 = "P-521",
+    /** P256K */
+    P256K = "P-256K"
 }
 /**
- * Defines values for ManagedServiceIdentityType. \
- * {@link KnownManagedServiceIdentityType} can be used interchangeably with ManagedServiceIdentityType,
+ * Defines values for JsonWebKeyCurveName. \
+ * {@link KnownJsonWebKeyCurveName} can be used interchangeably with JsonWebKeyCurveName,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **None** \
- * **SystemAssigned** \
- * **UserAssigned** \
- * **SystemAssigned,UserAssigned**
+ * **P-256** \
+ * **P-384** \
+ * **P-521** \
+ * **P-256K**
  */
-export type ManagedServiceIdentityType = string;
-/** Defines values for KeyRotationPolicyActionType. */
-export type KeyRotationPolicyActionType = "rotate" | "notify";
-/** Defines values for SkuName. */
-export type SkuName = "standard" | "premium";
+export type JsonWebKeyCurveName = string;
 /** Defines values for CreateMode. */
 export type CreateMode = "recover" | "default";
-/** Defines values for AccessPolicyUpdateKind. */
-export type AccessPolicyUpdateKind = "add" | "replace" | "remove";
-/** Defines values for Reason. */
-export type Reason = "AccountNameInvalid" | "AlreadyExists";
 /** Defines values for ManagedHsmSkuName. */
 export type ManagedHsmSkuName = "Standard_B1" | "Custom_B32" | "Custom_B6" | "Custom_C42" | "Custom_C10";
+/** Defines values for SkuName. */
+export type SkuName = "standard" | "premium";
+/** Defines values for KeyRotationPolicyActionType. */
+export type KeyRotationPolicyActionType = "rotate" | "notify";
+/** Defines values for AccessPolicyUpdateKind. */
+export type AccessPolicyUpdateKind = "add" | "replace" | "remove";
 /** Optional parameters. */
-export interface KeysCreateIfNotExistOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the createIfNotExist operation. */
-export type KeysCreateIfNotExistResponse = Key;
-/** Optional parameters. */
-export interface KeysGetOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the get operation. */
-export type KeysGetResponse = Key;
-/** Optional parameters. */
-export interface KeysListOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the list operation. */
-export type KeysListResponse = KeyListResult;
-/** Optional parameters. */
-export interface KeysGetVersionOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the getVersion operation. */
-export type KeysGetVersionResponse = Key;
-/** Optional parameters. */
-export interface KeysListVersionsOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listVersions operation. */
-export type KeysListVersionsResponse = KeyListResult;
-/** Optional parameters. */
-export interface KeysListNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listNext operation. */
-export type KeysListNextResponse = KeyListResult;
-/** Optional parameters. */
-export interface KeysListVersionsNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listVersionsNext operation. */
-export type KeysListVersionsNextResponse = KeyListResult;
-/** Optional parameters. */
-export interface ManagedHsmKeysCreateIfNotExistOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the createIfNotExist operation. */
-export type ManagedHsmKeysCreateIfNotExistResponse = ManagedHsmKey;
-/** Optional parameters. */
-export interface ManagedHsmKeysGetOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the get operation. */
-export type ManagedHsmKeysGetResponse = ManagedHsmKey;
-/** Optional parameters. */
-export interface ManagedHsmKeysListOptionalParams extends coreClient.OperationOptions {
+export interface OperationsListOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the list operation. */
-export type ManagedHsmKeysListResponse = ManagedHsmKeyListResult;
-/** Optional parameters. */
-export interface ManagedHsmKeysGetVersionOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the getVersion operation. */
-export type ManagedHsmKeysGetVersionResponse = ManagedHsmKey;
-/** Optional parameters. */
-export interface ManagedHsmKeysListVersionsOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listVersions operation. */
-export type ManagedHsmKeysListVersionsResponse = ManagedHsmKeyListResult;
+export type OperationsListResponse = OperationListResult;
 /** Optional parameters. */
-export interface ManagedHsmKeysListNextOptionalParams extends coreClient.OperationOptions {
+export interface OperationsListNextOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the listNext operation. */
-export type ManagedHsmKeysListNextResponse = ManagedHsmKeyListResult;
-/** Optional parameters. */
-export interface ManagedHsmKeysListVersionsNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listVersionsNext operation. */
-export type ManagedHsmKeysListVersionsNextResponse = ManagedHsmKeyListResult;
-/** Optional parameters. */
-export interface VaultsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
-    /** Delay to wait until next poll, in milliseconds. */
-    updateIntervalInMs?: number;
-    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
-    resumeFrom?: string;
-}
-/** Contains response data for the createOrUpdate operation. */
-export type VaultsCreateOrUpdateResponse = Vault;
-/** Optional parameters. */
-export interface VaultsUpdateOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the update operation. */
-export type VaultsUpdateResponse = Vault;
-/** Optional parameters. */
-export interface VaultsDeleteOptionalParams extends coreClient.OperationOptions {
-}
-/** Optional parameters. */
-export interface VaultsGetOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the get operation. */
-export type VaultsGetResponse = Vault;
-/** Optional parameters. */
-export interface VaultsUpdateAccessPolicyOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the updateAccessPolicy operation. */
-export type VaultsUpdateAccessPolicyResponse = VaultAccessPolicyParameters;
-/** Optional parameters. */
-export interface VaultsListByResourceGroupOptionalParams extends coreClient.OperationOptions {
-    /** Maximum number of results to return. */
-    top?: number;
-}
-/** Contains response data for the listByResourceGroup operation. */
-export type VaultsListByResourceGroupResponse = VaultListResult;
+export type OperationsListNextResponse = OperationListResult;
 /** Optional parameters. */
-export interface VaultsListBySubscriptionOptionalParams extends coreClient.OperationOptions {
-    /** Maximum number of results to return. */
-    top?: number;
+export interface ManagedHsmsCheckMhsmNameAvailabilityOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the listBySubscription operation. */
-export type VaultsListBySubscriptionResponse = VaultListResult;
+/** Contains response data for the checkMhsmNameAvailability operation. */
+export type ManagedHsmsCheckMhsmNameAvailabilityResponse = CheckMhsmNameAvailabilityResult;
 /** Optional parameters. */
-export interface VaultsListDeletedOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsListDeletedOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the listDeleted operation. */
-export type VaultsListDeletedResponse = DeletedVaultListResult;
-/** Optional parameters. */
-export interface VaultsGetDeletedOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the getDeleted operation. */
-export type VaultsGetDeletedResponse = DeletedVault;
-/** Optional parameters. */
-export interface VaultsPurgeDeletedOptionalParams extends coreClient.OperationOptions {
-    /** Delay to wait until next poll, in milliseconds. */
-    updateIntervalInMs?: number;
-    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
-    resumeFrom?: string;
-}
-/** Optional parameters. */
-export interface VaultsListOptionalParams extends coreClient.OperationOptions {
-    /** Maximum number of results to return. */
-    top?: number;
-}
-/** Contains response data for the list operation. */
-export type VaultsListResponse = ResourceListResult;
-/** Optional parameters. */
-export interface VaultsCheckNameAvailabilityOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the checkNameAvailability operation. */
-export type VaultsCheckNameAvailabilityResponse = CheckNameAvailabilityResult;
-/** Optional parameters. */
-export interface VaultsListByResourceGroupNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listByResourceGroupNext operation. */
-export type VaultsListByResourceGroupNextResponse = VaultListResult;
-/** Optional parameters. */
-export interface VaultsListBySubscriptionNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listBySubscriptionNext operation. */
-export type VaultsListBySubscriptionNextResponse = VaultListResult;
-/** Optional parameters. */
-export interface VaultsListDeletedNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listDeletedNext operation. */
-export type VaultsListDeletedNextResponse = DeletedVaultListResult;
-/** Optional parameters. */
-export interface VaultsListNextOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the listNext operation. */
-export type VaultsListNextResponse = ResourceListResult;
-/** Optional parameters. */
-export interface PrivateEndpointConnectionsGetOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the get operation. */
-export type PrivateEndpointConnectionsGetResponse = PrivateEndpointConnection;
+export type ManagedHsmsListDeletedResponse = DeletedManagedHsmListResult;
 /** Optional parameters. */
-export interface PrivateEndpointConnectionsPutOptionalParams extends coreClient.OperationOptions {
-}
-/** Contains response data for the put operation. */
-export type PrivateEndpointConnectionsPutResponse = PrivateEndpointConnectionsPutHeaders & PrivateEndpointConnection;
+export interface ManagedHsmsGetDeletedOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the getDeleted operation. */
+export type ManagedHsmsGetDeletedResponse = DeletedManagedHsm;
 /** Optional parameters. */
-export interface PrivateEndpointConnectionsDeleteOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsPurgeDeletedOptionalParams extends coreClient.OperationOptions {
     /** Delay to wait until next poll, in milliseconds. */
     updateIntervalInMs?: number;
     /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
     resumeFrom?: string;
 }
-/** Contains response data for the delete operation. */
-export type PrivateEndpointConnectionsDeleteResponse = PrivateEndpointConnection;
+/** Contains response data for the purgeDeleted operation. */
+export type ManagedHsmsPurgeDeletedResponse = ManagedHsmsPurgeDeletedHeaders;
 /** Optional parameters. */
-export interface PrivateEndpointConnectionsListByResourceOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsListBySubscriptionOptionalParams extends coreClient.OperationOptions {
+    /** Maximum number of results to return. */
+    top?: number;
 }
-/** Contains response data for the listByResource operation. */
-export type PrivateEndpointConnectionsListByResourceResponse = PrivateEndpointConnectionListResult;
+/** Contains response data for the listBySubscription operation. */
+export type ManagedHsmsListBySubscriptionResponse = ManagedHsmListResult;
 /** Optional parameters. */
-export interface PrivateEndpointConnectionsListByResourceNextOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsListByResourceGroupOptionalParams extends coreClient.OperationOptions {
+    /** Maximum number of results to return. */
+    top?: number;
 }
-/** Contains response data for the listByResourceNext operation. */
-export type PrivateEndpointConnectionsListByResourceNextResponse = PrivateEndpointConnectionListResult;
+/** Contains response data for the listByResourceGroup operation. */
+export type ManagedHsmsListByResourceGroupResponse = ManagedHsmListResult;
 /** Optional parameters. */
-export interface PrivateLinkResourcesListByVaultOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsGetOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the listByVault operation. */
-export type PrivateLinkResourcesListByVaultResponse = PrivateLinkResourceListResult;
+/** Contains response data for the get operation. */
+export type ManagedHsmsGetResponse = ManagedHsm;
 /** Optional parameters. */
 export interface ManagedHsmsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
     /** Delay to wait until next poll, in milliseconds. */
@@ -2139,63 +2061,145 @@ export interface ManagedHsmsDeleteOptionalParams extends coreClient.OperationOpt
     resumeFrom?: string;
 }
 /** Optional parameters. */
-export interface ManagedHsmsGetOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsListDeletedNextOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the get operation. */
-export type ManagedHsmsGetResponse = ManagedHsm;
+/** Contains response data for the listDeletedNext operation. */
+export type ManagedHsmsListDeletedNextResponse = DeletedManagedHsmListResult;
 /** Optional parameters. */
-export interface ManagedHsmsListByResourceGroupOptionalParams extends coreClient.OperationOptions {
-    /** Maximum number of results to return. */
-    top?: number;
+export interface ManagedHsmsListBySubscriptionNextOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the listByResourceGroup operation. */
-export type ManagedHsmsListByResourceGroupResponse = ManagedHsmListResult;
+/** Contains response data for the listBySubscriptionNext operation. */
+export type ManagedHsmsListBySubscriptionNextResponse = ManagedHsmListResult;
 /** Optional parameters. */
-export interface ManagedHsmsListBySubscriptionOptionalParams extends coreClient.OperationOptions {
+export interface ManagedHsmsListByResourceGroupNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listByResourceGroupNext operation. */
+export type ManagedHsmsListByResourceGroupNextResponse = ManagedHsmListResult;
+/** Optional parameters. */
+export interface VaultsCheckNameAvailabilityOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the checkNameAvailability operation. */
+export type VaultsCheckNameAvailabilityResponse = CheckNameAvailabilityResult;
+/** Optional parameters. */
+export interface VaultsListDeletedOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listDeleted operation. */
+export type VaultsListDeletedResponse = DeletedVaultListResult;
+/** Optional parameters. */
+export interface VaultsGetDeletedOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the getDeleted operation. */
+export type VaultsGetDeletedResponse = DeletedVault;
+/** Optional parameters. */
+export interface VaultsPurgeDeletedOptionalParams extends coreClient.OperationOptions {
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+/** Optional parameters. */
+export interface VaultsListBySubscriptionOptionalParams extends coreClient.OperationOptions {
     /** Maximum number of results to return. */
     top?: number;
 }
 /** Contains response data for the listBySubscription operation. */
-export type ManagedHsmsListBySubscriptionResponse = ManagedHsmListResult;
+export type VaultsListBySubscriptionResponse = VaultListResult;
 /** Optional parameters. */
-export interface ManagedHsmsListDeletedOptionalParams extends coreClient.OperationOptions {
+export interface VaultsListByResourceGroupOptionalParams extends coreClient.OperationOptions {
+    /** Maximum number of results to return. */
+    top?: number;
 }
-/** Contains response data for the listDeleted operation. */
-export type ManagedHsmsListDeletedResponse = DeletedManagedHsmListResult;
+/** Contains response data for the listByResourceGroup operation. */
+export type VaultsListByResourceGroupResponse = VaultListResult;
 /** Optional parameters. */
-export interface ManagedHsmsGetDeletedOptionalParams extends coreClient.OperationOptions {
+export interface VaultsGetOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the getDeleted operation. */
-export type ManagedHsmsGetDeletedResponse = DeletedManagedHsm;
+/** Contains response data for the get operation. */
+export type VaultsGetResponse = Vault;
 /** Optional parameters. */
-export interface ManagedHsmsPurgeDeletedOptionalParams extends coreClient.OperationOptions {
+export interface VaultsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
     /** Delay to wait until next poll, in milliseconds. */
     updateIntervalInMs?: number;
     /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
     resumeFrom?: string;
 }
-/** Contains response data for the purgeDeleted operation. */
-export type ManagedHsmsPurgeDeletedResponse = ManagedHsmsPurgeDeletedHeaders;
+/** Contains response data for the createOrUpdate operation. */
+export type VaultsCreateOrUpdateResponse = Vault;
 /** Optional parameters. */
-export interface ManagedHsmsCheckMhsmNameAvailabilityOptionalParams extends coreClient.OperationOptions {
+export interface VaultsUpdateOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the checkMhsmNameAvailability operation. */
-export type ManagedHsmsCheckMhsmNameAvailabilityResponse = CheckMhsmNameAvailabilityResult;
+/** Contains response data for the update operation. */
+export type VaultsUpdateResponse = Vault;
 /** Optional parameters. */
-export interface ManagedHsmsListByResourceGroupNextOptionalParams extends coreClient.OperationOptions {
+export interface VaultsDeleteOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the listByResourceGroupNext operation. */
-export type ManagedHsmsListByResourceGroupNextResponse = ManagedHsmListResult;
 /** Optional parameters. */
-export interface ManagedHsmsListBySubscriptionNextOptionalParams extends coreClient.OperationOptions {
+export interface VaultsUpdateAccessPolicyOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the listBySubscriptionNext operation. */
-export type ManagedHsmsListBySubscriptionNextResponse = ManagedHsmListResult;
+/** Contains response data for the updateAccessPolicy operation. */
+export type VaultsUpdateAccessPolicyResponse = VaultAccessPolicyParameters;
 /** Optional parameters. */
-export interface ManagedHsmsListDeletedNextOptionalParams extends coreClient.OperationOptions {
+export interface VaultsListOptionalParams extends coreClient.OperationOptions {
+    /** Maximum number of results to return. */
+    top?: number;
+}
+/** Contains response data for the list operation. */
+export type VaultsListResponse = ResourceListResult;
+/** Optional parameters. */
+export interface VaultsListDeletedNextOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the listDeletedNext operation. */
-export type ManagedHsmsListDeletedNextResponse = DeletedManagedHsmListResult;
+export type VaultsListDeletedNextResponse = DeletedVaultListResult;
+/** Optional parameters. */
+export interface VaultsListBySubscriptionNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listBySubscriptionNext operation. */
+export type VaultsListBySubscriptionNextResponse = VaultListResult;
+/** Optional parameters. */
+export interface VaultsListByResourceGroupNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listByResourceGroupNext operation. */
+export type VaultsListByResourceGroupNextResponse = VaultListResult;
+/** Optional parameters. */
+export interface VaultsListNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listNext operation. */
+export type VaultsListNextResponse = ResourceListResult;
+/** Optional parameters. */
+export interface ManagedHsmKeysListOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the list operation. */
+export type ManagedHsmKeysListResponse = ManagedHsmKeyListResult;
+/** Optional parameters. */
+export interface ManagedHsmKeysGetOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the get operation. */
+export type ManagedHsmKeysGetResponse = ManagedHsmKey;
+/** Optional parameters. */
+export interface ManagedHsmKeysCreateIfNotExistOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the createIfNotExist operation. */
+export type ManagedHsmKeysCreateIfNotExistResponse = ManagedHsmKey;
+/** Optional parameters. */
+export interface ManagedHsmKeysListVersionsOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listVersions operation. */
+export type ManagedHsmKeysListVersionsResponse = ManagedHsmKeyListResult;
+/** Optional parameters. */
+export interface ManagedHsmKeysGetVersionOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the getVersion operation. */
+export type ManagedHsmKeysGetVersionResponse = ManagedHsmKey;
+/** Optional parameters. */
+export interface ManagedHsmKeysListNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listNext operation. */
+export type ManagedHsmKeysListNextResponse = ManagedHsmKeyListResult;
+/** Optional parameters. */
+export interface ManagedHsmKeysListVersionsNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listVersionsNext operation. */
+export type ManagedHsmKeysListVersionsNextResponse = ManagedHsmKeyListResult;
 /** Optional parameters. */
 export interface MhsmPrivateEndpointConnectionsListByResourceOptionalParams extends coreClient.OperationOptions {
 }
@@ -2241,30 +2245,74 @@ export interface MhsmRegionsListByResourceNextOptionalParams extends coreClient.
 /** Contains response data for the listByResourceNext operation. */
 export type MhsmRegionsListByResourceNextResponse = MhsmRegionsListResult;
 /** Optional parameters. */
-export interface OperationsListOptionalParams extends coreClient.OperationOptions {
+export interface KeysListOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the list operation. */
-export type OperationsListResponse = OperationListResult;
+export type KeysListResponse = KeyListResult;
 /** Optional parameters. */
-export interface OperationsListNextOptionalParams extends coreClient.OperationOptions {
+export interface KeysGetOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the get operation. */
+export type KeysGetResponse = Key;
+/** Optional parameters. */
+export interface KeysCreateIfNotExistOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the createIfNotExist operation. */
+export type KeysCreateIfNotExistResponse = Key;
+/** Optional parameters. */
+export interface KeysListVersionsOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listVersions operation. */
+export type KeysListVersionsResponse = KeyListResult;
+/** Optional parameters. */
+export interface KeysGetVersionOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the getVersion operation. */
+export type KeysGetVersionResponse = Key;
+/** Optional parameters. */
+export interface KeysListNextOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the listNext operation. */
-export type OperationsListNextResponse = OperationListResult;
+export type KeysListNextResponse = KeyListResult;
 /** Optional parameters. */
-export interface SecretsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+export interface KeysListVersionsNextOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the createOrUpdate operation. */
-export type SecretsCreateOrUpdateResponse = Secret;
+/** Contains response data for the listVersionsNext operation. */
+export type KeysListVersionsNextResponse = KeyListResult;
 /** Optional parameters. */
-export interface SecretsUpdateOptionalParams extends coreClient.OperationOptions {
+export interface PrivateEndpointConnectionsListByResourceOptionalParams extends coreClient.OperationOptions {
 }
-/** Contains response data for the update operation. */
-export type SecretsUpdateResponse = Secret;
+/** Contains response data for the listByResource operation. */
+export type PrivateEndpointConnectionsListByResourceResponse = PrivateEndpointConnectionListResult;
 /** Optional parameters. */
-export interface SecretsGetOptionalParams extends coreClient.OperationOptions {
+export interface PrivateEndpointConnectionsGetOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the get operation. */
-export type SecretsGetResponse = Secret;
+export type PrivateEndpointConnectionsGetResponse = PrivateEndpointConnection;
+/** Optional parameters. */
+export interface PrivateEndpointConnectionsPutOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the put operation. */
+export type PrivateEndpointConnectionsPutResponse = PrivateEndpointConnectionsPutHeaders & PrivateEndpointConnection;
+/** Optional parameters. */
+export interface PrivateEndpointConnectionsDeleteOptionalParams extends coreClient.OperationOptions {
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+/** Contains response data for the delete operation. */
+export type PrivateEndpointConnectionsDeleteResponse = PrivateEndpointConnection;
+/** Optional parameters. */
+export interface PrivateEndpointConnectionsListByResourceNextOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listByResourceNext operation. */
+export type PrivateEndpointConnectionsListByResourceNextResponse = PrivateEndpointConnectionListResult;
+/** Optional parameters. */
+export interface PrivateLinkResourcesListByVaultOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the listByVault operation. */
+export type PrivateLinkResourcesListByVaultResponse = PrivateLinkResourceListResult;
 /** Optional parameters. */
 export interface SecretsListOptionalParams extends coreClient.OperationOptions {
     /** Maximum number of results to return. */
@@ -2273,6 +2321,21 @@ export interface SecretsListOptionalParams extends coreClient.OperationOptions {
 /** Contains response data for the list operation. */
 export type SecretsListResponse = SecretListResult;
 /** Optional parameters. */
+export interface SecretsGetOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the get operation. */
+export type SecretsGetResponse = Secret;
+/** Optional parameters. */
+export interface SecretsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the createOrUpdate operation. */
+export type SecretsCreateOrUpdateResponse = Secret;
+/** Optional parameters. */
+export interface SecretsUpdateOptionalParams extends coreClient.OperationOptions {
+}
+/** Contains response data for the update operation. */
+export type SecretsUpdateResponse = Secret;
+/** Optional parameters. */
 export interface SecretsListNextOptionalParams extends coreClient.OperationOptions {
 }
 /** Contains response data for the listNext operation. */