Adapted from https://github.com/aws-samples/amazon-guardduty-for-aws-organizations-with-terraform
No requirements.
| Name | Version |
|---|---|
| aws.guardduty_region | n/a |
| aws.guarduty_region | n/a |
| aws.management_region | n/a |
No modules.
| Name | Type |
|---|---|
| aws_guardduty_detector.this | resource |
| aws_guardduty_organization_admin_account.this | resource |
| aws_guardduty_organization_configuration.this | resource |
| aws_guardduty_publishing_destination.pub_dest | resource |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| billing_tag_key | (Optional, default 'CostCentre') The name of the billing tag | string |
"CostCentre" |
no |
| billing_tag_value | (Required) The value of the billing tag | string |
n/a | yes |
| delegated_admin_account_id | The account id of the delegated admin. | string |
n/a | yes |
| kms_key_arn | (Required) The KMS key to encrypt findings in the S3 bucket | string |
n/a | yes |
| organization_id | The AWS organization to enable GuardDuty in. | string |
n/a | yes |
| publishing_bucket_arn | (Required) The ARN of the S3 bucket to publish findings to | string |
n/a | yes |
| publishing_frequency | Specifies the frequency of notifications sent for subsequent finding occurrences. | string |
"FIFTEEN_MINUTES" |
no |
| tags | (Optional) Key-value map of resource tags. If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level." |
map(string) |
{} |
no |
| Name | Description |
|---|---|
| guardduty_detector | The GuardDuty detector. |