1 of 1

Amazon Organization

Integrate all accounts and resources, and manage access with IAM Identity Center (SSO)

Example Usage

aws-organization-integration.tf

resource "apono_integration" "aws-organization-integration" {

aws-organization-integration.tf

resource "apono_resource_integration" "aws-organization-integration" {

Schema

type aws-organization
connected_resource_types List of resource types to sync.

Available resource types you can use

aws-organization-account
aws-organization-s3-bucket

Integration Config

region (Required | String) Region
- Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-central-2, eu-west-1, eu-west-2, eu-south-1, eu-south-2, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-southeast-4, ap-southeast-5, ap-southeast-7, ap-south-1, ap-south-2, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, ca-west-1, me-south-1, me-central-1, sa-east-1, il-central-1, mx-central-1

Amazon Organization

Integrate all accounts and resources, and manage access with IAM Identity Center (SSO)

Example Usage

aws-organization-integration.tf

resource "apono_integration" "aws-organization-integration" {

aws-organization-integration.tf

resource "apono_resource_integration" "aws-organization-integration" {

aws-organization-integration.json

{
    "aws-organization-integration": {
        "name": "Amazon Organization",
        "type": "aws-organization",
        "connector_id": "apono-connector-id",
        "connected_resource_types": [
            "aws-organization-account"
        ],
        "integration_config": {
            "region": "<Region>",
            "aws_sso_region": "<AWS SSO Region>",
            "aws_resource_explorer_region": "<AWS Resource Explorer Region>",
            "aws_sso_portal": "<SSO Portal>",
            "management_account_role_arn": "<Management Account Role ARN>",
            "filter_not_organizational_unit_ids": "<Exclude Organizational Unit IDs>",
            "user_assuming_role_arns": "<Assumable Roles>",
            "session_duration_hours": "<Session Duration (in Hours)>",
            "filter_not_account_ids": "<Exclude Account IDs>",
            "enable_audit": "<Enable Audit>",
        }
    }
}

Schema

type aws-organization
connected_resource_types List of resource types to sync.

Available resource types you can use

aws-organization-account
aws-organization-s3-bucket

Integration Config

region (Required | String) Region
- Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-central-2, eu-west-1, eu-west-2, eu-south-1, eu-south-2, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-southeast-4, ap-southeast-5, ap-southeast-7, ap-south-1, ap-south-2, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, ca-west-1, me-south-1, me-central-1, sa-east-1, il-central-1, mx-central-1

aws-organization-integration.json

{
    "aws-organization-integration": {
        "name": "Amazon Organization",
        "type": "aws-organization",
        "connector_id": "apono-connector-id",
        "connected_resource_types": [
            "aws-organization-account"
        ],
        "integration_config": {
            "region": "<Region>",
            "aws_sso_region": "<AWS SSO Region>",
            "aws_resource_explorer_region": "<AWS Resource Explorer Region>",
            "aws_sso_portal": "<SSO Portal>",
            "management_account_role_arn": "<Management Account Role ARN>",
            "filter_not_organizational_unit_ids": "<Exclude Organizational Unit IDs>",
            "user_assuming_role_arns": "<Assumable Roles>",
            "session_duration_hours": "<Session Duration (in Hours)>",
            "filter_not_account_ids": "<Exclude Account IDs>",
            "enable_audit": "<Enable Audit>",
        }
    }
}

Default value: us-east-1
Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-central-2, eu-west-1, eu-west-2, eu-south-1, eu-south-2, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-southeast-4, ap-southeast-5, ap-southeast-7, ap-south-1, ap-south-2, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, ca-west-1, me-south-1, me-central-1, sa-east-1, il-central-1, mx-central-1

aws_resource_explorer_region (Optional | String) AWS Resource Explorer Region

Possible values: us-east-1, us-east-2, us-west-1, us-west-2, eu-central-1, eu-central-2, eu-west-1, eu-west-2, eu-south-1, eu-south-2, eu-west-3, eu-north-1, af-south-1, ap-east-1, ap-southeast-3, ap-southeast-4, ap-southeast-5, ap-southeast-7, ap-south-1, ap-south-2, ap-northeast-3, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-northeast-1, ca-central-1, ca-west-1, me-south-1, me-central-1, sa-east-1, il-central-1, mx-central-1

Amazon Organization

hashtagExample Usage

hashtagSchema

hashtagIntegration Config

Amazon Organization

hashtagExample Usage

hashtagSchema

hashtagIntegration Config

Example Usage

Schema

Integration Config

Example Usage

Schema

Integration Config