pulumi-vault 7.1.0__py3-none-any.whl → 7.2.0__py3-none-any.whl

pulumi_vault/ldap/auth_backend.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumi-language-python. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -20,99 +19,99 @@ __all__ = ['AuthBackendArgs', 'AuthBackend']
 @pulumi.input_type
 class AuthBackendArgs:
     def __init__(__self__, *,
-                 url: pulumi.Input[builtins.str],
-                 binddn: Optional[pulumi.Input[builtins.str]] = None,
-                 bindpass: Optional[pulumi.Input[builtins.str]] = None,
-                 case_sensitive_names: Optional[pulumi.Input[builtins.bool]] = None,
-                 certificate: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_cert: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_key: Optional[pulumi.Input[builtins.str]] = None,
-                 connection_timeout: Optional[pulumi.Input[builtins.int]] = None,
-                 deny_null_bind: Optional[pulumi.Input[builtins.bool]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 disable_automated_rotation: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_remount: Optional[pulumi.Input[builtins.bool]] = None,
-                 discoverdn: Optional[pulumi.Input[builtins.bool]] = None,
-                 groupattr: Optional[pulumi.Input[builtins.str]] = None,
-                 groupdn: Optional[pulumi.Input[builtins.str]] = None,
-                 groupfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 insecure_tls: Optional[pulumi.Input[builtins.bool]] = None,
-                 local: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_page_size: Optional[pulumi.Input[builtins.int]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 path: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
-                 starttls: Optional[pulumi.Input[builtins.bool]] = None,
-                 tls_max_version: Optional[pulumi.Input[builtins.str]] = None,
-                 tls_min_version: Optional[pulumi.Input[builtins.str]] = None,
-                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
-                 token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
-                 token_period: Optional[pulumi.Input[builtins.int]] = None,
-                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_type: Optional[pulumi.Input[builtins.str]] = None,
-                 upndomain: Optional[pulumi.Input[builtins.str]] = None,
-                 use_token_groups: Optional[pulumi.Input[builtins.bool]] = None,
-                 userattr: Optional[pulumi.Input[builtins.str]] = None,
-                 userdn: Optional[pulumi.Input[builtins.str]] = None,
-                 userfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 username_as_alias: Optional[pulumi.Input[builtins.bool]] = None):
+                 url: pulumi.Input[_builtins.str],
+                 binddn: Optional[pulumi.Input[_builtins.str]] = None,
+                 bindpass: Optional[pulumi.Input[_builtins.str]] = None,
+                 case_sensitive_names: Optional[pulumi.Input[_builtins.bool]] = None,
+                 certificate: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_cert: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_key: Optional[pulumi.Input[_builtins.str]] = None,
+                 connection_timeout: Optional[pulumi.Input[_builtins.int]] = None,
+                 deny_null_bind: Optional[pulumi.Input[_builtins.bool]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 disable_automated_rotation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_remount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 discoverdn: Optional[pulumi.Input[_builtins.bool]] = None,
+                 groupattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 insecure_tls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 local: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_page_size: Optional[pulumi.Input[_builtins.int]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 path: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_window: Optional[pulumi.Input[_builtins.int]] = None,
+                 starttls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tls_max_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 tls_min_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_explicit_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_no_default_policy: Optional[pulumi.Input[_builtins.bool]] = None,
+                 token_num_uses: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_type: Optional[pulumi.Input[_builtins.str]] = None,
+                 upndomain: Optional[pulumi.Input[_builtins.str]] = None,
+                 use_token_groups: Optional[pulumi.Input[_builtins.bool]] = None,
+                 userattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 userdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 userfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 username_as_alias: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         The set of arguments for constructing a AuthBackend resource.
-        :param pulumi.Input[builtins.str] url: The URL of the LDAP server
-        :param pulumi.Input[builtins.str] binddn: DN of object to bind when performing user search
-        :param pulumi.Input[builtins.str] bindpass: Password to use with `binddn` when performing user search
-        :param pulumi.Input[builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
-        :param pulumi.Input[builtins.str] certificate: Trusted CA to validate TLS certificate
-        :param pulumi.Input[builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
-        :param pulumi.Input[builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
-        :param pulumi.Input[builtins.str] description: Description for the LDAP auth backend mount
-        :param pulumi.Input[builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
+        :param pulumi.Input[_builtins.str] url: The URL of the LDAP server
+        :param pulumi.Input[_builtins.str] binddn: DN of object to bind when performing user search
+        :param pulumi.Input[_builtins.str] bindpass: Password to use with `binddn` when performing user search
+        :param pulumi.Input[_builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
+        :param pulumi.Input[_builtins.str] certificate: Trusted CA to validate TLS certificate
+        :param pulumi.Input[_builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
+        :param pulumi.Input[_builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
+        :param pulumi.Input[_builtins.str] description: Description for the LDAP auth backend mount
+        :param pulumi.Input[_builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
+        :param pulumi.Input[_builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
                See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
-        :param pulumi.Input[builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
-        :param pulumi.Input[builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
-        :param pulumi.Input[builtins.str] groupdn: Base DN under which to perform group search
-        :param pulumi.Input[builtins.str] groupfilter: Go template used to construct group membership query
-        :param pulumi.Input[builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
-        :param pulumi.Input[builtins.bool] local: Specifies if the auth method is local only.
-        :param pulumi.Input[builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
+        :param pulumi.Input[_builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
+        :param pulumi.Input[_builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
+        :param pulumi.Input[_builtins.str] groupdn: Base DN under which to perform group search
+        :param pulumi.Input[_builtins.str] groupfilter: Go template used to construct group membership query
+        :param pulumi.Input[_builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
+        :param pulumi.Input[_builtins.bool] local: Specifies if the auth method is local only.
+        :param pulumi.Input[_builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
                *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] path: Path to mount the LDAP auth backend under
-        :param pulumi.Input[builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
+        :param pulumi.Input[_builtins.str] path: Path to mount the LDAP auth backend under
+        :param pulumi.Input[_builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
                A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
+        :param pulumi.Input[_builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
                defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
+        :param pulumi.Input[_builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
                a rotation when a scheduled token rotation occurs. The default rotation window is
                unbound and the minimum allowable window is `3600`. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] starttls: Control use of TLS when conecting to LDAP
-        :param pulumi.Input[builtins.str] tls_max_version: Maximum acceptable version of TLS
-        :param pulumi.Input[builtins.str] tls_min_version: Minimum acceptable version of TLS
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
-        :param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
-        :param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
-        :param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
-        :param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
-        :param pulumi.Input[builtins.int] token_period: Generated Token's Period
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
-        :param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
-        :param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
-        :param pulumi.Input[builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
-        :param pulumi.Input[builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
-        :param pulumi.Input[builtins.str] userattr: Attribute on user object matching username passed in
-        :param pulumi.Input[builtins.str] userdn: Base DN under which to perform user search
-        :param pulumi.Input[builtins.str] userfilter: LDAP user search filter
-        :param pulumi.Input[builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
+        :param pulumi.Input[_builtins.bool] starttls: Control use of TLS when conecting to LDAP
+        :param pulumi.Input[_builtins.str] tls_max_version: Maximum acceptable version of TLS
+        :param pulumi.Input[_builtins.str] tls_min_version: Minimum acceptable version of TLS
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
+        :param pulumi.Input[_builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
+        :param pulumi.Input[_builtins.int] token_max_ttl: The maximum lifetime of the generated token
+        :param pulumi.Input[_builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
+        :param pulumi.Input[_builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
+        :param pulumi.Input[_builtins.int] token_period: Generated Token's Period
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_policies: Generated Token's Policies
+        :param pulumi.Input[_builtins.int] token_ttl: The initial ttl of the token to generate in seconds
+        :param pulumi.Input[_builtins.str] token_type: The type of token to generate, service or batch
+        :param pulumi.Input[_builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
+        :param pulumi.Input[_builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
+        :param pulumi.Input[_builtins.str] userattr: Attribute on user object matching username passed in
+        :param pulumi.Input[_builtins.str] userdn: Base DN under which to perform user search
+        :param pulumi.Input[_builtins.str] userfilter: LDAP user search filter
+        :param pulumi.Input[_builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
         """
         pulumi.set(__self__, "url", url)
         if binddn is not None:
@@ -198,135 +197,135 @@ class AuthBackendArgs:
         if username_as_alias is not None:
             pulumi.set(__self__, "username_as_alias", username_as_alias)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def url(self) -> pulumi.Input[builtins.str]:
+    def url(self) -> pulumi.Input[_builtins.str]:
         """
         The URL of the LDAP server
         """
         return pulumi.get(self, "url")
 
     @url.setter
-    def url(self, value: pulumi.Input[builtins.str]):
+    def url(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "url", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def binddn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def binddn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         DN of object to bind when performing user search
         """
         return pulumi.get(self, "binddn")
 
     @binddn.setter
-    def binddn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def binddn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "binddn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def bindpass(self) -> Optional[pulumi.Input[builtins.str]]:
+    def bindpass(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Password to use with `binddn` when performing user search
         """
         return pulumi.get(self, "bindpass")
 
     @bindpass.setter
-    def bindpass(self, value: Optional[pulumi.Input[builtins.str]]):
+    def bindpass(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "bindpass", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="caseSensitiveNames")
-    def case_sensitive_names(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def case_sensitive_names(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
         """
         return pulumi.get(self, "case_sensitive_names")
 
     @case_sensitive_names.setter
-    def case_sensitive_names(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def case_sensitive_names(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "case_sensitive_names", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def certificate(self) -> Optional[pulumi.Input[builtins.str]]:
+    def certificate(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Trusted CA to validate TLS certificate
         """
         return pulumi.get(self, "certificate")
 
     @certificate.setter
-    def certificate(self, value: Optional[pulumi.Input[builtins.str]]):
+    def certificate(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "certificate", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsCert")
-    def client_tls_cert(self) -> Optional[pulumi.Input[builtins.str]]:
+    def client_tls_cert(self) -> Optional[pulumi.Input[_builtins.str]]:
         return pulumi.get(self, "client_tls_cert")
 
     @client_tls_cert.setter
-    def client_tls_cert(self, value: Optional[pulumi.Input[builtins.str]]):
+    def client_tls_cert(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "client_tls_cert", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsKey")
-    def client_tls_key(self) -> Optional[pulumi.Input[builtins.str]]:
+    def client_tls_key(self) -> Optional[pulumi.Input[_builtins.str]]:
         return pulumi.get(self, "client_tls_key")
 
     @client_tls_key.setter
-    def client_tls_key(self, value: Optional[pulumi.Input[builtins.str]]):
+    def client_tls_key(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "client_tls_key", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="connectionTimeout")
-    def connection_timeout(self) -> Optional[pulumi.Input[builtins.int]]:
+    def connection_timeout(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
         """
         return pulumi.get(self, "connection_timeout")
 
     @connection_timeout.setter
-    def connection_timeout(self, value: Optional[pulumi.Input[builtins.int]]):
+    def connection_timeout(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "connection_timeout", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="denyNullBind")
-    def deny_null_bind(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def deny_null_bind(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Prevents users from bypassing authentication when providing an empty password.
         """
         return pulumi.get(self, "deny_null_bind")
 
     @deny_null_bind.setter
-    def deny_null_bind(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def deny_null_bind(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "deny_null_bind", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[builtins.str]]:
+    def description(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Description for the LDAP auth backend mount
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[builtins.str]]):
+    def description(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "description", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableAutomatedRotation")
-    def disable_automated_rotation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_automated_rotation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
         """
         return pulumi.get(self, "disable_automated_rotation")
 
     @disable_automated_rotation.setter
-    def disable_automated_rotation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_automated_rotation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_automated_rotation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableRemount")
-    def disable_remount(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_remount(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, opts out of mount migration on path updates.
         See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
@@ -334,84 +333,84 @@ class AuthBackendArgs:
         return pulumi.get(self, "disable_remount")
 
     @disable_remount.setter
-    def disable_remount(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_remount(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_remount", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def discoverdn(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def discoverdn(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Use anonymous bind to discover the bind DN of a user.
         """
         return pulumi.get(self, "discoverdn")
 
     @discoverdn.setter
-    def discoverdn(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def discoverdn(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "discoverdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupattr(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupattr(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         LDAP attribute to follow on objects returned by groupfilter
         """
         return pulumi.get(self, "groupattr")
 
     @groupattr.setter
-    def groupattr(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupattr(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupattr", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupdn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupdn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Base DN under which to perform group search
         """
         return pulumi.get(self, "groupdn")
 
     @groupdn.setter
-    def groupdn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupdn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupfilter(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupfilter(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Go template used to construct group membership query
         """
         return pulumi.get(self, "groupfilter")
 
     @groupfilter.setter
-    def groupfilter(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupfilter(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupfilter", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="insecureTls")
-    def insecure_tls(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def insecure_tls(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control whether or TLS certificates must be validated
         """
         return pulumi.get(self, "insecure_tls")
 
     @insecure_tls.setter
-    def insecure_tls(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def insecure_tls(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "insecure_tls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def local(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def local(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies if the auth method is local only.
         """
         return pulumi.get(self, "local")
 
     @local.setter
-    def local(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def local(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "local", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxPageSize")
-    def max_page_size(self) -> Optional[pulumi.Input[builtins.int]]:
+    def max_page_size(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Sets the max page size for LDAP lookups, by default it's set to -1.
         *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
@@ -419,12 +418,12 @@ class AuthBackendArgs:
         return pulumi.get(self, "max_page_size")
 
     @max_page_size.setter
-    def max_page_size(self, value: Optional[pulumi.Input[builtins.int]]):
+    def max_page_size(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "max_page_size", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -434,24 +433,24 @@ class AuthBackendArgs:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def path(self) -> Optional[pulumi.Input[builtins.str]]:
+    def path(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Path to mount the LDAP auth backend under
         """
         return pulumi.get(self, "path")
 
     @path.setter
-    def path(self, value: Optional[pulumi.Input[builtins.str]]):
+    def path(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "path", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> Optional[pulumi.Input[builtins.int]]:
+    def rotation_period(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The amount of time in seconds Vault should wait before rotating the root credential.
         A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
@@ -459,12 +458,12 @@ class AuthBackendArgs:
         return pulumi.get(self, "rotation_period")
 
     @rotation_period.setter
-    def rotation_period(self, value: Optional[pulumi.Input[builtins.int]]):
+    def rotation_period(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "rotation_period", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rotation_schedule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
         defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
@@ -472,12 +471,12 @@ class AuthBackendArgs:
         return pulumi.get(self, "rotation_schedule")
 
     @rotation_schedule.setter
-    def rotation_schedule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rotation_schedule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rotation_schedule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> Optional[pulumi.Input[builtins.int]]:
+    def rotation_window(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum amount of time in seconds allowed to complete
         a rotation when a scheduled token rotation occurs. The default rotation window is
@@ -486,324 +485,324 @@ class AuthBackendArgs:
         return pulumi.get(self, "rotation_window")
 
     @rotation_window.setter
-    def rotation_window(self, value: Optional[pulumi.Input[builtins.int]]):
+    def rotation_window(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "rotation_window", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def starttls(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def starttls(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control use of TLS when conecting to LDAP
         """
         return pulumi.get(self, "starttls")
 
     @starttls.setter
-    def starttls(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def starttls(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "starttls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMaxVersion")
-    def tls_max_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def tls_max_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Maximum acceptable version of TLS
         """
         return pulumi.get(self, "tls_max_version")
 
     @tls_max_version.setter
-    def tls_max_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def tls_max_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "tls_max_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMinVersion")
-    def tls_min_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def tls_min_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Minimum acceptable version of TLS
         """
         return pulumi.get(self, "tls_min_version")
 
     @tls_min_version.setter
-    def tls_min_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def tls_min_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "tls_min_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenBoundCidrs")
-    def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the blocks of IP addresses which are allowed to use the generated token
         """
         return pulumi.get(self, "token_bound_cidrs")
 
     @token_bound_cidrs.setter
-    def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "token_bound_cidrs", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenExplicitMaxTtl")
-    def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_explicit_max_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Generated Token's Explicit Maximum TTL in seconds
         """
         return pulumi.get(self, "token_explicit_max_ttl")
 
     @token_explicit_max_ttl.setter
-    def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_explicit_max_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_explicit_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenMaxTtl")
-    def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_max_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum lifetime of the generated token
         """
         return pulumi.get(self, "token_max_ttl")
 
     @token_max_ttl.setter
-    def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_max_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNoDefaultPolicy")
-    def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def token_no_default_policy(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If true, the 'default' policy will not automatically be added to generated tokens
         """
         return pulumi.get(self, "token_no_default_policy")
 
     @token_no_default_policy.setter
-    def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def token_no_default_policy(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "token_no_default_policy", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNumUses")
-    def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_num_uses(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum number of times a token may be used, a value of zero means unlimited
         """
         return pulumi.get(self, "token_num_uses")
 
     @token_num_uses.setter
-    def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_num_uses(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_num_uses", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPeriod")
-    def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_period(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Generated Token's Period
         """
         return pulumi.get(self, "token_period")
 
     @token_period.setter
-    def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_period(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_period", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPolicies")
-    def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Generated Token's Policies
         """
         return pulumi.get(self, "token_policies")
 
     @token_policies.setter
-    def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "token_policies", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenTtl")
-    def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The initial ttl of the token to generate in seconds
         """
         return pulumi.get(self, "token_ttl")
 
     @token_ttl.setter
-    def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenType")
-    def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
+    def token_type(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The type of token to generate, service or batch
         """
         return pulumi.get(self, "token_type")
 
     @token_type.setter
-    def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
+    def token_type(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "token_type", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def upndomain(self) -> Optional[pulumi.Input[builtins.str]]:
+    def upndomain(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
         """
         return pulumi.get(self, "upndomain")
 
     @upndomain.setter
-    def upndomain(self, value: Optional[pulumi.Input[builtins.str]]):
+    def upndomain(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "upndomain", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="useTokenGroups")
-    def use_token_groups(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def use_token_groups(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
         """
         return pulumi.get(self, "use_token_groups")
 
     @use_token_groups.setter
-    def use_token_groups(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def use_token_groups(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "use_token_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userattr(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userattr(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Attribute on user object matching username passed in
         """
         return pulumi.get(self, "userattr")
 
     @userattr.setter
-    def userattr(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userattr(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userattr", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userdn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userdn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Base DN under which to perform user search
         """
         return pulumi.get(self, "userdn")
 
     @userdn.setter
-    def userdn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userdn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userfilter(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userfilter(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         LDAP user search filter
         """
         return pulumi.get(self, "userfilter")
 
     @userfilter.setter
-    def userfilter(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userfilter(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userfilter", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="usernameAsAlias")
-    def username_as_alias(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def username_as_alias(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Force the auth method to use the username passed by the user as the alias name.
         """
         return pulumi.get(self, "username_as_alias")
 
     @username_as_alias.setter
-    def username_as_alias(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def username_as_alias(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "username_as_alias", value)
 
 
 @pulumi.input_type
 class _AuthBackendState:
     def __init__(__self__, *,
-                 accessor: Optional[pulumi.Input[builtins.str]] = None,
-                 binddn: Optional[pulumi.Input[builtins.str]] = None,
-                 bindpass: Optional[pulumi.Input[builtins.str]] = None,
-                 case_sensitive_names: Optional[pulumi.Input[builtins.bool]] = None,
-                 certificate: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_cert: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_key: Optional[pulumi.Input[builtins.str]] = None,
-                 connection_timeout: Optional[pulumi.Input[builtins.int]] = None,
-                 deny_null_bind: Optional[pulumi.Input[builtins.bool]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 disable_automated_rotation: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_remount: Optional[pulumi.Input[builtins.bool]] = None,
-                 discoverdn: Optional[pulumi.Input[builtins.bool]] = None,
-                 groupattr: Optional[pulumi.Input[builtins.str]] = None,
-                 groupdn: Optional[pulumi.Input[builtins.str]] = None,
-                 groupfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 insecure_tls: Optional[pulumi.Input[builtins.bool]] = None,
-                 local: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_page_size: Optional[pulumi.Input[builtins.int]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 path: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
-                 starttls: Optional[pulumi.Input[builtins.bool]] = None,
-                 tls_max_version: Optional[pulumi.Input[builtins.str]] = None,
-                 tls_min_version: Optional[pulumi.Input[builtins.str]] = None,
-                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
-                 token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
-                 token_period: Optional[pulumi.Input[builtins.int]] = None,
-                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_type: Optional[pulumi.Input[builtins.str]] = None,
-                 upndomain: Optional[pulumi.Input[builtins.str]] = None,
-                 url: Optional[pulumi.Input[builtins.str]] = None,
-                 use_token_groups: Optional[pulumi.Input[builtins.bool]] = None,
-                 userattr: Optional[pulumi.Input[builtins.str]] = None,
-                 userdn: Optional[pulumi.Input[builtins.str]] = None,
-                 userfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 username_as_alias: Optional[pulumi.Input[builtins.bool]] = None):
+                 accessor: Optional[pulumi.Input[_builtins.str]] = None,
+                 binddn: Optional[pulumi.Input[_builtins.str]] = None,
+                 bindpass: Optional[pulumi.Input[_builtins.str]] = None,
+                 case_sensitive_names: Optional[pulumi.Input[_builtins.bool]] = None,
+                 certificate: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_cert: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_key: Optional[pulumi.Input[_builtins.str]] = None,
+                 connection_timeout: Optional[pulumi.Input[_builtins.int]] = None,
+                 deny_null_bind: Optional[pulumi.Input[_builtins.bool]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 disable_automated_rotation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_remount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 discoverdn: Optional[pulumi.Input[_builtins.bool]] = None,
+                 groupattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 insecure_tls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 local: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_page_size: Optional[pulumi.Input[_builtins.int]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 path: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_window: Optional[pulumi.Input[_builtins.int]] = None,
+                 starttls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tls_max_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 tls_min_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_explicit_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_no_default_policy: Optional[pulumi.Input[_builtins.bool]] = None,
+                 token_num_uses: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_type: Optional[pulumi.Input[_builtins.str]] = None,
+                 upndomain: Optional[pulumi.Input[_builtins.str]] = None,
+                 url: Optional[pulumi.Input[_builtins.str]] = None,
+                 use_token_groups: Optional[pulumi.Input[_builtins.bool]] = None,
+                 userattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 userdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 userfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 username_as_alias: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         Input properties used for looking up and filtering AuthBackend resources.
-        :param pulumi.Input[builtins.str] accessor: The accessor for this auth mount.
-        :param pulumi.Input[builtins.str] binddn: DN of object to bind when performing user search
-        :param pulumi.Input[builtins.str] bindpass: Password to use with `binddn` when performing user search
-        :param pulumi.Input[builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
-        :param pulumi.Input[builtins.str] certificate: Trusted CA to validate TLS certificate
-        :param pulumi.Input[builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
-        :param pulumi.Input[builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
-        :param pulumi.Input[builtins.str] description: Description for the LDAP auth backend mount
-        :param pulumi.Input[builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
+        :param pulumi.Input[_builtins.str] accessor: The accessor for this auth mount.
+        :param pulumi.Input[_builtins.str] binddn: DN of object to bind when performing user search
+        :param pulumi.Input[_builtins.str] bindpass: Password to use with `binddn` when performing user search
+        :param pulumi.Input[_builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
+        :param pulumi.Input[_builtins.str] certificate: Trusted CA to validate TLS certificate
+        :param pulumi.Input[_builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
+        :param pulumi.Input[_builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
+        :param pulumi.Input[_builtins.str] description: Description for the LDAP auth backend mount
+        :param pulumi.Input[_builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
+        :param pulumi.Input[_builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
                See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
-        :param pulumi.Input[builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
-        :param pulumi.Input[builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
-        :param pulumi.Input[builtins.str] groupdn: Base DN under which to perform group search
-        :param pulumi.Input[builtins.str] groupfilter: Go template used to construct group membership query
-        :param pulumi.Input[builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
-        :param pulumi.Input[builtins.bool] local: Specifies if the auth method is local only.
-        :param pulumi.Input[builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
+        :param pulumi.Input[_builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
+        :param pulumi.Input[_builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
+        :param pulumi.Input[_builtins.str] groupdn: Base DN under which to perform group search
+        :param pulumi.Input[_builtins.str] groupfilter: Go template used to construct group membership query
+        :param pulumi.Input[_builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
+        :param pulumi.Input[_builtins.bool] local: Specifies if the auth method is local only.
+        :param pulumi.Input[_builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
                *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] path: Path to mount the LDAP auth backend under
-        :param pulumi.Input[builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
+        :param pulumi.Input[_builtins.str] path: Path to mount the LDAP auth backend under
+        :param pulumi.Input[_builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
                A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
+        :param pulumi.Input[_builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
                defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
+        :param pulumi.Input[_builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
                a rotation when a scheduled token rotation occurs. The default rotation window is
                unbound and the minimum allowable window is `3600`. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] starttls: Control use of TLS when conecting to LDAP
-        :param pulumi.Input[builtins.str] tls_max_version: Maximum acceptable version of TLS
-        :param pulumi.Input[builtins.str] tls_min_version: Minimum acceptable version of TLS
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
-        :param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
-        :param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
-        :param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
-        :param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
-        :param pulumi.Input[builtins.int] token_period: Generated Token's Period
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
-        :param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
-        :param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
-        :param pulumi.Input[builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
-        :param pulumi.Input[builtins.str] url: The URL of the LDAP server
-        :param pulumi.Input[builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
-        :param pulumi.Input[builtins.str] userattr: Attribute on user object matching username passed in
-        :param pulumi.Input[builtins.str] userdn: Base DN under which to perform user search
-        :param pulumi.Input[builtins.str] userfilter: LDAP user search filter
-        :param pulumi.Input[builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
+        :param pulumi.Input[_builtins.bool] starttls: Control use of TLS when conecting to LDAP
+        :param pulumi.Input[_builtins.str] tls_max_version: Maximum acceptable version of TLS
+        :param pulumi.Input[_builtins.str] tls_min_version: Minimum acceptable version of TLS
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
+        :param pulumi.Input[_builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
+        :param pulumi.Input[_builtins.int] token_max_ttl: The maximum lifetime of the generated token
+        :param pulumi.Input[_builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
+        :param pulumi.Input[_builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
+        :param pulumi.Input[_builtins.int] token_period: Generated Token's Period
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_policies: Generated Token's Policies
+        :param pulumi.Input[_builtins.int] token_ttl: The initial ttl of the token to generate in seconds
+        :param pulumi.Input[_builtins.str] token_type: The type of token to generate, service or batch
+        :param pulumi.Input[_builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
+        :param pulumi.Input[_builtins.str] url: The URL of the LDAP server
+        :param pulumi.Input[_builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
+        :param pulumi.Input[_builtins.str] userattr: Attribute on user object matching username passed in
+        :param pulumi.Input[_builtins.str] userdn: Base DN under which to perform user search
+        :param pulumi.Input[_builtins.str] userfilter: LDAP user search filter
+        :param pulumi.Input[_builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
         """
         if accessor is not None:
             pulumi.set(__self__, "accessor", accessor)
@@ -892,135 +891,135 @@ class _AuthBackendState:
         if username_as_alias is not None:
             pulumi.set(__self__, "username_as_alias", username_as_alias)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def accessor(self) -> Optional[pulumi.Input[builtins.str]]:
+    def accessor(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The accessor for this auth mount.
         """
         return pulumi.get(self, "accessor")
 
     @accessor.setter
-    def accessor(self, value: Optional[pulumi.Input[builtins.str]]):
+    def accessor(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "accessor", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def binddn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def binddn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         DN of object to bind when performing user search
         """
         return pulumi.get(self, "binddn")
 
     @binddn.setter
-    def binddn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def binddn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "binddn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def bindpass(self) -> Optional[pulumi.Input[builtins.str]]:
+    def bindpass(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Password to use with `binddn` when performing user search
         """
         return pulumi.get(self, "bindpass")
 
     @bindpass.setter
-    def bindpass(self, value: Optional[pulumi.Input[builtins.str]]):
+    def bindpass(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "bindpass", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="caseSensitiveNames")
-    def case_sensitive_names(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def case_sensitive_names(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
         """
         return pulumi.get(self, "case_sensitive_names")
 
     @case_sensitive_names.setter
-    def case_sensitive_names(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def case_sensitive_names(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "case_sensitive_names", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def certificate(self) -> Optional[pulumi.Input[builtins.str]]:
+    def certificate(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Trusted CA to validate TLS certificate
         """
         return pulumi.get(self, "certificate")
 
     @certificate.setter
-    def certificate(self, value: Optional[pulumi.Input[builtins.str]]):
+    def certificate(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "certificate", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsCert")
-    def client_tls_cert(self) -> Optional[pulumi.Input[builtins.str]]:
+    def client_tls_cert(self) -> Optional[pulumi.Input[_builtins.str]]:
         return pulumi.get(self, "client_tls_cert")
 
     @client_tls_cert.setter
-    def client_tls_cert(self, value: Optional[pulumi.Input[builtins.str]]):
+    def client_tls_cert(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "client_tls_cert", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsKey")
-    def client_tls_key(self) -> Optional[pulumi.Input[builtins.str]]:
+    def client_tls_key(self) -> Optional[pulumi.Input[_builtins.str]]:
         return pulumi.get(self, "client_tls_key")
 
     @client_tls_key.setter
-    def client_tls_key(self, value: Optional[pulumi.Input[builtins.str]]):
+    def client_tls_key(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "client_tls_key", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="connectionTimeout")
-    def connection_timeout(self) -> Optional[pulumi.Input[builtins.int]]:
+    def connection_timeout(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
         """
         return pulumi.get(self, "connection_timeout")
 
     @connection_timeout.setter
-    def connection_timeout(self, value: Optional[pulumi.Input[builtins.int]]):
+    def connection_timeout(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "connection_timeout", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="denyNullBind")
-    def deny_null_bind(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def deny_null_bind(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Prevents users from bypassing authentication when providing an empty password.
         """
         return pulumi.get(self, "deny_null_bind")
 
     @deny_null_bind.setter
-    def deny_null_bind(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def deny_null_bind(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "deny_null_bind", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[builtins.str]]:
+    def description(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Description for the LDAP auth backend mount
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[builtins.str]]):
+    def description(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "description", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableAutomatedRotation")
-    def disable_automated_rotation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_automated_rotation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
         """
         return pulumi.get(self, "disable_automated_rotation")
 
     @disable_automated_rotation.setter
-    def disable_automated_rotation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_automated_rotation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_automated_rotation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableRemount")
-    def disable_remount(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def disable_remount(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If set, opts out of mount migration on path updates.
         See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
@@ -1028,84 +1027,84 @@ class _AuthBackendState:
         return pulumi.get(self, "disable_remount")
 
     @disable_remount.setter
-    def disable_remount(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def disable_remount(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "disable_remount", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def discoverdn(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def discoverdn(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Use anonymous bind to discover the bind DN of a user.
         """
         return pulumi.get(self, "discoverdn")
 
     @discoverdn.setter
-    def discoverdn(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def discoverdn(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "discoverdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupattr(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupattr(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         LDAP attribute to follow on objects returned by groupfilter
         """
         return pulumi.get(self, "groupattr")
 
     @groupattr.setter
-    def groupattr(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupattr(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupattr", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupdn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupdn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Base DN under which to perform group search
         """
         return pulumi.get(self, "groupdn")
 
     @groupdn.setter
-    def groupdn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupdn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupfilter(self) -> Optional[pulumi.Input[builtins.str]]:
+    def groupfilter(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Go template used to construct group membership query
         """
         return pulumi.get(self, "groupfilter")
 
     @groupfilter.setter
-    def groupfilter(self, value: Optional[pulumi.Input[builtins.str]]):
+    def groupfilter(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "groupfilter", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="insecureTls")
-    def insecure_tls(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def insecure_tls(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control whether or TLS certificates must be validated
         """
         return pulumi.get(self, "insecure_tls")
 
     @insecure_tls.setter
-    def insecure_tls(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def insecure_tls(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "insecure_tls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def local(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def local(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Specifies if the auth method is local only.
         """
         return pulumi.get(self, "local")
 
     @local.setter
-    def local(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def local(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "local", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxPageSize")
-    def max_page_size(self) -> Optional[pulumi.Input[builtins.int]]:
+    def max_page_size(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Sets the max page size for LDAP lookups, by default it's set to -1.
         *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
@@ -1113,12 +1112,12 @@ class _AuthBackendState:
         return pulumi.get(self, "max_page_size")
 
     @max_page_size.setter
-    def max_page_size(self, value: Optional[pulumi.Input[builtins.int]]):
+    def max_page_size(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "max_page_size", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> Optional[pulumi.Input[builtins.str]]:
+    def namespace(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -1128,24 +1127,24 @@ class _AuthBackendState:
         return pulumi.get(self, "namespace")
 
     @namespace.setter
-    def namespace(self, value: Optional[pulumi.Input[builtins.str]]):
+    def namespace(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "namespace", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def path(self) -> Optional[pulumi.Input[builtins.str]]:
+    def path(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Path to mount the LDAP auth backend under
         """
         return pulumi.get(self, "path")
 
     @path.setter
-    def path(self, value: Optional[pulumi.Input[builtins.str]]):
+    def path(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "path", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> Optional[pulumi.Input[builtins.int]]:
+    def rotation_period(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The amount of time in seconds Vault should wait before rotating the root credential.
         A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
@@ -1153,12 +1152,12 @@ class _AuthBackendState:
         return pulumi.get(self, "rotation_period")
 
     @rotation_period.setter
-    def rotation_period(self, value: Optional[pulumi.Input[builtins.int]]):
+    def rotation_period(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "rotation_period", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rotation_schedule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
         defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
@@ -1166,12 +1165,12 @@ class _AuthBackendState:
         return pulumi.get(self, "rotation_schedule")
 
     @rotation_schedule.setter
-    def rotation_schedule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rotation_schedule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rotation_schedule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> Optional[pulumi.Input[builtins.int]]:
+    def rotation_window(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum amount of time in seconds allowed to complete
         a rotation when a scheduled token rotation occurs. The default rotation window is
@@ -1180,235 +1179,235 @@ class _AuthBackendState:
         return pulumi.get(self, "rotation_window")
 
     @rotation_window.setter
-    def rotation_window(self, value: Optional[pulumi.Input[builtins.int]]):
+    def rotation_window(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "rotation_window", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def starttls(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def starttls(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Control use of TLS when conecting to LDAP
         """
         return pulumi.get(self, "starttls")
 
     @starttls.setter
-    def starttls(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def starttls(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "starttls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMaxVersion")
-    def tls_max_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def tls_max_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Maximum acceptable version of TLS
         """
         return pulumi.get(self, "tls_max_version")
 
     @tls_max_version.setter
-    def tls_max_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def tls_max_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "tls_max_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMinVersion")
-    def tls_min_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def tls_min_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Minimum acceptable version of TLS
         """
         return pulumi.get(self, "tls_min_version")
 
     @tls_min_version.setter
-    def tls_min_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def tls_min_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "tls_min_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenBoundCidrs")
-    def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def token_bound_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Specifies the blocks of IP addresses which are allowed to use the generated token
         """
         return pulumi.get(self, "token_bound_cidrs")
 
     @token_bound_cidrs.setter
-    def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def token_bound_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "token_bound_cidrs", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenExplicitMaxTtl")
-    def token_explicit_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_explicit_max_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Generated Token's Explicit Maximum TTL in seconds
         """
         return pulumi.get(self, "token_explicit_max_ttl")
 
     @token_explicit_max_ttl.setter
-    def token_explicit_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_explicit_max_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_explicit_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenMaxTtl")
-    def token_max_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_max_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum lifetime of the generated token
         """
         return pulumi.get(self, "token_max_ttl")
 
     @token_max_ttl.setter
-    def token_max_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_max_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_max_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNoDefaultPolicy")
-    def token_no_default_policy(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def token_no_default_policy(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         If true, the 'default' policy will not automatically be added to generated tokens
         """
         return pulumi.get(self, "token_no_default_policy")
 
     @token_no_default_policy.setter
-    def token_no_default_policy(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def token_no_default_policy(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "token_no_default_policy", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNumUses")
-    def token_num_uses(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_num_uses(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The maximum number of times a token may be used, a value of zero means unlimited
         """
         return pulumi.get(self, "token_num_uses")
 
     @token_num_uses.setter
-    def token_num_uses(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_num_uses(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_num_uses", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPeriod")
-    def token_period(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_period(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Generated Token's Period
         """
         return pulumi.get(self, "token_period")
 
     @token_period.setter
-    def token_period(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_period(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_period", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPolicies")
-    def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def token_policies(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         Generated Token's Policies
         """
         return pulumi.get(self, "token_policies")
 
     @token_policies.setter
-    def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def token_policies(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "token_policies", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenTtl")
-    def token_ttl(self) -> Optional[pulumi.Input[builtins.int]]:
+    def token_ttl(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         The initial ttl of the token to generate in seconds
         """
         return pulumi.get(self, "token_ttl")
 
     @token_ttl.setter
-    def token_ttl(self, value: Optional[pulumi.Input[builtins.int]]):
+    def token_ttl(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "token_ttl", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenType")
-    def token_type(self) -> Optional[pulumi.Input[builtins.str]]:
+    def token_type(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The type of token to generate, service or batch
         """
         return pulumi.get(self, "token_type")
 
     @token_type.setter
-    def token_type(self, value: Optional[pulumi.Input[builtins.str]]):
+    def token_type(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "token_type", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def upndomain(self) -> Optional[pulumi.Input[builtins.str]]:
+    def upndomain(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
         """
         return pulumi.get(self, "upndomain")
 
     @upndomain.setter
-    def upndomain(self, value: Optional[pulumi.Input[builtins.str]]):
+    def upndomain(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "upndomain", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def url(self) -> Optional[pulumi.Input[builtins.str]]:
+    def url(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         The URL of the LDAP server
         """
         return pulumi.get(self, "url")
 
     @url.setter
-    def url(self, value: Optional[pulumi.Input[builtins.str]]):
+    def url(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "url", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="useTokenGroups")
-    def use_token_groups(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def use_token_groups(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
         """
         return pulumi.get(self, "use_token_groups")
 
     @use_token_groups.setter
-    def use_token_groups(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def use_token_groups(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "use_token_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userattr(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userattr(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Attribute on user object matching username passed in
         """
         return pulumi.get(self, "userattr")
 
     @userattr.setter
-    def userattr(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userattr(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userattr", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userdn(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userdn(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Base DN under which to perform user search
         """
         return pulumi.get(self, "userdn")
 
     @userdn.setter
-    def userdn(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userdn(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userdn", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userfilter(self) -> Optional[pulumi.Input[builtins.str]]:
+    def userfilter(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         LDAP user search filter
         """
         return pulumi.get(self, "userfilter")
 
     @userfilter.setter
-    def userfilter(self, value: Optional[pulumi.Input[builtins.str]]):
+    def userfilter(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "userfilter", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="usernameAsAlias")
-    def username_as_alias(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def username_as_alias(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         Force the auth method to use the username passed by the user as the alias name.
         """
         return pulumi.get(self, "username_as_alias")
 
     @username_as_alias.setter
-    def username_as_alias(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def username_as_alias(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "username_as_alias", value)
 
 
@@ -1418,48 +1417,48 @@ class AuthBackend(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 binddn: Optional[pulumi.Input[builtins.str]] = None,
-                 bindpass: Optional[pulumi.Input[builtins.str]] = None,
-                 case_sensitive_names: Optional[pulumi.Input[builtins.bool]] = None,
-                 certificate: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_cert: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_key: Optional[pulumi.Input[builtins.str]] = None,
-                 connection_timeout: Optional[pulumi.Input[builtins.int]] = None,
-                 deny_null_bind: Optional[pulumi.Input[builtins.bool]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 disable_automated_rotation: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_remount: Optional[pulumi.Input[builtins.bool]] = None,
-                 discoverdn: Optional[pulumi.Input[builtins.bool]] = None,
-                 groupattr: Optional[pulumi.Input[builtins.str]] = None,
-                 groupdn: Optional[pulumi.Input[builtins.str]] = None,
-                 groupfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 insecure_tls: Optional[pulumi.Input[builtins.bool]] = None,
-                 local: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_page_size: Optional[pulumi.Input[builtins.int]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 path: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
-                 starttls: Optional[pulumi.Input[builtins.bool]] = None,
-                 tls_max_version: Optional[pulumi.Input[builtins.str]] = None,
-                 tls_min_version: Optional[pulumi.Input[builtins.str]] = None,
-                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
-                 token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
-                 token_period: Optional[pulumi.Input[builtins.int]] = None,
-                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_type: Optional[pulumi.Input[builtins.str]] = None,
-                 upndomain: Optional[pulumi.Input[builtins.str]] = None,
-                 url: Optional[pulumi.Input[builtins.str]] = None,
-                 use_token_groups: Optional[pulumi.Input[builtins.bool]] = None,
-                 userattr: Optional[pulumi.Input[builtins.str]] = None,
-                 userdn: Optional[pulumi.Input[builtins.str]] = None,
-                 userfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 username_as_alias: Optional[pulumi.Input[builtins.bool]] = None,
+                 binddn: Optional[pulumi.Input[_builtins.str]] = None,
+                 bindpass: Optional[pulumi.Input[_builtins.str]] = None,
+                 case_sensitive_names: Optional[pulumi.Input[_builtins.bool]] = None,
+                 certificate: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_cert: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_key: Optional[pulumi.Input[_builtins.str]] = None,
+                 connection_timeout: Optional[pulumi.Input[_builtins.int]] = None,
+                 deny_null_bind: Optional[pulumi.Input[_builtins.bool]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 disable_automated_rotation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_remount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 discoverdn: Optional[pulumi.Input[_builtins.bool]] = None,
+                 groupattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 insecure_tls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 local: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_page_size: Optional[pulumi.Input[_builtins.int]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 path: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_window: Optional[pulumi.Input[_builtins.int]] = None,
+                 starttls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tls_max_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 tls_min_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_explicit_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_no_default_policy: Optional[pulumi.Input[_builtins.bool]] = None,
+                 token_num_uses: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_type: Optional[pulumi.Input[_builtins.str]] = None,
+                 upndomain: Optional[pulumi.Input[_builtins.str]] = None,
+                 url: Optional[pulumi.Input[_builtins.str]] = None,
+                 use_token_groups: Optional[pulumi.Input[_builtins.bool]] = None,
+                 userattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 userdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 userfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 username_as_alias: Optional[pulumi.Input[_builtins.bool]] = None,
                  __props__=None):
         """
         Provides a resource for managing an [LDAP auth backend within Vault](https://www.vaultproject.io/docs/auth/ldap.html).
@@ -1493,55 +1492,55 @@ class AuthBackend(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] binddn: DN of object to bind when performing user search
-        :param pulumi.Input[builtins.str] bindpass: Password to use with `binddn` when performing user search
-        :param pulumi.Input[builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
-        :param pulumi.Input[builtins.str] certificate: Trusted CA to validate TLS certificate
-        :param pulumi.Input[builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
-        :param pulumi.Input[builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
-        :param pulumi.Input[builtins.str] description: Description for the LDAP auth backend mount
-        :param pulumi.Input[builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
+        :param pulumi.Input[_builtins.str] binddn: DN of object to bind when performing user search
+        :param pulumi.Input[_builtins.str] bindpass: Password to use with `binddn` when performing user search
+        :param pulumi.Input[_builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
+        :param pulumi.Input[_builtins.str] certificate: Trusted CA to validate TLS certificate
+        :param pulumi.Input[_builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
+        :param pulumi.Input[_builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
+        :param pulumi.Input[_builtins.str] description: Description for the LDAP auth backend mount
+        :param pulumi.Input[_builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
+        :param pulumi.Input[_builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
                See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
-        :param pulumi.Input[builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
-        :param pulumi.Input[builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
-        :param pulumi.Input[builtins.str] groupdn: Base DN under which to perform group search
-        :param pulumi.Input[builtins.str] groupfilter: Go template used to construct group membership query
-        :param pulumi.Input[builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
-        :param pulumi.Input[builtins.bool] local: Specifies if the auth method is local only.
-        :param pulumi.Input[builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
+        :param pulumi.Input[_builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
+        :param pulumi.Input[_builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
+        :param pulumi.Input[_builtins.str] groupdn: Base DN under which to perform group search
+        :param pulumi.Input[_builtins.str] groupfilter: Go template used to construct group membership query
+        :param pulumi.Input[_builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
+        :param pulumi.Input[_builtins.bool] local: Specifies if the auth method is local only.
+        :param pulumi.Input[_builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
                *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] path: Path to mount the LDAP auth backend under
-        :param pulumi.Input[builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
+        :param pulumi.Input[_builtins.str] path: Path to mount the LDAP auth backend under
+        :param pulumi.Input[_builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
                A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
+        :param pulumi.Input[_builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
                defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
+        :param pulumi.Input[_builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
                a rotation when a scheduled token rotation occurs. The default rotation window is
                unbound and the minimum allowable window is `3600`. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] starttls: Control use of TLS when conecting to LDAP
-        :param pulumi.Input[builtins.str] tls_max_version: Maximum acceptable version of TLS
-        :param pulumi.Input[builtins.str] tls_min_version: Minimum acceptable version of TLS
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
-        :param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
-        :param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
-        :param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
-        :param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
-        :param pulumi.Input[builtins.int] token_period: Generated Token's Period
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
-        :param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
-        :param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
-        :param pulumi.Input[builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
-        :param pulumi.Input[builtins.str] url: The URL of the LDAP server
-        :param pulumi.Input[builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
-        :param pulumi.Input[builtins.str] userattr: Attribute on user object matching username passed in
-        :param pulumi.Input[builtins.str] userdn: Base DN under which to perform user search
-        :param pulumi.Input[builtins.str] userfilter: LDAP user search filter
-        :param pulumi.Input[builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
+        :param pulumi.Input[_builtins.bool] starttls: Control use of TLS when conecting to LDAP
+        :param pulumi.Input[_builtins.str] tls_max_version: Maximum acceptable version of TLS
+        :param pulumi.Input[_builtins.str] tls_min_version: Minimum acceptable version of TLS
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
+        :param pulumi.Input[_builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
+        :param pulumi.Input[_builtins.int] token_max_ttl: The maximum lifetime of the generated token
+        :param pulumi.Input[_builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
+        :param pulumi.Input[_builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
+        :param pulumi.Input[_builtins.int] token_period: Generated Token's Period
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_policies: Generated Token's Policies
+        :param pulumi.Input[_builtins.int] token_ttl: The initial ttl of the token to generate in seconds
+        :param pulumi.Input[_builtins.str] token_type: The type of token to generate, service or batch
+        :param pulumi.Input[_builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
+        :param pulumi.Input[_builtins.str] url: The URL of the LDAP server
+        :param pulumi.Input[_builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
+        :param pulumi.Input[_builtins.str] userattr: Attribute on user object matching username passed in
+        :param pulumi.Input[_builtins.str] userdn: Base DN under which to perform user search
+        :param pulumi.Input[_builtins.str] userfilter: LDAP user search filter
+        :param pulumi.Input[_builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
         """
         ...
     @overload
@@ -1594,48 +1593,48 @@ class AuthBackend(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 binddn: Optional[pulumi.Input[builtins.str]] = None,
-                 bindpass: Optional[pulumi.Input[builtins.str]] = None,
-                 case_sensitive_names: Optional[pulumi.Input[builtins.bool]] = None,
-                 certificate: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_cert: Optional[pulumi.Input[builtins.str]] = None,
-                 client_tls_key: Optional[pulumi.Input[builtins.str]] = None,
-                 connection_timeout: Optional[pulumi.Input[builtins.int]] = None,
-                 deny_null_bind: Optional[pulumi.Input[builtins.bool]] = None,
-                 description: Optional[pulumi.Input[builtins.str]] = None,
-                 disable_automated_rotation: Optional[pulumi.Input[builtins.bool]] = None,
-                 disable_remount: Optional[pulumi.Input[builtins.bool]] = None,
-                 discoverdn: Optional[pulumi.Input[builtins.bool]] = None,
-                 groupattr: Optional[pulumi.Input[builtins.str]] = None,
-                 groupdn: Optional[pulumi.Input[builtins.str]] = None,
-                 groupfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 insecure_tls: Optional[pulumi.Input[builtins.bool]] = None,
-                 local: Optional[pulumi.Input[builtins.bool]] = None,
-                 max_page_size: Optional[pulumi.Input[builtins.int]] = None,
-                 namespace: Optional[pulumi.Input[builtins.str]] = None,
-                 path: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_period: Optional[pulumi.Input[builtins.int]] = None,
-                 rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
-                 rotation_window: Optional[pulumi.Input[builtins.int]] = None,
-                 starttls: Optional[pulumi.Input[builtins.bool]] = None,
-                 tls_max_version: Optional[pulumi.Input[builtins.str]] = None,
-                 tls_min_version: Optional[pulumi.Input[builtins.str]] = None,
-                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
-                 token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
-                 token_period: Optional[pulumi.Input[builtins.int]] = None,
-                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 token_ttl: Optional[pulumi.Input[builtins.int]] = None,
-                 token_type: Optional[pulumi.Input[builtins.str]] = None,
-                 upndomain: Optional[pulumi.Input[builtins.str]] = None,
-                 url: Optional[pulumi.Input[builtins.str]] = None,
-                 use_token_groups: Optional[pulumi.Input[builtins.bool]] = None,
-                 userattr: Optional[pulumi.Input[builtins.str]] = None,
-                 userdn: Optional[pulumi.Input[builtins.str]] = None,
-                 userfilter: Optional[pulumi.Input[builtins.str]] = None,
-                 username_as_alias: Optional[pulumi.Input[builtins.bool]] = None,
+                 binddn: Optional[pulumi.Input[_builtins.str]] = None,
+                 bindpass: Optional[pulumi.Input[_builtins.str]] = None,
+                 case_sensitive_names: Optional[pulumi.Input[_builtins.bool]] = None,
+                 certificate: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_cert: Optional[pulumi.Input[_builtins.str]] = None,
+                 client_tls_key: Optional[pulumi.Input[_builtins.str]] = None,
+                 connection_timeout: Optional[pulumi.Input[_builtins.int]] = None,
+                 deny_null_bind: Optional[pulumi.Input[_builtins.bool]] = None,
+                 description: Optional[pulumi.Input[_builtins.str]] = None,
+                 disable_automated_rotation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 disable_remount: Optional[pulumi.Input[_builtins.bool]] = None,
+                 discoverdn: Optional[pulumi.Input[_builtins.bool]] = None,
+                 groupattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 groupfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 insecure_tls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 local: Optional[pulumi.Input[_builtins.bool]] = None,
+                 max_page_size: Optional[pulumi.Input[_builtins.int]] = None,
+                 namespace: Optional[pulumi.Input[_builtins.str]] = None,
+                 path: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 rotation_schedule: Optional[pulumi.Input[_builtins.str]] = None,
+                 rotation_window: Optional[pulumi.Input[_builtins.int]] = None,
+                 starttls: Optional[pulumi.Input[_builtins.bool]] = None,
+                 tls_max_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 tls_min_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_explicit_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_no_default_policy: Optional[pulumi.Input[_builtins.bool]] = None,
+                 token_num_uses: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_period: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 token_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+                 token_type: Optional[pulumi.Input[_builtins.str]] = None,
+                 upndomain: Optional[pulumi.Input[_builtins.str]] = None,
+                 url: Optional[pulumi.Input[_builtins.str]] = None,
+                 use_token_groups: Optional[pulumi.Input[_builtins.bool]] = None,
+                 userattr: Optional[pulumi.Input[_builtins.str]] = None,
+                 userdn: Optional[pulumi.Input[_builtins.str]] = None,
+                 userfilter: Optional[pulumi.Input[_builtins.str]] = None,
+                 username_as_alias: Optional[pulumi.Input[_builtins.bool]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -1702,49 +1701,49 @@ class AuthBackend(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            accessor: Optional[pulumi.Input[builtins.str]] = None,
-            binddn: Optional[pulumi.Input[builtins.str]] = None,
-            bindpass: Optional[pulumi.Input[builtins.str]] = None,
-            case_sensitive_names: Optional[pulumi.Input[builtins.bool]] = None,
-            certificate: Optional[pulumi.Input[builtins.str]] = None,
-            client_tls_cert: Optional[pulumi.Input[builtins.str]] = None,
-            client_tls_key: Optional[pulumi.Input[builtins.str]] = None,
-            connection_timeout: Optional[pulumi.Input[builtins.int]] = None,
-            deny_null_bind: Optional[pulumi.Input[builtins.bool]] = None,
-            description: Optional[pulumi.Input[builtins.str]] = None,
-            disable_automated_rotation: Optional[pulumi.Input[builtins.bool]] = None,
-            disable_remount: Optional[pulumi.Input[builtins.bool]] = None,
-            discoverdn: Optional[pulumi.Input[builtins.bool]] = None,
-            groupattr: Optional[pulumi.Input[builtins.str]] = None,
-            groupdn: Optional[pulumi.Input[builtins.str]] = None,
-            groupfilter: Optional[pulumi.Input[builtins.str]] = None,
-            insecure_tls: Optional[pulumi.Input[builtins.bool]] = None,
-            local: Optional[pulumi.Input[builtins.bool]] = None,
-            max_page_size: Optional[pulumi.Input[builtins.int]] = None,
-            namespace: Optional[pulumi.Input[builtins.str]] = None,
-            path: Optional[pulumi.Input[builtins.str]] = None,
-            rotation_period: Optional[pulumi.Input[builtins.int]] = None,
-            rotation_schedule: Optional[pulumi.Input[builtins.str]] = None,
-            rotation_window: Optional[pulumi.Input[builtins.int]] = None,
-            starttls: Optional[pulumi.Input[builtins.bool]] = None,
-            tls_max_version: Optional[pulumi.Input[builtins.str]] = None,
-            tls_min_version: Optional[pulumi.Input[builtins.str]] = None,
-            token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            token_explicit_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-            token_max_ttl: Optional[pulumi.Input[builtins.int]] = None,
-            token_no_default_policy: Optional[pulumi.Input[builtins.bool]] = None,
-            token_num_uses: Optional[pulumi.Input[builtins.int]] = None,
-            token_period: Optional[pulumi.Input[builtins.int]] = None,
-            token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-            token_ttl: Optional[pulumi.Input[builtins.int]] = None,
-            token_type: Optional[pulumi.Input[builtins.str]] = None,
-            upndomain: Optional[pulumi.Input[builtins.str]] = None,
-            url: Optional[pulumi.Input[builtins.str]] = None,
-            use_token_groups: Optional[pulumi.Input[builtins.bool]] = None,
-            userattr: Optional[pulumi.Input[builtins.str]] = None,
-            userdn: Optional[pulumi.Input[builtins.str]] = None,
-            userfilter: Optional[pulumi.Input[builtins.str]] = None,
-            username_as_alias: Optional[pulumi.Input[builtins.bool]] = None) -> 'AuthBackend':
+            accessor: Optional[pulumi.Input[_builtins.str]] = None,
+            binddn: Optional[pulumi.Input[_builtins.str]] = None,
+            bindpass: Optional[pulumi.Input[_builtins.str]] = None,
+            case_sensitive_names: Optional[pulumi.Input[_builtins.bool]] = None,
+            certificate: Optional[pulumi.Input[_builtins.str]] = None,
+            client_tls_cert: Optional[pulumi.Input[_builtins.str]] = None,
+            client_tls_key: Optional[pulumi.Input[_builtins.str]] = None,
+            connection_timeout: Optional[pulumi.Input[_builtins.int]] = None,
+            deny_null_bind: Optional[pulumi.Input[_builtins.bool]] = None,
+            description: Optional[pulumi.Input[_builtins.str]] = None,
+            disable_automated_rotation: Optional[pulumi.Input[_builtins.bool]] = None,
+            disable_remount: Optional[pulumi.Input[_builtins.bool]] = None,
+            discoverdn: Optional[pulumi.Input[_builtins.bool]] = None,
+            groupattr: Optional[pulumi.Input[_builtins.str]] = None,
+            groupdn: Optional[pulumi.Input[_builtins.str]] = None,
+            groupfilter: Optional[pulumi.Input[_builtins.str]] = None,
+            insecure_tls: Optional[pulumi.Input[_builtins.bool]] = None,
+            local: Optional[pulumi.Input[_builtins.bool]] = None,
+            max_page_size: Optional[pulumi.Input[_builtins.int]] = None,
+            namespace: Optional[pulumi.Input[_builtins.str]] = None,
+            path: Optional[pulumi.Input[_builtins.str]] = None,
+            rotation_period: Optional[pulumi.Input[_builtins.int]] = None,
+            rotation_schedule: Optional[pulumi.Input[_builtins.str]] = None,
+            rotation_window: Optional[pulumi.Input[_builtins.int]] = None,
+            starttls: Optional[pulumi.Input[_builtins.bool]] = None,
+            tls_max_version: Optional[pulumi.Input[_builtins.str]] = None,
+            tls_min_version: Optional[pulumi.Input[_builtins.str]] = None,
+            token_bound_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            token_explicit_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+            token_max_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+            token_no_default_policy: Optional[pulumi.Input[_builtins.bool]] = None,
+            token_num_uses: Optional[pulumi.Input[_builtins.int]] = None,
+            token_period: Optional[pulumi.Input[_builtins.int]] = None,
+            token_policies: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+            token_ttl: Optional[pulumi.Input[_builtins.int]] = None,
+            token_type: Optional[pulumi.Input[_builtins.str]] = None,
+            upndomain: Optional[pulumi.Input[_builtins.str]] = None,
+            url: Optional[pulumi.Input[_builtins.str]] = None,
+            use_token_groups: Optional[pulumi.Input[_builtins.bool]] = None,
+            userattr: Optional[pulumi.Input[_builtins.str]] = None,
+            userdn: Optional[pulumi.Input[_builtins.str]] = None,
+            userfilter: Optional[pulumi.Input[_builtins.str]] = None,
+            username_as_alias: Optional[pulumi.Input[_builtins.bool]] = None) -> 'AuthBackend':
         """
         Get an existing AuthBackend resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -1752,56 +1751,56 @@ class AuthBackend(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[builtins.str] accessor: The accessor for this auth mount.
-        :param pulumi.Input[builtins.str] binddn: DN of object to bind when performing user search
-        :param pulumi.Input[builtins.str] bindpass: Password to use with `binddn` when performing user search
-        :param pulumi.Input[builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
-        :param pulumi.Input[builtins.str] certificate: Trusted CA to validate TLS certificate
-        :param pulumi.Input[builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
-        :param pulumi.Input[builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
-        :param pulumi.Input[builtins.str] description: Description for the LDAP auth backend mount
-        :param pulumi.Input[builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
+        :param pulumi.Input[_builtins.str] accessor: The accessor for this auth mount.
+        :param pulumi.Input[_builtins.str] binddn: DN of object to bind when performing user search
+        :param pulumi.Input[_builtins.str] bindpass: Password to use with `binddn` when performing user search
+        :param pulumi.Input[_builtins.bool] case_sensitive_names: Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
+        :param pulumi.Input[_builtins.str] certificate: Trusted CA to validate TLS certificate
+        :param pulumi.Input[_builtins.int] connection_timeout: Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
+        :param pulumi.Input[_builtins.bool] deny_null_bind: Prevents users from bypassing authentication when providing an empty password.
+        :param pulumi.Input[_builtins.str] description: Description for the LDAP auth backend mount
+        :param pulumi.Input[_builtins.bool] disable_automated_rotation: Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
+        :param pulumi.Input[_builtins.bool] disable_remount: If set, opts out of mount migration on path updates.
                See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
-        :param pulumi.Input[builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
-        :param pulumi.Input[builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
-        :param pulumi.Input[builtins.str] groupdn: Base DN under which to perform group search
-        :param pulumi.Input[builtins.str] groupfilter: Go template used to construct group membership query
-        :param pulumi.Input[builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
-        :param pulumi.Input[builtins.bool] local: Specifies if the auth method is local only.
-        :param pulumi.Input[builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
+        :param pulumi.Input[_builtins.bool] discoverdn: Use anonymous bind to discover the bind DN of a user.
+        :param pulumi.Input[_builtins.str] groupattr: LDAP attribute to follow on objects returned by groupfilter
+        :param pulumi.Input[_builtins.str] groupdn: Base DN under which to perform group search
+        :param pulumi.Input[_builtins.str] groupfilter: Go template used to construct group membership query
+        :param pulumi.Input[_builtins.bool] insecure_tls: Control whether or TLS certificates must be validated
+        :param pulumi.Input[_builtins.bool] local: Specifies if the auth method is local only.
+        :param pulumi.Input[_builtins.int] max_page_size: Sets the max page size for LDAP lookups, by default it's set to -1.
                *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
-        :param pulumi.Input[builtins.str] namespace: The namespace to provision the resource in.
+        :param pulumi.Input[_builtins.str] namespace: The namespace to provision the resource in.
                The value should not contain leading or trailing forward slashes.
                The `namespace` is always relative to the provider's configured [namespace](https://www.terraform.io/docs/providers/vault/index.html#namespace).
                *Available only for Vault Enterprise*.
-        :param pulumi.Input[builtins.str] path: Path to mount the LDAP auth backend under
-        :param pulumi.Input[builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
+        :param pulumi.Input[_builtins.str] path: Path to mount the LDAP auth backend under
+        :param pulumi.Input[_builtins.int] rotation_period: The amount of time in seconds Vault should wait before rotating the root credential.
                A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
+        :param pulumi.Input[_builtins.str] rotation_schedule: The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
                defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
+        :param pulumi.Input[_builtins.int] rotation_window: The maximum amount of time in seconds allowed to complete
                a rotation when a scheduled token rotation occurs. The default rotation window is
                unbound and the minimum allowable window is `3600`. Requires Vault Enterprise 1.19+.
-        :param pulumi.Input[builtins.bool] starttls: Control use of TLS when conecting to LDAP
-        :param pulumi.Input[builtins.str] tls_max_version: Maximum acceptable version of TLS
-        :param pulumi.Input[builtins.str] tls_min_version: Minimum acceptable version of TLS
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
-        :param pulumi.Input[builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
-        :param pulumi.Input[builtins.int] token_max_ttl: The maximum lifetime of the generated token
-        :param pulumi.Input[builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
-        :param pulumi.Input[builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
-        :param pulumi.Input[builtins.int] token_period: Generated Token's Period
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] token_policies: Generated Token's Policies
-        :param pulumi.Input[builtins.int] token_ttl: The initial ttl of the token to generate in seconds
-        :param pulumi.Input[builtins.str] token_type: The type of token to generate, service or batch
-        :param pulumi.Input[builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
-        :param pulumi.Input[builtins.str] url: The URL of the LDAP server
-        :param pulumi.Input[builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
-        :param pulumi.Input[builtins.str] userattr: Attribute on user object matching username passed in
-        :param pulumi.Input[builtins.str] userdn: Base DN under which to perform user search
-        :param pulumi.Input[builtins.str] userfilter: LDAP user search filter
-        :param pulumi.Input[builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
+        :param pulumi.Input[_builtins.bool] starttls: Control use of TLS when conecting to LDAP
+        :param pulumi.Input[_builtins.str] tls_max_version: Maximum acceptable version of TLS
+        :param pulumi.Input[_builtins.str] tls_min_version: Minimum acceptable version of TLS
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_bound_cidrs: Specifies the blocks of IP addresses which are allowed to use the generated token
+        :param pulumi.Input[_builtins.int] token_explicit_max_ttl: Generated Token's Explicit Maximum TTL in seconds
+        :param pulumi.Input[_builtins.int] token_max_ttl: The maximum lifetime of the generated token
+        :param pulumi.Input[_builtins.bool] token_no_default_policy: If true, the 'default' policy will not automatically be added to generated tokens
+        :param pulumi.Input[_builtins.int] token_num_uses: The maximum number of times a token may be used, a value of zero means unlimited
+        :param pulumi.Input[_builtins.int] token_period: Generated Token's Period
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] token_policies: Generated Token's Policies
+        :param pulumi.Input[_builtins.int] token_ttl: The initial ttl of the token to generate in seconds
+        :param pulumi.Input[_builtins.str] token_type: The type of token to generate, service or batch
+        :param pulumi.Input[_builtins.str] upndomain: The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
+        :param pulumi.Input[_builtins.str] url: The URL of the LDAP server
+        :param pulumi.Input[_builtins.bool] use_token_groups: Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
+        :param pulumi.Input[_builtins.str] userattr: Attribute on user object matching username passed in
+        :param pulumi.Input[_builtins.str] userdn: Base DN under which to perform user search
+        :param pulumi.Input[_builtins.str] userfilter: LDAP user search filter
+        :param pulumi.Input[_builtins.bool] username_as_alias: Force the auth method to use the username passed by the user as the alias name.
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -1852,157 +1851,157 @@ class AuthBackend(pulumi.CustomResource):
         __props__.__dict__["username_as_alias"] = username_as_alias
         return AuthBackend(resource_name, opts=opts, __props__=__props__)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def accessor(self) -> pulumi.Output[builtins.str]:
+    def accessor(self) -> pulumi.Output[_builtins.str]:
         """
         The accessor for this auth mount.
         """
         return pulumi.get(self, "accessor")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def binddn(self) -> pulumi.Output[builtins.str]:
+    def binddn(self) -> pulumi.Output[_builtins.str]:
         """
         DN of object to bind when performing user search
         """
         return pulumi.get(self, "binddn")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def bindpass(self) -> pulumi.Output[builtins.str]:
+    def bindpass(self) -> pulumi.Output[_builtins.str]:
         """
         Password to use with `binddn` when performing user search
         """
         return pulumi.get(self, "bindpass")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="caseSensitiveNames")
-    def case_sensitive_names(self) -> pulumi.Output[builtins.bool]:
+    def case_sensitive_names(self) -> pulumi.Output[_builtins.bool]:
         """
         Control case senstivity of objects fetched from LDAP, this is used for object matching in vault
         """
         return pulumi.get(self, "case_sensitive_names")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def certificate(self) -> pulumi.Output[builtins.str]:
+    def certificate(self) -> pulumi.Output[_builtins.str]:
         """
         Trusted CA to validate TLS certificate
         """
         return pulumi.get(self, "certificate")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsCert")
-    def client_tls_cert(self) -> pulumi.Output[builtins.str]:
+    def client_tls_cert(self) -> pulumi.Output[_builtins.str]:
         return pulumi.get(self, "client_tls_cert")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="clientTlsKey")
-    def client_tls_key(self) -> pulumi.Output[builtins.str]:
+    def client_tls_key(self) -> pulumi.Output[_builtins.str]:
         return pulumi.get(self, "client_tls_key")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="connectionTimeout")
-    def connection_timeout(self) -> pulumi.Output[builtins.int]:
+    def connection_timeout(self) -> pulumi.Output[_builtins.int]:
         """
         Timeout in seconds when connecting to LDAP before attempting to connect to the next server in the URL provided in `url` (integer: 30)
         """
         return pulumi.get(self, "connection_timeout")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="denyNullBind")
-    def deny_null_bind(self) -> pulumi.Output[builtins.bool]:
+    def deny_null_bind(self) -> pulumi.Output[_builtins.bool]:
         """
         Prevents users from bypassing authentication when providing an empty password.
         """
         return pulumi.get(self, "deny_null_bind")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def description(self) -> pulumi.Output[builtins.str]:
+    def description(self) -> pulumi.Output[_builtins.str]:
         """
         Description for the LDAP auth backend mount
         """
         return pulumi.get(self, "description")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableAutomatedRotation")
-    def disable_automated_rotation(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_automated_rotation(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Cancels all upcoming rotations of the root credential until unset. Requires Vault Enterprise 1.19+.
         """
         return pulumi.get(self, "disable_automated_rotation")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disableRemount")
-    def disable_remount(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def disable_remount(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         If set, opts out of mount migration on path updates.
         See here for more info on [Mount Migration](https://www.vaultproject.io/docs/concepts/mount-migration)
         """
         return pulumi.get(self, "disable_remount")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def discoverdn(self) -> pulumi.Output[builtins.bool]:
+    def discoverdn(self) -> pulumi.Output[_builtins.bool]:
         """
         Use anonymous bind to discover the bind DN of a user.
         """
         return pulumi.get(self, "discoverdn")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupattr(self) -> pulumi.Output[builtins.str]:
+    def groupattr(self) -> pulumi.Output[_builtins.str]:
         """
         LDAP attribute to follow on objects returned by groupfilter
         """
         return pulumi.get(self, "groupattr")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupdn(self) -> pulumi.Output[builtins.str]:
+    def groupdn(self) -> pulumi.Output[_builtins.str]:
         """
         Base DN under which to perform group search
         """
         return pulumi.get(self, "groupdn")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def groupfilter(self) -> pulumi.Output[builtins.str]:
+    def groupfilter(self) -> pulumi.Output[_builtins.str]:
         """
         Go template used to construct group membership query
         """
         return pulumi.get(self, "groupfilter")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="insecureTls")
-    def insecure_tls(self) -> pulumi.Output[builtins.bool]:
+    def insecure_tls(self) -> pulumi.Output[_builtins.bool]:
         """
         Control whether or TLS certificates must be validated
         """
         return pulumi.get(self, "insecure_tls")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def local(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def local(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         Specifies if the auth method is local only.
         """
         return pulumi.get(self, "local")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxPageSize")
-    def max_page_size(self) -> pulumi.Output[Optional[builtins.int]]:
+    def max_page_size(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         Sets the max page size for LDAP lookups, by default it's set to -1.
         *Available only for Vault 1.11.11+, 1.12.7+, and 1.13.3+*.
         """
         return pulumi.get(self, "max_page_size")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def namespace(self) -> pulumi.Output[Optional[builtins.str]]:
+    def namespace(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The namespace to provision the resource in.
         The value should not contain leading or trailing forward slashes.
@@ -2011,35 +2010,35 @@ class AuthBackend(pulumi.CustomResource):
         """
         return pulumi.get(self, "namespace")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def path(self) -> pulumi.Output[Optional[builtins.str]]:
+    def path(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         Path to mount the LDAP auth backend under
         """
         return pulumi.get(self, "path")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationPeriod")
-    def rotation_period(self) -> pulumi.Output[Optional[builtins.int]]:
+    def rotation_period(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         The amount of time in seconds Vault should wait before rotating the root credential.
         A zero value tells Vault not to rotate the root credential. The minimum rotation period is 10 seconds. Requires Vault Enterprise 1.19+.
         """
         return pulumi.get(self, "rotation_period")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationSchedule")
-    def rotation_schedule(self) -> pulumi.Output[Optional[builtins.str]]:
+    def rotation_schedule(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The schedule, in [cron-style time format](https://en.wikipedia.org/wiki/Cron),
         defining the schedule on which Vault should rotate the root token. Requires Vault Enterprise 1.19+.
         """
         return pulumi.get(self, "rotation_schedule")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="rotationWindow")
-    def rotation_window(self) -> pulumi.Output[Optional[builtins.int]]:
+    def rotation_window(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         The maximum amount of time in seconds allowed to complete
         a rotation when a scheduled token rotation occurs. The default rotation window is
@@ -2047,153 +2046,153 @@ class AuthBackend(pulumi.CustomResource):
         """
         return pulumi.get(self, "rotation_window")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def starttls(self) -> pulumi.Output[builtins.bool]:
+    def starttls(self) -> pulumi.Output[_builtins.bool]:
         """
         Control use of TLS when conecting to LDAP
         """
         return pulumi.get(self, "starttls")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMaxVersion")
-    def tls_max_version(self) -> pulumi.Output[builtins.str]:
+    def tls_max_version(self) -> pulumi.Output[_builtins.str]:
         """
         Maximum acceptable version of TLS
         """
         return pulumi.get(self, "tls_max_version")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tlsMinVersion")
-    def tls_min_version(self) -> pulumi.Output[builtins.str]:
+    def tls_min_version(self) -> pulumi.Output[_builtins.str]:
         """
         Minimum acceptable version of TLS
         """
         return pulumi.get(self, "tls_min_version")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenBoundCidrs")
-    def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def token_bound_cidrs(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Specifies the blocks of IP addresses which are allowed to use the generated token
         """
         return pulumi.get(self, "token_bound_cidrs")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenExplicitMaxTtl")
-    def token_explicit_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
+    def token_explicit_max_ttl(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         Generated Token's Explicit Maximum TTL in seconds
         """
         return pulumi.get(self, "token_explicit_max_ttl")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenMaxTtl")
-    def token_max_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
+    def token_max_ttl(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         The maximum lifetime of the generated token
         """
         return pulumi.get(self, "token_max_ttl")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNoDefaultPolicy")
-    def token_no_default_policy(self) -> pulumi.Output[Optional[builtins.bool]]:
+    def token_no_default_policy(self) -> pulumi.Output[Optional[_builtins.bool]]:
         """
         If true, the 'default' policy will not automatically be added to generated tokens
         """
         return pulumi.get(self, "token_no_default_policy")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenNumUses")
-    def token_num_uses(self) -> pulumi.Output[Optional[builtins.int]]:
+    def token_num_uses(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         The maximum number of times a token may be used, a value of zero means unlimited
         """
         return pulumi.get(self, "token_num_uses")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPeriod")
-    def token_period(self) -> pulumi.Output[Optional[builtins.int]]:
+    def token_period(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         Generated Token's Period
         """
         return pulumi.get(self, "token_period")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenPolicies")
-    def token_policies(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
+    def token_policies(self) -> pulumi.Output[Optional[Sequence[_builtins.str]]]:
         """
         Generated Token's Policies
         """
         return pulumi.get(self, "token_policies")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenTtl")
-    def token_ttl(self) -> pulumi.Output[Optional[builtins.int]]:
+    def token_ttl(self) -> pulumi.Output[Optional[_builtins.int]]:
         """
         The initial ttl of the token to generate in seconds
         """
         return pulumi.get(self, "token_ttl")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="tokenType")
-    def token_type(self) -> pulumi.Output[Optional[builtins.str]]:
+    def token_type(self) -> pulumi.Output[Optional[_builtins.str]]:
         """
         The type of token to generate, service or batch
         """
         return pulumi.get(self, "token_type")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def upndomain(self) -> pulumi.Output[builtins.str]:
+    def upndomain(self) -> pulumi.Output[_builtins.str]:
         """
         The `userPrincipalDomain` used to construct the UPN string for the authenticating user.
         """
         return pulumi.get(self, "upndomain")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def url(self) -> pulumi.Output[builtins.str]:
+    def url(self) -> pulumi.Output[_builtins.str]:
         """
         The URL of the LDAP server
         """
         return pulumi.get(self, "url")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="useTokenGroups")
-    def use_token_groups(self) -> pulumi.Output[builtins.bool]:
+    def use_token_groups(self) -> pulumi.Output[_builtins.bool]:
         """
         Use the Active Directory tokenGroups constructed attribute of the user to find the group memberships
         """
         return pulumi.get(self, "use_token_groups")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userattr(self) -> pulumi.Output[builtins.str]:
+    def userattr(self) -> pulumi.Output[_builtins.str]:
         """
         Attribute on user object matching username passed in
         """
         return pulumi.get(self, "userattr")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userdn(self) -> pulumi.Output[builtins.str]:
+    def userdn(self) -> pulumi.Output[_builtins.str]:
         """
         Base DN under which to perform user search
         """
         return pulumi.get(self, "userdn")
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def userfilter(self) -> pulumi.Output[builtins.str]:
+    def userfilter(self) -> pulumi.Output[_builtins.str]:
         """
         LDAP user search filter
         """
         return pulumi.get(self, "userfilter")
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="usernameAsAlias")
-    def username_as_alias(self) -> pulumi.Output[builtins.bool]:
+    def username_as_alias(self) -> pulumi.Output[_builtins.bool]:
         """
         Force the auth method to use the username passed by the user as the alias name.
         """