Example Terraform Resource Usage

resource "apono_integration" "aws-account-integration" {
  name                     = "Amazon Account"
  type                     = "aws-account"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    region = "<Region>"
    profile = "<AWS Profile Name (Optional)>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    enable_audit = "<Enable Audit>"
  }
}

Schema

• type aws-account

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-account

  • aws-account-s3

  • aws-account-s3-bucket

  • aws-account-s3-folder

  • aws-account-iam

  • aws-account-iam-group

  • aws-account-iam-policy

  • aws-account-iam-role

  • aws-account-region

  • aws-account-systems-manager

  • aws-account-systems-manager-parameter-store

  • aws-account-systems-manager-parameter-store-param

  • aws-account-ec2

  • aws-account-ec2-loadbalancer

  • aws-account-ec2-instance

  • aws-account-ec2-service

  • aws-account-rds-instance

  • aws-account-eks-cluster

  • aws-account-ecr

  • aws-account-ecr-repository

  • aws-account-ecs

  • aws-account-ecs-cluster

  • aws-account-sagemaker

  • aws-account-sagemaker-notebook

  • aws-account-lambda

  • aws-account-lambda-function

  • aws-account-secrets-manager

  • aws-account-secrets-manager-secret

  • aws-account-sqs

  • aws-account-sqs-queue

  • aws-account-sns

  • aws-account-sns-topic

  • aws-account-dynamodb

  • aws-account-dynamodb-table

  • aws-account-cloudformation

  • aws-account-cloudformation-stack

  • aws-account-cloudformation-stackset

  • aws-account-kms

  • aws-account-kms-key

  • aws-account-emr

  • aws-account-emr-cluster

  • aws-account-acm

  • aws-account-acm-certificate

  • aws-account-ses

  • aws-account-route53

  • aws-account-route53-hostedzone

  • aws-account-cognito

  • aws-account-elasticache

Metadata

• region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• profile (Required | String) AWS Profile Name (Optional)

  • Default value: apono

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

• enable_audit (Optional | String) Enable Audit

  • Default value: false

  • Possible values: true, false

Example Terraform Resource Usage

resource "apono_integration" "aws-organization-integration" {
  name                     = "Amazon Organization"
  type                     = "aws-organization"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    region = "<Region>"
    aws_sso_region = "<AWS SSO Region>"
    aws_sso_portal = "<SSO Portal>"
    management_account_role_arn = "<Management Account Role ARN>"
    filter_not_organizational_unit_ids = "<Exclude Organizational Unit IDs>"
    user_assuming_role_arns = "<Assumable Roles>"
    session_duration_hours = "<Session Duration (in Hours)>"
    enable_audit = "<Enable Audit>"
  }
}

Schema

• type aws-organization

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-organization

  • aws-organization-org-unit

  • aws-organization-account

  • aws-organization-s3

  • aws-organization-s3-bucket

  • aws-organization-s3-folder

  • aws-organization-iam

  • aws-organization-iam-group

  • aws-organization-iam-role

  • aws-organization-iam-user

  • aws-organization-iam-user-access-key

  • aws-organization-region

  • aws-organization-systems-manager

  • aws-organization-systems-manager-parameter-store

  • aws-organization-systems-manager-parameter-store-param

  • aws-organization-ec2

  • aws-organization-ec2-loadbalancer

  • aws-organization-ec2-instance

  • aws-organization-ec2-service

  • aws-organization-rds-instance

  • aws-organization-eks-cluster

  • aws-organization-ecr

  • aws-organization-ecr-repository

  • aws-organization-ecs

  • aws-organization-ecs-cluster

  • aws-organization-sagemaker

  • aws-organization-sagemaker-notebook

  • aws-organization-lambda

  • aws-organization-lambda-function

  • aws-organization-secrets-manager

  • aws-organization-secrets-manager-secret

  • aws-organization-sqs

  • aws-organization-sqs-queue

  • aws-organization-sns

  • aws-organization-sns-topic

  • aws-organization-dynamodb

  • aws-organization-dynamodb-table

  • aws-organization-cloudformation

  • aws-organization-cloudformation-stack

  • aws-organization-cloudformation-stackset

  • aws-organization-kms

  • aws-organization-kms-key

  • aws-organization-emr

  • aws-organization-emr-cluster

  • aws-organization-acm

  • aws-organization-acm-certificate

  • aws-organization-ses

  • aws-organization-cognito

  • aws-organization-elasticache

  • aws-organization-route53

  • aws-organization-route53-hostedzone

Metadata

• region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• aws_sso_region (Required | String) AWS SSO Region

  • Default value: us-east-1

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• aws_sso_portal (Required | String) SSO Portal

• management_account_role_arn (Optional | String) Management Account Role ARN

• filter_not_organizational_unit_ids (Optional | String) Exclude Organizational Unit IDs

• user_assuming_role_arns (Optional | String) Assumable Roles

• session_duration_hours (Optional | String) Session Duration (in Hours)

  • Possible values: 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12

• enable_audit (Optional | String) Enable Audit

  • Default value: false

  • Possible values: true, false

Example Terraform Resource Usage

resource "apono_integration" "aws-eks-integration" {
  name                     = "Elastic Kubernetes Service (EKS)"
  type                     = "aws-eks"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<EKS Cluster Name>"
    aws_role_name = "<AWS Role Name>"
    region = "<Region>"
    eks_identity_mapping_type = "<Identity Mapping Type>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type aws-eks

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-eks-cluster

  • aws-eks-namespace

  • aws-eks-secret

  • aws-eks-configmap

  • aws-eks-deployment

  • aws-eks-statefulset

  • aws-eks-pod

  • aws-eks-ingress

  • aws-eks-cronjob

  • aws-eks-job

Metadata

• server_url (Optional | String) Server URL

• certificate_authority (Optional | String) Certificate Authority

• cluster_name (Required | String) EKS Cluster Name

• aws_role_name (Optional | String) AWS Role Name

• region (Optional | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• eks_identity_mapping_type (Optional | String) Identity Mapping Type

  • Possible values: access-entries, config-map

Example Terraform Resource Usage

resource "apono_integration" "aws-ec2-ssh-integration" {
  name                     = "AWS EC2 SSH"
  type                     = "aws-ec2-ssh"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    region = "<Region>"
    user = "<User>"
    groups = "<User Groups>"
    shell = "<User&#39;s Login Shell>"
    user_key_name = "<User Key Name>"
    ip_type_preference = "<IP Type Preference>"
    cross_account_role_arn = "<Cross Account Role ARN>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type aws-ec2-ssh

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-ec2-ssh

  • aws-ec2-ssh-server

Metadata

• region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• user (Required | String) User

• groups (Optional | String) User Groups

• shell (Optional | String) User's Login Shell

• user_key_name (Optional | String) User Key Name

• ip_type_preference (Optional | String) IP Type Preference

  • Default value: public

  • Possible values: public, private

• cross_account_role_arn (Optional | String) Cross Account Role ARN

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "aws-rds-mysql-integration" {
  name                     = "AWS RDS MySQL"
  type                     = "aws-rds-mysql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    auth_type = "<Auth Type>"
    aws_region = "<Region>"
    aws_instance_id = "<Instance ID>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type aws-rds-mysql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-rds-mysql

  • aws-rds-mysql-database

  • aws-rds-mysql-table

  • aws-rds-mysql-role

Metadata

• auth_type (Required | String) Auth Type

  • Possible values: aws-iam-auth, user-password

• aws_region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• aws_instance_id (Required | String) Instance ID

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "aws-rds-postgresql-integration" {
  name                     = "AWS RDS PostgreSQL"
  type                     = "aws-rds-postgresql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    auth_type = "<Auth Type>"
    aws_region = "<Region>"
    aws_instance_id = "<Instance ID>"
    dbname = "<Database Name>"
    sslmode = "<SSL Mode>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    enable_audit = "<Enable Audit>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type aws-rds-postgresql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-rds-postgresql

  • aws-rds-postgresql-database

  • aws-rds-postgresql-table

  • aws-rds-postgresql-role

Metadata

• auth_type (Required | String) Auth Type

  • Possible values: aws-iam-auth, user-password

• aws_region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• aws_instance_id (Required | String) Instance ID

• dbname (Required | String) Database Name

  • Default value: postgres

• sslmode (Optional | String) SSL Mode

  • Default value: require

  • Possible values: disable, allow, prefer, require, verify-ca, verify-full

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

• enable_audit (Optional | String) Enable Audit

  • Default value: false

  • Possible values: true, false

Example Terraform Resource Usage

resource "apono_integration" "azure-ad-integration" {
  name                     = "Azure AD Groups"
  type                     = "azure-ad"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
  }
}

Schema

• type azure-ad

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-ad

  • azure-ad-group

  • azure-ad-role

Metadata

Example Terraform Resource Usage

resource "apono_integration" "azure-vm-ssh-integration" {
  name                     = "Azure VM SSH"
  type                     = "azure-vm-ssh"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    user = "<User>"
    groups = "<User Groups>"
    shell = "<User&#39;s Login Shell>"
    user_key_name = "<User Key Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type azure-vm-ssh

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-vm-ssh

  • azure-vm-ssh-server

Metadata

• user (Required | String) User

• groups (Optional | String) User Groups

• shell (Optional | String) User's Login Shell

• user_key_name (Optional | String) User Key Name

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "elasticsearch-integration" {
  name                     = "Elasticsearch"
  type                     = "elasticsearch"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    proxy_address = "<Proxy Address>"
    clusters = "<Clusters>"
  }
}

Schema

• type elasticsearch

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • envoy-elasticsearch-cluster

Metadata

• proxy_address (Required | String) Proxy Address

• clusters (Required | String) Clusters

Example Terraform Resource Usage

resource "apono_integration" "azure-mysql-integration" {
  name                     = "Azure MySQL"
  type                     = "azure-mysql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type azure-mysql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-mysql

  • azure-mysql-database

  • azure-mysql-table

  • azure-mysql-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 3306

Example Terraform Resource Usage

resource "apono_integration" "gcp-alloydb-integration" {
  name                     = "Google AlloyDB"
  type                     = "gcp-alloydb"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    auth_type = "<Auth Type>"
    gcp_project_id = "<Project ID>"
    gcp_region = "<Location>"
    gcp_alloydb_cluster = "<Cluster ID>"
    gcp_instance_id = "<Primary Instance ID>"
    port = "<Port>"
    dbname = "<Database Name>"
    sslmode = "<SSL Mode>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  gcp_secret = {
    project    = "project_template_value"
    secret_id  = "gcp_secret_id_template_value"
  }
}

Schema

• type gcp-alloydb

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-alloydb-cluster

  • gcp-alloydb-primary-instance

  • gcp-alloydb-database

  • gcp-alloydb-table

  • gcp-alloydb-role

Metadata

• auth_type (Required | String) Auth Type

  • Possible values: gcp-alloydb-iam-auth, user-password

• gcp_project_id (Required | String) Project ID

• gcp_region (Required | String) Location

• gcp_alloydb_cluster (Required | String) Cluster ID

• gcp_instance_id (Required | String) Primary Instance ID

• port (Required | String) Port

  • Default value: 5432

• dbname (Required | String) Database Name

  • Default value: postgres

• sslmode (Optional | String) SSL Mode

  • Possible values: disable, allow, prefer, require, verify-ca, verify-full

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "azure-aks-integration" {
  name                     = "Azure Kubernetes Service (AKS)"
  type                     = "azure-aks"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    resource_group = "<Resource Group>"
    cluster_name = "<Cluster Name>"
    subscription_id = "<Subscription ID>"
  }
}

Schema

• type azure-aks

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-aks-cluster

  • azure-aks-namespace

  • azure-aks-secret

  • azure-aks-configmap

  • azure-aks-deployment

  • azure-aks-statefulset

  • azure-aks-pod

  • azure-aks-ingress

  • azure-aks-cronjob

  • azure-aks-job

Metadata

• server_url (Optional | String) Server URL

• certificate_authority (Optional | String) Certificate Authority

• resource_group (Optional | String) Resource Group

• cluster_name (Optional | String) Cluster Name

• subscription_id (Optional | String) Subscription ID

Example Terraform Resource Usage

resource "apono_integration" "cloudfunction-custom-integration-integration" {
  name                     = "Cloud Function Custom Integration"
  type                     = "cloudfunction-custom-integration"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    access_details = "<Access Details>"
    custom_parameters = "<Custom Parameters>"
    project_id = "<Project ID>"
    region = "<Region>"
    function_name = "<Function Name>"
  }
}

Schema

• type cloudfunction-custom-integration

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • custom-cloud-function

Metadata

• access_details (Required | String) Access Details

• custom_parameters (Required | String) Custom Parameters

• project_id (Required | String) Project ID

• region (Required | String) Region

• function_name (Required | String) Function Name

Example Terraform Resource Usage

resource "apono_integration" "gcp-cloud-sql-mysql-integration" {
  name                     = "Google Cloud SQL - MySQL"
  type                     = "gcp-cloud-sql-mysql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    auth_type = "<Auth Type>"
    gcp_project_id = "<Project ID>"
    gcp_region = "<Region>"
    gcp_instance_id = "<Instance ID>"
    gcp_instance_id_user_override = "<Instance ID User Override>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  gcp_secret = {
    project    = "project_template_value"
    secret_id  = "gcp_secret_id_template_value"
  }
}

Schema

• type gcp-cloud-sql-mysql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-cloud-sql-mysql

  • gcp-cloud-sql-mysql-database

  • gcp-cloud-sql-mysql-table

  • gcp-cloud-sql-mysql-role

Metadata

• auth_type (Required | String) Auth Type

  • Possible values: gcp-iam-auth, user-password

• gcp_project_id (Required | String) Project ID

• gcp_region (Required | String) Region

• gcp_instance_id (Required | String) Instance ID

• gcp_instance_id_user_override (Optional | String) Instance ID User Override

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "gcp-bigquery-integration" {
  name                     = "Google BigQuery"
  type                     = "gcp-bigquery"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    project_id = "<Project ID>"
    dataset_id = "<Dataset Name>"
  }
}

Schema

• type gcp-bigquery

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-bigquery

  • gcp-bigquery-table

Metadata

• project_id (Required | String) Project ID

• dataset_id (Required | String) Dataset Name

Example Terraform Resource Usage

resource "apono_integration" "azure-subscription-integration" {
  name                     = "Azure Subscription"
  type                     = "azure-subscription"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    subscription_id = "<Azure Subscription Id>"
    directory = "<Azure Primary Domain>"
    disable_locks = "<Disable Locks>"
  }
}

Schema

• type azure-subscription

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-subscription

  • azure-subscription-resource-group

  • azure-subscription-resource-group-storage-account

  • azure-subscription-app-service

  • azure-subscription-web-site

  • azure-subscription-container-instance-group

  • azure-subscription-container-instance

  • azure-subscription-compute

  • azure-subscription-vm

  • azure-subscription-galleries

  • azure-subscription-vm-scale-set

  • azure-subscription-container-registry

  • azure-subscription-static-web-app

  • azure-subscription-service-bus

  • azure-subscription-service-bus-namespace

  • azure-subscription-event-grid

  • azure-subscription-event-grid-domain

  • azure-subscription-event-grid-topic

  • azure-subscription-event-grid-namespace

  • azure-subscription-event-hub

  • azure-subscription-event-hub-namespace

  • azure-subscription-machine-learning

  • azure-subscription-machine-learning-workspace

  • azure-subscription-machine-learning-registry

  • azure-subscription-virtual-desktop

  • azure-subscription-virtual-desktop-host-pool

  • azure-subscription-virtual-desktop-workspace

  • azure-subscription-data-factory

  • azure-subscription-automation

  • azure-subscription-automation-account

  • azure-subscription-synapse

  • azure-subscription-synapse-workspace

  • azure-subscription-functions

  • azure-subscription-function

  • azure-subscription-logic-apps

  • azure-subscription-logic-app

  • azure-subscription-cosmos-db

  • azure-subscription-cosmos-db-account

  • azure-subscription-sql-servers

  • azure-subscription-postgres-flexibleservers

  • azure-subscription-mysql-flexibleservers

  • azure-subscription-sql-server

  • azure-subscription-managed-instance

Metadata

• subscription_id (Optional | String) Azure Subscription Id

• directory (Optional | String) Azure Primary Domain

• disable_locks (Optional | String) Disable Locks

  • Default value: false

  • Possible values: true, false

Example Terraform Resource Usage

resource "apono_integration" "aws-lambda-custom-integration-integration" {
  name                     = "AWS Lambda Custom Integration"
  type                     = "aws-lambda-custom-integration"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    access_details = "<Access Details>"
    custom_parameters = "<Custom Parameters>"
    region = "<Region>"
    function_name = "<Function Name>"
  }
}

Schema

• type aws-lambda-custom-integration

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-lambda-custom-integration

Metadata

• access_details (Required | String) Access Details

• custom_parameters (Required | String) Custom Parameters

• region (Required | String) Region

  • Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-west-1, eu-west-2, eu-south-1, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-south-1, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, me-south-1, sa-east-1

• function_name (Required | String) Function Name

Example Terraform Resource Usage

resource "apono_integration" "gcp-gke-integration" {
  name                     = "Google Kubernetes Engine (GKE)"
  type                     = "gcp-gke"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    project_id = "<Project ID>"
    region = "<Region>"
    cluster_name = "<Cluster Name>"
  }
  gcp_secret = {
    project    = "project_template_value"
    secret_id  = "gcp_secret_id_template_value"
  }
}

Schema

• type gcp-gke

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-gke-cluster

  • gcp-gke-namespace

  • gcp-gke-secret

  • gcp-gke-configmap

  • gcp-gke-deployment

  • gcp-gke-statefulset

  • gcp-gke-pod

  • gcp-gke-ingress

  • gcp-gke-cronjob

  • gcp-gke-job

Metadata

• server_url (Optional | String) Server URL

• certificate_authority (Optional | String) Certificate Authority

• project_id (Optional | String) Project ID

• region (Optional | String) Region

• cluster_name (Optional | String) Cluster Name

Example Terraform Resource Usage

resource "apono_integration" "azure-postgresql-integration" {
  name                     = "Azure PostgreSQL"
  type                     = "azure-postgresql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    dbname = "<Database Name>"
    sslmode = "<SSL Mode>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type azure-postgresql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • azure-postgresql

  • azure-postgresql-database

  • azure-postgresql-table

  • azure-postgresql-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 5432

• dbname (Required | String) Database Name

  • Default value: postgres

• sslmode (Required | String) SSL Mode

  • Default value: disable

  • Possible values: disable, allow, prefer, require, verify-ca, verify-full

Example Terraform Resource Usage

resource "apono_integration" "f5-webtop-integration" {
  name                     = "F5 Network"
  type                     = "f5-webtop"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<F5 Hostname>"
    access_profile_id = "<Access Profile Id>"
    resource_assign_id = "<Resource Assign Id>"
    webtop = "<Webtop>"
    webtop_sections = "<Webtop Sections (Optional)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type f5-webtop

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • f5-webtop-policy

Metadata

• hostname (Required | String) F5 Hostname

• access_profile_id (Required | String) Access Profile Id

• resource_assign_id (Required | String) Resource Assign Id

• webtop (Required | String) Webtop

• webtop_sections (Optional | String) Webtop Sections (Optional)

Example Terraform Resource Usage

resource "apono_integration" "mongodb-atlas-organization-integration" {
  name                     = "Mongo Atlas Portal"
  type                     = "mongodb-atlas-organization"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    organization_id = "<Organization Id>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type mongodb-atlas-organization

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • mongodb-atlas-organization

  • mongodb-atlas-organization-project

  • mongodb-atlas-organization-cluster

Metadata

• organization_id (Required | String) Organization Id

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "gcp-organization-integration" {
  name                     = "Google Organization"
  type                     = "gcp-organization"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    organization_id = "<Organization ID>"
  }
}

Schema

• type gcp-organization

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-organization

  • gcp-organization-folder

  • gcp-organization-project

  • gcp-organization-functions

  • gcp-organization-function

  • gcp-organization-secret-manager

  • gcp-organization-secret-manager-secret

  • gcp-organization-bigquery

  • gcp-organization-bigquery-dataset

  • gcp-organization-bigquery-table

  • gcp-organization-cloud-storage

  • gcp-organization-cloud-storage-bucket

  • gcp-organization-spanner

  • gcp-organization-spanner-instance

  • gcp-organization-spanner-instance-database

  • gcp-organization-compute

  • gcp-organization-compute-instance

  • gcp-organization-cloud-run

  • gcp-organization-cloud-run-service

  • gcp-organization-cloud-run-job

  • gcp-organization-artifact-registry

  • gcp-organization-artifact-registry-repository

  • gcp-organization-pubsub

  • gcp-organization-pubsub-topic

  • gcp-organization-pubsub-subscription

Metadata

• organization_id (Required | String) Organization ID

Example Terraform Resource Usage

resource "apono_integration" "gcp-project-integration" {
  name                     = "Google Project"
  type                     = "gcp-project"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    project_id = "<Project ID>"
  }
}

Schema

• type gcp-project

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-project

  • gcp-project-cloud-spanner

  • gcp-project-cloud-spanner-table

  • gcp-project-cloud-storage

  • gcp-project-cloud-storage-bucket

  • gcp-project-secret-manager

  • gcp-project-secret-manager-secret

  • gcp-project-bigquery

  • gcp-project-bigquery-dataset

  • gcp-project-bigquery-table

  • gcp-project-functions

  • gcp-project-function

  • gcp-project-compute

  • gcp-project-compute-instance

  • gcp-project-cloud-run

  • gcp-project-cloud-run-service

  • gcp-project-cloud-run-job

  • gcp-project-artifact-registry

  • gcp-project-artifact-registry-repository

  • gcp-project-pubsub

  • gcp-project-pubsub-topic

  • gcp-project-pubsub-subscription

Metadata

• project_id (Required | String) Project ID

Example Terraform Resource Usage

resource "apono_integration" "gcp-cloud-sql-postgresql-integration" {
  name                     = "Google Cloud SQL - PostgreSQL"
  type                     = "gcp-cloud-sql-postgresql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    auth_type = "<Auth Type>"
    gcp_project_id = "<Project ID>"
    gcp_region = "<Region>"
    gcp_instance_id = "<Instance ID>"
    gcp_instance_id_user_override = "<Instance ID User Override>"
    dbname = "<Database Name>"
    sslmode = "<SSL Mode>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  gcp_secret = {
    project    = "project_template_value"
    secret_id  = "gcp_secret_id_template_value"
  }
}

Schema

• type gcp-cloud-sql-postgresql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • gcp-cloud-sql-postgresql

  • gcp-cloud-sql-postgresql-database

  • gcp-cloud-sql-postgresql-table

  • gcp-cloud-sql-postgresql-role

Metadata

• auth_type (Required | String) Auth Type

  • Possible values: gcp-iam-auth, user-password

• gcp_project_id (Required | String) Project ID

• gcp_region (Required | String) Region

• gcp_instance_id (Required | String) Instance ID

• gcp_instance_id_user_override (Optional | String) Instance ID User Override

• dbname (Required | String) Database Name

  • Default value: postgres

• sslmode (Optional | String) SSL Mode

  • Possible values: disable, allow, prefer, require, verify-ca, verify-full

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "jumpcloud-integration" {
  name                     = "JumpCloud"
  type                     = "jumpcloud"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type jumpcloud

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • jumpcloud

  • jumpcloud-group

Metadata

Example Terraform Resource Usage

resource "apono_integration" "github-integration" {
  name                     = "Github"
  type                     = "github"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    org = "<Organization>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type github

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • github

  • github-repository

Metadata

• org (Required | String) Organization

Example Terraform Resource Usage

resource "apono_integration" "k8s-roles-integration" {
  name                     = "Kubernetes"
  type                     = "k8s-roles"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type k8s-roles

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • k8s-cluster

  • k8s-namespace

  • k8s-secret

  • k8s-configmap

  • k8s-deployment

  • k8s-statefulset

  • k8s-pod

  • k8s-ingress

  • k8s-cronjob

  • k8s-job

Metadata

• cluster_name (Required | String) kubeconfig Cluster Name

• kubeconfig_api_server_url (Required | String) kubeconfig Server URL

• server_url (Optional | String) Server URL

• certificate_authority (Optional | String) Certificate Authority

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "mysql-integration" {
  name                     = "MySQL"
  type                     = "mysql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    custom_permissions_json = "<Custom Permissions (JSON array that maps custom permissions to actions)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type mysql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • mysql

  • mysql-database

  • mysql-table

  • mysql-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 3306

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

• custom_permissions_json (Optional | String) Custom Permissions (JSON array that maps custom permissions to actions)

Example Terraform Resource Usage

resource "apono_integration" "mongodb-atlas-integration" {
  name                     = "MongoDB Atlas"
  type                     = "mongodb-atlas"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    project_id = "<Project Id>"
    cluster_name = "<Cluster Name>"
    connection_type = "<Connection Type>"
    private_endpoint_id = "<Private Endpoint Id>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type mongodb-atlas

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • mongodb-atlas

  • mongodb-atlas-project

  • mongodb-atlas-cluster

  • mongodb-atlas-database

  • mongodb-atlas-collection

  • mongodb-atlas-custom-role

Metadata

• project_id (Required | String) Project Id

• cluster_name (Required | String) Cluster Name

• connection_type (Required | String) Connection Type

  • Default value: Standard

  • Possible values: Standard, Private, PrivateEndpoint

• private_endpoint_id (Optional | String) Private Endpoint Id

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "mongodb-integration" {
  name                     = "MongoDB"
  type                     = "mongodb"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type mongodb

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • mongodb-cluster

  • mongodb-database

  • mongodb-custom-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 27017

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "mssql-integration" {
  name                     = "Microsoft SQL Server"
  type                     = "mssql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    dbname = "<Database Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type mssql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • mssql

  • mssql-server-role

  • mssql-database

  • mssql-schema

  • mssql-table

  • mssql-view

  • mssql-function

  • mssql-procedure

  • mssql-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 1433

• dbname (Required | String) Database Name

  • Default value: master

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "okta-group-integration" {
  name                     = "Okta Group"
  type                     = "okta-group"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    org_url = "<Okta Organization URL>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

Schema

• type okta-group

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • okta

  • okta-group

Metadata

• org_url (Required | String) Okta Organization URL

Example Terraform Resource Usage

resource "apono_integration" "ldap-directory-integration" {
  name                     = "LDAP Group"
  type                     = "ldap-directory"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    url = "<LDAP Server URL>"
    custom_ca_cert = "<Self signed server or CA certificate>"
    domain = "<Domain>"
    groups_scope = "<Groups Scope>"
    users_scope = "<Users Scope>"
    user_email_attribute = "<User Email Attribute>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type ldap-directory

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • ldap-directory

  • ldap-directory-group

Metadata

• url (Required | String) LDAP Server URL

• custom_ca_cert (Optional | String) Self signed server or CA certificate

• domain (Required | String) Domain

• groups_scope (Optional | String) Groups Scope

• users_scope (Optional | String) Users Scope

• user_email_attribute (Optional | String) User Email Attribute

Example Terraform Resource Usage

resource "apono_integration" "postgresql-integration" {
  name                     = "PostgreSQL"
  type                     = "postgresql"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    dbname = "<Database Name>"
    sslmode = "<SSL Mode>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type postgresql

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • postgresql

  • postgresql-database

  • postgresql-table

  • postgresql-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 5432

• dbname (Required | String) Database Name

  • Default value: postgres

• sslmode (Required | String) SSL Mode

  • Default value: disable

  • Possible values: disable, allow, prefer, require, verify-ca, verify-full

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "rdp-integration" {
  name                     = "RDP"
  type                     = "rdp"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    host = "<Host>"
    port = "<WinRM Port>"
    rdp_port = "<RDP Port>"
    ssl = "<Use SSL connection>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type rdp

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • rdp

  • rdp-server

  • rdp-server-group

Metadata

• host (Required | String) Host

• port (Required | String) WinRM Port

  • Default value: 5985

• rdp_port (Optional | String) RDP Port

  • Default value: 3389

• ssl (Required | String) Use SSL connection

  • Default value: false

  • Possible values: false, true

Example Terraform Resource Usage

resource "apono_integration" "oracle-db-integration" {
  name                     = "Oracle Database"
  type                     = "oracle-db"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    service_name = "<Sarvice Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type oracle-db

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • oracle-db

  • oracle-db-role

  • oracle-db-schema

  • oracle-db-table

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 1521

• service_name (Required | String) Sarvice Name

  • Default value: ORCL

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "onelogin-group-integration" {
  name                     = "OneLogin Group"
  type                     = "onelogin-group"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    subdomain = "<Subdomain>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type onelogin-group

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • onelogin

  • onelogin-role

Metadata

• subdomain (Required | String) Subdomain

Example Terraform Resource Usage

resource "apono_integration" "rancher-integration" {
  name                     = "Rancher"
  type                     = "rancher"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    host = "<Host>"
    port = "<Port>"
    certificate_authority = "<Certificate Authority>"
    rancher_ui_url = "<Rancher UI URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type rancher

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • rancher

  • rancher-cluster

  • rancher-project

Metadata

• host (Required | String) Host

• port (Required | String) Port

• certificate_authority (Optional | String) Certificate Authority

• rancher_ui_url (Optional | String) Rancher UI URL

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "redislabs-integration" {
  name                     = "Redis Cloud (Redislabs)"
  type                     = "redislabs"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type redislabs

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • redislabs-account

  • redislabs-subscription

  • redislabs-database

Metadata

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "snowflake-integration" {
  name                     = "Snowflake"
  type                     = "snowflake"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    auth_type = "<Select Auth Type>"
    role = "<Role>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
    sso_url = "<SSO Portal URL>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type snowflake

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • snowflake-account

  • snowflake-role

Metadata

• hostname (Required | String) Hostname

• auth_type (Optional | String) Select Auth Type

  • Default value: user-password

  • Possible values: sso-auth, user-password

• role (Optional | String) Role

  • Default value: ACCOUNTADMIN

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

• sso_url (Optional | String) SSO Portal URL

Example Terraform Resource Usage

resource "apono_integration" "ssh-integration" {
  name                     = "SSH"
  type                     = "ssh"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    servers = "<Servers>"
    groups = "<User Groups>"
    shell = "<User&#39;s Login Shell>"
    user_key_name = "<User Key Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type ssh

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • ssh

  • ssh-server

Metadata

• servers (Required | String) Servers

• groups (Optional | String) User Groups

• shell (Optional | String) User's Login Shell

• user_key_name (Optional | String) User Key Name

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "redshift-integration" {
  name                     = "Amazon Redshift"
  type                     = "redshift"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    db_name = "<Database Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type redshift

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • aws-redshift

  • aws-redshift-database

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 5439

• db_name (Required | String) Database Name

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

Example Terraform Resource Usage

resource "apono_integration" "windows-domain-controller-integration" {
  name                     = "Windows Domain Controller"
  type                     = "windows-domain-controller"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    host = "<Host>"
    port = "<WinRM Port>"
    rdp_port = "<RDP Port>"
    ssl = "<Use SSL connection>"
    email_selector_field_name_override = "<User Email Attribute Name>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type windows-domain-controller

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • windows-domain-controller

  • windows-domain-controller-server

  • windows-domain-controller-server-group

Metadata

• host (Required | String) Host

• port (Required | String) WinRM Port

  • Default value: 5985

• rdp_port (Optional | String) RDP Port

  • Default value: 3389

• ssl (Required | String) Use SSL connection

  • Default value: false

  • Possible values: false, true

• email_selector_field_name_override (Optional | String) User Email Attribute Name

  • Default value: UserPrincipalName

Example Terraform Resource Usage

resource "apono_integration" "vertica-integration" {
  name                     = "Vertica Database"
  type                     = "vertica"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["resource-type-1", "resource-type-2"]
  metadata = {
    hostname = "<Hostname>"
    port = "<Port>"
    dbname = "<Database Name>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

Schema

• type vertica

• connected_resource_types List of resource types to sync. The following are the available resource type/s you can use:

  • vertica

  • vertica-role

Metadata

• hostname (Required | String) Hostname

• port (Required | String) Port

  • Default value: 5433

• dbname (Required | String) Database Name

• credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

• credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)