oci_vulnerability_scanning_host_scan_recipe

This resource provides the Host Scan Recipe resource in Oracle Cloud Infrastructure Vulnerability Scanning service.

Creates a new HostScanRecipe. A recipe determines the types of security issues that you want scanned, and how often to scan.

Example Usage

resource "oci_vulnerability_scanning_host_scan_recipe" "test_host_scan_recipe" {
	#Required
	agent_settings {
		#Required
		scan_level = var.host_scan_recipe_agent_settings_scan_level

		#Optional
		agent_configuration {
			#Required
			vendor = var.host_scan_recipe_agent_settings_agent_configuration_vendor

			#Optional
			cis_benchmark_settings {

				#Optional
				scan_level = var.host_scan_recipe_agent_settings_agent_configuration_cis_benchmark_settings_scan_level
			}
			endpoint_protection_settings {

				#Optional
				scan_level = var.host_scan_recipe_agent_settings_agent_configuration_endpoint_protection_settings_scan_level
			}
			should_un_install = var.host_scan_recipe_agent_settings_agent_configuration_should_un_install
			vault_secret_id = oci_vault_secret.test_secret.id
			vendor_type = var.host_scan_recipe_agent_settings_agent_configuration_vendor_type
		}
	}
	compartment_id = var.compartment_id
	port_settings {
		#Required
		scan_level = var.host_scan_recipe_port_settings_scan_level
	}
	schedule {
		#Required
		type = var.host_scan_recipe_schedule_type

		#Optional
		day_of_week = var.host_scan_recipe_schedule_day_of_week
	}

	#Optional
	application_settings {
		#Required
		application_scan_recurrence = var.host_scan_recipe_application_settings_application_scan_recurrence
		folders_to_scan {
			#Required
			folder = var.host_scan_recipe_application_settings_folders_to_scan_folder
			operatingsystem = var.host_scan_recipe_application_settings_folders_to_scan_operatingsystem
		}
		is_enabled = var.host_scan_recipe_application_settings_is_enabled
	}
	defined_tags = {"foo-namespace.bar-key"= "value"}
	display_name = var.host_scan_recipe_display_name
	freeform_tags = {"bar-key"= "value"}
}

Argument Reference

The following arguments are supported:

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Attributes Reference

The following attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain operations: * create - (Defaults to 20 minutes), when creating the Host Scan Recipe * update - (Defaults to 20 minutes), when updating the Host Scan Recipe * delete - (Defaults to 20 minutes), when destroying the Host Scan Recipe

Import

HostScanRecipes can be imported using the id, e.g.

$ terraform import oci_vulnerability_scanning_host_scan_recipe.test_host_scan_recipe "id"