ad_gpo_security (Resource)

ad_gpo_security manages the security settings portion of a Group Policy Object (GPO).

Example Usage

variable domain { default = "yourdomain.com" }
variable gpo_name { default = "TestGPO" }

resource "ad_gpo" "gpo" {
  name   = var.gpo_name
  domain = var.domain
}

resource "ad_gpo_security" "gpo_sec" {
  gpo_container = ad_gpo.gpo.id
  password_policies {
    minimum_password_length = 3
  }

  system_services {
    service_name = "TapiSrv"
    startup_mode = "2"
    acl          = "D:AR(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;LA)"
  }

  system_services {
    service_name = "CertSvc"
    startup_mode = "2"
    acl          = "D:AR(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)(A;;CCLCSWLOCRRC;;;IU)S:(AU;FA;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;WD)"
  }

}

Schema

Required

Optional

Nested Schema for account_lockout

Optional:

Nested Schema for application_log

Optional:

Nested Schema for audit_log

Optional:

Nested Schema for event_audit

Optional:

Nested Schema for filesystem

Required:

Nested Schema for kerberos_policy

Optional:

Nested Schema for password_policies

Optional:

Nested Schema for registry_keys

Required:

Nested Schema for registry_values

Required:

Nested Schema for restricted_groups

Required:

Nested Schema for system_log

Optional:

Nested Schema for system_services

Required:

Import

Import is supported using the following syntax:

$ terraform import ad_gpo_security 9CB8219C-31FF-4A85-A7A3-9BCBB6A41D02_securitysettings