oci_vulnerability_scanning_host_scan_recipe

This resource provides the Host Scan Recipe resource in Oracle Cloud Infrastructure Vulnerability Scanning service.

Creates a new HostScanRecipe. A recipe determines the types of security issues that you want scanned, and how often to scan.

Example Usage

resource "oci_vulnerability_scanning_host_scan_recipe" "test_host_scan_recipe" {
    #Required
    agent_settings {
        #Required
        scan_level = var.host_scan_recipe_agent_settings_scan_level

        #Optional
        agent_configuration {
            #Required
            vendor = var.host_scan_recipe_agent_settings_agent_configuration_vendor

            #Optional
            cis_benchmark_settings {

                #Optional
                scan_level = var.host_scan_recipe_agent_settings_agent_configuration_cis_benchmark_settings_scan_level
            }
            endpoint_protection_settings {

                #Optional
                scan_level = var.host_scan_recipe_agent_settings_agent_configuration_endpoint_protection_settings_scan_level
            }
            should_un_install = var.host_scan_recipe_agent_settings_agent_configuration_should_un_install
            vault_secret_id = oci_vault_secret.test_secret.id
            vendor_type = var.host_scan_recipe_agent_settings_agent_configuration_vendor_type
        }
    }
    compartment_id = var.compartment_id
    port_settings {
        #Required
        scan_level = var.host_scan_recipe_port_settings_scan_level
    }
    schedule {
        #Required
        type = var.host_scan_recipe_schedule_type

        #Optional
        day_of_week = var.host_scan_recipe_schedule_day_of_week
    }

    #Optional
    application_settings {
        #Required
        application_scan_recurrence = var.host_scan_recipe_application_settings_application_scan_recurrence
        folders_to_scan {
            #Required
            folder = var.host_scan_recipe_application_settings_folders_to_scan_folder
            operatingsystem = var.host_scan_recipe_application_settings_folders_to_scan_operatingsystem
        }
        is_enabled = var.host_scan_recipe_application_settings_is_enabled
    }
    defined_tags = {"foo-namespace.bar-key"= "value"}
    display_name = var.host_scan_recipe_display_name
    freeform_tags = {"bar-key"= "value"}
}

Argument Reference

The following arguments are supported:

* IMPORTANT * Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Host Scan Recipe * update - (Defaults to 20 minutes), when updating the Host Scan Recipe * delete - (Defaults to 20 minutes), when destroying the Host Scan Recipe

Import

HostScanRecipes can be imported using the id, e.g.

$ terraform import oci_vulnerability_scanning_host_scan_recipe.test_host_scan_recipe "id"