Multi-Cloud Compliance and Management

One workflow to provision, secure, govern, and audit any infrastructure.

Increase productivity and reduce risk with a consistent approach to multi-cloud provisioning

The Challenge

Single-vendor Infrastructure topologies are not extensible to other providers or external services. Teams use tools and workflows that only align to a single vendor.

»Before

  • Increased costs from vendor lock-in and premium pricing.
  • Reduced productivity with multiple workflows/APIs to learn and long lead times to support new LOBs.
  • Increased risk with multiple workflows to secure, govern, and audit.

The Solution

Multi-vendor Infrastructure topologies. Teams use a consistent workflow to provision, secure, govern, & audit any infrastructure.

»After

  • Reduce costs by eliminating vendor lock-in and take advantage of credits & competitive pricing.
  • Increase productivity with a consistent workflow and reduce time to on-board vendors & support new LOBs.
  • Reduce risk with a single workflow to secure, govern, and audit.

Terraform Features

Consistent Workflow

Consistent Workflow

One workflow to provision multi-vendor infrastructure.

Enhanced workflow to secure, audit, and govern infrastructure with encrypted variables, audit logs, and policy as code.

Providers

Providers

200+ available providers for a broad set of common infrastructure. Provider SDK makes it simple to create new and custom providers.

Providers leverage infrastructure-specific APIs to preserve unique capabilities for each provider.

resource "digitalocean_droplet" "web" {
  name   = "tf-web"
  size   = "512mb"
  image  = "centos-5-8-x32"
  region = "sfo1"
}
 
resource "dnsimple_record" "hello" {
  domain = "example.com"
  name   = "test"
  value  = "${digitalocean_droplet.web.ipv4_address}"
  type   = "A"
}

Compose Multiple Providers

Use best of breed features from different providers and compose them in a single logical topology.

Community & Partners

Community & Partners

1200+ community members. Partners and community members create and contribute to the vast updates to Terraform core and providers.

# Restricting region in AWS
aws_region_valid = rule {
  all region_values as rv {
  rv == "us-east-1"
  }
}
 
# Restricting machine types in GCP
allowed_machine_types = [
  "n1-standard-1",
  "n1-standard-2",
  "n1-standard-4",
]
 
# Restricting publisher in Azure
allowed_publishers = [
  "MicrosoftWindowsServer",
  "RedHat",
]

Multi-Cloud Policy as Code

Codified policies enforce security, compliance, and operational best practices across all cloud provisioning. Policy as code eliminates wasted time waiting for code reviews and security audits. Policies are stored in VCS and treated as code — write, test, validate, publish.

Team Management & SSO

Team Management & SSO

Use GUI-based team management workflows and SSO to granulary enable and manage an organization of separate business units, teams, and users with role based access controls.

Audit Logging

Audit Logging

Audit logs provide a central system of record to track all provisioned infrastructure.

Cost Estimation

Cost Estimation

View an estimated cost of infrastructure changes to a workspace following the Terraform plan and before provisioning.

Terraform CLI, Cloud, and Enterprise Features

Learn more about provisioning infrastructure as code Terraform CLI, Cloud, and Enterprise.