Terraform
Configuring the Veza Integration for Terraform Cloud
Overview
The Veza integration for HashiCorp Terraform Cloud facilitates the discovery of users, groups, roles, and permissions within a Terraform organization.
To configure this integration, you need to create a Terraform user and generate a read-only API token for Veza to connect to your Terraform environment.
Refer to notes and supported entities for additional details.
Configuring Terraform Cloud
Create a new user account at
https://app.terraform.io/public/signup/account
.Generate either a User token or an Organization token to access Terraform APIs.
Steps to Create a User Token:
Log in to your account and go to the user settings.
Select Tokens.
Create an API token. Copy and securely store it.
Steps to Create an Organization Token:
On the Terraform home page, pick your organization.
In the left navigation, expand Settings and go to API Tokens.
Create an organization token and store it securely.
To Obtain the Organization External ID:
On the Terraform home page, pick your organization.
Click on Settings in the left navigation.
Find the Organization External ID in the General section of the settings.
Adding Terraform Cloud to Veza
As a Veza administrator, go to Integrations.
Click Create Integration and pick Terraform Cloud for the integration to add.
Enter the required information and click Save to save the configuration.
Field | Description |
---|---|
Terraform URL | The URL for the Terraform API endpoint, including the protocol. |
Terraform User or Organization Token | The token used to access the Terraform API. |
Terraform Organization External ID | The external ID of the organization for accessing the Terraform API. |
Notes and Supported Entities
The Terraform Cloud integration supports the following entities and attributes:
Terraform Organization: A platform for teams to manage Terraform runs in a consistent and reliable environment. Features include shared state and secret data, access controls, module sharing, and policy controls for configurations. Terraform Cloud is available as a hosted service at https://app.terraform.io.
Terraform User: Individual user accounts that can be part of one or more teams, with permissions on workspaces within an organization. Users can belong to multiple organizations.
Terraform Group: Represents a team of local Terraform users.
Terraform Role: Indicates the visibility level provided to a team.
Terraform Permission: Denotes the capabilities or organizational access granted to a team or user.
Terraform User
Property | Description |
---|---|
| The userβs ID. |
| The userβs name. |
| The user's email address. |
| Indicates if the user has a service account. |
| Shows if the user is an organization owner. |
| True if the user is active, otherwise false. |
| The date and time when the user was created. |
Terraform Group
Property | Description |
---|---|
| The groupβs ID as provided by Terraform. |
| The group's name. |
Terraform Role
Property | Description |
---|---|
| The teamβs visibility ID as provided by Terraform. |
| The teamβs visibility name. |
Last updated