Manage Policy Exceptions with Terraform
You can manage Lacework policy exceptions with Terraform using the Lacework Terraform Provider.
Lacework Policy Exception Terraform Resource
The lacework_policy_exception
resource provides the ability to define a policy exception as a Terraform resource.
Example lacework_policy_exception
The following example shows how to use the policy exception resource to exempt the specified AWS account from the policy.
resource "lacework_policy_exception" "example" {
policy_id = "lacework-global-46"
description = "Exception for account 123456789"
constraint {
field_key = "accountIds"
field_values = ["123456789"]
}
}
For more information about the Lacework Policy Exception Terraform resource, see lacework_policy_exception on the Terraform Registry.