Amazon Account

Integrate a specific account and its resources

Example Usage

aws-account-integration.tf

resource "apono_integration" "aws-account-integration" {
  name                     = "Amazon Account"
  type                     = "aws-account"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["aws-account-s3-bucket"]
  metadata = {
    region = "<Region>"
    profile = "<AWS Profile Name (Optional)>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    enable_audit = "<Enable Audit>"
  }
}

aws-account-integration.tf

resource "apono_resource_integration" "aws-account-integration" {
  name                     = "Amazon Account"
  type                     = "aws-account"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["aws-account-s3-bucket"]
  integration_config = {
    region = "<Region>"
    profile = "<AWS Profile Name (Optional)>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    enable_audit = "<Enable Audit>"
  }
}

aws-account-integration.json

{
    "aws-account-integration": {
        "name": "Amazon Account",
        "type": "aws-account",
        "connector_id": "apono-connector-id",
        "connected_resource_types": [
            "aws-account-s3-bucket"
        ],
        "integration_config": {
            "region": "<Region>",
            "profile": "<AWS Profile Name (Optional)>",
            "credentials_rotation_period_in_days": "<Credentials rotation period (in days)>",
            "credentials_cleanup_period_in_days": "<User cleanup after access is revoked (in days)>",
            "enable_audit": "<Enable Audit>",
        }
    }
}

Schema

type aws-account
connected_resource_types List of resource types to sync.

Available resource types you can use

aws-account-s3-bucket
aws-account-s3-folder
aws-account-iam-group
aws-account-iam-policy
aws-account-iam-role
aws-account-systems-manager-parameter-store
aws-account-systems-manager-parameter-store-param
aws-account-ec2-loadbalancer
aws-account-ec2-instance
aws-account-ec2-service
aws-account-ecr
aws-account-ecr-repository
aws-account-ecs-cluster
aws-account-sagemaker-notebook
aws-account-lambda-function
aws-account-secrets-manager-secret
aws-account-sqs-queue
aws-account-sns-topic
aws-account-dynamodb-table
aws-account-cloudformation-stack
aws-account-cloudformation-stackset
aws-account-kms-key
aws-account-emr-cluster
aws-account-acm-certificate
aws-account-ses
aws-account-route53
aws-account-route53-hostedzone
aws-account-cognito
aws-account-elasticache

Integration Config

region (Required | String) Region
- Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-central-2, eu-west-1, eu-west-2, eu-south-1, eu-south-2, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-southeast-4, ap-southeast-5, ap-southeast-7, ap-south-1, ap-south-2, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, ca-west-1, me-south-1, me-central-1, sa-east-1, il-central-1, mx-central-1
profile (Required | String) AWS Profile Name (Optional)
- Default value: apono
credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)
credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)
enable_audit (Optional | String) Enable Audit
- Default value: false
- Possible values: true, false

NextAWS EC2 SSH

Last updated 3 months ago

Was this helpful?