Terraform module that deploys the Sysdig Secure for Cloud stack in Azure. It provides unified threat detection, compliance, forensics and analysis.
There are three major component:
- Cloud Threat Detection: Tracks abnormal and suspicious activities in your cloud environment based on Falco language.Managed through cloud-connector module.
- CSPM/Compliance: It evaluates periodically your cloud configuration, using Cloud Custodian, against some benchmarks and returns the results and remediations you need to fix.
- Cloud Scanning: Automatically scans all container images pushed to the registry or as soon a new task which involves a container is spawned in your account.
For other Cloud providers check: AWS, GCP
There are two ways to deploy this in you Azure infrastructure:
- Using an existing resource group name (more info in the
./examples/existing_resource_group/README.md) - Creating a new resource group name (more info in the
./examples/creating_resource_group/README.md)
Notice that:
- These examples will create resources that cost money. Run
terraform destroywhen you don't need them anymore - All created resources will be created within the tags
product:sysdig-secure-for-cloud
| Name | Version |
|---|---|
| terraform | >= 0.15.0 |
| azurerm | 2.64.0 |
| Name | Version |
|---|---|
| azurerm | 2.64.0 |
| Name | Source | Version |
|---|---|---|
| cloud_connector | ./modules/services/cloud-connector | |
| infrastructure_eventhub | ./modules/infrastructure/eventhub |
| Name | Type |
|---|---|
| azurerm_subscription.current | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| cloudconnector_deploy | Whether to deploy or not CloudConnector | bool |
true |
no |
| location | Zone where the stack will be deployed | string |
"centralus" |
no |
| naming_prefix | Prefix for resource names. Use the default unless you need to install multiple instances, and modify the deployment at the main account accordingly | string |
"secureforcloud" |
no |
| resource_group_name | The resource group name to deploy cloud vision stack | string |
"" |
no |
| sysdig_secure_api_token | Sysdig's Secure API Token | string |
n/a | yes |
| sysdig_secure_endpoint | Sysdig Secure API endpoint | string |
"https://secure.sysdig.com" |
no |
| tags | Tags to be added to the resources | map(string) |
{ |
no |
No outputs.
Module is maintained by Sysdig.
Apache 2 Licensed. See LICENSE for full details.