Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently. Terraform can manage existing and popular service providers as well as custom in-house solutions.

» New to Guardrails and Terraform? See our Turbot Provider documentation

The Turbot Guardrails Terraform provider supports:

  • Defining your policy and security posture in code.
  • Configuration of policies, resources and the environment.
  • Querying the CMDB as data sources to combine with other providers.

For example, to set a policy:

resource "turbot_policy_setting" "s3_encryption_at_rest" {
resource = "arn:aws:s3:::my-bucket"
type = "tmod:@turbot/aws-s3#/policy/types/bucketEncryptionAtRest"
value = "Enforce: AWS SSE or higher"

Turbot Guardrails and Terraform: Lab and Setup

For a quick introduction, check out our Getting started with Terraform in 7 minutes lab. The example walks through setting up a Smart Folder, creating a policy, then applying and subsequently deleting the Terraform plan.

If you are already familiar with Terraform and would like to get started with the wonderful world of Terraform and Turbot Guardrails, refer to our setup documentation: