google_network_security_security_profile

A security profile defines the behavior associated to a profile type.

To get more information about SecurityProfile, see:

Example Usage - Network Security Security Profile Basic

resource "google_network_security_security_profile" "default" {
  provider    = google-beta
  name        = "my-security-profile"
  parent      = "organizations/123456789"
  description = "my description"
  type        = "THREAT_PREVENTION"

  labels = {
    foo = "bar"
  }
}

Example Usage - Network Security Security Profile Overrides

resource "google_network_security_security_profile" "default" {
  provider    = google-beta
  name        = "my-security-profile"
  parent      = "organizations/123456789"
  description = "my description"
  type        = "THREAT_PREVENTION"

  threat_prevention_profile {
    severity_overrides {
      action   = "ALLOW"
      severity = "INFORMATIONAL"
    }

    severity_overrides {
      action   = "DENY"
      severity = "HIGH"
    }

    threat_overrides {
      action    = "ALLOW"
      threat_id = "280647"
    }
  }
}

Argument Reference

The following arguments are supported:


The threat_prevention_profile block supports:

The severity_overrides block supports:

The threat_overrides block supports:

Attributes Reference

In addition to the arguments listed above, the following computed attributes are exported:

Timeouts

This resource provides the following Timeouts configuration options:

Import

SecurityProfile can be imported using any of these accepted formats:

In Terraform v1.5.0 and later, use an import block to import SecurityProfile using one of the formats above. For example:

import {
  id = "{{parent}}/locations/{{location}}/securityProfiles/{{name}}"
  to = google_network_security_security_profile.default
}

When using the terraform import command, SecurityProfile can be imported using one of the formats above. For example:

$ terraform import google_network_security_security_profile.default {{parent}}/locations/{{location}}/securityProfiles/{{name}}