Skip to main content

Manage Policy Exceptions with Terraform

You can manage Lacework policy exceptions with Terraform using the Lacework Terraform Provider.

Lacework Policy Exception Terraform Resource

The lacework_policy_exception resource provides the ability to define a policy exception as a Terraform resource.

Example lacework_policy_exception

The following example shows how to use the policy exception resource to exempt the specified AWS account from the policy.

resource "lacework_policy_exception" "example" {
  policy_id   = "lacework-global-46"
  description = "Exception for account 123456789"
  constraint {
    field_key    = "accountIds"
    field_values = ["123456789"]
  }
}

For more information about the Lacework Policy Exception Terraform resource, see lacework_policy_exception on the Terraform Registry.