aws-template
clumio-code/aws-template/clumio
Terraform module containing resources required for AWS connection to Clumio.
Clumio AWS Terraform Module Terraform module to install the Clumio required AWS resources in the customer AWS account. Usage This module is to be used along with the resource clumio_aws_connection as some of the inputs for the module are obtained from the output of clumio_aws_connection resource. Below is an example of using the module: ``hcl data "aws_caller_identity" "current" { } data "aws_region" "current" { } resource "clumio_aws_connection" "test_conn" { account_native_id = data.aws_caller_identity.current.account_id aws_region = data.aws_region.current.name description = data.aws_caller_identity.current.account_id } ################################################################################ Clumio AWS Connection Module ###########################################################
| Name | Type | Description | Default |
|---|---|---|---|
| aws_region | string | AWS Region. | |
| role_external_id | string | A key that must be used by Clumio to assume the service role in your account. Th | |
| clumio_aws_account_id | string | Clumio Control Plane Account Id. | |
| clumio_token | string | The AWS integration ID token. | |
| aws_account_id | string | Client AWS Account Id. | |
| permissions_boundary_arn | string | ARN of the permissions boundary to be set on Clumio Roles. | "" |
| data_plane_account_id | string | Allow only one role in clumio control plane to assume the ClumioIAMRole in custo | "*" |
| is_ebs_enabled | bool | Flag to indicate if Clumio Protect and Discover for EBS are enabled | false |
| is_s3_enabled | bool | Flag to indicate if Clumio Protect and Discover for S3 are enabled | false |
| is_ec2_mssql_enabled | bool | Flag to indicate if Clumio Protect and Discover for Mssql on EC2 are enabled | false |
| is_iceberg_on_glue_enabled | bool | Flag to indicate if Clumio Protect for Iceberg on Glue is enabled | false |
| wait_for_data_plane_resources | bool | Flag to indicate if we need to wait for data plane resources to be created. | false |
| wait_for_ingestion | bool | Flag to indicate if we need to wait for ingestion to complete. | false |
| wait_time_before_create | string | Time in seconds to wait before creation of resources. This will be required to b | "60s" |
| clumio_inventory_sns_topic_encryption_key | string | Optional existing KMS Key for the Clumio Inventory SNS topic. If one is provided | null |
| is_dynamodb_enabled | bool | Flag to indicate if Clumio Protect and Discover for DynamoDB are enabled | false |
| is_rds_enabled | bool | Flag to indicate if Clumio Protect and Discover for RDS are enabled | false |
| path | string | Value of path set on the AWS IAM roles, policies and instance_profile resources | "/clumio/" |
| create_clumio_inventory_sns_topic_encryption_key | bool | Indicates that a KMS Key must be created and associated with the Clumio Inventor | false |
| clumio_iam_role_tags | map(string) | Additional tags for Clumio IAM Roles. | {
"Vendor": "Clumio"
} |
| is_iceberg_on_s3_tables_enabled | bool | Flag to indicate if Clumio Protect for Iceberg on S3 Tables is enabled | false |
| collect_inventory_aws_backup_recovery_points | bool | Indicates whether AWS Backup (Recovery Point) data is collected for Discover. Th | true |