google_scc_event_threat_detection_custom_module

Represents an instance of an Event Threat Detection custom module, including its full module name, display name, enablement state, andlast updated time. You can create a custom module at the organization level only.

To get more information about EventThreatDetectionCustomModule, see:

Example Usage - Scc Event Threat Detection Custom Module

resource "google_scc_event_threat_detection_custom_module" "example" {
  organization = "123456789"
  display_name = "basic_custom_module"
  enablement_state = "ENABLED"
  type = "CONFIGURABLE_BAD_IP"
  description = "My Event Threat Detection Custom Module"
  config = jsonencode({
    "metadata": {
      "severity": "LOW",
      "description": "Flagged by Forcepoint as malicious",
      "recommendation": "Contact the owner of the relevant project."
    },
    "ips": [
      "192.0.2.1",
      "192.0.2.0/24"
    ]
  })
}

Argument Reference

The following arguments are supported:


Attributes Reference

In addition to the arguments listed above, the following computed attributes are exported:

Timeouts

This resource provides the following Timeouts configuration options:

Import

EventThreatDetectionCustomModule can be imported using any of these accepted formats:

In Terraform v1.5.0 and later, use an import block to import EventThreatDetectionCustomModule using one of the formats above. For example:

import {
  id = "organizations/{{organization}}/eventThreatDetectionSettings/customModules/{{name}}"
  to = google_scc_event_threat_detection_custom_module.default
}

When using the terraform import command, EventThreatDetectionCustomModule can be imported using one of the formats above. For example:

$ terraform import google_scc_event_threat_detection_custom_module.default organizations/{{organization}}/eventThreatDetectionSettings/customModules/{{name}}
$ terraform import google_scc_event_threat_detection_custom_module.default {{organization}}/{{name}}