This Terraform module provisions a DSF DRA Analytics instance on AWS as an EC2 instance.
- Terraform, refer to versions.tf for supported versions.
- An AWS account.
- Access to DRA software. Request access here.
NOTE: In case you are not yet an Imperva customer, please contact our team.
This Terraform module provisions several resources on AWS. These resources include:
- An EC2 instance for running the software.
- AWS security groups to allow the required network access to and from the DSF instance.
- An IAM role with relevant policies.
- AWS Secrets that hold the passwords.
- An AWS Elastic Network Interface (ENI).
The EC2 instance and EBS volume provide the computing and storage resources needed to run the DSF software. The security group controls the inbound and outbound traffic to the instance, while the IAM role grants the necessary permissions to access AWS resources. The KMS is used for encrypting sensitive data.
The following input variables are required:
subnet_id: The ID of the subnet in which to launch the DSF instance inkey_pair: AWS key pair name to attach to the instanceadmin_password: Password to be used to admin os useradmin_registration_password: Password to be used to register Analytics Server to Admin Serverarchiver_password: Password to be used to upload archive files for analysisadmin_server_private_ip: Private IP of the Admin Server (Used for registration)admin_server_public_ip: Public IP of the Admin Server (Used for verifying the analytics server is launched successfully)
Refer to variables.tf for additional variables with default values and additional info.
Refer to outputs or https://registry.terraform.io/modules/imperva/dsf-dra-analytics/aws/latest?tab=outputs.
To use this module, add the following to your Terraform configuration:
provider "aws" {
}
module "dra_analytics" {
source = "imperva/dsf-dra-analytics/aws"
subnet_id = local.dra_admin_subnet_id
admin_registration_password = local.password
admin_password = local.password
archiver_password = local.password
key_pair = local.key_pair_name
admin_server_public_ip = module.dra_admin.public_ip
admin_server_private_ip = module.dra_admin.private_ip
}
To see a complete example of how to use this module in a DSF deployment with other modules, check out the examples directory.
We recommend using a specific version of the module (and not the latest). See available released versions in the main repo README here.
Specify the module's version by adding the version parameter. For example:
module "dsf_dra_analytics" {
source = "imperva/dsf-dra-analytics/aws"
version = "x.y.z"
}
For more information about the DSF DRA Analytics and its features, refer to the official documentation here.
For additional information about DSF deployment using terraform, refer to the main repo README here.