examples/terraform.tfvars.example

# PROVIDER
region               = "us-phoenix-1"
tenancy_ocid         = "ocid1.tenancy.oc1..aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
current_user_ocid    = "ocid1.user.oc1..aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
api_fingerprint      = "a1:b2:c3:4d:5e:6f:7g:8h:99:10:aa:bb:11:12:13:cc"
api_private_key_path = "~/path_to_example_api_key.pem"

# SANDBOX MODE
is_sandbox_mode_enabled=false

# COMPARTMENT
parent_compartment_name       = "Landing_Zone_Parent"
applications_compartment_name = "Applications"
common_infra_compartment_name = "Common-Infra"
security_compartment_name     = "Security"
network_compartment_name      = "Network"

# TAGGING
tag_cost_center  = "example_tag_cost_center"
tag_geo_location = "example_tag_geo_location"

# Global Resources Control
deploy_global_resources = true

# IAM
administrator_group_name           = "Administrators"
break_glass_user_email_list        = ["example@test.com", "example2@test.com"]
vault_id                           = "ocid1.tenancy.oc1..aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
key_id                             = "ocid1.tenancy.oc1..aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
cloud_guard_analysts_group_name    = "CloudGuard-Analyst"
cloud_guard_architects_group_name  = "CloudGuard-Architect"
cloud_guard_operators_group_name   = "CloudGuard-Operator"
lb_users_group_name                = "LB-Users"
network_admin_group_name           = "Virtual-Network-Admins"
security_admins_group_name         = "Security-Admins"

# VCN
shared_service_subnet_dns_label  = "shared"
vcn_dns_label                    = "vcn"
vcn_cidr_block                   = "10.0.0.0/16"
shared_service_subnet_cidr_block = "10.0.6.0/24"

# BUDGET
budget_alerting              = true
budget_amount                = "10000"
budget_alert_rule_threshold  = "100"
budget_alert_rule_recipients = "example3@test.com"
budget_alert_rule_message    = "Default Budget Alert"

# SECURITY
advanced_logging_option                    = "BOTH"
retention_rule_duration_time_amount        = 1
is_cloud_guard_enabled                     = true
is_vulnerability_scanning_service_enabled  = true
vss_scan_schedule                          = "DAILY"
agent_cis_benchmark_settings_scan_level    = "STRICT"
host_scan_recipe_agent_settings_scan_level = "STANDARD"
host_scan_recipe_port_settings_scan_level  = "STANDARD"
external_subnet_ocids                      = ["ocid1.subnet.oc1.phx.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"]

# BASTION
enable_bastion = true
bastion_client_cidr_block_allow_list = ["10.0.0.0/16", "10.0.0.0/24"]
bastion_subnet_cidr_block            = "10.0.7.0/24"

# IPSSEC
use_ipsec_drg                   = false
cpe_ip_address                  = "10.0.0.0"
ip_sec_connection_static_routes = ["10.0.1.0/24"]

# FASTCONNECT
use_fastconnect_drg                                                      = false
provider_service_key_name                                                = "aaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee"
virtual_circuit_bandwidth_shape                                          = "10"
virtual_circuit_cross_connect_mappings_customer_bgp_peering_ip           = "10.0.0.22/30"
virtual_circuit_cross_connect_mappings_oracle_bgp_peering_ip             = "10.0.0.21/30"
virtual_circuit_cross_connect_mappings_customer_secondary_bgp_peering_ip = "10.0.0.26/30"
virtual_circuit_cross_connect_mappings_oracle_secondary_bgp_peering_ip   = "10.0.0.25/30"
fastconnect_provider                                                     = "Microsoft Azure"
virtual_circuit_customer_asn                                             = "12345"
fastconnect_routing_policy                                               = ["GLOBAL"]

# MONITORING
security_admin_email_endpoints = ["example@example.com"]
budget_admin_email_endpoints = ["example@example.com"]
network_admin_email_endpoints = ["example@example.com"]