Terraform module that creates a cross-account IAM role to integrate Lacework and AWS accounts.
| Name | Version |
|---|---|
| terraform | >= 0.13 |
| aws | >= 3.0 |
| lacework | ~> 2.0 |
| random | >= 2.1 |
| Name | Version |
|---|---|
| aws | >= 3.0 |
| lacework | ~> 2.0 |
| random | >= 2.1 |
No modules.
| Name | Type |
|---|---|
| aws_iam_role.lacework_iam_role | resource |
| lacework_external_id.aws_iam_external_id | resource |
| random_id.uniq | resource |
| aws_caller_identity.current | data source |
| aws_iam_policy_document.lacework_assume_role_policy | data source |
| lacework_metric_module.lwmetrics | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| create | Set to false to prevent the module from creating any resources | bool |
true |
no |
| external_id_length | Deprecated - Will be removed on our next major release v1.0.0 | number |
16 |
no |
| iam_role_name | The IAM role name | string |
"" |
no |
| lacework_aws_account_id | The Lacework AWS account that the IAM role will grant access | string |
"434813966438" |
no |
| permission_boundary_arn | Optional - ARN of the policy that is used to set the permissions boundary for the role. | string |
null |
no |
| tags | A map/dictionary of Tags to be assigned to created resources | map(string) |
{} |
no |
| Name | Description |
|---|---|
| arn | IAM Role ARN |
| created | Was the IAM Role created |
| external_id | The External ID configured into the IAM role |
| name | IAM Role name |