@robinmordasiewicz/f5xc-terraform-mcp 2.3.0 → 2.4.3

package/dist/docs/resources/apm.md

@@ -0,0 +1,946 @@
+---
+page_title: "f5xc_apm Resource - terraform-provider-f5xc"
+subcategory: "Monitoring"
+description: |-
+  [Namespace: required] Manages new APM as a service with configured parameters in F5 Distributed Cloud.
+---
+
+# f5xc_apm (Resource)
+
+[Namespace: required] Manages new APM as a service with configured parameters in F5 Distributed Cloud.
+
+~> **Note** Please refer to [APM API docs](https://docs.cloud.f5.com/docs-v2/api/bigip-apm) to learn more.
+
+## Example Usage
+
+```terraform
+# APM Resource Example
+# [Namespace: required] Manages new APM as a service with configured parameters in F5 Distributed Cloud.
+
+# Basic APM configuration
+resource "f5xc_apm" "example" {
+  name      = "example-apm"
+  namespace = "staging"
+
+  labels = {
+    environment = "production"
+    managed_by  = "terraform"
+  }
+
+  annotations = {
+    "owner" = "platform-team"
+  }
+
+  # Resource-specific configuration
+  # [OneOf: aws_site_type_choice, baremetal_site_type_choice]...
+  aws_site_type_choice {
+    # Configure aws_site_type_choice settings
+  }
+  # Virtual F5 BIG-IP APM configuration on AWS TGW Site. Virt...
+  apm_aws_site {
+    # Configure apm_aws_site settings
+  }
+  # Secret. SecretType is used in an object to indicate a sen...
+  admin_password {
+    # Configure admin_password settings
+  }
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Argument Reference
+
+### Metadata Argument Reference
+
+<a id="name"></a>&#x2022; [`name`](#name) - Required String<br>Name of the APM. Must be unique within the namespace
+
+<a id="namespace"></a>&#x2022; [`namespace`](#namespace) - Required String<br>Namespace where the APM will be created
+
+<a id="annotations"></a>&#x2022; [`annotations`](#annotations) - Optional Map<br>Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata
+
+<a id="description"></a>&#x2022; [`description`](#description) - Optional String<br>Human readable description for the object
+
+<a id="disable"></a>&#x2022; [`disable`](#disable) - Optional Bool<br>A value of true will administratively disable the object
+
+<a id="labels"></a>&#x2022; [`labels`](#labels) - Optional Map<br>Labels is a user defined key value map that can be attached to resources for organization and filtering
+
+### Spec Argument Reference
+
+-> **One of the following:**
+&#x2022; <a id="aws-site-type-choice"></a>[`aws_site_type_choice`](#aws-site-type-choice) - Optional Block<br>AWS Transit Gateway Site choice. Virtual F5 BIG-IP APM service to be deployed as external service on AWS Transit Gateway Site<br>See [AWS Site Type Choice](#aws-site-type-choice) below for details.
+<br><br>&#x2022; <a id="baremetal-site-type-choice"></a>[`baremetal_site_type_choice`](#baremetal-site-type-choice) - Optional Block<br>Virtual BIG-IP on App Stack Bare Metal Site. Virtual BIG-IP specification for App Stack Bare Metal Site<br>See [Baremetal Site Type Choice](#baremetal-site-type-choice) below for details.
+
+<a id="https-management"></a>&#x2022; [`https_management`](#https-management) - Optional Block<br>HTTPS based management. HTTPS based configuration<br>See [HTTPS Management](#https-management) below for details.
+
+<a id="timeouts"></a>&#x2022; [`timeouts`](#timeouts) - Optional Block
+
+### Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:
+
+<a id="id"></a>&#x2022; [`id`](#id) - Optional String<br>Unique identifier for the resource
+
+---
+
+#### AWS Site Type Choice
+
+An [`aws_site_type_choice`](#aws-site-type-choice) block supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site"></a>&#x2022; [`apm_aws_site`](#aws-site-type-choice-apm-aws-site) - Optional Block<br>Virtual F5 BIG-IP APM configuration on AWS TGW Site. Virtual F5 BIG-IP configuration for AWS TGW Site using BIG-IP APM service<br>See [APM AWS Site](#aws-site-type-choice-apm-aws-site) below.
+
+<a id="aws-site-type-choice-market-place-image"></a>&#x2022; [`market_place_image`](#aws-site-type-choice-market-place-image) - Optional Block<br>BIG-IP AWS Marketplace Image. Select the flavor of BIG-IP AWS Marketplace to launch the instance on AWS TGW Site<br>See [Market Place Image](#aws-site-type-choice-market-place-image) below.
+
+#### AWS Site Type Choice APM AWS Site
+
+An [`apm_aws_site`](#aws-site-type-choice-apm-aws-site) block (within [`aws_site_type_choice`](#aws-site-type-choice)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password"></a>&#x2022; [`admin_password`](#aws-site-type-choice-apm-aws-site-admin-password) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Admin Password](#aws-site-type-choice-apm-aws-site-admin-password) below.
+
+<a id="aws-site-type-choice-apm-aws-site-admin-username"></a>&#x2022; [`admin_username`](#aws-site-type-choice-apm-aws-site-admin-username) - Optional String<br>Admin Username. Admin Username for BIG-IP
+
+<a id="aws-site-type-choice-apm-aws-site-aws-tgw-site"></a>&#x2022; [`aws_tgw_site`](#aws-site-type-choice-apm-aws-site-aws-tgw-site) - Optional Block<br>BIG-IP AWS TGW Site. BIG-IP AWS TGW site specification<br>See [AWS TGW Site](#aws-site-type-choice-apm-aws-site-aws-tgw-site) below.
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service"></a>&#x2022; [`endpoint_service`](#aws-site-type-choice-apm-aws-site-endpoint-service) - Optional Block<br>Endpoint Service. Endpoint Service is a type of service where the packets are destined to BIG-IP APM device and service modifies the destination with a new destination address<br>See [Endpoint Service](#aws-site-type-choice-apm-aws-site-endpoint-service) below.
+
+<a id="aws-site-type-choice-apm-aws-site-nodes"></a>&#x2022; [`nodes`](#aws-site-type-choice-apm-aws-site-nodes) - Optional Block<br>Service Nodes. Specify how and where the service nodes are spawned<br>See [Nodes](#aws-site-type-choice-apm-aws-site-nodes) below.
+
+<a id="aws-site-type-choice-apm-aws-site-ssh-key"></a>&#x2022; [`ssh_key`](#aws-site-type-choice-apm-aws-site-ssh-key) - Optional String<br>Public SSH key. Public SSH key for accessing the BIG-IP nodes
+
+<a id="aws-site-type-choice-apm-aws-site-tags"></a>&#x2022; [`tags`](#aws-site-type-choice-apm-aws-site-tags) - Optional Block<br>AWS Tags. AWS Tags is a label consisting of a user-defined key and value. It helps to manage, identify, organize, search for, and filter resources in AWS console
+
+#### AWS Site Type Choice APM AWS Site Admin Password
+
+An [`admin_password`](#aws-site-type-choice-apm-aws-site-admin-password) block (within [`aws_site_type_choice.apm_aws_site`](#aws-site-type-choice-apm-aws-site)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info) below.
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info) below.
+
+#### AWS Site Type Choice APM AWS Site Admin Password Blindfold Secret Info
+
+A [`blindfold_secret_info`](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info) block (within [`aws_site_type_choice.apm_aws_site.admin_password`](#aws-site-type-choice-apm-aws-site-admin-password)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-location"></a>&#x2022; [`location`](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#aws-site-type-choice-apm-aws-site-admin-password-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### AWS Site Type Choice APM AWS Site Admin Password Clear Secret Info
+
+A [`clear_secret_info`](#aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info) block (within [`aws_site_type_choice.apm_aws_site.admin_password`](#aws-site-type-choice-apm-aws-site-admin-password)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info-url"></a>&#x2022; [`url`](#aws-site-type-choice-apm-aws-site-admin-password-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### AWS Site Type Choice APM AWS Site AWS TGW Site
+
+An [`aws_tgw_site`](#aws-site-type-choice-apm-aws-site-aws-tgw-site) block (within [`aws_site_type_choice.apm_aws_site`](#aws-site-type-choice-apm-aws-site)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site"></a>&#x2022; [`aws_tgw_site`](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [AWS TGW Site](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site) below.
+
+#### AWS Site Type Choice APM AWS Site AWS TGW Site AWS TGW Site
+
+An [`aws_tgw_site`](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site) block (within [`aws_site_type_choice.apm_aws_site.aws_tgw_site`](#aws-site-type-choice-apm-aws-site-aws-tgw-site)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-name"></a>&#x2022; [`name`](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-namespace"></a>&#x2022; [`namespace`](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-tenant"></a>&#x2022; [`tenant`](#aws-site-type-choice-apm-aws-site-aws-tgw-site-aws-tgw-site-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### AWS Site Type Choice APM AWS Site Endpoint Service
+
+An [`endpoint_service`](#aws-site-type-choice-apm-aws-site-endpoint-service) block (within [`aws_site_type_choice.apm_aws_site`](#aws-site-type-choice-apm-aws-site)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-advertise-on-slo-ip"></a>&#x2022; [`advertise_on_slo_ip`](#aws-site-type-choice-apm-aws-site-endpoint-service-advertise-on-slo-ip) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-advertise-on-slo-ip-external"></a>&#x2022; [`advertise_on_slo_ip_external`](#aws-site-type-choice-apm-aws-site-endpoint-service-advertise-on-slo-ip-external) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-automatic-vip"></a>&#x2022; [`automatic_vip`](#aws-site-type-choice-apm-aws-site-endpoint-service-automatic-vip) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-configured-vip"></a>&#x2022; [`configured_vip`](#aws-site-type-choice-apm-aws-site-endpoint-service-configured-vip) - Optional String<br>Configured VIP. Enter IP address for the default VIP
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports"></a>&#x2022; [`custom_tcp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports) - Optional Block<br>Port Range List. List of port ranges<br>See [Custom TCP Ports](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports) below.
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports"></a>&#x2022; [`custom_udp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports) - Optional Block<br>Port Range List. List of port ranges<br>See [Custom UDP Ports](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports) below.
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-default-tcp-ports"></a>&#x2022; [`default_tcp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-default-tcp-ports) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-disable-advertise-on-slo-ip"></a>&#x2022; [`disable_advertise_on_slo_ip`](#aws-site-type-choice-apm-aws-site-endpoint-service-disable-advertise-on-slo-ip) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-http-port"></a>&#x2022; [`http_port`](#aws-site-type-choice-apm-aws-site-endpoint-service-http-port) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-https-port"></a>&#x2022; [`https_port`](#aws-site-type-choice-apm-aws-site-endpoint-service-https-port) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-no-tcp-ports"></a>&#x2022; [`no_tcp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-no-tcp-ports) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-no-udp-ports"></a>&#x2022; [`no_udp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-no-udp-ports) - Optional Block<br>Enable this option
+
+#### AWS Site Type Choice APM AWS Site Endpoint Service Custom TCP Ports
+
+A [`custom_tcp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports) block (within [`aws_site_type_choice.apm_aws_site.endpoint_service`](#aws-site-type-choice-apm-aws-site-endpoint-service)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports-ports"></a>&#x2022; [`ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-tcp-ports-ports) - Optional List<br>Port Ranges. List of port ranges. Each range is a single port or a pair of start and end ports e.g. 8080-8192
+
+#### AWS Site Type Choice APM AWS Site Endpoint Service Custom UDP Ports
+
+A [`custom_udp_ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports) block (within [`aws_site_type_choice.apm_aws_site.endpoint_service`](#aws-site-type-choice-apm-aws-site-endpoint-service)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports-ports"></a>&#x2022; [`ports`](#aws-site-type-choice-apm-aws-site-endpoint-service-custom-udp-ports-ports) - Optional List<br>Port Ranges. List of port ranges. Each range is a single port or a pair of start and end ports e.g. 8080-8192
+
+#### AWS Site Type Choice APM AWS Site Nodes
+
+A [`nodes`](#aws-site-type-choice-apm-aws-site-nodes) block (within [`aws_site_type_choice.apm_aws_site`](#aws-site-type-choice-apm-aws-site)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-automatic-prefix"></a>&#x2022; [`automatic_prefix`](#aws-site-type-choice-apm-aws-site-nodes-automatic-prefix) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-aws-az-name"></a>&#x2022; [`aws_az_name`](#aws-site-type-choice-apm-aws-site-nodes-aws-az-name) - Optional String<br>AWS AZ Name. The AWS Availability Zone must be consistent with the AWS Region chosen. Please select an AZ in the same Region as your TGW Site
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet"></a>&#x2022; [`mgmt_subnet`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet) - Optional Block<br>AWS Subnet. Parameters for AWS subnet<br>See [Mgmt Subnet](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet) below.
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-node-name"></a>&#x2022; [`node_name`](#aws-site-type-choice-apm-aws-site-nodes-node-name) - Optional String<br>Node Name. Node Name will be used to assign as hostname to the service
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-reserved-mgmt-subnet"></a>&#x2022; [`reserved_mgmt_subnet`](#aws-site-type-choice-apm-aws-site-nodes-reserved-mgmt-subnet) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-tunnel-prefix"></a>&#x2022; [`tunnel_prefix`](#aws-site-type-choice-apm-aws-site-nodes-tunnel-prefix) - Optional String<br>Tunnel IP Prefix. Enter IP prefix for the tunnel, it has to be /30
+
+#### AWS Site Type Choice APM AWS Site Nodes Mgmt Subnet
+
+A [`mgmt_subnet`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet) block (within [`aws_site_type_choice.apm_aws_site.nodes`](#aws-site-type-choice-apm-aws-site-nodes)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-existing-subnet-id"></a>&#x2022; [`existing_subnet_id`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-existing-subnet-id) - Optional String<br>Existing Subnet ID. Information about existing subnet ID
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param"></a>&#x2022; [`subnet_param`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param) - Optional Block<br>New Cloud Subnet Parameters. Parameters for creating a new cloud subnet<br>See [Subnet Param](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param) below.
+
+#### AWS Site Type Choice APM AWS Site Nodes Mgmt Subnet Subnet Param
+
+A [`subnet_param`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param) block (within [`aws_site_type_choice.apm_aws_site.nodes.mgmt_subnet`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet)) supports the following:
+
+<a id="aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param-ipv4"></a>&#x2022; [`ipv4`](#aws-site-type-choice-apm-aws-site-nodes-mgmt-subnet-subnet-param-ipv4) - Optional String<br>IPv4 Subnet. IPv4 subnet prefix for this subnet
+
+#### AWS Site Type Choice Market Place Image
+
+A [`market_place_image`](#aws-site-type-choice-market-place-image) block (within [`aws_site_type_choice`](#aws-site-type-choice)) supports the following:
+
+<a id="aws-site-type-choice-market-place-image-best-plus-pay-g200-mbps"></a>&#x2022; [`best_plus_pay_g200_mbps`](#aws-site-type-choice-market-place-image-best-plus-pay-g200-mbps) - Optional Block<br>Enable this option
+
+<a id="aws-site-type-choice-market-place-image-best-plus-payg-1gbps"></a>&#x2022; [`best_plus_payg_1gbps`](#aws-site-type-choice-market-place-image-best-plus-payg-1gbps) - Optional Block<br>Enable this option
+
+#### Baremetal Site Type Choice
+
+A [`baremetal_site_type_choice`](#baremetal-site-type-choice) block supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site"></a>&#x2022; [`f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site) - Optional Block<br>Virtual BIG-IP on App Stack bare metal. Virtual BIG-IP specification for App Stack bare metal<br>See [F5 Bare Metal Site](#baremetal-site-type-choice-f5-bare-metal-site) below.
+
+#### Baremetal Site Type Choice F5 Bare Metal Site
+
+A [`f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site) block (within [`baremetal_site_type_choice`](#baremetal-site-type-choice)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password"></a>&#x2022; [`admin_password`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Admin Password](#baremetal-site-type-choice-f5-bare-metal-site-admin-password) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-username"></a>&#x2022; [`admin_username`](#baremetal-site-type-choice-f5-bare-metal-site-admin-username) - Optional String<br>Admin Username. Admin Username for BIG-IP
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site"></a>&#x2022; [`bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Bare Metal Site](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance"></a>&#x2022; [`bigiq_instance`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance) - Optional Block<br>License Server Details. Specification for BIG-IQ Instance, where and what<br>See [Bigiq Instance](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes"></a>&#x2022; [`nodes`](#baremetal-site-type-choice-f5-bare-metal-site-nodes) - Optional Block<br>Service Nodes. Specify how and where the service nodes are spawned<br>See [Nodes](#baremetal-site-type-choice-f5-bare-metal-site-nodes) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-public-download-url"></a>&#x2022; [`public_download_url`](#baremetal-site-type-choice-f5-bare-metal-site-public-download-url) - Optional String<br>Image URL. Public URL where BIG-IP VE image (qcow2) is hosted
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-ssh-key"></a>&#x2022; [`ssh_key`](#baremetal-site-type-choice-f5-bare-metal-site-ssh-key) - Optional String<br>Public SSH key. Public SSH key for accessing the BIG-IP nodes
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Admin Password
+
+An [`admin_password`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password) block (within [`baremetal_site_type_choice.f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info) below.
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Admin Password Blindfold Secret Info
+
+A [`blindfold_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info) block (within [`baremetal_site_type_choice.f5_bare_metal_site.admin_password`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-location"></a>&#x2022; [`location`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Admin Password Clear Secret Info
+
+A [`clear_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info) block (within [`baremetal_site_type_choice.f5_bare_metal_site.admin_password`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info-url"></a>&#x2022; [`url`](#baremetal-site-type-choice-f5-bare-metal-site-admin-password-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Bare Metal Site
+
+A [`bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site) block (within [`baremetal_site_type_choice.f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-name"></a>&#x2022; [`name`](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-namespace"></a>&#x2022; [`namespace`](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-tenant"></a>&#x2022; [`tenant`](#baremetal-site-type-choice-f5-bare-metal-site-bare-metal-site-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Bigiq Instance
+
+A [`bigiq_instance`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance) block (within [`baremetal_site_type_choice.f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-license-pool-name"></a>&#x2022; [`license_pool_name`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-license-pool-name) - Optional String<br>License Pool Name. Name of Utility Pool on BIG-IQ
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-license-server-ip"></a>&#x2022; [`license_server_ip`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-license-server-ip) - Optional String<br>License Server IP. IP Address from the TCP Load Balancer which is configured to communicate with License Server
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password"></a>&#x2022; [`password`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Password](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-sku-name"></a>&#x2022; [`sku_name`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-sku-name) - Optional String<br>Offering Name. License offering name aka SKU name
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-username"></a>&#x2022; [`username`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-username) - Optional String<br>User Name. User Name used to access BIG-IQ to activate the license
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Bigiq Instance Password
+
+A [`password`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password) block (within [`baremetal_site_type_choice.f5_bare_metal_site.bigiq_instance`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info) below.
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Bigiq Instance Password Blindfold Secret Info
+
+A [`blindfold_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info) block (within [`baremetal_site_type_choice.f5_bare_metal_site.bigiq_instance.password`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-location"></a>&#x2022; [`location`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Bigiq Instance Password Clear Secret Info
+
+A [`clear_secret_info`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info) block (within [`baremetal_site_type_choice.f5_bare_metal_site.bigiq_instance.password`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info-url"></a>&#x2022; [`url`](#baremetal-site-type-choice-f5-bare-metal-site-bigiq-instance-password-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Nodes
+
+A [`nodes`](#baremetal-site-type-choice-f5-bare-metal-site-nodes) block (within [`baremetal_site_type_choice.f5_bare_metal_site`](#baremetal-site-type-choice-f5-bare-metal-site)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-bm-node-memory-size"></a>&#x2022; [`bm_node_memory_size`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-bm-node-memory-size) - Optional String  Defaults to `BM_8_GB_MEMORY`<br>Possible values are `BM_8_GB_MEMORY`, `BM_16_GB_MEMORY`, `BM_32_GB_MEMORY`<br>[Enum: BM_8_GB_MEMORY|BM_16_GB_MEMORY|BM_32_GB_MEMORY] Bare Metal ServiceNode Memory Size. Enum to define amount of memory to be assigned to the node - BM_8_GB_MEMORY: 8 GB - BM_16_GB_MEMORY: 16 GB - BM_32_GB_MEMORY: 32 GB
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-bm-virtual-cpu-count"></a>&#x2022; [`bm_virtual_cpu_count`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-bm-virtual-cpu-count) - Optional String  Defaults to `BM_4_VCPU`<br>Possible values are `BM_4_VCPU`, `BM_8_VCPU`<br>[Enum: BM_4_VCPU|BM_8_VCPU] Bare Metal ServiceNode Virtual CPU Count. Enum to define number of virtual CPU's to be assigned to the node - BM_4_VCPU: 4 virtual CPUs - BM_8_VCPU: 8 virtual CPUs
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface"></a>&#x2022; [`external_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface) - Optional Block<br>Interface.BIG-IP interface details<br>See [External Interface](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface"></a>&#x2022; [`internal_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface) - Optional Block<br>Interface.BIG-IP interface details<br>See [Internal Interface](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-node-name"></a>&#x2022; [`node_name`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-node-name) - Optional String<br>Node Name. Node Name will be used to assign as hostname to the service
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Nodes External Interface
+
+An [`external_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface) block (within [`baremetal_site_type_choice.f5_bare_metal_site.nodes`](#baremetal-site-type-choice-f5-bare-metal-site-nodes)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface"></a>&#x2022; [`interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Interface](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-network-gateway"></a>&#x2022; [`network_gateway`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-network-gateway) - Optional String<br>Default Gateway
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-network-self-ip"></a>&#x2022; [`network_self_ip`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-network-self-ip) - Optional String<br>Self IP. Self IP CIDR
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Nodes External Interface Interface
+
+An [`interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface) block (within [`baremetal_site_type_choice.f5_bare_metal_site.nodes.external_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-name"></a>&#x2022; [`name`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-namespace"></a>&#x2022; [`namespace`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-tenant"></a>&#x2022; [`tenant`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-external-interface-interface-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Nodes Internal Interface
+
+An [`internal_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface) block (within [`baremetal_site_type_choice.f5_bare_metal_site.nodes`](#baremetal-site-type-choice-f5-bare-metal-site-nodes)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface"></a>&#x2022; [`interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Interface](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface) below.
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-network-gateway"></a>&#x2022; [`network_gateway`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-network-gateway) - Optional String<br>Default Gateway
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-network-self-ip"></a>&#x2022; [`network_self_ip`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-network-self-ip) - Optional String<br>Self IP. Self IP CIDR
+
+#### Baremetal Site Type Choice F5 Bare Metal Site Nodes Internal Interface Interface
+
+An [`interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface) block (within [`baremetal_site_type_choice.f5_bare_metal_site.nodes.internal_interface`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface)) supports the following:
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-name"></a>&#x2022; [`name`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-namespace"></a>&#x2022; [`namespace`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-tenant"></a>&#x2022; [`tenant`](#baremetal-site-type-choice-f5-bare-metal-site-nodes-internal-interface-interface-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management
+
+A [`https_management`](#https-management) block supports the following:
+
+<a id="https-management-advertise-on-internet"></a>&#x2022; [`advertise_on_internet`](#https-management-advertise-on-internet) - Optional Block<br>Advertise Public. This defines a way to advertise a load balancer on public. If optional public_ip is provided, it will only be advertised on RE sites where that public_ip is available<br>See [Advertise On Internet](#https-management-advertise-on-internet) below.
+
+<a id="https-management-advertise-on-internet-default-vip"></a>&#x2022; [`advertise_on_internet_default_vip`](#https-management-advertise-on-internet-default-vip) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip"></a>&#x2022; [`advertise_on_sli_vip`](#https-management-advertise-on-sli-vip) - Optional Block<br>Inline TLS Parameters. Inline TLS parameters<br>See [Advertise On SLI VIP](#https-management-advertise-on-sli-vip) below.
+
+<a id="https-management-advertise-on-slo-internet-vip"></a>&#x2022; [`advertise_on_slo_internet_vip`](#https-management-advertise-on-slo-internet-vip) - Optional Block<br>Inline TLS Parameters. Inline TLS parameters<br>See [Advertise On Slo Internet VIP](#https-management-advertise-on-slo-internet-vip) below.
+
+<a id="https-management-advertise-on-slo-sli"></a>&#x2022; [`advertise_on_slo_sli`](#https-management-advertise-on-slo-sli) - Optional Block<br>Inline TLS Parameters. Inline TLS parameters<br>See [Advertise On Slo SLI](#https-management-advertise-on-slo-sli) below.
+
+<a id="https-management-advertise-on-slo-vip"></a>&#x2022; [`advertise_on_slo_vip`](#https-management-advertise-on-slo-vip) - Optional Block<br>Inline TLS Parameters. Inline TLS parameters<br>See [Advertise On Slo VIP](#https-management-advertise-on-slo-vip) below.
+
+<a id="https-management-default-https-port"></a>&#x2022; [`default_https_port`](#https-management-default-https-port) - Optional Block<br>Enable this option
+
+<a id="https-management-domain-suffix"></a>&#x2022; [`domain_suffix`](#https-management-domain-suffix) - Optional String<br>Domain Suffix. Domain suffix will be used along with node name to form URL to access node management
+
+<a id="https-management-https-port"></a>&#x2022; [`https_port`](#https-management-https-port) - Optional Number<br>HTTPS Port. Enter TCP port number
+
+#### HTTPS Management Advertise On Internet
+
+An [`advertise_on_internet`](#https-management-advertise-on-internet) block (within [`https_management`](#https-management)) supports the following:
+
+<a id="https-management-advertise-on-internet-public-ip"></a>&#x2022; [`public_ip`](#https-management-advertise-on-internet-public-ip) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Public IP](#https-management-advertise-on-internet-public-ip) below.
+
+#### HTTPS Management Advertise On Internet Public IP
+
+A [`public_ip`](#https-management-advertise-on-internet-public-ip) block (within [`https_management.advertise_on_internet`](#https-management-advertise-on-internet)) supports the following:
+
+<a id="https-management-advertise-on-internet-public-ip-name"></a>&#x2022; [`name`](#https-management-advertise-on-internet-public-ip-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-internet-public-ip-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-internet-public-ip-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-internet-public-ip-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-internet-public-ip-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On SLI VIP
+
+An [`advertise_on_sli_vip`](#https-management-advertise-on-sli-vip) block (within [`https_management`](#https-management)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-no-mtls"></a>&#x2022; [`no_mtls`](#https-management-advertise-on-sli-vip-no-mtls) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates"></a>&#x2022; [`tls_certificates`](#https-management-advertise-on-sli-vip-tls-certificates) - Optional Block<br>TLS Certificates. Users can add one or more certificates that share the same set of domains. for example, domain.com and \*.domain.com - but use different signature algorithms<br>See [TLS Certificates](#https-management-advertise-on-sli-vip-tls-certificates) below.
+
+<a id="https-management-advertise-on-sli-vip-tls-config"></a>&#x2022; [`tls_config`](#https-management-advertise-on-sli-vip-tls-config) - Optional Block<br>TLS Config. This defines various options to configure TLS configuration parameters<br>See [TLS Config](#https-management-advertise-on-sli-vip-tls-config) below.
+
+<a id="https-management-advertise-on-sli-vip-use-mtls"></a>&#x2022; [`use_mtls`](#https-management-advertise-on-sli-vip-use-mtls) - Optional Block<br>Clients TLS validation context. Validation context for downstream client TLS connections<br>See [Use mTLS](#https-management-advertise-on-sli-vip-use-mtls) below.
+
+#### HTTPS Management Advertise On SLI VIP TLS Certificates
+
+A [`tls_certificates`](#https-management-advertise-on-sli-vip-tls-certificates) block (within [`https_management.advertise_on_sli_vip`](#https-management-advertise-on-sli-vip)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-certificate-url"></a>&#x2022; [`certificate_url`](#https-management-advertise-on-sli-vip-tls-certificates-certificate-url) - Optional String<br>Certificate. TLS certificate. Certificate or certificate chain in PEM format including the PEM headers
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms"></a>&#x2022; [`custom_hash_algorithms`](#https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms) - Optional Block<br>Hash Algorithms. Specifies the hash algorithms to be used<br>See [Custom Hash Algorithms](#https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms) below.
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-description-spec"></a>&#x2022; [`description_spec`](#https-management-advertise-on-sli-vip-tls-certificates-description-spec) - Optional String<br>Description. Description for the certificate
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-disable-ocsp-stapling"></a>&#x2022; [`disable_ocsp_stapling`](#https-management-advertise-on-sli-vip-tls-certificates-disable-ocsp-stapling) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key"></a>&#x2022; [`private_key`](#https-management-advertise-on-sli-vip-tls-certificates-private-key) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Private Key](#https-management-advertise-on-sli-vip-tls-certificates-private-key) below.
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-use-system-defaults"></a>&#x2022; [`use_system_defaults`](#https-management-advertise-on-sli-vip-tls-certificates-use-system-defaults) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On SLI VIP TLS Certificates Custom Hash Algorithms
+
+A [`custom_hash_algorithms`](#https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms) block (within [`https_management.advertise_on_sli_vip.tls_certificates`](#https-management-advertise-on-sli-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms-hash-algorithms"></a>&#x2022; [`hash_algorithms`](#https-management-advertise-on-sli-vip-tls-certificates-custom-hash-algorithms-hash-algorithms) - Optional List  Defaults to `INVALID_HASH_ALGORITHM`<br>Possible values are `INVALID_HASH_ALGORITHM`, `SHA256`, `SHA1`<br>[Enum: INVALID_HASH_ALGORITHM|SHA256|SHA1] Hash Algorithms. Ordered list of hash algorithms to be used
+
+#### HTTPS Management Advertise On SLI VIP TLS Certificates Private Key
+
+A [`private_key`](#https-management-advertise-on-sli-vip-tls-certificates-private-key) block (within [`https_management.advertise_on_sli_vip.tls_certificates`](#https-management-advertise-on-sli-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info) below.
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info) below.
+
+#### HTTPS Management Advertise On SLI VIP TLS Certificates Private Key Blindfold Secret Info
+
+A [`blindfold_secret_info`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info) block (within [`https_management.advertise_on_sli_vip.tls_certificates.private_key`](#https-management-advertise-on-sli-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-location"></a>&#x2022; [`location`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### HTTPS Management Advertise On SLI VIP TLS Certificates Private Key Clear Secret Info
+
+A [`clear_secret_info`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info) block (within [`https_management.advertise_on_sli_vip.tls_certificates.private_key`](#https-management-advertise-on-sli-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info-url"></a>&#x2022; [`url`](#https-management-advertise-on-sli-vip-tls-certificates-private-key-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### HTTPS Management Advertise On SLI VIP TLS Config
+
+A [`tls_config`](#https-management-advertise-on-sli-vip-tls-config) block (within [`https_management.advertise_on_sli_vip`](#https-management-advertise-on-sli-vip)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-config-custom-security"></a>&#x2022; [`custom_security`](#https-management-advertise-on-sli-vip-tls-config-custom-security) - Optional Block<br>Custom Ciphers. This defines TLS protocol config including min/max versions and allowed ciphers<br>See [Custom Security](#https-management-advertise-on-sli-vip-tls-config-custom-security) below.
+
+<a id="https-management-advertise-on-sli-vip-tls-config-default-security"></a>&#x2022; [`default_security`](#https-management-advertise-on-sli-vip-tls-config-default-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-tls-config-low-security"></a>&#x2022; [`low_security`](#https-management-advertise-on-sli-vip-tls-config-low-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-tls-config-medium-security"></a>&#x2022; [`medium_security`](#https-management-advertise-on-sli-vip-tls-config-medium-security) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On SLI VIP TLS Config Custom Security
+
+A [`custom_security`](#https-management-advertise-on-sli-vip-tls-config-custom-security) block (within [`https_management.advertise_on_sli_vip.tls_config`](#https-management-advertise-on-sli-vip-tls-config)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-tls-config-custom-security-cipher-suites"></a>&#x2022; [`cipher_suites`](#https-management-advertise-on-sli-vip-tls-config-custom-security-cipher-suites) - Optional List<br>Cipher Suites. The TLS listener will only support the specified cipher list
+
+<a id="https-management-advertise-on-sli-vip-tls-config-custom-security-max-version"></a>&#x2022; [`max_version`](#https-management-advertise-on-sli-vip-tls-config-custom-security-max-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+<a id="https-management-advertise-on-sli-vip-tls-config-custom-security-min-version"></a>&#x2022; [`min_version`](#https-management-advertise-on-sli-vip-tls-config-custom-security-min-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+#### HTTPS Management Advertise On SLI VIP Use mTLS
+
+An [`use_mtls`](#https-management-advertise-on-sli-vip-use-mtls) block (within [`https_management.advertise_on_sli_vip`](#https-management-advertise-on-sli-vip)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-client-certificate-optional"></a>&#x2022; [`client_certificate_optional`](#https-management-advertise-on-sli-vip-use-mtls-client-certificate-optional) - Optional Bool<br>Client Certificate Optional. Client certificate is optional. If the client has provided a certificate, the load balancer will verify it. If certification verification fails, the connection will be terminated. If the client does not provide a certificate, the connection will be accepted
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-crl"></a>&#x2022; [`crl`](#https-management-advertise-on-sli-vip-use-mtls-crl) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [CRL](#https-management-advertise-on-sli-vip-use-mtls-crl) below.
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-no-crl"></a>&#x2022; [`no_crl`](#https-management-advertise-on-sli-vip-use-mtls-no-crl) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-trusted-ca"></a>&#x2022; [`trusted_ca`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Trusted CA](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca) below.
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-trusted-ca-url"></a>&#x2022; [`trusted_ca_url`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca-url) - Optional String<br>Inline Root CA Certificate (legacy). Upload a Root CA Certificate specifically for this Load Balancer
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-xfcc-disabled"></a>&#x2022; [`xfcc_disabled`](#https-management-advertise-on-sli-vip-use-mtls-xfcc-disabled) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-xfcc-options"></a>&#x2022; [`xfcc_options`](#https-management-advertise-on-sli-vip-use-mtls-xfcc-options) - Optional Block<br>XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests<br>See [Xfcc Options](#https-management-advertise-on-sli-vip-use-mtls-xfcc-options) below.
+
+#### HTTPS Management Advertise On SLI VIP Use mTLS CRL
+
+A [`crl`](#https-management-advertise-on-sli-vip-use-mtls-crl) block (within [`https_management.advertise_on_sli_vip.use_mtls`](#https-management-advertise-on-sli-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-crl-name"></a>&#x2022; [`name`](#https-management-advertise-on-sli-vip-use-mtls-crl-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-crl-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-sli-vip-use-mtls-crl-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-crl-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-sli-vip-use-mtls-crl-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On SLI VIP Use mTLS Trusted CA
+
+A [`trusted_ca`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca) block (within [`https_management.advertise_on_sli_vip.use_mtls`](#https-management-advertise-on-sli-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-trusted-ca-name"></a>&#x2022; [`name`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-trusted-ca-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-trusted-ca-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-sli-vip-use-mtls-trusted-ca-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On SLI VIP Use mTLS Xfcc Options
+
+A [`xfcc_options`](#https-management-advertise-on-sli-vip-use-mtls-xfcc-options) block (within [`https_management.advertise_on_sli_vip.use_mtls`](#https-management-advertise-on-sli-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-sli-vip-use-mtls-xfcc-options-xfcc-header-elements"></a>&#x2022; [`xfcc_header_elements`](#https-management-advertise-on-sli-vip-use-mtls-xfcc-options-xfcc-header-elements) - Optional List  Defaults to `XFCC_NONE`<br>Possible values are `XFCC_NONE`, `XFCC_CERT`, `XFCC_CHAIN`, `XFCC_SUBJECT`, `XFCC_URI`, `XFCC_DNS`<br>[Enum: XFCC_NONE|XFCC_CERT|XFCC_CHAIN|XFCC_SUBJECT|XFCC_URI|XFCC_DNS] XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests
+
+#### HTTPS Management Advertise On Slo Internet VIP
+
+An [`advertise_on_slo_internet_vip`](#https-management-advertise-on-slo-internet-vip) block (within [`https_management`](#https-management)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-no-mtls"></a>&#x2022; [`no_mtls`](#https-management-advertise-on-slo-internet-vip-no-mtls) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates"></a>&#x2022; [`tls_certificates`](#https-management-advertise-on-slo-internet-vip-tls-certificates) - Optional Block<br>TLS Certificates. Users can add one or more certificates that share the same set of domains. for example, domain.com and \*.domain.com - but use different signature algorithms<br>See [TLS Certificates](#https-management-advertise-on-slo-internet-vip-tls-certificates) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config"></a>&#x2022; [`tls_config`](#https-management-advertise-on-slo-internet-vip-tls-config) - Optional Block<br>TLS Config. This defines various options to configure TLS configuration parameters<br>See [TLS Config](#https-management-advertise-on-slo-internet-vip-tls-config) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls"></a>&#x2022; [`use_mtls`](#https-management-advertise-on-slo-internet-vip-use-mtls) - Optional Block<br>Clients TLS validation context. Validation context for downstream client TLS connections<br>See [Use mTLS](#https-management-advertise-on-slo-internet-vip-use-mtls) below.
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Certificates
+
+A [`tls_certificates`](#https-management-advertise-on-slo-internet-vip-tls-certificates) block (within [`https_management.advertise_on_slo_internet_vip`](#https-management-advertise-on-slo-internet-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-certificate-url"></a>&#x2022; [`certificate_url`](#https-management-advertise-on-slo-internet-vip-tls-certificates-certificate-url) - Optional String<br>Certificate. TLS certificate. Certificate or certificate chain in PEM format including the PEM headers
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms"></a>&#x2022; [`custom_hash_algorithms`](#https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms) - Optional Block<br>Hash Algorithms. Specifies the hash algorithms to be used<br>See [Custom Hash Algorithms](#https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-description-spec"></a>&#x2022; [`description_spec`](#https-management-advertise-on-slo-internet-vip-tls-certificates-description-spec) - Optional String<br>Description. Description for the certificate
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-disable-ocsp-stapling"></a>&#x2022; [`disable_ocsp_stapling`](#https-management-advertise-on-slo-internet-vip-tls-certificates-disable-ocsp-stapling) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key"></a>&#x2022; [`private_key`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Private Key](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-use-system-defaults"></a>&#x2022; [`use_system_defaults`](#https-management-advertise-on-slo-internet-vip-tls-certificates-use-system-defaults) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Certificates Custom Hash Algorithms
+
+A [`custom_hash_algorithms`](#https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms) block (within [`https_management.advertise_on_slo_internet_vip.tls_certificates`](#https-management-advertise-on-slo-internet-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms-hash-algorithms"></a>&#x2022; [`hash_algorithms`](#https-management-advertise-on-slo-internet-vip-tls-certificates-custom-hash-algorithms-hash-algorithms) - Optional List  Defaults to `INVALID_HASH_ALGORITHM`<br>Possible values are `INVALID_HASH_ALGORITHM`, `SHA256`, `SHA1`<br>[Enum: INVALID_HASH_ALGORITHM|SHA256|SHA1] Hash Algorithms. Ordered list of hash algorithms to be used
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Certificates Private Key
+
+A [`private_key`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key) block (within [`https_management.advertise_on_slo_internet_vip.tls_certificates`](#https-management-advertise-on-slo-internet-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info) below.
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Certificates Private Key Blindfold Secret Info
+
+A [`blindfold_secret_info`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info) block (within [`https_management.advertise_on_slo_internet_vip.tls_certificates.private_key`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-location"></a>&#x2022; [`location`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Certificates Private Key Clear Secret Info
+
+A [`clear_secret_info`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info) block (within [`https_management.advertise_on_slo_internet_vip.tls_certificates.private_key`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info-url"></a>&#x2022; [`url`](#https-management-advertise-on-slo-internet-vip-tls-certificates-private-key-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Config
+
+A [`tls_config`](#https-management-advertise-on-slo-internet-vip-tls-config) block (within [`https_management.advertise_on_slo_internet_vip`](#https-management-advertise-on-slo-internet-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-custom-security"></a>&#x2022; [`custom_security`](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security) - Optional Block<br>Custom Ciphers. This defines TLS protocol config including min/max versions and allowed ciphers<br>See [Custom Security](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-default-security"></a>&#x2022; [`default_security`](#https-management-advertise-on-slo-internet-vip-tls-config-default-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-low-security"></a>&#x2022; [`low_security`](#https-management-advertise-on-slo-internet-vip-tls-config-low-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-medium-security"></a>&#x2022; [`medium_security`](#https-management-advertise-on-slo-internet-vip-tls-config-medium-security) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo Internet VIP TLS Config Custom Security
+
+A [`custom_security`](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security) block (within [`https_management.advertise_on_slo_internet_vip.tls_config`](#https-management-advertise-on-slo-internet-vip-tls-config)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-custom-security-cipher-suites"></a>&#x2022; [`cipher_suites`](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security-cipher-suites) - Optional List<br>Cipher Suites. The TLS listener will only support the specified cipher list
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-custom-security-max-version"></a>&#x2022; [`max_version`](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security-max-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+<a id="https-management-advertise-on-slo-internet-vip-tls-config-custom-security-min-version"></a>&#x2022; [`min_version`](#https-management-advertise-on-slo-internet-vip-tls-config-custom-security-min-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+#### HTTPS Management Advertise On Slo Internet VIP Use mTLS
+
+An [`use_mtls`](#https-management-advertise-on-slo-internet-vip-use-mtls) block (within [`https_management.advertise_on_slo_internet_vip`](#https-management-advertise-on-slo-internet-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-client-certificate-optional"></a>&#x2022; [`client_certificate_optional`](#https-management-advertise-on-slo-internet-vip-use-mtls-client-certificate-optional) - Optional Bool<br>Client Certificate Optional. Client certificate is optional. If the client has provided a certificate, the load balancer will verify it. If certification verification fails, the connection will be terminated. If the client does not provide a certificate, the connection will be accepted
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-crl"></a>&#x2022; [`crl`](#https-management-advertise-on-slo-internet-vip-use-mtls-crl) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [CRL](#https-management-advertise-on-slo-internet-vip-use-mtls-crl) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-no-crl"></a>&#x2022; [`no_crl`](#https-management-advertise-on-slo-internet-vip-use-mtls-no-crl) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca"></a>&#x2022; [`trusted_ca`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Trusted CA](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca) below.
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-url"></a>&#x2022; [`trusted_ca_url`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-url) - Optional String<br>Inline Root CA Certificate (legacy). Upload a Root CA Certificate specifically for this Load Balancer
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-disabled"></a>&#x2022; [`xfcc_disabled`](#https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-disabled) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options"></a>&#x2022; [`xfcc_options`](#https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options) - Optional Block<br>XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests<br>See [Xfcc Options](#https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options) below.
+
+#### HTTPS Management Advertise On Slo Internet VIP Use mTLS CRL
+
+A [`crl`](#https-management-advertise-on-slo-internet-vip-use-mtls-crl) block (within [`https_management.advertise_on_slo_internet_vip.use_mtls`](#https-management-advertise-on-slo-internet-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-crl-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-internet-vip-use-mtls-crl-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-crl-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-internet-vip-use-mtls-crl-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-crl-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-internet-vip-use-mtls-crl-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo Internet VIP Use mTLS Trusted CA
+
+A [`trusted_ca`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca) block (within [`https_management.advertise_on_slo_internet_vip.use_mtls`](#https-management-advertise-on-slo-internet-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-internet-vip-use-mtls-trusted-ca-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo Internet VIP Use mTLS Xfcc Options
+
+A [`xfcc_options`](#https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options) block (within [`https_management.advertise_on_slo_internet_vip.use_mtls`](#https-management-advertise-on-slo-internet-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options-xfcc-header-elements"></a>&#x2022; [`xfcc_header_elements`](#https-management-advertise-on-slo-internet-vip-use-mtls-xfcc-options-xfcc-header-elements) - Optional List  Defaults to `XFCC_NONE`<br>Possible values are `XFCC_NONE`, `XFCC_CERT`, `XFCC_CHAIN`, `XFCC_SUBJECT`, `XFCC_URI`, `XFCC_DNS`<br>[Enum: XFCC_NONE|XFCC_CERT|XFCC_CHAIN|XFCC_SUBJECT|XFCC_URI|XFCC_DNS] XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests
+
+#### HTTPS Management Advertise On Slo SLI
+
+An [`advertise_on_slo_sli`](#https-management-advertise-on-slo-sli) block (within [`https_management`](#https-management)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-no-mtls"></a>&#x2022; [`no_mtls`](#https-management-advertise-on-slo-sli-no-mtls) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates"></a>&#x2022; [`tls_certificates`](#https-management-advertise-on-slo-sli-tls-certificates) - Optional Block<br>TLS Certificates. Users can add one or more certificates that share the same set of domains. for example, domain.com and \*.domain.com - but use different signature algorithms<br>See [TLS Certificates](#https-management-advertise-on-slo-sli-tls-certificates) below.
+
+<a id="https-management-advertise-on-slo-sli-tls-config"></a>&#x2022; [`tls_config`](#https-management-advertise-on-slo-sli-tls-config) - Optional Block<br>TLS Config. This defines various options to configure TLS configuration parameters<br>See [TLS Config](#https-management-advertise-on-slo-sli-tls-config) below.
+
+<a id="https-management-advertise-on-slo-sli-use-mtls"></a>&#x2022; [`use_mtls`](#https-management-advertise-on-slo-sli-use-mtls) - Optional Block<br>Clients TLS validation context. Validation context for downstream client TLS connections<br>See [Use mTLS](#https-management-advertise-on-slo-sli-use-mtls) below.
+
+#### HTTPS Management Advertise On Slo SLI TLS Certificates
+
+A [`tls_certificates`](#https-management-advertise-on-slo-sli-tls-certificates) block (within [`https_management.advertise_on_slo_sli`](#https-management-advertise-on-slo-sli)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-certificate-url"></a>&#x2022; [`certificate_url`](#https-management-advertise-on-slo-sli-tls-certificates-certificate-url) - Optional String<br>Certificate. TLS certificate. Certificate or certificate chain in PEM format including the PEM headers
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms"></a>&#x2022; [`custom_hash_algorithms`](#https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms) - Optional Block<br>Hash Algorithms. Specifies the hash algorithms to be used<br>See [Custom Hash Algorithms](#https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms) below.
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-description-spec"></a>&#x2022; [`description_spec`](#https-management-advertise-on-slo-sli-tls-certificates-description-spec) - Optional String<br>Description. Description for the certificate
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-disable-ocsp-stapling"></a>&#x2022; [`disable_ocsp_stapling`](#https-management-advertise-on-slo-sli-tls-certificates-disable-ocsp-stapling) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key"></a>&#x2022; [`private_key`](#https-management-advertise-on-slo-sli-tls-certificates-private-key) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Private Key](#https-management-advertise-on-slo-sli-tls-certificates-private-key) below.
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-use-system-defaults"></a>&#x2022; [`use_system_defaults`](#https-management-advertise-on-slo-sli-tls-certificates-use-system-defaults) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo SLI TLS Certificates Custom Hash Algorithms
+
+A [`custom_hash_algorithms`](#https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms) block (within [`https_management.advertise_on_slo_sli.tls_certificates`](#https-management-advertise-on-slo-sli-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms-hash-algorithms"></a>&#x2022; [`hash_algorithms`](#https-management-advertise-on-slo-sli-tls-certificates-custom-hash-algorithms-hash-algorithms) - Optional List  Defaults to `INVALID_HASH_ALGORITHM`<br>Possible values are `INVALID_HASH_ALGORITHM`, `SHA256`, `SHA1`<br>[Enum: INVALID_HASH_ALGORITHM|SHA256|SHA1] Hash Algorithms. Ordered list of hash algorithms to be used
+
+#### HTTPS Management Advertise On Slo SLI TLS Certificates Private Key
+
+A [`private_key`](#https-management-advertise-on-slo-sli-tls-certificates-private-key) block (within [`https_management.advertise_on_slo_sli.tls_certificates`](#https-management-advertise-on-slo-sli-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info) below.
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info) below.
+
+#### HTTPS Management Advertise On Slo SLI TLS Certificates Private Key Blindfold Secret Info
+
+A [`blindfold_secret_info`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info) block (within [`https_management.advertise_on_slo_sli.tls_certificates.private_key`](#https-management-advertise-on-slo-sli-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-location"></a>&#x2022; [`location`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### HTTPS Management Advertise On Slo SLI TLS Certificates Private Key Clear Secret Info
+
+A [`clear_secret_info`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info) block (within [`https_management.advertise_on_slo_sli.tls_certificates.private_key`](#https-management-advertise-on-slo-sli-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info-url"></a>&#x2022; [`url`](#https-management-advertise-on-slo-sli-tls-certificates-private-key-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### HTTPS Management Advertise On Slo SLI TLS Config
+
+A [`tls_config`](#https-management-advertise-on-slo-sli-tls-config) block (within [`https_management.advertise_on_slo_sli`](#https-management-advertise-on-slo-sli)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-config-custom-security"></a>&#x2022; [`custom_security`](#https-management-advertise-on-slo-sli-tls-config-custom-security) - Optional Block<br>Custom Ciphers. This defines TLS protocol config including min/max versions and allowed ciphers<br>See [Custom Security](#https-management-advertise-on-slo-sli-tls-config-custom-security) below.
+
+<a id="https-management-advertise-on-slo-sli-tls-config-default-security"></a>&#x2022; [`default_security`](#https-management-advertise-on-slo-sli-tls-config-default-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-tls-config-low-security"></a>&#x2022; [`low_security`](#https-management-advertise-on-slo-sli-tls-config-low-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-tls-config-medium-security"></a>&#x2022; [`medium_security`](#https-management-advertise-on-slo-sli-tls-config-medium-security) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo SLI TLS Config Custom Security
+
+A [`custom_security`](#https-management-advertise-on-slo-sli-tls-config-custom-security) block (within [`https_management.advertise_on_slo_sli.tls_config`](#https-management-advertise-on-slo-sli-tls-config)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-tls-config-custom-security-cipher-suites"></a>&#x2022; [`cipher_suites`](#https-management-advertise-on-slo-sli-tls-config-custom-security-cipher-suites) - Optional List<br>Cipher Suites. The TLS listener will only support the specified cipher list
+
+<a id="https-management-advertise-on-slo-sli-tls-config-custom-security-max-version"></a>&#x2022; [`max_version`](#https-management-advertise-on-slo-sli-tls-config-custom-security-max-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+<a id="https-management-advertise-on-slo-sli-tls-config-custom-security-min-version"></a>&#x2022; [`min_version`](#https-management-advertise-on-slo-sli-tls-config-custom-security-min-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+#### HTTPS Management Advertise On Slo SLI Use mTLS
+
+An [`use_mtls`](#https-management-advertise-on-slo-sli-use-mtls) block (within [`https_management.advertise_on_slo_sli`](#https-management-advertise-on-slo-sli)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-client-certificate-optional"></a>&#x2022; [`client_certificate_optional`](#https-management-advertise-on-slo-sli-use-mtls-client-certificate-optional) - Optional Bool<br>Client Certificate Optional. Client certificate is optional. If the client has provided a certificate, the load balancer will verify it. If certification verification fails, the connection will be terminated. If the client does not provide a certificate, the connection will be accepted
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-crl"></a>&#x2022; [`crl`](#https-management-advertise-on-slo-sli-use-mtls-crl) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [CRL](#https-management-advertise-on-slo-sli-use-mtls-crl) below.
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-no-crl"></a>&#x2022; [`no_crl`](#https-management-advertise-on-slo-sli-use-mtls-no-crl) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-trusted-ca"></a>&#x2022; [`trusted_ca`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Trusted CA](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca) below.
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-trusted-ca-url"></a>&#x2022; [`trusted_ca_url`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca-url) - Optional String<br>Inline Root CA Certificate (legacy). Upload a Root CA Certificate specifically for this Load Balancer
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-xfcc-disabled"></a>&#x2022; [`xfcc_disabled`](#https-management-advertise-on-slo-sli-use-mtls-xfcc-disabled) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-xfcc-options"></a>&#x2022; [`xfcc_options`](#https-management-advertise-on-slo-sli-use-mtls-xfcc-options) - Optional Block<br>XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests<br>See [Xfcc Options](#https-management-advertise-on-slo-sli-use-mtls-xfcc-options) below.
+
+#### HTTPS Management Advertise On Slo SLI Use mTLS CRL
+
+A [`crl`](#https-management-advertise-on-slo-sli-use-mtls-crl) block (within [`https_management.advertise_on_slo_sli.use_mtls`](#https-management-advertise-on-slo-sli-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-crl-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-sli-use-mtls-crl-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-crl-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-sli-use-mtls-crl-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-crl-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-sli-use-mtls-crl-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo SLI Use mTLS Trusted CA
+
+A [`trusted_ca`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca) block (within [`https_management.advertise_on_slo_sli.use_mtls`](#https-management-advertise-on-slo-sli-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-trusted-ca-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-trusted-ca-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-trusted-ca-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-sli-use-mtls-trusted-ca-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo SLI Use mTLS Xfcc Options
+
+A [`xfcc_options`](#https-management-advertise-on-slo-sli-use-mtls-xfcc-options) block (within [`https_management.advertise_on_slo_sli.use_mtls`](#https-management-advertise-on-slo-sli-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-sli-use-mtls-xfcc-options-xfcc-header-elements"></a>&#x2022; [`xfcc_header_elements`](#https-management-advertise-on-slo-sli-use-mtls-xfcc-options-xfcc-header-elements) - Optional List  Defaults to `XFCC_NONE`<br>Possible values are `XFCC_NONE`, `XFCC_CERT`, `XFCC_CHAIN`, `XFCC_SUBJECT`, `XFCC_URI`, `XFCC_DNS`<br>[Enum: XFCC_NONE|XFCC_CERT|XFCC_CHAIN|XFCC_SUBJECT|XFCC_URI|XFCC_DNS] XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests
+
+#### HTTPS Management Advertise On Slo VIP
+
+An [`advertise_on_slo_vip`](#https-management-advertise-on-slo-vip) block (within [`https_management`](#https-management)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-no-mtls"></a>&#x2022; [`no_mtls`](#https-management-advertise-on-slo-vip-no-mtls) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates"></a>&#x2022; [`tls_certificates`](#https-management-advertise-on-slo-vip-tls-certificates) - Optional Block<br>TLS Certificates. Users can add one or more certificates that share the same set of domains. for example, domain.com and \*.domain.com - but use different signature algorithms<br>See [TLS Certificates](#https-management-advertise-on-slo-vip-tls-certificates) below.
+
+<a id="https-management-advertise-on-slo-vip-tls-config"></a>&#x2022; [`tls_config`](#https-management-advertise-on-slo-vip-tls-config) - Optional Block<br>TLS Config. This defines various options to configure TLS configuration parameters<br>See [TLS Config](#https-management-advertise-on-slo-vip-tls-config) below.
+
+<a id="https-management-advertise-on-slo-vip-use-mtls"></a>&#x2022; [`use_mtls`](#https-management-advertise-on-slo-vip-use-mtls) - Optional Block<br>Clients TLS validation context. Validation context for downstream client TLS connections<br>See [Use mTLS](#https-management-advertise-on-slo-vip-use-mtls) below.
+
+#### HTTPS Management Advertise On Slo VIP TLS Certificates
+
+A [`tls_certificates`](#https-management-advertise-on-slo-vip-tls-certificates) block (within [`https_management.advertise_on_slo_vip`](#https-management-advertise-on-slo-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-certificate-url"></a>&#x2022; [`certificate_url`](#https-management-advertise-on-slo-vip-tls-certificates-certificate-url) - Optional String<br>Certificate. TLS certificate. Certificate or certificate chain in PEM format including the PEM headers
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms"></a>&#x2022; [`custom_hash_algorithms`](#https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms) - Optional Block<br>Hash Algorithms. Specifies the hash algorithms to be used<br>See [Custom Hash Algorithms](#https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms) below.
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-description-spec"></a>&#x2022; [`description_spec`](#https-management-advertise-on-slo-vip-tls-certificates-description-spec) - Optional String<br>Description. Description for the certificate
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-disable-ocsp-stapling"></a>&#x2022; [`disable_ocsp_stapling`](#https-management-advertise-on-slo-vip-tls-certificates-disable-ocsp-stapling) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key"></a>&#x2022; [`private_key`](#https-management-advertise-on-slo-vip-tls-certificates-private-key) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Private Key](#https-management-advertise-on-slo-vip-tls-certificates-private-key) below.
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-use-system-defaults"></a>&#x2022; [`use_system_defaults`](#https-management-advertise-on-slo-vip-tls-certificates-use-system-defaults) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo VIP TLS Certificates Custom Hash Algorithms
+
+A [`custom_hash_algorithms`](#https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms) block (within [`https_management.advertise_on_slo_vip.tls_certificates`](#https-management-advertise-on-slo-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms-hash-algorithms"></a>&#x2022; [`hash_algorithms`](#https-management-advertise-on-slo-vip-tls-certificates-custom-hash-algorithms-hash-algorithms) - Optional List  Defaults to `INVALID_HASH_ALGORITHM`<br>Possible values are `INVALID_HASH_ALGORITHM`, `SHA256`, `SHA1`<br>[Enum: INVALID_HASH_ALGORITHM|SHA256|SHA1] Hash Algorithms. Ordered list of hash algorithms to be used
+
+#### HTTPS Management Advertise On Slo VIP TLS Certificates Private Key
+
+A [`private_key`](#https-management-advertise-on-slo-vip-tls-certificates-private-key) block (within [`https_management.advertise_on_slo_vip.tls_certificates`](#https-management-advertise-on-slo-vip-tls-certificates)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info"></a>&#x2022; [`blindfold_secret_info`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info) below.
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info"></a>&#x2022; [`clear_secret_info`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info) below.
+
+#### HTTPS Management Advertise On Slo VIP TLS Certificates Private Key Blindfold Secret Info
+
+A [`blindfold_secret_info`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info) block (within [`https_management.advertise_on_slo_vip.tls_certificates.private_key`](#https-management-advertise-on-slo-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider"></a>&#x2022; [`decryption_provider`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-decryption-provider) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-location"></a>&#x2022; [`location`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-location) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-store-provider"></a>&#x2022; [`store_provider`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-blindfold-secret-info-store-provider) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+#### HTTPS Management Advertise On Slo VIP TLS Certificates Private Key Clear Secret Info
+
+A [`clear_secret_info`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info) block (within [`https_management.advertise_on_slo_vip.tls_certificates.private_key`](#https-management-advertise-on-slo-vip-tls-certificates-private-key)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info-provider-ref"></a>&#x2022; [`provider_ref`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info-provider-ref) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+
+<a id="https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info-url"></a>&#x2022; [`url`](#https-management-advertise-on-slo-vip-tls-certificates-private-key-clear-secret-info-url) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+
+#### HTTPS Management Advertise On Slo VIP TLS Config
+
+A [`tls_config`](#https-management-advertise-on-slo-vip-tls-config) block (within [`https_management.advertise_on_slo_vip`](#https-management-advertise-on-slo-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-config-custom-security"></a>&#x2022; [`custom_security`](#https-management-advertise-on-slo-vip-tls-config-custom-security) - Optional Block<br>Custom Ciphers. This defines TLS protocol config including min/max versions and allowed ciphers<br>See [Custom Security](#https-management-advertise-on-slo-vip-tls-config-custom-security) below.
+
+<a id="https-management-advertise-on-slo-vip-tls-config-default-security"></a>&#x2022; [`default_security`](#https-management-advertise-on-slo-vip-tls-config-default-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-tls-config-low-security"></a>&#x2022; [`low_security`](#https-management-advertise-on-slo-vip-tls-config-low-security) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-tls-config-medium-security"></a>&#x2022; [`medium_security`](#https-management-advertise-on-slo-vip-tls-config-medium-security) - Optional Block<br>Enable this option
+
+#### HTTPS Management Advertise On Slo VIP TLS Config Custom Security
+
+A [`custom_security`](#https-management-advertise-on-slo-vip-tls-config-custom-security) block (within [`https_management.advertise_on_slo_vip.tls_config`](#https-management-advertise-on-slo-vip-tls-config)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-tls-config-custom-security-cipher-suites"></a>&#x2022; [`cipher_suites`](#https-management-advertise-on-slo-vip-tls-config-custom-security-cipher-suites) - Optional List<br>Cipher Suites. The TLS listener will only support the specified cipher list
+
+<a id="https-management-advertise-on-slo-vip-tls-config-custom-security-max-version"></a>&#x2022; [`max_version`](#https-management-advertise-on-slo-vip-tls-config-custom-security-max-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+<a id="https-management-advertise-on-slo-vip-tls-config-custom-security-min-version"></a>&#x2022; [`min_version`](#https-management-advertise-on-slo-vip-tls-config-custom-security-min-version) - Optional String  Defaults to `TLS_AUTO`<br>Possible values are `TLS_AUTO`, `TLSv1_0`, `TLSv1_1`, `TLSv1_2`, `TLSv1_3`<br>[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TLS Protocol. TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version
+
+#### HTTPS Management Advertise On Slo VIP Use mTLS
+
+An [`use_mtls`](#https-management-advertise-on-slo-vip-use-mtls) block (within [`https_management.advertise_on_slo_vip`](#https-management-advertise-on-slo-vip)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-client-certificate-optional"></a>&#x2022; [`client_certificate_optional`](#https-management-advertise-on-slo-vip-use-mtls-client-certificate-optional) - Optional Bool<br>Client Certificate Optional. Client certificate is optional. If the client has provided a certificate, the load balancer will verify it. If certification verification fails, the connection will be terminated. If the client does not provide a certificate, the connection will be accepted
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-crl"></a>&#x2022; [`crl`](#https-management-advertise-on-slo-vip-use-mtls-crl) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [CRL](#https-management-advertise-on-slo-vip-use-mtls-crl) below.
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-no-crl"></a>&#x2022; [`no_crl`](#https-management-advertise-on-slo-vip-use-mtls-no-crl) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-trusted-ca"></a>&#x2022; [`trusted_ca`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca) - Optional Block<br>Object reference. This type establishes a direct reference from one object(the referrer) to another(the referred). Such a reference is in form of tenant/namespace/name<br>See [Trusted CA](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca) below.
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-trusted-ca-url"></a>&#x2022; [`trusted_ca_url`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca-url) - Optional String<br>Inline Root CA Certificate (legacy). Upload a Root CA Certificate specifically for this Load Balancer
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-xfcc-disabled"></a>&#x2022; [`xfcc_disabled`](#https-management-advertise-on-slo-vip-use-mtls-xfcc-disabled) - Optional Block<br>Enable this option
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-xfcc-options"></a>&#x2022; [`xfcc_options`](#https-management-advertise-on-slo-vip-use-mtls-xfcc-options) - Optional Block<br>XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests<br>See [Xfcc Options](#https-management-advertise-on-slo-vip-use-mtls-xfcc-options) below.
+
+#### HTTPS Management Advertise On Slo VIP Use mTLS CRL
+
+A [`crl`](#https-management-advertise-on-slo-vip-use-mtls-crl) block (within [`https_management.advertise_on_slo_vip.use_mtls`](#https-management-advertise-on-slo-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-crl-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-vip-use-mtls-crl-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-crl-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-vip-use-mtls-crl-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-crl-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-vip-use-mtls-crl-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo VIP Use mTLS Trusted CA
+
+A [`trusted_ca`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca) block (within [`https_management.advertise_on_slo_vip.use_mtls`](#https-management-advertise-on-slo-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-trusted-ca-name"></a>&#x2022; [`name`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-trusted-ca-namespace"></a>&#x2022; [`namespace`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca-namespace) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-trusted-ca-tenant"></a>&#x2022; [`tenant`](#https-management-advertise-on-slo-vip-use-mtls-trusted-ca-tenant) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+
+#### HTTPS Management Advertise On Slo VIP Use mTLS Xfcc Options
+
+A [`xfcc_options`](#https-management-advertise-on-slo-vip-use-mtls-xfcc-options) block (within [`https_management.advertise_on_slo_vip.use_mtls`](#https-management-advertise-on-slo-vip-use-mtls)) supports the following:
+
+<a id="https-management-advertise-on-slo-vip-use-mtls-xfcc-options-xfcc-header-elements"></a>&#x2022; [`xfcc_header_elements`](#https-management-advertise-on-slo-vip-use-mtls-xfcc-options-xfcc-header-elements) - Optional List  Defaults to `XFCC_NONE`<br>Possible values are `XFCC_NONE`, `XFCC_CERT`, `XFCC_CHAIN`, `XFCC_SUBJECT`, `XFCC_URI`, `XFCC_DNS`<br>[Enum: XFCC_NONE|XFCC_CERT|XFCC_CHAIN|XFCC_SUBJECT|XFCC_URI|XFCC_DNS] XFCC Header Elements. X-Forwarded-Client-Cert header elements to be added to requests
+
+#### Timeouts
+
+A [`timeouts`](#timeouts) block supports the following:
+
+<a id="timeouts-create"></a>&#x2022; [`create`](#timeouts-create) - Optional String (Defaults to `10 minutes`)<br>Used when creating the resource
+
+<a id="timeouts-delete"></a>&#x2022; [`delete`](#timeouts-delete) - Optional String (Defaults to `10 minutes`)<br>Used when deleting the resource
+
+<a id="timeouts-read"></a>&#x2022; [`read`](#timeouts-read) - Optional String (Defaults to `5 minutes`)<br>Used when retrieving the resource
+
+<a id="timeouts-update"></a>&#x2022; [`update`](#timeouts-update) - Optional String (Defaults to `10 minutes`)<br>Used when updating the resource
+
+## Import
+
+Import is supported using the following syntax:
+
+```shell
+# Import using namespace/name format
+terraform import f5xc_apm.example system/example
+```