@pulumi/rancher2 10.4.0-alpha.1766506762 → 11.0.0-alpha.1766596160

package/types/input.d.ts

@@ -3175,2770 +3175,909 @@ export interface ClusterSyncNode {
         [key: string]: pulumi.Input<string>;
     }>;
 }
-export interface ClusterTemplateMember {
-    /**
-     * Member access type: member, owner, read-only
-     */
-    accessType?: pulumi.Input<string>;
-    /**
-     * Member group principal id
-     */
-    groupPrincipalId?: pulumi.Input<string>;
-    /**
-     * Member user principal id
-     */
-    userPrincipalId?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevision {
-    /**
-     * Annotations for the cluster template (map)
-     */
-    annotations?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Cluster configuration
-     */
-    clusterConfig: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfig>;
-    /**
-     * Cluster template ID
-     */
-    clusterTemplateId?: pulumi.Input<string>;
-    /**
-     * Default cluster template revision
-     */
-    default?: pulumi.Input<boolean>;
-    /**
-     * Enable cluster template revision
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * (Computed) The ID of the resource (string)
-     */
-    id?: pulumi.Input<string>;
-    /**
-     * Labels for the cluster template (map)
-     */
-    labels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
+export interface ClusterV2AgentEnvVar {
     /**
-     * The cluster template name (string)
+     * The name of the cluster.
      */
     name: pulumi.Input<string>;
     /**
-     * Cluster template questions
-     */
-    questions?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionQuestion>[]>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfig {
-    /**
-     * Local cluster auth endpoint
-     */
-    clusterAuthEndpoint?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigClusterAuthEndpoint>;
-    /**
-     * Default cluster role for project members
-     */
-    defaultClusterRoleForProjectMembers?: pulumi.Input<string>;
-    /**
-     * Default pod security admission configuration template name
-     */
-    defaultPodSecurityAdmissionConfigurationTemplateName?: pulumi.Input<string>;
-    /**
-     * Desired agent image
-     */
-    desiredAgentImage?: pulumi.Input<string>;
-    /**
-     * Desired auth image
-     */
-    desiredAuthImage?: pulumi.Input<string>;
-    /**
-     * Docker Root Dir
-     */
-    dockerRootDir?: pulumi.Input<string>;
-    /**
-     * Enable project network isolation
-     */
-    enableNetworkPolicy?: pulumi.Input<boolean>;
-    /**
-     * Rancher Kubernetes Engine Config
-     */
-    rkeConfig: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfig>;
-    /**
-     * Windows prefered cluster
-     */
-    windowsPreferedCluster?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigClusterAuthEndpoint {
-    caCerts?: pulumi.Input<string>;
-    /**
-     * Enable cluster template revision. Default `true` (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-    fqdn?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfig {
-    /**
-     * Optional duration in seconds of addon job.
-     */
-    addonJobTimeout?: pulumi.Input<number>;
-    /**
-     * Optional addons descripton to deploy on rke cluster.
-     */
-    addons?: pulumi.Input<string>;
-    /**
-     * Optional addons yaml manisfest to deploy on rke cluster.
-     */
-    addonsIncludes?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Kubernetes cluster authentication
-     */
-    authentication?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigAuthentication>;
-    /**
-     * Kubernetes cluster authorization
-     */
-    authorization?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigAuthorization>;
-    /**
-     * RKE bastion host
-     */
-    bastionHost?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigBastionHost>;
-    cloudProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProvider>;
-    dns?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDns>;
-    /**
-     * Enable/disable using cri-dockerd
-     */
-    enableCriDockerd?: pulumi.Input<boolean>;
-    /**
-     * Optional ignore docker version on nodes
-     */
-    ignoreDockerVersion?: pulumi.Input<boolean>;
-    /**
-     * Kubernetes ingress configuration
-     */
-    ingress?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngress>;
-    /**
-     * Optional kubernetes version to deploy
-     */
-    kubernetesVersion?: pulumi.Input<string>;
-    /**
-     * Kubernetes cluster monitoring
-     */
-    monitoring?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoring>;
-    /**
-     * Kubernetes cluster networking
-     */
-    network?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetwork>;
-    /**
-     * Optional RKE cluster nodes
-     */
-    nodes?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNode>[]>;
-    /**
-     * Optional prefix to customize kubernetes path
-     */
-    prefixPath?: pulumi.Input<string>;
-    /**
-     * Optional private registries for docker images
-     */
-    privateRegistries?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigPrivateRegistry>[]>;
-    /**
-     * Kubernetes cluster services
-     */
-    services?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServices>;
-    /**
-     * Optional use ssh agent auth
-     */
-    sshAgentAuth?: pulumi.Input<boolean>;
-    /**
-     * Optional cluster level SSH certificate path
-     */
-    sshCertPath?: pulumi.Input<string>;
-    /**
-     * Optional cluster level SSH private key path
-     */
-    sshKeyPath?: pulumi.Input<string>;
-    /**
-     * RKE upgrade strategy
-     */
-    upgradeStrategy?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigUpgradeStrategy>;
-    /**
-     * Optional prefix to customize kubernetes path for windows
-     */
-    winPrefixPath?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigAuthentication {
-    sans?: pulumi.Input<pulumi.Input<string>[]>;
-    strategy?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigAuthorization {
-    mode?: pulumi.Input<string>;
-    options?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigBastionHost {
-    address: pulumi.Input<string>;
-    port?: pulumi.Input<string>;
-    sshAgentAuth?: pulumi.Input<boolean>;
-    sshKey?: pulumi.Input<string>;
-    sshKeyPath?: pulumi.Input<string>;
-    user: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProvider {
-    awsCloudProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProvider>;
-    azureCloudProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAzureCloudProvider>;
-    customCloudProvider?: pulumi.Input<string>;
-    /**
-     * The cluster template name (string)
+     * The taint value.
      */
-    name?: pulumi.Input<string>;
-    openstackCloudProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProvider>;
-    vsphereCloudProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProvider>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProvider {
-    global?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProviderGlobal>;
-    serviceOverrides?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProviderServiceOverride>[]>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProviderGlobal {
-    disableSecurityGroupIngress?: pulumi.Input<boolean>;
-    disableStrictZoneCheck?: pulumi.Input<boolean>;
-    elbSecurityGroup?: pulumi.Input<string>;
-    kubernetesClusterId?: pulumi.Input<string>;
-    kubernetesClusterTag?: pulumi.Input<string>;
-    roleArn?: pulumi.Input<string>;
-    routeTableId?: pulumi.Input<string>;
-    subnetId?: pulumi.Input<string>;
-    vpc?: pulumi.Input<string>;
-    zone?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAwsCloudProviderServiceOverride {
-    region?: pulumi.Input<string>;
-    service: pulumi.Input<string>;
-    signingMethod?: pulumi.Input<string>;
-    signingName?: pulumi.Input<string>;
-    signingRegion?: pulumi.Input<string>;
-    url?: pulumi.Input<string>;
+    value: pulumi.Input<string>;
 }
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderAzureCloudProvider {
-    aadClientCertPassword?: pulumi.Input<string>;
-    aadClientCertPath?: pulumi.Input<string>;
-    aadClientId: pulumi.Input<string>;
-    aadClientSecret: pulumi.Input<string>;
-    cloud?: pulumi.Input<string>;
-    cloudProviderBackoff?: pulumi.Input<boolean>;
-    cloudProviderBackoffDuration?: pulumi.Input<number>;
-    cloudProviderBackoffExponent?: pulumi.Input<number>;
-    cloudProviderBackoffJitter?: pulumi.Input<number>;
-    cloudProviderBackoffRetries?: pulumi.Input<number>;
-    cloudProviderRateLimit?: pulumi.Input<boolean>;
-    cloudProviderRateLimitBucket?: pulumi.Input<number>;
-    cloudProviderRateLimitQps?: pulumi.Input<number>;
+export interface ClusterV2ClusterAgentDeploymentCustomization {
     /**
-     * Load balancer type (basic | standard). Must be standard for auto-scaling
+     * User defined tolerations to append to agent
      */
-    loadBalancerSku?: pulumi.Input<string>;
-    location?: pulumi.Input<string>;
-    maximumLoadBalancerRuleCount?: pulumi.Input<number>;
-    primaryAvailabilitySetName?: pulumi.Input<string>;
-    primaryScaleSetName?: pulumi.Input<string>;
-    resourceGroup?: pulumi.Input<string>;
-    routeTableName?: pulumi.Input<string>;
-    securityGroupName?: pulumi.Input<string>;
-    subnetName?: pulumi.Input<string>;
-    subscriptionId: pulumi.Input<string>;
-    tenantId: pulumi.Input<string>;
-    useInstanceMetadata?: pulumi.Input<boolean>;
-    useManagedIdentityExtension?: pulumi.Input<boolean>;
-    vmType?: pulumi.Input<string>;
-    vnetName?: pulumi.Input<string>;
-    vnetResourceGroup?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProvider {
-    blockStorage?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderBlockStorage>;
-    global: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderGlobal>;
-    loadBalancer?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderLoadBalancer>;
-    metadata?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderMetadata>;
-    route?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderRoute>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderBlockStorage {
-    bsVersion?: pulumi.Input<string>;
-    ignoreVolumeAz?: pulumi.Input<boolean>;
-    trustDevicePath?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderGlobal {
-    authUrl: pulumi.Input<string>;
-    caFile?: pulumi.Input<string>;
-    domainId?: pulumi.Input<string>;
-    domainName?: pulumi.Input<string>;
-    password: pulumi.Input<string>;
-    region?: pulumi.Input<string>;
-    tenantId?: pulumi.Input<string>;
-    tenantName?: pulumi.Input<string>;
-    trustId?: pulumi.Input<string>;
-    username: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderLoadBalancer {
-    createMonitor?: pulumi.Input<boolean>;
-    floatingNetworkId?: pulumi.Input<string>;
-    lbMethod?: pulumi.Input<string>;
-    lbProvider?: pulumi.Input<string>;
-    lbVersion?: pulumi.Input<string>;
-    manageSecurityGroups?: pulumi.Input<boolean>;
-    monitorDelay?: pulumi.Input<string>;
-    monitorMaxRetries?: pulumi.Input<number>;
-    monitorTimeout?: pulumi.Input<string>;
-    subnetId?: pulumi.Input<string>;
-    useOctavia?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderMetadata {
-    requestTimeout?: pulumi.Input<number>;
-    searchOrder?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderOpenstackCloudProviderRoute {
-    routerId?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProvider {
-    disk?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderDisk>;
-    global?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderGlobal>;
-    network?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderNetwork>;
-    virtualCenters: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderVirtualCenter>[]>;
-    workspace: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderWorkspace>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderDisk {
-    scsiControllerType?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderGlobal {
-    datacenters?: pulumi.Input<string>;
-    gracefulShutdownTimeout?: pulumi.Input<string>;
-    insecureFlag?: pulumi.Input<boolean>;
-    password?: pulumi.Input<string>;
-    port?: pulumi.Input<string>;
-    soapRoundtripCount?: pulumi.Input<number>;
-    user?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderNetwork {
-    publicNetwork?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderVirtualCenter {
-    datacenters: pulumi.Input<string>;
+    appendTolerations?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationAppendToleration>[]>;
     /**
-     * The cluster template name (string)
-     */
-    name: pulumi.Input<string>;
-    password: pulumi.Input<string>;
-    port?: pulumi.Input<string>;
-    soapRoundtripCount?: pulumi.Input<number>;
-    user: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigCloudProviderVsphereCloudProviderWorkspace {
-    datacenter: pulumi.Input<string>;
-    defaultDatastore?: pulumi.Input<string>;
-    folder: pulumi.Input<string>;
-    resourcepoolPath?: pulumi.Input<string>;
-    server: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDns {
-    /**
-     * Linear Autoscaler Params
-     */
-    linearAutoscalerParams?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsLinearAutoscalerParams>;
-    nodeSelector?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Nodelocal dns
-     */
-    nodelocal?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsNodelocal>;
-    options?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    provider?: pulumi.Input<string>;
-    reverseCidrs?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * DNS service tolerations
-     */
-    tolerations?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsToleration>[]>;
-    /**
-     * Update deployment strategy
-     */
-    updateStrategy?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsUpdateStrategy>;
-    upstreamNameservers?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsLinearAutoscalerParams {
-    coresPerReplica?: pulumi.Input<number>;
-    max?: pulumi.Input<number>;
-    min?: pulumi.Input<number>;
-    nodesPerReplica?: pulumi.Input<number>;
-    preventSinglePointFailure?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsNodelocal {
-    ipAddress?: pulumi.Input<string>;
-    /**
-     * Node selector key pair
-     */
-    nodeSelector?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsToleration {
-    effect?: pulumi.Input<string>;
-    key: pulumi.Input<string>;
-    operator?: pulumi.Input<string>;
-    seconds?: pulumi.Input<number>;
-    value?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsUpdateStrategy {
-    /**
-     * Rolling update for update strategy
-     */
-    rollingUpdate?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsUpdateStrategyRollingUpdate>;
-    /**
-     * Strategy
-     */
-    strategy?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigDnsUpdateStrategyRollingUpdate {
-    /**
-     * Rolling update max surge
-     */
-    maxSurge?: pulumi.Input<number>;
-    /**
-     * Rolling update max unavailable
-     */
-    maxUnavailable?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngress {
-    defaultBackend?: pulumi.Input<boolean>;
-    dnsPolicy?: pulumi.Input<string>;
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    httpPort?: pulumi.Input<number>;
-    httpsPort?: pulumi.Input<number>;
-    networkMode?: pulumi.Input<string>;
-    nodeSelector?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    options?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    provider?: pulumi.Input<string>;
-    /**
-     * Ingress add-on tolerations
-     */
-    tolerations?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressToleration>[]>;
-    /**
-     * Update daemon set strategy
-     */
-    updateStrategy?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressUpdateStrategy>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressToleration {
-    effect?: pulumi.Input<string>;
-    key: pulumi.Input<string>;
-    operator?: pulumi.Input<string>;
-    seconds?: pulumi.Input<number>;
-    value?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressUpdateStrategy {
-    /**
-     * Rolling update for update strategy
-     */
-    rollingUpdate?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressUpdateStrategyRollingUpdate>;
-    /**
-     * Strategy
-     */
-    strategy?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigIngressUpdateStrategyRollingUpdate {
-    /**
-     * Rolling update max unavailable
-     */
-    maxUnavailable?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoring {
-    nodeSelector?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    options?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    provider?: pulumi.Input<string>;
-    replicas?: pulumi.Input<number>;
-    /**
-     * Monitoring add-on tolerations
-     */
-    tolerations?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringToleration>[]>;
-    /**
-     * Update deployment strategy
-     */
-    updateStrategy?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringUpdateStrategy>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringToleration {
-    effect?: pulumi.Input<string>;
-    key: pulumi.Input<string>;
-    operator?: pulumi.Input<string>;
-    seconds?: pulumi.Input<number>;
-    value?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringUpdateStrategy {
-    /**
-     * Rolling update for update strategy
-     */
-    rollingUpdate?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringUpdateStrategyRollingUpdate>;
-    /**
-     * Strategy
-     */
-    strategy?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigMonitoringUpdateStrategyRollingUpdate {
-    /**
-     * Rolling update max surge
-     */
-    maxSurge?: pulumi.Input<number>;
-    /**
-     * Rolling update max unavailable
-     */
-    maxUnavailable?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetwork {
-    aciNetworkProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkAciNetworkProvider>;
-    calicoNetworkProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkCalicoNetworkProvider>;
-    canalNetworkProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkCanalNetworkProvider>;
-    flannelNetworkProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkFlannelNetworkProvider>;
-    mtu?: pulumi.Input<number>;
-    options?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    plugin?: pulumi.Input<string>;
-    /**
-     * Network add-on tolerations
-     */
-    tolerations?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkToleration>[]>;
-    weaveNetworkProvider?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkWeaveNetworkProvider>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkAciNetworkProvider {
-    aep: pulumi.Input<string>;
-    apicHosts: pulumi.Input<pulumi.Input<string>[]>;
-    apicRefreshTickerAdjust?: pulumi.Input<string>;
-    apicRefreshTime?: pulumi.Input<string>;
-    apicSubscriptionDelay?: pulumi.Input<string>;
-    apicUserCrt: pulumi.Input<string>;
-    apicUserKey: pulumi.Input<string>;
-    apicUserName: pulumi.Input<string>;
-    capic?: pulumi.Input<string>;
-    controllerLogLevel?: pulumi.Input<string>;
-    disablePeriodicSnatGlobalInfoSync?: pulumi.Input<string>;
-    disableWaitForNetwork?: pulumi.Input<string>;
-    dropLogEnable?: pulumi.Input<string>;
-    durationWaitForNetwork?: pulumi.Input<string>;
-    enableEndpointSlice?: pulumi.Input<string>;
-    encapType: pulumi.Input<string>;
-    epRegistry?: pulumi.Input<string>;
-    externDynamic: pulumi.Input<string>;
-    externStatic: pulumi.Input<string>;
-    gbpPodSubnet?: pulumi.Input<string>;
-    hostAgentLogLevel?: pulumi.Input<string>;
-    imagePullPolicy?: pulumi.Input<string>;
-    imagePullSecret?: pulumi.Input<string>;
-    infraVlan?: pulumi.Input<string>;
-    installIstio?: pulumi.Input<string>;
-    istioProfile?: pulumi.Input<string>;
-    kafkaBrokers?: pulumi.Input<pulumi.Input<string>[]>;
-    kafkaClientCrt?: pulumi.Input<string>;
-    kafkaClientKey?: pulumi.Input<string>;
-    kubeApiVlan: pulumi.Input<string>;
-    l3out: pulumi.Input<string>;
-    l3outExternalNetworks: pulumi.Input<pulumi.Input<string>[]>;
-    maxNodesSvcGraph?: pulumi.Input<string>;
-    mcastRangeEnd: pulumi.Input<string>;
-    mcastRangeStart: pulumi.Input<string>;
-    mtuHeadRoom?: pulumi.Input<string>;
-    multusDisable?: pulumi.Input<string>;
-    noPriorityClass?: pulumi.Input<string>;
-    nodePodIfEnable?: pulumi.Input<string>;
-    nodeSubnet: pulumi.Input<string>;
-    nodeSvcSubnet: pulumi.Input<string>;
-    opflexClientSsl?: pulumi.Input<string>;
-    opflexDeviceDeleteTimeout?: pulumi.Input<string>;
-    opflexLogLevel?: pulumi.Input<string>;
-    opflexMode?: pulumi.Input<string>;
-    opflexServerPort?: pulumi.Input<string>;
-    overlayVrfName?: pulumi.Input<string>;
-    ovsMemoryLimit?: pulumi.Input<string>;
-    pbrTrackingNonSnat?: pulumi.Input<string>;
-    podSubnetChunkSize?: pulumi.Input<string>;
-    runGbpContainer?: pulumi.Input<string>;
-    runOpflexServerContainer?: pulumi.Input<string>;
-    serviceMonitorInterval?: pulumi.Input<string>;
-    serviceVlan: pulumi.Input<string>;
-    snatContractScope?: pulumi.Input<string>;
-    snatNamespace?: pulumi.Input<string>;
-    snatPortRangeEnd?: pulumi.Input<string>;
-    snatPortRangeStart?: pulumi.Input<string>;
-    snatPortsPerNode?: pulumi.Input<string>;
-    sriovEnable?: pulumi.Input<string>;
-    subnetDomainName?: pulumi.Input<string>;
-    systemId: pulumi.Input<string>;
-    tenant?: pulumi.Input<string>;
-    token: pulumi.Input<string>;
-    useAciAnywhereCrd?: pulumi.Input<string>;
-    useAciCniPriorityClass?: pulumi.Input<string>;
-    useClusterRole?: pulumi.Input<string>;
-    useHostNetnsVolume?: pulumi.Input<string>;
-    useOpflexServerVolume?: pulumi.Input<string>;
-    usePrivilegedContainer?: pulumi.Input<string>;
-    vmmController?: pulumi.Input<string>;
-    vmmDomain?: pulumi.Input<string>;
-    vrfName: pulumi.Input<string>;
-    vrfTenant: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkCalicoNetworkProvider {
-    cloudProvider?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkCanalNetworkProvider {
-    iface?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkFlannelNetworkProvider {
-    iface?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkToleration {
-    effect?: pulumi.Input<string>;
-    key: pulumi.Input<string>;
-    operator?: pulumi.Input<string>;
-    seconds?: pulumi.Input<number>;
-    value?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNetworkWeaveNetworkProvider {
-    password: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigNode {
-    address: pulumi.Input<string>;
-    dockerSocket?: pulumi.Input<string>;
-    hostnameOverride?: pulumi.Input<string>;
-    internalAddress?: pulumi.Input<string>;
-    /**
-     * Labels for the cluster template (map)
-     */
-    labels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    nodeId?: pulumi.Input<string>;
-    port?: pulumi.Input<string>;
-    roles: pulumi.Input<pulumi.Input<string>[]>;
-    sshAgentAuth?: pulumi.Input<boolean>;
-    sshKey?: pulumi.Input<string>;
-    sshKeyPath?: pulumi.Input<string>;
-    user: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigPrivateRegistry {
-    /**
-     * ECR credential plugin config
-     */
-    ecrCredentialPlugin?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigPrivateRegistryEcrCredentialPlugin>;
-    isDefault?: pulumi.Input<boolean>;
-    password?: pulumi.Input<string>;
-    url: pulumi.Input<string>;
-    user?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigPrivateRegistryEcrCredentialPlugin {
-    awsAccessKeyId?: pulumi.Input<string>;
-    awsSecretAccessKey?: pulumi.Input<string>;
-    awsSessionToken?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServices {
-    etcd?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcd>;
-    kubeApi?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApi>;
-    kubeController?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeController>;
-    kubelet?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubelet>;
-    kubeproxy?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeproxy>;
-    scheduler?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesScheduler>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcd {
-    backupConfig?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcdBackupConfig>;
-    caCert?: pulumi.Input<string>;
-    cert?: pulumi.Input<string>;
-    creation?: pulumi.Input<string>;
-    externalUrls?: pulumi.Input<pulumi.Input<string>[]>;
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    gid?: pulumi.Input<number>;
-    image?: pulumi.Input<string>;
-    key?: pulumi.Input<string>;
-    path?: pulumi.Input<string>;
-    retention?: pulumi.Input<string>;
-    snapshot?: pulumi.Input<boolean>;
-    uid?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcdBackupConfig {
-    /**
-     * Enable cluster template revision. Default `true` (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-    intervalHours?: pulumi.Input<number>;
-    retention?: pulumi.Input<number>;
-    s3BackupConfig?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcdBackupConfigS3BackupConfig>;
-    safeTimestamp?: pulumi.Input<boolean>;
-    timeout?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesEtcdBackupConfigS3BackupConfig {
-    accessKey?: pulumi.Input<string>;
-    bucketName: pulumi.Input<string>;
-    customCa?: pulumi.Input<string>;
-    endpoint: pulumi.Input<string>;
-    folder?: pulumi.Input<string>;
-    region?: pulumi.Input<string>;
-    secretKey?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApi {
-    /**
-     * Cluster admission configuration
-     */
-    admissionConfiguration?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAdmissionConfiguration>;
-    alwaysPullImages?: pulumi.Input<boolean>;
-    auditLog?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAuditLog>;
-    eventRateLimit?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiEventRateLimit>;
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    image?: pulumi.Input<string>;
-    secretsEncryptionConfig?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiSecretsEncryptionConfig>;
-    serviceClusterIpRange?: pulumi.Input<string>;
-    serviceNodePortRange?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAdmissionConfiguration {
-    /**
-     * Admission configuration ApiVersion
-     */
-    apiVersion?: pulumi.Input<string>;
-    /**
-     * Admission configuration Kind
-     */
-    kind?: pulumi.Input<string>;
-    /**
-     * Admission configuration plugins
-     */
-    plugins?: pulumi.Input<pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAdmissionConfigurationPlugin>[]>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAdmissionConfigurationPlugin {
-    /**
-     * Plugin configuration
-     */
-    configuration?: pulumi.Input<string>;
-    /**
-     * The cluster template name (string)
-     */
-    name?: pulumi.Input<string>;
-    /**
-     * Plugin path
-     */
-    path?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAuditLog {
-    configuration?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAuditLogConfiguration>;
-    /**
-     * Enable cluster template revision. Default `true` (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiAuditLogConfiguration {
-    format?: pulumi.Input<string>;
-    maxAge?: pulumi.Input<number>;
-    maxBackup?: pulumi.Input<number>;
-    maxSize?: pulumi.Input<number>;
-    path?: pulumi.Input<string>;
-    policy?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiEventRateLimit {
-    configuration?: pulumi.Input<string>;
-    /**
-     * Enable cluster template revision. Default `true` (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeApiSecretsEncryptionConfig {
-    customConfig?: pulumi.Input<string>;
-    /**
-     * Enable cluster template revision. Default `true` (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeController {
-    clusterCidr?: pulumi.Input<string>;
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    image?: pulumi.Input<string>;
-    serviceClusterIpRange?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubelet {
-    clusterDnsServer?: pulumi.Input<string>;
-    clusterDomain?: pulumi.Input<string>;
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    failSwapOn?: pulumi.Input<boolean>;
-    generateServingCertificate?: pulumi.Input<boolean>;
-    image?: pulumi.Input<string>;
-    infraContainerImage?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesKubeproxy {
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    image?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigServicesScheduler {
-    extraArgs?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    extraBinds?: pulumi.Input<pulumi.Input<string>[]>;
-    extraEnvs?: pulumi.Input<pulumi.Input<string>[]>;
-    image?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigUpgradeStrategy {
-    drain?: pulumi.Input<boolean>;
-    drainInput?: pulumi.Input<inputs.ClusterTemplateTemplateRevisionClusterConfigRkeConfigUpgradeStrategyDrainInput>;
-    maxUnavailableControlplane?: pulumi.Input<string>;
-    maxUnavailableWorker?: pulumi.Input<string>;
-}
-export interface ClusterTemplateTemplateRevisionClusterConfigRkeConfigUpgradeStrategyDrainInput {
-    deleteLocalData?: pulumi.Input<boolean>;
-    force?: pulumi.Input<boolean>;
-    gracePeriod?: pulumi.Input<number>;
-    ignoreDaemonSets?: pulumi.Input<boolean>;
-    timeout?: pulumi.Input<number>;
-}
-export interface ClusterTemplateTemplateRevisionQuestion {
-    /**
-     * Default variable value
-     */
-    default: pulumi.Input<string>;
-    /**
-     * Required variable
-     */
-    required?: pulumi.Input<boolean>;
-    /**
-     * Variable type
-     */
-    type?: pulumi.Input<string>;
-    /**
-     * Variable name
-     */
-    variable: pulumi.Input<string>;
-}
-export interface ClusterV2AgentEnvVar {
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-    /**
-     * The taint value.
-     */
-    value: pulumi.Input<string>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomization {
-    /**
-     * User defined tolerations to append to agent
-     */
-    appendTolerations?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationAppendToleration>[]>;
-    /**
-     * User defined affinity to override default agent affinity
-     */
-    overrideAffinity?: pulumi.Input<string>;
-    /**
-     * User defined resource requirements to set on the agent
-     */
-    overrideResourceRequirements?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationOverrideResourceRequirement>[]>;
-    /**
-     * User defined scheduling customization for the cattle cluster agent
-     */
-    schedulingCustomizations?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomization>[]>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomizationAppendToleration {
-    /**
-     * The taint effect. Default: `\"NoExecute\"`.
-     */
-    effect?: pulumi.Input<string>;
-    /**
-     * Key is the name of the key of the item to retrieve.
-     */
-    key: pulumi.Input<string>;
-    /**
-     * Operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
-     */
-    operator?: pulumi.Input<string>;
-    /**
-     * The number of seconds a pod will stay bound to a node with a matching taint.
-     */
-    seconds?: pulumi.Input<number>;
-    /**
-     * The taint value.
-     */
-    value?: pulumi.Input<string>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomizationOverrideResourceRequirement {
-    /**
-     * The maximum CPU limit for agent
-     */
-    cpuLimit?: pulumi.Input<string>;
-    /**
-     * The minimum CPU required for agent
-     */
-    cpuRequest?: pulumi.Input<string>;
-    /**
-     * The maximum memory limit for agent
-     */
-    memoryLimit?: pulumi.Input<string>;
-    /**
-     * The minimum memory required for agent
-     */
-    memoryRequest?: pulumi.Input<string>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomization {
-    /**
-     * The Pod Disruption Budget created for the cattle cluster agent
-     */
-    podDisruptionBudgets?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPodDisruptionBudget>[]>;
-    /**
-     * The Priority Class created for the cattle cluster agent
-     */
-    priorityClasses?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPriorityClass>[]>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPodDisruptionBudget {
-    /**
-     * The maximum number of cattle cluster agent replicas that can be down at a given time.
-     */
-    maxUnavailable?: pulumi.Input<string>;
-    /**
-     * The minimum number of cattle cluster agent replicas that must be running at a given time.
-     */
-    minAvailable?: pulumi.Input<string>;
-}
-export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPriorityClass {
-    /**
-     * The preemption behavior for the cattle cluster agent. Must be either 'PreemptLowerPriority' or 'Never'
-     */
-    preemptionPolicy?: pulumi.Input<string>;
-    /**
-     * The priority value for the cattle cluster agent. Must be between negative 1 billion and 1 billion.
-     */
-    value: pulumi.Input<number>;
-}
-export interface ClusterV2ClusterRegistrationToken {
-    /**
-     * Annotations for the Cluster.
-     */
-    annotations?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Cluster ID.
-     */
-    clusterId?: pulumi.Input<string>;
-    /**
-     * Command to execute in an imported k8s cluster.
-     */
-    command?: pulumi.Input<string>;
-    /**
-     * (Computed, string) The ID of the resource.
-     */
-    id?: pulumi.Input<string>;
-    /**
-     * Insecure command to execute in an imported k8s cluster.
-     */
-    insecureCommand?: pulumi.Input<string>;
-    /**
-     * Insecure node command to execute in an imported k8s cluster.
-     */
-    insecureNodeCommand?: pulumi.Input<string>;
-    /**
-     * Insecure windows command to execute in an imported k8s cluster.
-     */
-    insecureWindowsNodeCommand?: pulumi.Input<string>;
-    /**
-     * Labels for the Cluster.
-     */
-    labels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * K8s manifest url to execute with `kubectl` to import an existing k8s cluster.
-     */
-    manifestUrl?: pulumi.Input<string>;
-    /**
-     * The name of the cluster.
-     */
-    name?: pulumi.Input<string>;
-    /**
-     * Node command to execute in Linux nodes for custom k8s cluster.
-     */
-    nodeCommand?: pulumi.Input<string>;
-    /**
-     * Token for cluster registration token object.
-     */
-    token?: pulumi.Input<string>;
-    /**
-     * Node command to execute in Windows nodes for custom k8s cluster.
-     */
-    windowsNodeCommand?: pulumi.Input<string>;
-}
-export interface ClusterV2FleetAgentDeploymentCustomization {
-    /**
-     * User defined tolerations to append to agent
-     */
-    appendTolerations?: pulumi.Input<pulumi.Input<inputs.ClusterV2FleetAgentDeploymentCustomizationAppendToleration>[]>;
-    /**
-     * User defined affinity to override default agent affinity
-     */
-    overrideAffinity?: pulumi.Input<string>;
-    /**
-     * User defined resource requirements to set on the agent
-     */
-    overrideResourceRequirements?: pulumi.Input<pulumi.Input<inputs.ClusterV2FleetAgentDeploymentCustomizationOverrideResourceRequirement>[]>;
-}
-export interface ClusterV2FleetAgentDeploymentCustomizationAppendToleration {
-    /**
-     * The taint effect. Default: `\"NoExecute\"`.
-     */
-    effect?: pulumi.Input<string>;
-    /**
-     * Key is the name of the key of the item to retrieve.
-     */
-    key: pulumi.Input<string>;
-    /**
-     * Operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
-     */
-    operator?: pulumi.Input<string>;
-    /**
-     * The number of seconds a pod will stay bound to a node with a matching taint.
-     */
-    seconds?: pulumi.Input<number>;
-    /**
-     * The taint value.
-     */
-    value?: pulumi.Input<string>;
-}
-export interface ClusterV2FleetAgentDeploymentCustomizationOverrideResourceRequirement {
-    /**
-     * The maximum CPU limit for agent
-     */
-    cpuLimit?: pulumi.Input<string>;
-    /**
-     * The minimum CPU required for agent
-     */
-    cpuRequest?: pulumi.Input<string>;
-    /**
-     * The maximum memory limit for agent
-     */
-    memoryLimit?: pulumi.Input<string>;
-    /**
-     * The minimum memory required for agent
-     */
-    memoryRequest?: pulumi.Input<string>;
-}
-export interface ClusterV2LocalAuthEndpoint {
-    /**
-     * CA certs for the authorized cluster endpoint. It is only needed if there is a load balancer in front of the downstream cluster that is using an untrusted certificate. If you have a valid certificate, then nothing needs to be added to the CA Certificates field.
-     */
-    caCerts?: pulumi.Input<string>;
-    /**
-     * If `enabled` is set to true, nodes will be drained before upgrade.
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * FQDN for the authorized cluster endpoint. If one is entered, it should point to the downstream cluster.
-     */
-    fqdn?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfig {
-    /**
-     * Cluster V2 additional manifest
-     */
-    additionalManifest?: pulumi.Input<string>;
-    /**
-     * Cluster V2 chart values. It should be in YAML format
-     */
-    chartValues?: pulumi.Input<string>;
-    /**
-     * Cluster V2 data directories
-     */
-    dataDirectories?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigDataDirectory>[]>;
-    /**
-     * Cluster V2 etcd
-     */
-    etcd?: pulumi.Input<inputs.ClusterV2RkeConfigEtcd>;
-    /**
-     * Cluster V2 etcd snapshot create
-     */
-    etcdSnapshotCreate?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdSnapshotCreate>;
-    /**
-     * Cluster V2 etcd snapshot restore
-     */
-    etcdSnapshotRestore?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdSnapshotRestore>;
-    /**
-     * Local auth endpoint configures the Authorized Cluster Endpoint (ACE) which can be used to directly access the Kubernetes API server, without requiring communication through Rancher. For more information, please refer to [Rancher Documentation](https://ranchermanager.docs.rancher.com/how-to-guides/new-user-guides/kubernetes-clusters-in-rancher-setup/register-existing-clusters#authorized-cluster-endpoint-support-for-rke2-and-k3s-clusters).
-     *
-     * @deprecated Use rancher2_cluster_v2.local_auth_endpoint instead
-     */
-    localAuthEndpoint?: pulumi.Input<inputs.ClusterV2RkeConfigLocalAuthEndpoint>;
-    /**
-     * Cluster V2 machine global config
-     */
-    machineGlobalConfig?: pulumi.Input<string>;
-    /**
-     * Default values for machine pool configurations if unset
-     */
-    machinePoolDefaults?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolDefault>[]>;
-    /**
-     * Cluster V2 machine pools
-     */
-    machinePools?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePool>[]>;
-    /**
-     * Cluster V2 machine selector config
-     */
-    machineSelectorConfigs?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfig>[]>;
-    /**
-     * Cluster V2 machine selector files
-     */
-    machineSelectorFiles?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFile>[]>;
-    /**
-     * Cluster V2 registries
-     */
-    registries?: pulumi.Input<inputs.ClusterV2RkeConfigRegistries>;
-    /**
-     * Cluster V2 certificate rotation
-     */
-    rotateCertificates?: pulumi.Input<inputs.ClusterV2RkeConfigRotateCertificates>;
-    /**
-     * Cluster V2 upgrade strategy
-     */
-    upgradeStrategy?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategy>;
-}
-export interface ClusterV2RkeConfigDataDirectory {
-    /**
-     * Desired k8s distro data directory.
-     */
-    k8sDistro?: pulumi.Input<string>;
-    /**
-     * Desired provisioning data directory.
-     */
-    provisioning?: pulumi.Input<string>;
-    /**
-     * Desired System Agent data directory.
-     */
-    systemAgent?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigEtcd {
-    /**
-     * Disable ETCD snapshots
-     */
-    disableSnapshots?: pulumi.Input<boolean>;
-    /**
-     * ETCD snapshot S3 config
-     */
-    s3Config?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdS3Config>;
-    /**
-     * ETCD snapshot retention
-     */
-    snapshotRetention?: pulumi.Input<number>;
-    /**
-     * ETCD snapshot schedule cron (e.g `"0 *&#47;5 * * *"`)
-     */
-    snapshotScheduleCron?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigEtcdS3Config {
-    /**
-     * ETCD snapshot S3 bucket
-     */
-    bucket: pulumi.Input<string>;
-    /**
-     * ETCD snapshot S3 cloud credential name
-     */
-    cloudCredentialName?: pulumi.Input<string>;
-    /**
-     * ETCD snapshot S3 endpoint
-     */
-    endpoint: pulumi.Input<string>;
-    /**
-     * ETCD snapshot S3 endpoint CA
-     */
-    endpointCa?: pulumi.Input<string>;
-    /**
-     * ETCD snapshot S3 folder
-     */
-    folder?: pulumi.Input<string>;
-    /**
-     * ETCD snapshot S3 region
-     */
-    region?: pulumi.Input<string>;
-    /**
-     * Disable ETCD skip ssl verify
-     */
-    skipSslVerify?: pulumi.Input<boolean>;
-}
-export interface ClusterV2RkeConfigEtcdSnapshotCreate {
-    /**
-     * ETCD generation to initiate a snapshot
-     */
-    generation: pulumi.Input<number>;
-}
-export interface ClusterV2RkeConfigEtcdSnapshotRestore {
-    /**
-     * ETCD snapshot desired generation
-     */
-    generation: pulumi.Input<number>;
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-    /**
-     * ETCD restore RKE config (set to none, all, or kubernetesVersion)
-     */
-    restoreRkeConfig?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigLocalAuthEndpoint {
-    /**
-     * CA certs for the authorized cluster endpoint. It is only needed if there is a load balancer in front of the downstream cluster that is using an untrusted certificate. If you have a valid certificate, then nothing needs to be added to the CA Certificates field.
-     */
-    caCerts?: pulumi.Input<string>;
-    /**
-     * If `enabled` is set to true, nodes will be drained before upgrade.
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * FQDN for the authorized cluster endpoint. If one is entered, it should point to the downstream cluster.
-     */
-    fqdn?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachinePool {
-    /**
-     * Annotations for the Cluster.
-     */
-    annotations?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Cloud credential secret name is the secret to be used when a cloud credential secret name is not specified at the machine pool level.
-     */
-    cloudCredentialSecretName?: pulumi.Input<string>;
-    /**
-     * Machine pool control plane role
-     */
-    controlPlaneRole?: pulumi.Input<boolean>;
-    /**
-     * Machine pool drain before delete
-     */
-    drainBeforeDelete?: pulumi.Input<boolean>;
-    /**
-     * Machine pool etcd role
-     */
-    etcdRole?: pulumi.Input<boolean>;
-    /**
-     * maximum length for autogenerated hostname
-     */
-    hostnameLengthLimit?: pulumi.Input<number>;
-    /**
-     * Labels for the Cluster.
-     */
-    labels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Machine config data
-     */
-    machineConfig: pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolMachineConfig>;
-    /**
-     * Labels for the machine pool nodes
-     */
-    machineLabels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * OS Type in machine pool
-     */
-    machineOs?: pulumi.Input<string>;
-    /**
-     * max unhealthy nodes for automated replacement to be allowed
-     */
-    maxUnhealthy?: pulumi.Input<string>;
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-    /**
-     * seconds to wait for machine pool drain to complete before machine deletion
-     */
-    nodeDrainTimeout?: pulumi.Input<number>;
-    /**
-     * seconds a new node has to become active before it is replaced
-     */
-    nodeStartupTimeoutSeconds?: pulumi.Input<number>;
-    /**
-     * Machine pool paused
-     */
-    paused?: pulumi.Input<boolean>;
-    /**
-     * Machine pool quantity
-     */
-    quantity?: pulumi.Input<number>;
-    /**
-     * Machine pool rolling update
-     */
-    rollingUpdate?: pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolRollingUpdate>;
-    /**
-     * Machine pool taints
-     */
-    taints?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolTaint>[]>;
-    /**
-     * seconds an unhealthy node has to become active before it is replaced
-     */
-    unhealthyNodeTimeoutSeconds?: pulumi.Input<number>;
-    /**
-     * range of unhealthy nodes for automated replacement to be allowed
-     */
-    unhealthyRange?: pulumi.Input<string>;
-    /**
-     * Machine pool worker role
-     */
-    workerRole?: pulumi.Input<boolean>;
-}
-export interface ClusterV2RkeConfigMachinePoolDefault {
-    /**
-     * maximum length for autogenerated hostname
-     */
-    hostnameLengthLimit?: pulumi.Input<number>;
-}
-export interface ClusterV2RkeConfigMachinePoolMachineConfig {
-    /**
-     * Machine config API version
-     */
-    apiVersion?: pulumi.Input<string>;
-    /**
-     * Machine config kind
-     */
-    kind: pulumi.Input<string>;
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachinePoolRollingUpdate {
-    /**
-     * Rolling update max surge
-     */
-    maxSurge?: pulumi.Input<string>;
-    /**
-     * Rolling update max unavailable
-     */
-    maxUnavailable?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachinePoolTaint {
-    /**
-     * The taint effect. Default: `\"NoExecute\"`.
-     */
-    effect?: pulumi.Input<string>;
-    /**
-     * Key is the name of the key of the item to retrieve.
-     */
-    key: pulumi.Input<string>;
-    /**
-     * The taint value.
-     */
-    value: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachineSelectorConfig {
-    /**
-     * Machine selector config
-     */
-    config?: pulumi.Input<string>;
-    /**
-     * Machine label selector
-     */
-    machineLabelSelector?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelector>;
-}
-export interface ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelector {
-    /**
-     * Label selector match expressions
-     */
-    matchExpressions?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelectorMatchExpression>[]>;
-    /**
-     * Label selector match labels
-     */
-    matchLabels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-}
-export interface ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelectorMatchExpression {
-    /**
-     * Label selector requirement key
-     */
-    key?: pulumi.Input<string>;
-    /**
-     * Label selector operator
-     */
-    operator?: pulumi.Input<string>;
-    /**
-     * Label selector requirement values
-     */
-    values?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFile {
-    /**
-     * File sources
-     */
-    fileSources?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSource>[]>;
-    /**
-     * Machine label selector
-     */
-    machineLabelSelector?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileMachineLabelSelector>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileFileSource {
-    /**
-     * The configmap which is the source of files
-     */
-    configmap?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmap>;
-    /**
-     * The secret which is the source of files
-     */
-    secret?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceSecret>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmap {
-    /**
-     * The default permissions to be applied when they are not set at the item level
-     */
-    defaultPermissions?: pulumi.Input<string>;
-    /**
-     * Items(files) to retrieve from the K8s object
-     */
-    items?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmapItem>[]>;
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmapItem {
-    /**
-     * If ture, the file is ignored when determining whether the node should be drained before updating the node plan (default: true).
-     */
-    dynamic?: pulumi.Input<boolean>;
-    /**
-     * The base64 encoded value of the SHA256 checksum of the file's content
-     */
-    hash?: pulumi.Input<string>;
-    /**
-     * The key of the item(file) to retrieve
-     */
-    key: pulumi.Input<string>;
-    /**
-     * The path to put the file in the target node
-     */
-    path: pulumi.Input<string>;
-    /**
-     * The numeric representation of the file permissions
-     */
-    permissions?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileFileSourceSecret {
-    /**
-     * The default permissions to be applied when they are not set at the item level
-     */
-    defaultPermissions?: pulumi.Input<string>;
-    /**
-     * Items(files) to retrieve from the K8s object
-     */
-    items?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceSecretItem>[]>;
-    /**
-     * The name of the cluster.
-     */
-    name: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileFileSourceSecretItem {
-    /**
-     * If ture, the file is ignored when determining whether the node should be drained before updating the node plan (default: true).
-     */
-    dynamic?: pulumi.Input<boolean>;
-    /**
-     * The base64 encoded value of the SHA256 checksum of the file's content
-     */
-    hash?: pulumi.Input<string>;
-    /**
-     * The key of the item(file) to retrieve
-     */
-    key: pulumi.Input<string>;
-    /**
-     * The path to put the file in the target node
-     */
-    path: pulumi.Input<string>;
-    /**
-     * The numeric representation of the file permissions
-     */
-    permissions?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileMachineLabelSelector {
-    /**
-     * Label selector match expressions
-     */
-    matchExpressions?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileMachineLabelSelectorMatchExpression>[]>;
-    /**
-     * Label selector match labels
-     */
-    matchLabels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-}
-export interface ClusterV2RkeConfigMachineSelectorFileMachineLabelSelectorMatchExpression {
-    /**
-     * Label selector requirement key
-     */
-    key?: pulumi.Input<string>;
-    /**
-     * Label selector operator
-     */
-    operator?: pulumi.Input<string>;
-    /**
-     * Label selector requirement values
-     */
-    values?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface ClusterV2RkeConfigRegistries {
-    /**
-     * Registry config
-     */
-    configs?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigRegistriesConfig>[]>;
-    /**
-     * Registry mirrors
-     */
-    mirrors?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigRegistriesMirror>[]>;
-}
-export interface ClusterV2RkeConfigRegistriesConfig {
-    /**
-     * Registry auth config secret name
-     */
-    authConfigSecretName?: pulumi.Input<string>;
-    /**
-     * Registry CA bundle
-     */
-    caBundle?: pulumi.Input<string>;
-    /**
-     * Registry hostname
-     */
-    hostname: pulumi.Input<string>;
-    /**
-     * Registry insecure connectivity
-     */
-    insecure?: pulumi.Input<boolean>;
-    /**
-     * Registry TLS secret name. TLS is a pair of Cert/Key
-     */
-    tlsSecretName?: pulumi.Input<string>;
-}
-export interface ClusterV2RkeConfigRegistriesMirror {
-    /**
-     * Registry mirror endpoints
-     */
-    endpoints?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Registry hostname
-     */
-    hostname: pulumi.Input<string>;
-    /**
-     * Registry mirror rewrites
-     */
-    rewrites?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-}
-export interface ClusterV2RkeConfigRotateCertificates {
-    /**
-     * Desired certificate rotation generation.
-     */
-    generation: pulumi.Input<number>;
-    /**
-     * Service certificates to rotate with this generation.
-     */
-    services?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface ClusterV2RkeConfigUpgradeStrategy {
-    /**
-     * How many controlplane nodes should be upgrade at time, 0 is infinite. Percentages are also accepted
-     */
-    controlPlaneConcurrency?: pulumi.Input<string>;
-    /**
-     * Controlplane nodes drain options
-     */
-    controlPlaneDrainOptions?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategyControlPlaneDrainOptions>;
-    /**
-     * How many worker nodes should be upgrade at time
-     */
-    workerConcurrency?: pulumi.Input<string>;
-    /**
-     * Worker nodes drain options
-     */
-    workerDrainOptions?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategyWorkerDrainOptions>;
-}
-export interface ClusterV2RkeConfigUpgradeStrategyControlPlaneDrainOptions {
-    /**
-     * Drain options delete empty dir data
-     */
-    deleteEmptyDirData?: pulumi.Input<boolean>;
-    /**
-     * Drain options disable eviction
-     */
-    disableEviction?: pulumi.Input<boolean>;
-    /**
-     * Drain options enabled?
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * Drain options force
-     */
-    force?: pulumi.Input<boolean>;
-    /**
-     * Drain options grace period
-     */
-    gracePeriod?: pulumi.Input<number>;
-    /**
-     * Drain options ignore daemon sets
-     */
-    ignoreDaemonSets?: pulumi.Input<boolean>;
-    /**
-     * Drain options ignore errors
-     */
-    ignoreErrors?: pulumi.Input<boolean>;
-    /**
-     * Drain options skip wait for delete timeout seconds
-     */
-    skipWaitForDeleteTimeoutSeconds?: pulumi.Input<number>;
-    /**
-     * Drain options timeout
-     */
-    timeout?: pulumi.Input<number>;
-}
-export interface ClusterV2RkeConfigUpgradeStrategyWorkerDrainOptions {
-    /**
-     * Drain options delete empty dir data
-     */
-    deleteEmptyDirData?: pulumi.Input<boolean>;
-    /**
-     * Drain options disable eviction
-     */
-    disableEviction?: pulumi.Input<boolean>;
-    /**
-     * Drain options enabled?
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * Drain options force
-     */
-    force?: pulumi.Input<boolean>;
-    /**
-     * Drain options grace period
-     */
-    gracePeriod?: pulumi.Input<number>;
-    /**
-     * Drain options ignore daemon sets
-     */
-    ignoreDaemonSets?: pulumi.Input<boolean>;
-    /**
-     * Drain options ignore errors
-     */
-    ignoreErrors?: pulumi.Input<boolean>;
-    /**
-     * Drain options skip wait for delete timeout seconds
-     */
-    skipWaitForDeleteTimeoutSeconds?: pulumi.Input<number>;
-    /**
-     * Drain options timeout
-     */
-    timeout?: pulumi.Input<number>;
-}
-export interface EtcdBackupBackupConfig {
-    /**
-     * Enable etcd backup (bool)
-     */
-    enabled?: pulumi.Input<boolean>;
-    /**
-     * Interval hours for etcd backup. Default `12` (int)
-     */
-    intervalHours?: pulumi.Input<number>;
-    /**
-     * Retention for etcd backup. Default `6` (int)
-     */
-    retention?: pulumi.Input<number>;
-    /**
-     * S3 config options for etcd backup. Valid for `imported` and `rke` clusters. (list maxitems:1)
-     */
-    s3BackupConfig?: pulumi.Input<inputs.EtcdBackupBackupConfigS3BackupConfig>;
-    safeTimestamp?: pulumi.Input<boolean>;
-    timeout?: pulumi.Input<number>;
-}
-export interface EtcdBackupBackupConfigS3BackupConfig {
-    /**
-     * Access key for S3 service (string)
-     */
-    accessKey?: pulumi.Input<string>;
-    /**
-     * Bucket name for S3 service (string)
-     */
-    bucketName: pulumi.Input<string>;
-    /**
-     * Base64 encoded custom CA for S3 service. Use filebase64(<FILE>) for encoding file. Available from Rancher v2.2.5 (string)
-     */
-    customCa?: pulumi.Input<string>;
-    /**
-     * Endpoint for S3 service (string)
-     */
-    endpoint: pulumi.Input<string>;
-    /**
-     * Folder for S3 service. Available from Rancher v2.2.7 (string)
-     */
-    folder?: pulumi.Input<string>;
-    /**
-     * Region for S3 service (string)
-     */
-    region?: pulumi.Input<string>;
-    /**
-     * Secret key for S3 service (string)
-     */
-    secretKey?: pulumi.Input<string>;
-}
-export interface GetRoleTemplateExternalRule {
-    /**
-     * Policy rule api groups
-     */
-    apiGroups?: string[];
-    /**
-     * Policy rule non resource urls
-     */
-    nonResourceUrls?: string[];
-    /**
-     * Policy rule resource names
-     */
-    resourceNames?: string[];
-    /**
-     * Policy rule resources
-     */
-    resources?: string[];
-    /**
-     * Policy rule verbs
-     */
-    verbs?: string[];
-}
-export interface GetRoleTemplateExternalRuleArgs {
-    /**
-     * Policy rule api groups
-     */
-    apiGroups?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule non resource urls
-     */
-    nonResourceUrls?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule resource names
-     */
-    resourceNames?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule resources
-     */
-    resources?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule verbs
-     */
-    verbs?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface GlobalRoleRule {
-    /**
-     * Policy rule api groups
-     */
-    apiGroups?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule non resource urls
-     */
-    nonResourceUrls?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule resource names
-     */
-    resourceNames?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule resources
-     */
-    resources?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Policy rule verbs
-     */
-    verbs?: pulumi.Input<pulumi.Input<string>[]>;
-}
-export interface MachineConfigV2Amazonec2Config {
-    /**
-     * AWS Access Key
-     */
-    accessKey?: pulumi.Input<string>;
-    /**
-     * AWS machine image
-     */
-    ami: pulumi.Input<string>;
-    /**
-     * AWS spot instance duration in minutes (60, 120, 180, 240, 300, or 360)
-     */
-    blockDurationMinutes?: pulumi.Input<string>;
-    /**
-     * AWS root device name
-     */
-    deviceName?: pulumi.Input<string>;
-    /**
-     * Encrypt EBS volume
-     */
-    encryptEbsVolume?: pulumi.Input<boolean>;
-    /**
-     * Optional endpoint URL (hostname only or fully qualified URI)
-     */
-    endpoint?: pulumi.Input<string>;
-    /**
-     * Enables or disables the HTTP metadata endpoint on your instances
-     */
-    httpEndpoint?: pulumi.Input<string>;
-    /**
-     * The state of token usage for your instance metadata requests
-     */
-    httpTokens?: pulumi.Input<string>;
-    /**
-     * AWS IAM Instance Profile
-     */
-    iamInstanceProfile?: pulumi.Input<string>;
-    /**
-     * Disable SSL when sending requests
-     */
-    insecureTransport?: pulumi.Input<boolean>;
-    /**
-     * AWS instance type
-     */
-    instanceType?: pulumi.Input<string>;
-    /**
-     * Custom KMS key ID using the AWS Managed CMK
-     */
-    kmsKey?: pulumi.Input<string>;
-    /**
-     * Set this flag to enable CloudWatch monitoring
-     */
-    monitoring?: pulumi.Input<boolean>;
-    /**
-     * Make the specified port number accessible from the Internet
-     */
-    openPorts?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Only use a private IP address
-     */
-    privateAddressOnly?: pulumi.Input<boolean>;
-    /**
-     * AWS Region
-     */
-    region: pulumi.Input<string>;
-    /**
-     * Set this flag to request spot instance
-     */
-    requestSpotInstance?: pulumi.Input<boolean>;
-    /**
-     * Set retry count for recoverable failures (use -1 to disable)
-     */
-    retries?: pulumi.Input<string>;
-    /**
-     * AWS root disk size (in GB)
-     */
-    rootSize?: pulumi.Input<string>;
-    /**
-     * AWS Secret Key
-     */
-    secretKey?: pulumi.Input<string>;
-    /**
-     * Skip adding default rules to security groups
-     */
-    securityGroupReadonly?: pulumi.Input<boolean>;
-    /**
-     * AWS VPC security group
-     */
-    securityGroups: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * AWS Session Token
-     */
-    sessionToken?: pulumi.Input<string>;
-    /**
-     * AWS spot instance bid price (in dollar)
-     */
-    spotPrice?: pulumi.Input<string>;
-    /**
-     * SSH Key file contents for sshKeyContents
-     */
-    sshKeyContents?: pulumi.Input<string>;
-    /**
-     * Set the name of the ssh user
-     */
-    sshUser?: pulumi.Input<string>;
-    /**
-     * AWS VPC subnet id
-     */
-    subnetId: pulumi.Input<string>;
-    /**
-     * AWS Tags (e.g. key1,value1,key2,value2)
-     */
-    tags?: pulumi.Input<string>;
-    /**
-     * Create an EBS optimized instance
-     */
-    useEbsOptimizedInstance?: pulumi.Input<boolean>;
-    /**
-     * Force the usage of private IP address
-     */
-    usePrivateAddress?: pulumi.Input<boolean>;
-    /**
-     * Path to file with cloud-init user data
-     */
-    userdata?: pulumi.Input<string>;
-    /**
-     * Amazon EBS volume type
-     */
-    volumeType?: pulumi.Input<string>;
-    /**
-     * AWS VPC id
-     */
-    vpcId: pulumi.Input<string>;
-    /**
-     * AWS zone for instance (i.e. a,b,c,d,e)
-     */
-    zone: pulumi.Input<string>;
-}
-export interface MachineConfigV2AzureConfig {
-    /**
-     * Use Accelerated Networking when creating a network interface for the Azure VM
-     */
-    acceleratedNetworking?: pulumi.Input<boolean>;
-    /**
-     * Azure Availability Set to place the virtual machine into
-     */
-    availabilitySet?: pulumi.Input<string>;
-    /**
-     * The Availability Zone that the Azure VM should be created in
-     */
-    availabilityZone?: pulumi.Input<string>;
-    /**
-     * Azure Service Principal Account ID (optional, browser auth is used if not specified)
-     */
-    clientId?: pulumi.Input<string>;
-    /**
-     * Azure Service Principal Account password (optional, browser auth is used if not specified)
+     * User defined affinity to override default agent affinity
      */
-    clientSecret?: pulumi.Input<string>;
+    overrideAffinity?: pulumi.Input<string>;
     /**
-     * Path to file with custom-data
+     * User defined resource requirements to set on the agent
      */
-    customData?: pulumi.Input<string>;
+    overrideResourceRequirements?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationOverrideResourceRequirement>[]>;
     /**
-     * Disk size if using managed disk
+     * User defined scheduling customization for the cattle cluster agent
      */
-    diskSize?: pulumi.Input<string>;
+    schedulingCustomizations?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomization>[]>;
+}
+export interface ClusterV2ClusterAgentDeploymentCustomizationAppendToleration {
     /**
-     * A unique DNS label for the public IP adddress
+     * The taint effect. Default: `\"NoExecute\"`.
      */
-    dns?: pulumi.Input<string>;
+    effect?: pulumi.Input<string>;
     /**
-     * Port number for Docker engine
+     * Key is the name of the key of the item to retrieve.
      */
-    dockerPort?: pulumi.Input<string>;
+    key: pulumi.Input<string>;
     /**
-     * Azure environment (e.g. AzurePublicCloud, AzureChinaCloud)
+     * Operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
      */
-    environment?: pulumi.Input<string>;
+    operator?: pulumi.Input<string>;
     /**
-     * Fault domain count to use for availability set
+     * The number of seconds a pod will stay bound to a node with a matching taint.
      */
-    faultDomainCount?: pulumi.Input<string>;
+    seconds?: pulumi.Input<number>;
     /**
-     * Azure virtual machine OS image
+     * The taint value.
      */
-    image?: pulumi.Input<string>;
+    value?: pulumi.Input<string>;
+}
+export interface ClusterV2ClusterAgentDeploymentCustomizationOverrideResourceRequirement {
     /**
-     * Azure region to create the virtual machine
+     * The maximum CPU limit for agent
      */
-    location?: pulumi.Input<string>;
+    cpuLimit?: pulumi.Input<string>;
     /**
-     * Configures VM and availability set for managed disks
+     * The minimum CPU required for agent
      */
-    managedDisks?: pulumi.Input<boolean>;
+    cpuRequest?: pulumi.Input<string>;
     /**
-     * Do not create a public IP address for the machine
+     * The maximum memory limit for agent
      */
-    noPublicIp?: pulumi.Input<boolean>;
+    memoryLimit?: pulumi.Input<string>;
     /**
-     * Azure Network Security Group to assign this node to (accepts either a name or resource ID, default is to create a new NSG for each machine)
+     * The minimum memory required for agent
      */
-    nsg?: pulumi.Input<string>;
+    memoryRequest?: pulumi.Input<string>;
+}
+export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomization {
     /**
-     * Make the specified port number accessible from the Internet
+     * The Pod Disruption Budget created for the cattle cluster agent
      */
-    openPorts?: pulumi.Input<pulumi.Input<string>[]>;
+    podDisruptionBudgets?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPodDisruptionBudget>[]>;
     /**
-     * Only use a private IP address
+     * The Priority Class created for the cattle cluster agent
      */
-    privateAddressOnly?: pulumi.Input<boolean>;
+    priorityClasses?: pulumi.Input<pulumi.Input<inputs.ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPriorityClass>[]>;
+}
+export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPodDisruptionBudget {
     /**
-     * Specify a static private IP address for the machine
+     * The maximum number of cattle cluster agent replicas that can be down at a given time.
      */
-    privateIpAddress?: pulumi.Input<string>;
+    maxUnavailable?: pulumi.Input<string>;
     /**
-     * Azure Resource Group name (will be created if missing)
+     * The minimum number of cattle cluster agent replicas that must be running at a given time.
      */
-    resourceGroup?: pulumi.Input<string>;
+    minAvailable?: pulumi.Input<string>;
+}
+export interface ClusterV2ClusterAgentDeploymentCustomizationSchedulingCustomizationPriorityClass {
     /**
-     * Size for Azure Virtual Machine
+     * The preemption behavior for the cattle cluster agent. Must be either 'PreemptLowerPriority' or 'Never'
      */
-    size?: pulumi.Input<string>;
+    preemptionPolicy?: pulumi.Input<string>;
     /**
-     * Username for SSH login
+     * The priority value for the cattle cluster agent. Must be between negative 1 billion and 1 billion.
      */
-    sshUser?: pulumi.Input<string>;
+    value: pulumi.Input<number>;
+}
+export interface ClusterV2ClusterRegistrationToken {
     /**
-     * Assign a static public IP address to the machine
+     * Annotations for the Cluster.
      */
-    staticPublicIp?: pulumi.Input<boolean>;
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
     /**
-     * Type of Storage Account to host the OS Disk for the machine
+     * Cluster ID.
      */
-    storageType?: pulumi.Input<string>;
+    clusterId?: pulumi.Input<string>;
     /**
-     * Azure Subnet Name to be used within the Virtual Network
+     * Command to execute in an imported k8s cluster.
      */
-    subnet?: pulumi.Input<string>;
+    command?: pulumi.Input<string>;
     /**
-     * Private CIDR block to be used for the new subnet, should comply RFC 1918
+     * (Computed, string) The ID of the resource.
      */
-    subnetPrefix?: pulumi.Input<string>;
+    id?: pulumi.Input<string>;
     /**
-     * Azure Subscription ID
+     * Insecure command to execute in an imported k8s cluster.
      */
-    subscriptionId?: pulumi.Input<string>;
+    insecureCommand?: pulumi.Input<string>;
     /**
-     * Tags to be applied to the Azure VM instance (e.g. key1,value1,key2,value2)
+     * Insecure node command to execute in an imported k8s cluster.
      */
-    tags?: pulumi.Input<string>;
+    insecureNodeCommand?: pulumi.Input<string>;
     /**
-     * Azure Tenant ID
+     * Insecure windows command to execute in an imported k8s cluster.
      */
-    tenantId?: pulumi.Input<string>;
+    insecureWindowsNodeCommand?: pulumi.Input<string>;
     /**
-     * Update domain count to use for availability set
+     * Labels for the Cluster.
      */
-    updateDomainCount?: pulumi.Input<string>;
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
     /**
-     * Use private IP address of the machine to connect
+     * K8s manifest url to execute with `kubectl` to import an existing k8s cluster.
      */
-    usePrivateIp?: pulumi.Input<boolean>;
+    manifestUrl?: pulumi.Input<string>;
     /**
-     * Use the standard SKU when creating a Public IP for the Azure VM instance
+     * The name of the cluster.
      */
-    usePublicIpStandardSku?: pulumi.Input<boolean>;
+    name?: pulumi.Input<string>;
     /**
-     * Azure Virtual Network name to connect the virtual machine (in [resourcegroup:]name format)
+     * Node command to execute in Linux nodes for custom k8s cluster.
      */
-    vnet?: pulumi.Input<string>;
-}
-export interface MachineConfigV2DigitaloceanConfig {
+    nodeCommand?: pulumi.Input<string>;
     /**
-     * Digital Ocean access token
+     * Token for cluster registration token object.
      */
-    accessToken?: pulumi.Input<string>;
+    token?: pulumi.Input<string>;
     /**
-     * Enable backups for droplet
+     * Node command to execute in Windows nodes for custom k8s cluster.
      */
-    backups?: pulumi.Input<boolean>;
+    windowsNodeCommand?: pulumi.Input<string>;
+}
+export interface ClusterV2FleetAgentDeploymentCustomization {
     /**
-     * Digital Ocean Image
+     * User defined tolerations to append to agent
      */
-    image?: pulumi.Input<string>;
+    appendTolerations?: pulumi.Input<pulumi.Input<inputs.ClusterV2FleetAgentDeploymentCustomizationAppendToleration>[]>;
     /**
-     * Enable ipv6 for droplet
+     * User defined affinity to override default agent affinity
      */
-    ipv6?: pulumi.Input<boolean>;
+    overrideAffinity?: pulumi.Input<string>;
     /**
-     * Enable monitoring for droplet
+     * User defined resource requirements to set on the agent
      */
-    monitoring?: pulumi.Input<boolean>;
+    overrideResourceRequirements?: pulumi.Input<pulumi.Input<inputs.ClusterV2FleetAgentDeploymentCustomizationOverrideResourceRequirement>[]>;
+}
+export interface ClusterV2FleetAgentDeploymentCustomizationAppendToleration {
     /**
-     * Enable private networking for droplet
+     * The taint effect. Default: `\"NoExecute\"`.
      */
-    privateNetworking?: pulumi.Input<boolean>;
+    effect?: pulumi.Input<string>;
     /**
-     * Digital Ocean region
+     * Key is the name of the key of the item to retrieve.
      */
-    region?: pulumi.Input<string>;
+    key: pulumi.Input<string>;
     /**
-     * Digital Ocean size
+     * Operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
      */
-    size?: pulumi.Input<string>;
+    operator?: pulumi.Input<string>;
     /**
-     * SSH private key contents
+     * The number of seconds a pod will stay bound to a node with a matching taint.
      */
-    sshKeyContents?: pulumi.Input<string>;
+    seconds?: pulumi.Input<number>;
     /**
-     * SSH key fingerprint
+     * The taint value.
      */
-    sshKeyFingerprint?: pulumi.Input<string>;
+    value?: pulumi.Input<string>;
+}
+export interface ClusterV2FleetAgentDeploymentCustomizationOverrideResourceRequirement {
     /**
-     * SSH port
+     * The maximum CPU limit for agent
      */
-    sshPort?: pulumi.Input<string>;
+    cpuLimit?: pulumi.Input<string>;
     /**
-     * SSH username
+     * The minimum CPU required for agent
      */
-    sshUser?: pulumi.Input<string>;
+    cpuRequest?: pulumi.Input<string>;
     /**
-     * Comma-separated list of tags to apply to the Droplet
+     * The maximum memory limit for agent
      */
-    tags?: pulumi.Input<string>;
+    memoryLimit?: pulumi.Input<string>;
     /**
-     * Path to file with cloud-init user-data
+     * The minimum memory required for agent
      */
-    userdata?: pulumi.Input<string>;
+    memoryRequest?: pulumi.Input<string>;
 }
-export interface MachineConfigV2GoogleConfig {
+export interface ClusterV2LocalAuthEndpoint {
     /**
-     * GCE Instance External IP
+     * CA certs for the authorized cluster endpoint. It is only needed if there is a load balancer in front of the downstream cluster that is using an untrusted certificate. If you have a valid certificate, then nothing needs to be added to the CA Certificates field.
      */
-    address?: pulumi.Input<string>;
+    caCerts?: pulumi.Input<string>;
     /**
-     * GCE service account auth json file path
+     * If `enabled` is set to true, nodes will be drained before upgrade.
      */
-    authEncodedJson?: pulumi.Input<string>;
+    enabled?: pulumi.Input<boolean>;
     /**
-     * GCE Instance Disk Size (in GB)
+     * FQDN for the authorized cluster endpoint. If one is entered, it should point to the downstream cluster.
      */
-    diskSize: pulumi.Input<string>;
+    fqdn?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfig {
     /**
-     * GCE Instance Disk Type
+     * Cluster V2 additional manifest
      */
-    diskType: pulumi.Input<string>;
+    additionalManifest?: pulumi.Input<string>;
     /**
-     * A prefix to be added to firewall rules created when exposing ports publicly. Required if exposing ports publicly.
+     * Cluster V2 chart values. It should be in YAML format
      */
-    externalFirewallRulePrefix?: pulumi.Input<string>;
+    chartValues?: pulumi.Input<string>;
     /**
-     * A prefix to be added to an internal firewall rule created to ensure virtual machines can communicate with one another.
+     * Cluster V2 data directories
      */
-    internalFirewallRulePrefix?: pulumi.Input<string>;
+    dataDirectories?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigDataDirectory>[]>;
     /**
-     * GCE instance image absolute URL
+     * Cluster V2 etcd
      */
-    machineImage: pulumi.Input<string>;
+    etcd?: pulumi.Input<inputs.ClusterV2RkeConfigEtcd>;
     /**
-     * GCE instance type
+     * Cluster V2 etcd snapshot create
      */
-    machineType: pulumi.Input<string>;
+    etcdSnapshotCreate?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdSnapshotCreate>;
     /**
-     * The network to provision virtual machines within
+     * Cluster V2 etcd snapshot restore
      */
-    network: pulumi.Input<string>;
+    etcdSnapshotRestore?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdSnapshotRestore>;
     /**
-     * A list of ports to be opened publicly. 'external_firewall_rule_prefix' must also be set
+     * Local auth endpoint configures the Authorized Cluster Endpoint (ACE) which can be used to directly access the Kubernetes API server, without requiring communication through Rancher. For more information, please refer to [Rancher Documentation](https://ranchermanager.docs.rancher.com/how-to-guides/new-user-guides/kubernetes-clusters-in-rancher-setup/register-existing-clusters#authorized-cluster-endpoint-support-for-rke2-and-k3s-clusters).
+     *
+     * @deprecated Use rancher2_cluster_v2.local_auth_endpoint instead
      */
-    openPorts?: pulumi.Input<pulumi.Input<string>[]>;
+    localAuthEndpoint?: pulumi.Input<inputs.ClusterV2RkeConfigLocalAuthEndpoint>;
     /**
-     * Indicates if the virtual machine can be preempted
+     * Cluster V2 machine global config
      */
-    preemptable?: pulumi.Input<boolean>;
+    machineGlobalConfig?: pulumi.Input<string>;
     /**
-     * The GCP project to create virtual machines within
+     * Default values for machine pool configurations if unset
      */
-    project: pulumi.Input<string>;
+    machinePoolDefaults?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolDefault>[]>;
     /**
-     * Access scopes to be set on the virtual machine
+     * Cluster V2 machine pools
      */
-    scopes?: pulumi.Input<string>;
+    machinePools?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePool>[]>;
     /**
-     * The subnetwork to provision virtual machines within
+     * Cluster V2 machine selector config
      */
-    subNetwork?: pulumi.Input<string>;
+    machineSelectorConfigs?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfig>[]>;
     /**
-     * A set of network tags to be added to each VM, in the format of 'tag1,tag2'
+     * Cluster V2 machine selector files
      */
-    tags?: pulumi.Input<string>;
+    machineSelectorFiles?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFile>[]>;
     /**
-     * Indicates if an existing VM should be used. This is not currently support in Rancher.
+     * Cluster V2 networking
      */
-    useExisting?: pulumi.Input<boolean>;
+    networking?: pulumi.Input<inputs.ClusterV2RkeConfigNetworking>;
     /**
-     * Indicates if the virtual machines should use an internal IP
+     * Cluster V2 registries
      */
-    useInternalIp?: pulumi.Input<boolean>;
+    registries?: pulumi.Input<inputs.ClusterV2RkeConfigRegistries>;
     /**
-     * Indicates if the virtual machines should use an internal IP only and not be assigned a public IP
+     * Cluster V2 certificate rotation
      */
-    useInternalIpOnly?: pulumi.Input<boolean>;
+    rotateCertificates?: pulumi.Input<inputs.ClusterV2RkeConfigRotateCertificates>;
     /**
-     * GCE user-data file path
+     * Cluster V2 upgrade strategy
      */
-    userData?: pulumi.Input<string>;
+    upgradeStrategy?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategy>;
+}
+export interface ClusterV2RkeConfigDataDirectory {
     /**
-     * The username to be set when logging into the virtual machines
+     * Desired k8s distro data directory.
      */
-    username?: pulumi.Input<string>;
+    k8sDistro?: pulumi.Input<string>;
     /**
-     * A set of labels to be added to each VM, in the format of 'key1,value1,key2,value2'
+     * Desired provisioning data directory.
      */
-    vmLabels?: pulumi.Input<string>;
+    provisioning?: pulumi.Input<string>;
     /**
-     * The region and zone to create virtual machines within (e.g. us-east1-b)
+     * Desired System Agent data directory.
      */
-    zone: pulumi.Input<string>;
+    systemAgent?: pulumi.Input<string>;
 }
-export interface MachineConfigV2HarvesterConfig {
+export interface ClusterV2RkeConfigEtcd {
     /**
-     * CPU count
+     * Disable ETCD snapshots
      */
-    cpuCount?: pulumi.Input<string>;
+    disableSnapshots?: pulumi.Input<boolean>;
     /**
-     * Disk bus
-     *
-     * @deprecated Use diskInfo instead
+     * ETCD snapshot S3 config
      */
-    diskBus?: pulumi.Input<string>;
+    s3Config?: pulumi.Input<inputs.ClusterV2RkeConfigEtcdS3Config>;
     /**
-     * A JSON string specifying info for the disks e.g. `{"disks":[{"imageName":"harvester-public/image-57hzg","bootOrder":1,"size":40},{"storageClassName":"node-driver-test","bootOrder":2,"size":1}]}`
+     * ETCD snapshot retention
      */
-    diskInfo?: pulumi.Input<string>;
+    snapshotRetention?: pulumi.Input<number>;
     /**
-     * Disk size (in GiB)
-     *
-     * @deprecated Use diskInfo instead
+     * ETCD snapshot schedule cron (e.g `"0 *&#47;5 * * *"`)
      */
-    diskSize?: pulumi.Input<string>;
+    snapshotScheduleCron?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigEtcdS3Config {
     /**
-     * Image name
-     *
-     * @deprecated Use diskInfo instead
+     * ETCD snapshot S3 bucket
      */
-    imageName?: pulumi.Input<string>;
+    bucket: pulumi.Input<string>;
     /**
-     * Memory size (in GiB)
+     * ETCD snapshot S3 cloud credential name
      */
-    memorySize?: pulumi.Input<string>;
+    cloudCredentialName?: pulumi.Input<string>;
     /**
-     * NetworkData content of cloud-init, base64 is supported
+     * ETCD snapshot S3 endpoint
      */
-    networkData?: pulumi.Input<string>;
+    endpoint: pulumi.Input<string>;
     /**
-     * A JSON string specifying info for the networks e.g. `{"interfaces":[{"networkName":"harvester-public/vlan1"},{"networkName":"harvester-public/vlan2"}]}`
+     * ETCD snapshot S3 endpoint CA
      */
-    networkInfo?: pulumi.Input<string>;
+    endpointCa?: pulumi.Input<string>;
     /**
-     * Network model
-     *
-     * @deprecated Use networkInfo instead
+     * ETCD snapshot S3 folder
      */
-    networkModel?: pulumi.Input<string>;
+    folder?: pulumi.Input<string>;
     /**
-     * Network name
-     *
-     * @deprecated Use networkInfo instead
+     * ETCD snapshot S3 region
      */
-    networkName?: pulumi.Input<string>;
+    region?: pulumi.Input<string>;
     /**
-     * SSH password
+     * Disable ETCD skip ssl verify
      */
-    sshPassword?: pulumi.Input<string>;
+    skipSslVerify?: pulumi.Input<boolean>;
+}
+export interface ClusterV2RkeConfigEtcdSnapshotCreate {
     /**
-     * SSH username
+     * ETCD generation to initiate a snapshot
      */
-    sshUser: pulumi.Input<string>;
+    generation: pulumi.Input<number>;
+}
+export interface ClusterV2RkeConfigEtcdSnapshotRestore {
     /**
-     * UserData content of cloud-init, base64 is supported. If the image does not contain the qemu-guest-agent package, you must install and start qemu-guest-agent using userdata
+     * ETCD snapshot desired generation
      */
-    userData?: pulumi.Input<string>;
+    generation: pulumi.Input<number>;
     /**
-     * VM affinity, base64 is supported
+     * The name of the cluster.
      */
-    vmAffinity?: pulumi.Input<string>;
+    name: pulumi.Input<string>;
     /**
-     * Virtual machine namespace
+     * ETCD restore RKE config (set to none, all, or kubernetesVersion)
      */
-    vmNamespace: pulumi.Input<string>;
+    restoreRkeConfig?: pulumi.Input<string>;
 }
-export interface MachineConfigV2LinodeConfig {
+export interface ClusterV2RkeConfigLocalAuthEndpoint {
     /**
-     * Linode user accounts (seperated by commas) whose Linode SSH keys will be permitted root access to the created node
+     * CA certs for the authorized cluster endpoint. It is only needed if there is a load balancer in front of the downstream cluster that is using an untrusted certificate. If you have a valid certificate, then nothing needs to be added to the CA Certificates field.
      */
-    authorizedUsers?: pulumi.Input<string>;
+    caCerts?: pulumi.Input<string>;
     /**
-     * Create private IP for the instance
+     * If `enabled` is set to true, nodes will be drained before upgrade.
      */
-    createPrivateIp?: pulumi.Input<boolean>;
+    enabled?: pulumi.Input<boolean>;
     /**
-     * Docker Port
+     * FQDN for the authorized cluster endpoint. If one is entered, it should point to the downstream cluster.
      */
-    dockerPort?: pulumi.Input<string>;
+    fqdn?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachinePool {
     /**
-     * Specifies the Linode Instance image which determines the OS distribution and base files
+     * Annotations for the Cluster.
      */
-    image?: pulumi.Input<string>;
+    annotations?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
     /**
-     * Specifies the Linode Instance type which determines CPU, memory, disk size, etc.
+     * Cloud credential secret name is the secret to be used when a cloud credential secret name is not specified at the machine pool level.
      */
-    instanceType?: pulumi.Input<string>;
+    cloudCredentialSecretName?: pulumi.Input<string>;
     /**
-     * Linode Instance Label
+     * Machine pool control plane role
      */
-    label?: pulumi.Input<string>;
+    controlPlaneRole?: pulumi.Input<boolean>;
     /**
-     * Specifies the region (location) of the Linode instance
+     * Machine pool drain before delete
      */
-    region?: pulumi.Input<string>;
+    drainBeforeDelete?: pulumi.Input<boolean>;
     /**
-     * Root Password
+     * Machine pool etcd role
      */
-    rootPass?: pulumi.Input<string>;
+    etcdRole?: pulumi.Input<boolean>;
     /**
-     * Linode Instance SSH Port
+     * maximum length for autogenerated hostname
      */
-    sshPort?: pulumi.Input<string>;
+    hostnameLengthLimit?: pulumi.Input<number>;
     /**
-     * Specifies the user as which docker-machine should log in to the Linode instance to install Docker.
+     * Labels for the Cluster.
      */
-    sshUser?: pulumi.Input<string>;
+    labels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
     /**
-     * Specifies the Linode StackScript to use to create the instance
+     * Machine config data
      */
-    stackscript?: pulumi.Input<string>;
+    machineConfig: pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolMachineConfig>;
     /**
-     * A JSON string specifying data for the selected StackScript
+     * Labels for the machine pool nodes
      */
-    stackscriptData?: pulumi.Input<string>;
+    machineLabels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
     /**
-     * Linode Instance Swap Size (MB)
+     * OS Type in machine pool
      */
-    swapSize?: pulumi.Input<string>;
+    machineOs?: pulumi.Input<string>;
     /**
-     * A comma separated list of tags to apply to the the Linode resource
+     * max unhealthy nodes for automated replacement to be allowed
      */
-    tags?: pulumi.Input<string>;
+    maxUnhealthy?: pulumi.Input<string>;
     /**
-     * Linode API Token
+     * The name of the cluster.
      */
-    token?: pulumi.Input<string>;
+    name: pulumi.Input<string>;
     /**
-     * Prefix the User-Agent in Linode API calls with some 'product/version'
+     * seconds to wait for machine pool drain to complete before machine deletion
      */
-    uaPrefix?: pulumi.Input<string>;
-}
-export interface MachineConfigV2OpenstackConfig {
+    nodeDrainTimeout?: pulumi.Input<number>;
     /**
-     * OpenStack active timeout Default `200` (string)
+     * seconds a new node has to become active before it is replaced
      */
-    activeTimeout?: pulumi.Input<string>;
+    nodeStartupTimeoutSeconds?: pulumi.Input<number>;
     /**
-     * OpenStack application credential id. Conflicts with `applicationCredentialName` (string)
+     * Machine pool paused
      */
-    applicationCredentialId?: pulumi.Input<string>;
+    paused?: pulumi.Input<boolean>;
     /**
-     * OpenStack application credential name. Conflicts with `applicationCredentialId` (string)
+     * Machine pool quantity
      */
-    applicationCredentialName?: pulumi.Input<string>;
+    quantity?: pulumi.Input<number>;
     /**
-     * OpenStack application credential secret (string)
+     * Machine pool rolling update
      */
-    applicationCredentialSecret?: pulumi.Input<string>;
+    rollingUpdate?: pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolRollingUpdate>;
     /**
-     * OpenStack authentication URL (string)
+     * Machine pool taints
      */
-    authUrl: pulumi.Input<string>;
+    taints?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachinePoolTaint>[]>;
     /**
-     * OpenStack availability zone (string)
+     * seconds an unhealthy node has to become active before it is replaced
      */
-    availabilityZone: pulumi.Input<string>;
+    unhealthyNodeTimeoutSeconds?: pulumi.Input<number>;
     /**
-     * Enable booting from volume. Default is `false` (bool)
+     * range of unhealthy nodes for automated replacement to be allowed
      */
-    bootFromVolume?: pulumi.Input<boolean>;
+    unhealthyRange?: pulumi.Input<string>;
     /**
-     * CA certificate bundle to verify against (string)
+     * Machine pool worker role
      */
-    cacert?: pulumi.Input<string>;
+    workerRole?: pulumi.Input<boolean>;
+}
+export interface ClusterV2RkeConfigMachinePoolDefault {
     /**
-     * Enables the OpenStack config drive for the instance. Default `false` (bool)
+     * maximum length for autogenerated hostname
      */
-    configDrive?: pulumi.Input<boolean>;
+    hostnameLengthLimit?: pulumi.Input<number>;
+}
+export interface ClusterV2RkeConfigMachinePoolMachineConfig {
     /**
-     * OpenStack domain ID. Identity v3 only. Conflicts with `domainName` (string)
+     * Machine config API version
      */
-    domainId?: pulumi.Input<string>;
+    apiVersion?: pulumi.Input<string>;
     /**
-     * OpenStack domain name. Identity v3 only. Conflicts with `domainId` (string)
+     * Machine config kind
      */
-    domainName?: pulumi.Input<string>;
+    kind: pulumi.Input<string>;
     /**
-     * OpenStack endpoint type. adminURL, internalURL or publicURL (string)
+     * The name of the cluster.
      */
-    endpointType?: pulumi.Input<string>;
+    name: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachinePoolRollingUpdate {
     /**
-     * OpenStack flavor id to use for the instance. Conflicts with `flavorName` (string)
+     * Rolling update max surge
      */
-    flavorId?: pulumi.Input<string>;
+    maxSurge?: pulumi.Input<string>;
     /**
-     * OpenStack flavor name to use for the instance. Conflicts with `flavorId` (string)
+     * Rolling update max unavailable
+     */
+    maxUnavailable?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachinePoolTaint {
+    /**
+     * The taint effect. Default: `\"NoExecute\"`.
+     */
+    effect?: pulumi.Input<string>;
+    /**
+     * Key is the name of the key of the item to retrieve.
      */
-    flavorName?: pulumi.Input<string>;
+    key: pulumi.Input<string>;
     /**
-     * OpenStack floating IP pool to get an IP from to assign to the instance (string)
+     * The taint value.
      */
-    floatingIpPool?: pulumi.Input<string>;
+    value: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachineSelectorConfig {
     /**
-     * OpenStack image id to use for the instance. Conflicts with `imageName` (string)
+     * Machine selector config
      */
-    imageId?: pulumi.Input<string>;
+    config?: pulumi.Input<string>;
     /**
-     * OpenStack image name to use for the instance. Conflicts with `imageId` (string)
+     * Machine label selector
      */
-    imageName?: pulumi.Input<string>;
+    machineLabelSelector?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelector>;
+}
+export interface ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelector {
     /**
-     * Disable TLS credential checking. Default `false` (bool)
+     * Label selector match expressions
      */
-    insecure?: pulumi.Input<boolean>;
+    matchExpressions?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelectorMatchExpression>[]>;
     /**
-     * OpenStack version of IP address assigned for the machine Default `4` (string)
+     * Label selector match labels
      */
-    ipVersion?: pulumi.Input<string>;
+    matchLabels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+}
+export interface ClusterV2RkeConfigMachineSelectorConfigMachineLabelSelectorMatchExpression {
     /**
-     * OpenStack keypair to use to SSH to the instance (string)
+     * Label selector requirement key
      */
-    keypairName?: pulumi.Input<string>;
+    key?: pulumi.Input<string>;
     /**
-     * OpenStack network id the machine will be connected on. Conflicts with `netName` (string)
+     * Label selector operator
      */
-    netId?: pulumi.Input<string>;
+    operator?: pulumi.Input<string>;
     /**
-     * OpenStack network name the machine will be connected on. Conflicts with `netId` (string)
+     * Label selector requirement values
      */
-    netName?: pulumi.Input<string>;
+    values?: pulumi.Input<pulumi.Input<string>[]>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFile {
     /**
-     * Use the nova networking services instead of neutron (string)
+     * File sources
      */
-    novaNetwork?: pulumi.Input<boolean>;
+    fileSources?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSource>[]>;
     /**
-     * OpenStack password. Mandatory on Rancher v2.0.x and v2.1.x. Use `rancher2.CloudCredential` from Rancher v2.2.x (string)
+     * Machine label selector
      */
-    password?: pulumi.Input<string>;
+    machineLabelSelector?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileMachineLabelSelector>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileFileSource {
     /**
-     * Private key content to use for SSH (string)
+     * The configmap which is the source of files
      */
-    privateKeyFile?: pulumi.Input<string>;
+    configmap?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmap>;
     /**
-     * OpenStack region name (string)
+     * The secret which is the source of files
      */
-    region: pulumi.Input<string>;
+    secret?: pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceSecret>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmap {
     /**
-     * OpenStack comma separated security groups for the machine (string)
+     * The default permissions to be applied when they are not set at the item level
      */
-    secGroups?: pulumi.Input<string>;
+    defaultPermissions?: pulumi.Input<string>;
     /**
-     * If using a non-B2D image you can specify the ssh port. Default `22` (string)
+     * Items(files) to retrieve from the K8s object
      */
-    sshPort?: pulumi.Input<string>;
+    items?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmapItem>[]>;
     /**
-     * If using a non-B2D image you can specify the ssh user. Default `docker`. (string)
+     * The name of the cluster.
      */
-    sshUser?: pulumi.Input<string>;
+    name: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileFileSourceConfigmapItem {
     /**
-     * OpenStack tenant domain id. Conflicts with `tenantDomainName` (string)
+     * If ture, the file is ignored when determining whether the node should be drained before updating the node plan (default: true).
      */
-    tenantDomainId?: pulumi.Input<string>;
+    dynamic?: pulumi.Input<boolean>;
     /**
-     * OpenStack tenant domain name. Conflicts with `tenantDomainId` (string)
+     * The base64 encoded value of the SHA256 checksum of the file's content
      */
-    tenantDomainName?: pulumi.Input<string>;
+    hash?: pulumi.Input<string>;
     /**
-     * OpenStack tenant id. Conflicts with `tenantName` (string)
+     * The key of the item(file) to retrieve
      */
-    tenantId?: pulumi.Input<string>;
+    key: pulumi.Input<string>;
     /**
-     * OpenStack tenant name. Conflicts with `tenantId` (string)
+     * The path to put the file in the target node
      */
-    tenantName?: pulumi.Input<string>;
+    path: pulumi.Input<string>;
     /**
-     * File containing an openstack userdata script (string)
+     * The numeric representation of the file permissions
      */
-    userDataFile?: pulumi.Input<string>;
+    permissions?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileFileSourceSecret {
     /**
-     * OpenStack user domain id. Conflicts with `userDomainName` (string)
+     * The default permissions to be applied when they are not set at the item level
      */
-    userDomainId?: pulumi.Input<string>;
+    defaultPermissions?: pulumi.Input<string>;
     /**
-     * OpenStack user domain name. Conflicts with `userDomainId` (string)
+     * Items(files) to retrieve from the K8s object
      */
-    userDomainName?: pulumi.Input<string>;
+    items?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileFileSourceSecretItem>[]>;
     /**
-     * The username to be set when logging into the virtual machines (string)
+     * The name of the cluster.
      */
-    username?: pulumi.Input<string>;
+    name: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileFileSourceSecretItem {
     /**
-     * OpenStack volume device path (attaching). Applicable only when `bootFromVolume` is `true`. Omit for auto `/dev/vdb`. (string)
-     * > **Note:**: `Required+` denotes that either the _name or _id is required but you cannot use both.
-     * > **Note:**: `Required++` denotes that either the _name or _id is required unless `applicationCredentialId` is defined.
-     * > **Note for OpenStack users:**: `keypairName` is required to be in the schema even if there are no references in rancher itself
+     * If ture, the file is ignored when determining whether the node should be drained before updating the node plan (default: true).
      */
-    volumeDevicePath?: pulumi.Input<string>;
+    dynamic?: pulumi.Input<boolean>;
     /**
-     * OpenStack volume id of existing volume. Applicable only when `bootFromVolume` is `true` (string)
+     * The base64 encoded value of the SHA256 checksum of the file's content
      */
-    volumeId?: pulumi.Input<string>;
+    hash?: pulumi.Input<string>;
     /**
-     * OpenStack volume name of existing volume. Applicable only when `bootFromVolume` is `true` (string)
+     * The key of the item(file) to retrieve
      */
-    volumeName?: pulumi.Input<string>;
+    key: pulumi.Input<string>;
     /**
-     * OpenStack volume size (GiB). Required when `bootFromVolume` is `true` (string)
+     * The path to put the file in the target node
      */
-    volumeSize?: pulumi.Input<string>;
+    path: pulumi.Input<string>;
     /**
-     * OpenStack volume type. Required when `bootFromVolume` is `true` and openstack cloud does not have a default volume type (string)
+     * The numeric representation of the file permissions
      */
-    volumeType?: pulumi.Input<string>;
+    permissions?: pulumi.Input<string>;
 }
-export interface MachineConfigV2VsphereConfig {
+export interface ClusterV2RkeConfigMachineSelectorFileMachineLabelSelector {
     /**
-     * vSphere URL for boot2docker image
+     * Label selector match expressions
      */
-    boot2dockerUrl?: pulumi.Input<string>;
+    matchExpressions?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigMachineSelectorFileMachineLabelSelectorMatchExpression>[]>;
     /**
-     * vSphere vm configuration parameters (used for guestinfo)
+     * Label selector match labels
      */
-    cfgparams?: pulumi.Input<pulumi.Input<string>[]>;
+    matchLabels?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+}
+export interface ClusterV2RkeConfigMachineSelectorFileMachineLabelSelectorMatchExpression {
     /**
-     * If you choose creation type clone a name of what you want to clone is required
+     * Label selector requirement key
      */
-    cloneFrom?: pulumi.Input<string>;
+    key?: pulumi.Input<string>;
     /**
-     * Filepath to a cloud-config yaml file to put into the ISO user-data
+     * Label selector operator
      */
-    cloudConfig?: pulumi.Input<string>;
+    operator?: pulumi.Input<string>;
     /**
-     * vSphere cloud-init filepath or url to add to guestinfo
+     * Label selector requirement values
      */
-    cloudinit?: pulumi.Input<string>;
+    values?: pulumi.Input<pulumi.Input<string>[]>;
+}
+export interface ClusterV2RkeConfigNetworking {
     /**
-     * If you choose to clone from a content library template specify the name of the library
+     * Specify the networking stack used by the cluster. The selected value configures the address used for health and readiness probes of calico, etcd, kube-apiserver, kube-scheduler, kube-controller-manager, and kubelet. It also defines the server URL in the authentication-token-webhook-config-file for the Authorized Cluster Endpoint and the advertise-client-urls for etcd during snapshot restore. When set to dual, the cluster uses localhost; when set to ipv6, it uses [::1]; when set to ipv4, it uses 127.0.0.1
      */
-    contentLibrary?: pulumi.Input<string>;
+    stackPreference?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigRegistries {
     /**
-     * vSphere CPU number for docker VM
+     * Registry config
      */
-    cpuCount?: pulumi.Input<string>;
+    configs?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigRegistriesConfig>[]>;
     /**
-     * Creation type when creating a new virtual machine. Supported values: vm, template, library, legacy
+     * Registry mirrors
      */
-    creationType?: pulumi.Input<string>;
+    mirrors?: pulumi.Input<pulumi.Input<inputs.ClusterV2RkeConfigRegistriesMirror>[]>;
+}
+export interface ClusterV2RkeConfigRegistriesConfig {
     /**
-     * vSphere custom attributes, format key/value e.g. '200=my custom value'
+     * Registry auth config secret name
      */
-    customAttributes?: pulumi.Input<pulumi.Input<string>[]>;
+    authConfigSecretName?: pulumi.Input<string>;
     /**
-     * vSphere datacenter for virtual machine
+     * Registry CA bundle
      */
-    datacenter?: pulumi.Input<string>;
+    caBundle?: pulumi.Input<string>;
     /**
-     * vSphere datastore for virtual machine
+     * Registry hostname
      */
-    datastore?: pulumi.Input<string>;
+    hostname: pulumi.Input<string>;
     /**
-     * vSphere datastore cluster for virtual machine
+     * Registry insecure connectivity
      */
-    datastoreCluster?: pulumi.Input<string>;
+    insecure?: pulumi.Input<boolean>;
     /**
-     * vSphere size of disk for docker VM (in MB)
+     * Registry TLS secret name. TLS is a pair of Cert/Key
      */
-    diskSize?: pulumi.Input<string>;
+    tlsSecretName?: pulumi.Input<string>;
+}
+export interface ClusterV2RkeConfigRegistriesMirror {
     /**
-     * vSphere folder for the docker VM. This folder must already exist in the datacenter
+     * Registry mirror endpoints
      */
-    folder?: pulumi.Input<string>;
+    endpoints?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Duration in seconds before the graceful shutdown of the VM times out and the VM is destroyed. A force destroy will be performed when the value is zero
+     * Registry hostname
      */
-    gracefulShutdownTimeout?: pulumi.Input<string>;
+    hostname: pulumi.Input<string>;
     /**
-     * vSphere compute resource where the docker VM will be instantiated. This can be omitted if using a cluster with DRS
+     * Registry mirror rewrites
      */
-    hostsystem?: pulumi.Input<string>;
+    rewrites?: pulumi.Input<{
+        [key: string]: pulumi.Input<string>;
+    }>;
+}
+export interface ClusterV2RkeConfigRotateCertificates {
     /**
-     * vSphere size of memory for docker VM (in MB)
+     * Desired certificate rotation generation.
      */
-    memorySize?: pulumi.Input<string>;
+    generation: pulumi.Input<number>;
     /**
-     * vSphere network where the virtual machine will be attached
+     * Service certificates to rotate with this generation.
      */
-    networks?: pulumi.Input<pulumi.Input<string>[]>;
+    services?: pulumi.Input<pulumi.Input<string>[]>;
+}
+export interface ClusterV2RkeConfigUpgradeStrategy {
     /**
-     * Type of virtual machine OS in vSphere
+     * How many controlplane nodes should be upgrade at time, 0 is infinite. Percentages are also accepted
      */
-    os?: pulumi.Input<string>;
+    controlPlaneConcurrency?: pulumi.Input<string>;
     /**
-     * vSphere password
+     * Controlplane nodes drain options
      */
-    password?: pulumi.Input<string>;
+    controlPlaneDrainOptions?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategyControlPlaneDrainOptions>;
     /**
-     * vSphere resource pool for docker VM
+     * How many worker nodes should be upgrade at time
      */
-    pool?: pulumi.Input<string>;
+    workerConcurrency?: pulumi.Input<string>;
     /**
-     * If using a non-B2D image you can specify the ssh password
+     * Worker nodes drain options
      */
-    sshPassword?: pulumi.Input<string>;
+    workerDrainOptions?: pulumi.Input<inputs.ClusterV2RkeConfigUpgradeStrategyWorkerDrainOptions>;
+}
+export interface ClusterV2RkeConfigUpgradeStrategyControlPlaneDrainOptions {
     /**
-     * If using a non-B2D image you can specify the ssh port
+     * Drain options delete empty dir data
      */
-    sshPort?: pulumi.Input<string>;
+    deleteEmptyDirData?: pulumi.Input<boolean>;
     /**
-     * If using a non-B2D image you can specify the ssh user
+     * Drain options disable eviction
      */
-    sshUser?: pulumi.Input<string>;
+    disableEviction?: pulumi.Input<boolean>;
     /**
-     * If using a non-B2D image the uploaded keys will need chown'ed, defaults to staff e.g. docker:staff
+     * Drain options enabled?
      */
-    sshUserGroup?: pulumi.Input<string>;
+    enabled?: pulumi.Input<boolean>;
     /**
-     * vSphere tags id e.g. urn:xxx
+     * Drain options force
      */
-    tags?: pulumi.Input<pulumi.Input<string>[]>;
+    force?: pulumi.Input<boolean>;
     /**
-     * vSphere username
+     * Drain options grace period
      */
-    username?: pulumi.Input<string>;
+    gracePeriod?: pulumi.Input<number>;
     /**
-     * vSphere vApp IP allocation policy. Supported values are: dhcp, fixed, transient and fixedAllocated
+     * Drain options ignore daemon sets
      */
-    vappIpAllocationPolicy?: pulumi.Input<string>;
+    ignoreDaemonSets?: pulumi.Input<boolean>;
     /**
-     * vSphere vApp IP protocol for this deployment. Supported values are: IPv4 and IPv6
+     * Drain options ignore errors
      */
-    vappIpProtocol?: pulumi.Input<string>;
+    ignoreErrors?: pulumi.Input<boolean>;
     /**
-     * vSphere vApp properties
+     * Drain options skip wait for delete timeout seconds
      */
-    vappProperties?: pulumi.Input<pulumi.Input<string>[]>;
+    skipWaitForDeleteTimeoutSeconds?: pulumi.Input<number>;
     /**
-     * vSphere OVF environment transports to use for properties. Supported values are: iso and com.vmware.guestInfo
+     * Drain options timeout
      */
-    vappTransport?: pulumi.Input<string>;
+    timeout?: pulumi.Input<number>;
+}
+export interface ClusterV2RkeConfigUpgradeStrategyWorkerDrainOptions {
     /**
-     * vSphere IP/hostname for vCenter
+     * Drain options delete empty dir data
      */
-    vcenter?: pulumi.Input<string>;
+    deleteEmptyDirData?: pulumi.Input<boolean>;
     /**
-     * vSphere Port for vCenter
+     * Drain options disable eviction
      */
-    vcenterPort?: pulumi.Input<string>;
-}
-export interface NamespaceContainerResourceLimit {
+    disableEviction?: pulumi.Input<boolean>;
     /**
-     * Limit for limits cpu in namespace (string)
+     * Drain options enabled?
      */
-    limitsCpu?: pulumi.Input<string>;
+    enabled?: pulumi.Input<boolean>;
     /**
-     * Limit for limits memory in namespace (string)
+     * Drain options force
      */
-    limitsMemory?: pulumi.Input<string>;
+    force?: pulumi.Input<boolean>;
     /**
-     * Limit for requests cpu in namespace (string)
+     * Drain options grace period
      */
-    requestsCpu?: pulumi.Input<string>;
+    gracePeriod?: pulumi.Input<number>;
     /**
-     * Limit for requests memory in namespace (string)
+     * Drain options ignore daemon sets
      */
-    requestsMemory?: pulumi.Input<string>;
-}
-export interface NamespaceResourceQuota {
+    ignoreDaemonSets?: pulumi.Input<boolean>;
     /**
-     * Resource quota limit for namespace (list maxitems:1)
+     * Drain options ignore errors
      */
-    limit: pulumi.Input<inputs.NamespaceResourceQuotaLimit>;
-}
-export interface NamespaceResourceQuotaLimit {
+    ignoreErrors?: pulumi.Input<boolean>;
     /**
-     * Limit for config maps in namespace (string)
+     * Drain options skip wait for delete timeout seconds
      */
-    configMaps?: pulumi.Input<string>;
+    skipWaitForDeleteTimeoutSeconds?: pulumi.Input<number>;
     /**
-     * Limit for limits cpu in namespace (string)
+     * Drain options timeout
      */
-    limitsCpu?: pulumi.Input<string>;
+    timeout?: pulumi.Input<number>;
+}
+export interface GetRoleTemplateExternalRule {
     /**
-     * Limit for limits memory in namespace (string)
+     * Policy rule api groups
      */
-    limitsMemory?: pulumi.Input<string>;
+    apiGroups?: string[];
     /**
-     * Limit for persistent volume claims in namespace (string)
+     * Policy rule non resource urls
      */
-    persistentVolumeClaims?: pulumi.Input<string>;
+    nonResourceUrls?: string[];
     /**
-     * Limit for pods in namespace (string)
+     * Policy rule resource names
      */
-    pods?: pulumi.Input<string>;
+    resourceNames?: string[];
     /**
-     * Limit for replication controllers in namespace (string)
+     * Policy rule resources
      */
-    replicationControllers?: pulumi.Input<string>;
+    resources?: string[];
     /**
-     * Limit for requests cpu in namespace (string)
+     * Policy rule verbs
      */
-    requestsCpu?: pulumi.Input<string>;
+    verbs?: string[];
+}
+export interface GetRoleTemplateExternalRuleArgs {
     /**
-     * Limit for requests memory in namespace (string)
+     * Policy rule api groups
      */
-    requestsMemory?: pulumi.Input<string>;
+    apiGroups?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Limit for requests storage in namespace (string)
+     * Policy rule non resource urls
      */
-    requestsStorage?: pulumi.Input<string>;
+    nonResourceUrls?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Limit for secrets in namespace (string)
+     * Policy rule resource names
      */
-    secrets?: pulumi.Input<string>;
-    services?: pulumi.Input<string>;
+    resourceNames?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Limit for services load balancers in namespace (string)
+     * Policy rule resources
      */
-    servicesLoadBalancers?: pulumi.Input<string>;
+    resources?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Limit for services node ports in namespace (string)
-     *
-     * More info at [resource-quotas](https://rancher.com/docs/rancher/v2.x/en/k8s-in-rancher/projects-and-namespaces/resource-quotas/)
+     * Policy rule verbs
      */
-    servicesNodePorts?: pulumi.Input<string>;
+    verbs?: pulumi.Input<pulumi.Input<string>[]>;
 }
-export interface NodePoolNodeTaint {
+export interface GlobalRoleRule {
     /**
-     * Taint effect. Supported values : `"NoExecute" | "NoSchedule" | "PreferNoSchedule"` (string)
+     * Policy rule api groups
      */
-    effect?: pulumi.Input<string>;
+    apiGroups?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Taint key (string)
+     * Policy rule non resource urls
      */
-    key: pulumi.Input<string>;
+    nonResourceUrls?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Taint time added (string)
+     * Policy rule resource names
      */
-    timeAdded?: pulumi.Input<string>;
+    resourceNames?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Taint value (string)
+     * Policy rule resources
      */
-    value: pulumi.Input<string>;
+    resources?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Policy rule verbs
+     */
+    verbs?: pulumi.Input<pulumi.Input<string>[]>;
 }
-export interface NodeTemplateAmazonec2Config {
+export interface MachineConfigV2Amazonec2Config {
     /**
      * AWS Access Key
      */
@@ -5955,6 +4094,10 @@ export interface NodeTemplateAmazonec2Config {
      * AWS root device name
      */
     deviceName?: pulumi.Input<string>;
+    /**
+     * Indicates whether the first IPv6 address assigned to the instance should be marked as the primary IPv6 address. Enable this option if the instance requires a stable, non-changing IPv6 address. This option does not affect whether IPv6 addresses are assigned to the instance.
+     */
+    enablePrimaryIpv6?: pulumi.Input<boolean>;
     /**
      * Encrypt EBS volume
      */
@@ -5967,6 +4110,10 @@ export interface NodeTemplateAmazonec2Config {
      * Enables or disables the HTTP metadata endpoint on your instances
      */
     httpEndpoint?: pulumi.Input<string>;
+    /**
+     * Enables or disables the IPv6 endpoint for the instance metadata service. Options: enabled, disabled
+     */
+    httpProtocolIpv6?: pulumi.Input<string>;
     /**
      * The state of token usage for your instance metadata requests
      */
@@ -5983,6 +4130,14 @@ export interface NodeTemplateAmazonec2Config {
      * AWS instance type
      */
     instanceType?: pulumi.Input<string>;
+    /**
+     * The number of IPv6 addresses to assign to the network interface (default: 0). Must be greater than zero when ipv6AddressOnly is true.
+     */
+    ipv6AddressCount?: pulumi.Input<string>;
+    /**
+     * Indicates whether the instance has only IPv6 address. Useful when the VPC or subnet is configured as IPv6-only. When set to true, the instance will have IPv6 as its sole address. When set to true, ipv6AddressCount must be greater than zero.
+     */
+    ipv6AddressOnly?: pulumi.Input<boolean>;
     /**
      * Custom KMS key ID using the AWS Managed CMK
      */
@@ -6036,9 +4191,9 @@ export interface NodeTemplateAmazonec2Config {
      */
     spotPrice?: pulumi.Input<string>;
     /**
-     * SSH Key for Instance
+     * SSH Key file contents for sshKeyContents
      */
-    sshKeypath?: pulumi.Input<string>;
+    sshKeyContents?: pulumi.Input<string>;
     /**
      * Set the name of the ssh user
      */
@@ -6076,9 +4231,9 @@ export interface NodeTemplateAmazonec2Config {
      */
     zone: pulumi.Input<string>;
 }
-export interface NodeTemplateAzureConfig {
+export interface MachineConfigV2AzureConfig {
     /**
-     * Enable Accelerated Networking when creating an Azure Network Interface
+     * Use Accelerated Networking when creating a network interface for the Azure VM
      */
     acceleratedNetworking?: pulumi.Input<boolean>;
     /**
@@ -6086,7 +4241,7 @@ export interface NodeTemplateAzureConfig {
      */
     availabilitySet?: pulumi.Input<string>;
     /**
-     * The Azure Availability Zone the VM should be created in
+     * The Availability Zone that the Azure VM should be created in
      */
     availabilityZone?: pulumi.Input<string>;
     /**
@@ -6146,9 +4301,9 @@ export interface NodeTemplateAzureConfig {
      */
     openPorts?: pulumi.Input<pulumi.Input<string>[]>;
     /**
-     * Purchase plan for Azure Virtual Machine (in <publisher>:<product>:<plan> format)
+     * Only use a private IP address
      */
-    plan?: pulumi.Input<string>;
+    privateAddressOnly?: pulumi.Input<boolean>;
     /**
      * Specify a static private IP address for the machine
      */
@@ -6189,6 +4344,10 @@ export interface NodeTemplateAzureConfig {
      * Tags to be applied to the Azure VM instance (e.g. key1,value1,key2,value2)
      */
     tags?: pulumi.Input<string>;
+    /**
+     * Azure Tenant ID
+     */
+    tenantId?: pulumi.Input<string>;
     /**
      * Update domain count to use for availability set
      */
@@ -6198,7 +4357,7 @@ export interface NodeTemplateAzureConfig {
      */
     usePrivateIp?: pulumi.Input<boolean>;
     /**
-     * Use the Standard SKU when creating a public IP for an Azure VM
+     * Use the standard SKU when creating a Public IP for the Azure VM instance
      */
     usePublicIpStandardSku?: pulumi.Input<boolean>;
     /**
@@ -6206,7 +4365,7 @@ export interface NodeTemplateAzureConfig {
      */
     vnet?: pulumi.Input<string>;
 }
-export interface NodeTemplateDigitaloceanConfig {
+export interface MachineConfigV2DigitaloceanConfig {
     /**
      * Digital Ocean access token
      */
@@ -6240,13 +4399,13 @@ export interface NodeTemplateDigitaloceanConfig {
      */
     size?: pulumi.Input<string>;
     /**
-     * SSH key fingerprint
+     * SSH private key contents
      */
-    sshKeyFingerprint?: pulumi.Input<string>;
+    sshKeyContents?: pulumi.Input<string>;
     /**
-     * SSH private key path
+     * SSH key fingerprint
      */
-    sshKeyPath?: pulumi.Input<string>;
+    sshKeyFingerprint?: pulumi.Input<string>;
     /**
      * SSH port
      */
@@ -6256,15 +4415,105 @@ export interface NodeTemplateDigitaloceanConfig {
      */
     sshUser?: pulumi.Input<string>;
     /**
-     * Comma-separated list of tags to apply to the Droplet
+     * Comma-separated list of tags to apply to the Droplet
+     */
+    tags?: pulumi.Input<string>;
+    /**
+     * Path to file with cloud-init user-data
+     */
+    userdata?: pulumi.Input<string>;
+}
+export interface MachineConfigV2GoogleConfig {
+    /**
+     * GCE Instance External IP
+     */
+    address?: pulumi.Input<string>;
+    /**
+     * GCE service account auth json file path
+     */
+    authEncodedJson?: pulumi.Input<string>;
+    /**
+     * GCE Instance Disk Size (in GB)
+     */
+    diskSize: pulumi.Input<string>;
+    /**
+     * GCE Instance Disk Type
+     */
+    diskType: pulumi.Input<string>;
+    /**
+     * A prefix to be added to firewall rules created when exposing ports publicly. Required if exposing ports publicly.
+     */
+    externalFirewallRulePrefix?: pulumi.Input<string>;
+    /**
+     * A prefix to be added to an internal firewall rule created to ensure virtual machines can communicate with one another.
+     */
+    internalFirewallRulePrefix?: pulumi.Input<string>;
+    /**
+     * GCE instance image absolute URL
+     */
+    machineImage: pulumi.Input<string>;
+    /**
+     * GCE instance type
+     */
+    machineType: pulumi.Input<string>;
+    /**
+     * The network to provision virtual machines within
+     */
+    network: pulumi.Input<string>;
+    /**
+     * A list of ports to be opened publicly. 'external_firewall_rule_prefix' must also be set
+     */
+    openPorts?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Indicates if the virtual machine can be preempted
+     */
+    preemptable?: pulumi.Input<boolean>;
+    /**
+     * The GCP project to create virtual machines within
+     */
+    project: pulumi.Input<string>;
+    /**
+     * Access scopes to be set on the virtual machine
+     */
+    scopes?: pulumi.Input<string>;
+    /**
+     * The subnetwork to provision virtual machines within
+     */
+    subNetwork?: pulumi.Input<string>;
+    /**
+     * A set of network tags to be added to each VM, in the format of 'tag1,tag2'
+     */
+    tags?: pulumi.Input<string>;
+    /**
+     * Indicates if an existing VM should be used. This is not currently support in Rancher.
+     */
+    useExisting?: pulumi.Input<boolean>;
+    /**
+     * Indicates if the virtual machines should use an internal IP
+     */
+    useInternalIp?: pulumi.Input<boolean>;
+    /**
+     * Indicates if the virtual machines should use an internal IP only and not be assigned a public IP
+     */
+    useInternalIpOnly?: pulumi.Input<boolean>;
+    /**
+     * GCE user-data file path
+     */
+    userData?: pulumi.Input<string>;
+    /**
+     * The username to be set when logging into the virtual machines
+     */
+    username?: pulumi.Input<string>;
+    /**
+     * A set of labels to be added to each VM, in the format of 'key1,value1,key2,value2'
      */
-    tags?: pulumi.Input<string>;
+    vmLabels?: pulumi.Input<string>;
     /**
-     * Path to file with cloud-init user-data
+     * The region and zone to create virtual machines within (e.g. us-east1-b)
      */
-    userdata?: pulumi.Input<string>;
+    zone: pulumi.Input<string>;
 }
-export interface NodeTemplateHarvesterConfig {
+export interface MachineConfigV2HarvesterConfig {
     /**
      * CPU count
      */
@@ -6315,6 +4564,10 @@ export interface NodeTemplateHarvesterConfig {
      * @deprecated Use networkInfo instead
      */
     networkName?: pulumi.Input<string>;
+    /**
+     * Reserved memory size (in MiB)
+     */
+    reservedMemorySize?: pulumi.Input<string>;
     /**
      * SSH password
      */
@@ -6336,47 +4589,7 @@ export interface NodeTemplateHarvesterConfig {
      */
     vmNamespace: pulumi.Input<string>;
 }
-export interface NodeTemplateHetznerConfig {
-    /**
-     * Hetzner Cloud project API token
-     */
-    apiToken: pulumi.Input<string>;
-    /**
-     * Hetzner Cloud server image
-     */
-    image?: pulumi.Input<string>;
-    /**
-     * Comma-separated list of network IDs or names which should be attached to the server private network interface
-     */
-    networks?: pulumi.Input<string>;
-    /**
-     * Map of the labels which will be assigned to the server
-     */
-    serverLabels?: pulumi.Input<{
-        [key: string]: pulumi.Input<string>;
-    }>;
-    /**
-     * Hetzner Cloud datacenter
-     */
-    serverLocation?: pulumi.Input<string>;
-    /**
-     * Hetzner Cloud server type
-     */
-    serverType?: pulumi.Input<string>;
-    /**
-     * Use private network
-     */
-    usePrivateNetwork?: pulumi.Input<boolean>;
-    /**
-     * Path to file with cloud-init user-data
-     */
-    userdata?: pulumi.Input<string>;
-    /**
-     * Comma-separated list of volume IDs or names which should be attached to the server
-     */
-    volumes?: pulumi.Input<string>;
-}
-export interface NodeTemplateLinodeConfig {
+export interface MachineConfigV2LinodeConfig {
     /**
      * Linode user accounts (seperated by commas) whose Linode SSH keys will be permitted root access to the created node
      */
@@ -6442,105 +4655,7 @@ export interface NodeTemplateLinodeConfig {
      */
     uaPrefix?: pulumi.Input<string>;
 }
-export interface NodeTemplateNodeTaint {
-    /**
-     * Taint effect. Supported values : `"NoExecute" | "NoSchedule" | "PreferNoSchedule"` (string)
-     */
-    effect?: pulumi.Input<string>;
-    /**
-     * Taint key (string)
-     */
-    key: pulumi.Input<string>;
-    /**
-     * Taint time added (string)
-     */
-    timeAdded?: pulumi.Input<string>;
-    /**
-     * Taint value (string)
-     */
-    value: pulumi.Input<string>;
-}
-export interface NodeTemplateOpennebulaConfig {
-    /**
-     * Size of the Volatile disk in MB - only for b2d (string)
-     */
-    b2dSize?: pulumi.Input<string>;
-    /**
-     * CPU value for the VM (string)
-     */
-    cpu?: pulumi.Input<string>;
-    /**
-     * Dev prefix to use for the images. E.g.: 'vd', 'sd', 'hd' (string)
-     */
-    devPrefix?: pulumi.Input<string>;
-    /**
-     * VNC is enabled by default. Disable it with this flag (bool)
-     */
-    disableVnc?: pulumi.Input<boolean>;
-    /**
-     * Size of the disk for the VM in MB (string)
-     */
-    diskResize?: pulumi.Input<string>;
-    /**
-     * OpenStack image id to use for the instance. Conflicts with `imageName` (string)
-     */
-    imageId?: pulumi.Input<string>;
-    /**
-     * OpenStack image name to use for the instance. Conflicts with `imageId` (string)
-     */
-    imageName?: pulumi.Input<string>;
-    /**
-     * Owner of the image to use as the VM OS (string)
-     */
-    imageOwner?: pulumi.Input<string>;
-    /**
-     * Size of the memory for the VM in MB (string)
-     */
-    memory?: pulumi.Input<string>;
-    /**
-     * Opennebula network ID to connect the machine to. Conflicts with `networkName` (string)
-     */
-    networkId?: pulumi.Input<string>;
-    /**
-     * Opennebula network to connect the machine to. Conflicts with `networkId` (string)
-     */
-    networkName?: pulumi.Input<string>;
-    /**
-     * Opennebula user ID of the Network to connect the machine to (string)
-     */
-    networkOwner?: pulumi.Input<string>;
-    /**
-     * vSphere password. Mandatory on Rancher v2.0.x and v2.1.x. Use `rancher2.CloudCredential` from Rancher v2.2.x (string)
-     */
-    password: pulumi.Input<string>;
-    /**
-     * If using a non-B2D image you can specify the ssh user. Default `docker`. From Rancher v2.3.3 (string)
-     */
-    sshUser?: pulumi.Input<string>;
-    /**
-     * Opennebula template ID to use. Conflicts with `templateName` (string)
-     */
-    templateId?: pulumi.Input<string>;
-    /**
-     * Name of the Opennbula template to use. Conflicts with `templateId` (string)
-     */
-    templateName?: pulumi.Input<string>;
-    /**
-     * Set the user for the XML-RPC API authentication (string)
-     */
-    user: pulumi.Input<string>;
-    /**
-     * VCPUs for the VM (string)
-     *
-     * > **Note:**: `Required*` denotes that one of imageName / imageId or templateName / templateId is required but you cannot combine them.
-     */
-    vcpu?: pulumi.Input<string>;
-    /**
-     * Set the url for the Opennebula XML-RPC API (string)
-     */
-    xmlRpcUrl: pulumi.Input<string>;
-}
-export interface NodeTemplateOpenstackConfig {
+export interface MachineConfigV2OpenstackConfig {
     /**
      * OpenStack active timeout Default `200` (string)
      */
@@ -6634,7 +4749,7 @@ export interface NodeTemplateOpenstackConfig {
      */
     novaNetwork?: pulumi.Input<boolean>;
     /**
-     * vSphere password. Mandatory on Rancher v2.0.x and v2.1.x. Use `rancher2.CloudCredential` from Rancher v2.2.x (string)
+     * OpenStack password. Mandatory on Rancher v2.0.x and v2.1.x. Use `rancher2.CloudCredential` from Rancher v2.2.x (string)
      */
     password?: pulumi.Input<string>;
     /**
@@ -6642,7 +4757,7 @@ export interface NodeTemplateOpenstackConfig {
      */
     privateKeyFile?: pulumi.Input<string>;
     /**
-     * AWS region. Default `eu-west-2` (string)
+     * OpenStack region name (string)
      */
     region: pulumi.Input<string>;
     /**
@@ -6650,13 +4765,21 @@ export interface NodeTemplateOpenstackConfig {
      */
     secGroups?: pulumi.Input<string>;
     /**
-     * If using a non-B2D image you can specify the ssh port. Default `22`. From Rancher v2.3.3 (string)
+     * If using a non-B2D image you can specify the ssh port. Default `22` (string)
      */
     sshPort?: pulumi.Input<string>;
     /**
-     * If using a non-B2D image you can specify the ssh user. Default `docker`. From Rancher v2.3.3 (string)
+     * If using a non-B2D image you can specify the ssh user. Default `docker`. (string)
      */
     sshUser?: pulumi.Input<string>;
+    /**
+     * OpenStack tenant domain id. Conflicts with `tenantDomainName` (string)
+     */
+    tenantDomainId?: pulumi.Input<string>;
+    /**
+     * OpenStack tenant domain name. Conflicts with `tenantDomainId` (string)
+     */
+    tenantDomainName?: pulumi.Input<string>;
     /**
      * OpenStack tenant id. Conflicts with `tenantName` (string)
      */
@@ -6670,16 +4793,21 @@ export interface NodeTemplateOpenstackConfig {
      */
     userDataFile?: pulumi.Input<string>;
     /**
-     * vSphere username. Mandatory on Rancher v2.0.x and v2.1.x. Use `rancher2.CloudCredential` from Rancher v2.2.x (string)
+     * OpenStack user domain id. Conflicts with `userDomainName` (string)
+     */
+    userDomainId?: pulumi.Input<string>;
+    /**
+     * OpenStack user domain name. Conflicts with `userDomainId` (string)
+     */
+    userDomainName?: pulumi.Input<string>;
+    /**
+     * The username to be set when logging into the virtual machines (string)
      */
     username?: pulumi.Input<string>;
     /**
      * OpenStack volume device path (attaching). Applicable only when `bootFromVolume` is `true`. Omit for auto `/dev/vdb`. (string)
-     *
-     * > **Note:**: `Required*` denotes that either the _name or _id is required but you cannot use both.
-     *
-     * > **Note:**: `Required**` denotes that either the _name or _id is required unless `applicationCredentialId` is defined.
-     *
+     * > **Note:**: `Required+` denotes that either the _name or _id is required but you cannot use both.
+     * > **Note:**: `Required++` denotes that either the _name or _id is required unless `applicationCredentialId` is defined.
      * > **Note for OpenStack users:**: `keypairName` is required to be in the schema even if there are no references in rancher itself
      */
     volumeDevicePath?: pulumi.Input<string>;
@@ -6700,53 +4828,7 @@ export interface NodeTemplateOpenstackConfig {
      */
     volumeType?: pulumi.Input<string>;
 }
-export interface NodeTemplateOutscaleConfig {
-    /**
-     * Outscale Access Key
-     */
-    accessKey: pulumi.Input<string>;
-    /**
-     * Extra tags for all created resources (e.g. key1=value1,key2=value2)
-     */
-    extraTagsAlls?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Extra tags only for instances (e.g. key1=value1,key2=value2)
-     */
-    extraTagsInstances?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Outscale VM type
-     */
-    instanceType?: pulumi.Input<string>;
-    /**
-     * Outscale Region
-     */
-    region?: pulumi.Input<string>;
-    /**
-     * Iops for io1 Root Disk. From 1 to 13000.
-     */
-    rootDiskIops?: pulumi.Input<number>;
-    /**
-     * Size of the Root Disk (in GB). From 1 to 14901.
-     */
-    rootDiskSize?: pulumi.Input<number>;
-    /**
-     * Type of the Root Disk. Possible values are :'standard', 'gp2' or 'io1'.
-     */
-    rootDiskType?: pulumi.Input<string>;
-    /**
-     * Outscale Secret Key
-     */
-    secretKey: pulumi.Input<string>;
-    /**
-     * Ids of user defined Security Groups to add to the machine
-     */
-    securityGroupIds?: pulumi.Input<pulumi.Input<string>[]>;
-    /**
-     * Outscale Machine Image to use as bootstrap for the VM
-     */
-    sourceOmi?: pulumi.Input<string>;
-}
-export interface NodeTemplateVsphereConfig {
+export interface MachineConfigV2VsphereConfig {
     /**
      * vSphere URL for boot2docker image
      */
@@ -6819,6 +4901,10 @@ export interface NodeTemplateVsphereConfig {
      * vSphere network where the virtual machine will be attached
      */
     networks?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Type of virtual machine OS in vSphere
+     */
+    os?: pulumi.Input<string>;
     /**
      * vSphere password
      */
@@ -6876,6 +4962,101 @@ export interface NodeTemplateVsphereConfig {
      */
     vcenterPort?: pulumi.Input<string>;
 }
+export interface NamespaceContainerResourceLimit {
+    /**
+     * Limit for limits cpu in namespace (string)
+     */
+    limitsCpu?: pulumi.Input<string>;
+    /**
+     * Limit for limits memory in namespace (string)
+     */
+    limitsMemory?: pulumi.Input<string>;
+    /**
+     * Limit for requests cpu in namespace (string)
+     */
+    requestsCpu?: pulumi.Input<string>;
+    /**
+     * Limit for requests memory in namespace (string)
+     */
+    requestsMemory?: pulumi.Input<string>;
+}
+export interface NamespaceResourceQuota {
+    /**
+     * Resource quota limit for namespace (list maxitems:1)
+     */
+    limit: pulumi.Input<inputs.NamespaceResourceQuotaLimit>;
+}
+export interface NamespaceResourceQuotaLimit {
+    /**
+     * Limit for config maps in namespace (string)
+     */
+    configMaps?: pulumi.Input<string>;
+    /**
+     * Limit for limits cpu in namespace (string)
+     */
+    limitsCpu?: pulumi.Input<string>;
+    /**
+     * Limit for limits memory in namespace (string)
+     */
+    limitsMemory?: pulumi.Input<string>;
+    /**
+     * Limit for persistent volume claims in namespace (string)
+     */
+    persistentVolumeClaims?: pulumi.Input<string>;
+    /**
+     * Limit for pods in namespace (string)
+     */
+    pods?: pulumi.Input<string>;
+    /**
+     * Limit for replication controllers in namespace (string)
+     */
+    replicationControllers?: pulumi.Input<string>;
+    /**
+     * Limit for requests cpu in namespace (string)
+     */
+    requestsCpu?: pulumi.Input<string>;
+    /**
+     * Limit for requests memory in namespace (string)
+     */
+    requestsMemory?: pulumi.Input<string>;
+    /**
+     * Limit for requests storage in namespace (string)
+     */
+    requestsStorage?: pulumi.Input<string>;
+    /**
+     * Limit for secrets in namespace (string)
+     */
+    secrets?: pulumi.Input<string>;
+    services?: pulumi.Input<string>;
+    /**
+     * Limit for services load balancers in namespace (string)
+     */
+    servicesLoadBalancers?: pulumi.Input<string>;
+    /**
+     * Limit for services node ports in namespace (string)
+     *
+     * More info at [resource-quotas](https://rancher.com/docs/rancher/v2.x/en/k8s-in-rancher/projects-and-namespaces/resource-quotas/)
+     */
+    servicesNodePorts?: pulumi.Input<string>;
+}
+export interface NodePoolNodeTaint {
+    /**
+     * Taint effect. Supported values : `"NoExecute" | "NoSchedule" | "PreferNoSchedule"` (string)
+     */
+    effect?: pulumi.Input<string>;
+    /**
+     * Taint key (string)
+     */
+    key: pulumi.Input<string>;
+    /**
+     * Taint time added (string)
+     */
+    timeAdded?: pulumi.Input<string>;
+    /**
+     * Taint value (string)
+     */
+    value: pulumi.Input<string>;
+}
 export interface PodSecurityAdmissionConfigurationTemplateDefaults {
     /**
      * Pod Security Admission Configuration audit. This audits a pod in violation of privileged, baseline, or restricted policy (default: privileged)