Get Started

Getting Started

Deploy

Onboard and Manage Accounts

Amazon Web Services (AWS)

Google Cloud Platform (GCP)

Microsoft Azure

Oracle Cloud Infrastructure (OCI)

Additional Providers

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Integrations

Understand Data

Visibility & Reporting

Inventory

Query Filters & Insights

Manage and Act on Data

Bots & Automation

Infrastructure as Code (IaC) Security

Cloud IAM Governance

Vulnerability Management

Workload Security

Manage System Settings

InsightCloudSec System Configuration

Developer Resources

APIs

Support

Terraform - IaC Supported Resources

IaC Security supports Terraform & Terraform Cloud/Enterprise and resources from AWS, Azure, and GCP. Review the lists below for specifications for each Cloud Service Provider.

Amazon Web Services (AWS) Supported Resources


AWS Supported Resources
1
AMI (Private)
2
API Gateway
3
API Gateway Domain
4
API Gateway Key
5
API Gateway Policy
6
API Gateway Stage
7
AppSync API
8
Athena Workgroup
9
Autoscaling Group
10
- Launch Configurations
11
Backup Vault
12
CloudFront
13
CloudTrail
14
CodeBuild Project
15
Container Registry (ECR)
16
DataSync Task
17
DMS Replication Instance
18
DynamoDB
19
EBS Volume
20
EC2 Instance
21
EFS/FSx
22
EKS/ECS/Fargate Cluster
23
ElastiCache
24
Elasticsearch
25
Elastic Block Store (EBS) Snapshot
26
Elastic IP
27
Elastic Network Interface (ENI)
28
Flow Log (VPC)
29
Glacier
30
Glue Data Catalog
31
IAM Group
32
IAM Policy (Customer Managed)
33
IAM Role
34
IAM User
35
IAM/ACM SSL Certificate
36
Kinesis
37
Kinesis Data Firehose
38
KMS
39
Lambda
40
Load Balancer (ELB/ALB/NLB/Gateway)
41
MQ
42
MSK Instance
43
NACL/Security Group
44
NACL/Security Group Rules
45
NAT Gateway (VPC)
46
RDS Aurora, Neptune, DocumentDB
47
RDS Database, Neptune, DocumentDB
48
Redshift
49
Route53 DNS Zone
50
S3 Bucket
51
Sagemaker Notebook
52
Secret
53
FTP Server
54
Simple Queue Service (SQS)
55
SNS Subscription
56
SNS Topic
57
Systems Manager (SSM) Parameter Store (Parameter)
58
VPC
59
VPC Peer
60
VPC Subnet
61
Workspace Instances

Microsoft Azure Supported Resources

Scanning Terraform plans containing supported Azure resources that were generated with a AzureRM provider version prior to v3.x.x may produce unexpected results. We recommend using the latest 3.x version of the AzureRM provider.


Azure Supported Resources
1
Azure Cosmos DB
2
Azure Firewall Rule
3
Blob Storage Container
4
Container Registry
5
Data Factory
6
Dedicated Host
7
Diagnostic Settings
8
Disk
9
Front Door
10
Key Vault
11
Kubernetes Service
12
Log Analytics Workspace
13
Network Interface
14
Network Security Group
15
Network Security Group (NSG) Flow Logs
16
Public IP Address
17
Redis Cache
18
Resource Group
19
Search Service
20
Security Rules
21
SQL Server, Azure Database for PostgreSQL/MySQL/MariaDB
22
Storage Account
23
Subnet
24
Virtual Machine
25
Virtual Network

Google Cloud Platform (GCP) Supported Resources

Scanning Terraform plans containing supported Google resources that were generated with a Google provider version prior to v4.x.x may produce unexpected results. We recommend using the latest 4.x version of the Google provider.


GCP Supported Resources
1
App Engine
2
Bigtable Instance
3
Cloud Bigquery Dataset
4
Cloud DNS (Zone)
5
Cloud Functions
6
Cloud Key Management Service (Key, Key ring)
7
Cloud Memorystore
8
Cloud ML Notebook Instances
9
Cloud NAT
10
Cloud SQL
11
Cloud Storage
12
Compute Address
13
Compute Private Image
14
Compute Snapshot
15
Credentials (API Keys)
16
Dataflow Job
17
Filestore Instance
18
GKE
19
IAM (Service Account, Service Account Key) 
20
Instance
21
Network Firewall
22
Network Peer
23
Persistent Disk
24
Pub/Sub Subscription
25
Pub/Sub Topic
26
Role Permission Set
27
Subnet
28
VPC

Did this page help you?

Infrastructure as Code (IaC) Security

Understanding IaC Security

Infrastructure as Code (IaC) Security

AWS CloudFormation Support