Manages the Security Center Assessment Metadata for Azure Security Center.
resource "azurerm_security_center_assessment_policy" "example" {
display_name = "Test Display Name"
severity = "Medium"
description = "Test Description"
}
The following arguments are supported:
description
- (Required) The description of the Security Center Assessment.
display_name
- (Required) The user-friendly display name of the Security Center Assessment.
severity
- (Optional) The severity level of the Security Center Assessment. Possible values are Low
, Medium
and High
. Defaults to Medium
.
categories
- (Optional) A list of the categories of resource that is at risk when the Security Center Assessment is unhealthy. Possible values are Unknown
, Compute
, Data
, IdentityAndAccess
, IoT
and Networking
.
implementation_effort
- (Optional) The implementation effort which is used to remediate the Security Center Assessment. Possible values are Low
, Moderate
and High
.
remediation_description
- (Optional) The description which is used to mitigate the security issue.
threats
- (Optional) A list of the threat impacts for the Security Center Assessment. Possible values are AccountBreach
, DataExfiltration
, DataSpillage
, DenialOfService
, ElevationOfPrivilege
, MaliciousInsider
, MissingCoverage
and ThreatResistance
.
user_impact
- (Optional) The user impact of the Security Center Assessment. Possible values are Low
, Moderate
and High
.
In addition to the Arguments listed above - the following Attributes are exported:
id
- The ID of the Security Center Assessment Policy.
name
- The GUID as the name of the Security Center Assessment Policy.
The timeouts
block allows you to specify timeouts for certain actions:
create
- (Defaults to 30 minutes) Used when creating the Security Center Assessment Policy.read
- (Defaults to 5 minutes) Used when retrieving the Security Center Assessment Policy.update
- (Defaults to 30 minutes) Used when updating the Security Center Assessment Policy.delete
- (Defaults to 30 minutes) Used when deleting the Security Center Assessment Policy.Security Assessments Policy can be imported using the resource id
, e.g.
terraform import azurerm_security_center_assessment_policy.example /subscriptions/00000000-0000-0000-0000-000000000000/providers/Microsoft.Security/assessmentMetadata/metadata1