Skip to main content

Manage Policy Exceptions with Terraform

You can manage Lacework policy exceptions with Terraform using the Lacework Terraform Provider.

Lacework Policy Exception Terraform Resource

The lacework_policy_exception resource provides the ability to define a policy exception as a Terraform resource.

Example lacework_policy_exception

The following example shows how to use the policy exception resource to exempt the specified AWS account from the policy.

resource "lacework_policy_exception" "example" {
policy_id = "lacework-global-46"
description = "Exception for account 123456789"
constraint {
field_key = "accountIds"
field_values = ["123456789"]
}
}

For more information about the Lacework Policy Exception Terraform resource, see lacework_policy_exception on the Terraform Registry.