Skip to main content

Set up the Terraform Cloud connector

Complete the following tasks to set up your Veracode Risk Manager (VRM) connector for Terraform Cloud.

Generate API token

  1. Log in to Terraform Cloud.
  2. Select Settings in the left panel.
  3. Under the Security section, select API tokens. You can generate a token of any type to integrate Terraform cloud. The state files can be collected with all token types.
  4. Generate an API Token.

A user with the proper permissions can create three types of tokens:

  • Organization Token - your organization can only have one organization token.
  • Team Token - each team can have one team token.
  • User Token - VRM recommends using user tokens because they are the most flexible and it avoids potential interference with team or organization tokens that might already be in use.

The user token inherits the permission of the user, so if the user is deleted, the token no longer works. Therefore, VRM recommends creating a service user just to create the user token and give that service user the necessary permissions.

For the service user or the regular user that generates the token, VRM recommends the "read" permission set. Permissions are team-based, so the user needs to be a member of a team that has the "read" permission set.

Create a VRM connector

  1. In VRM, from the left navigation menu, select the Settings icon settings_icon.png.
  2. Select Add Connector.
  3. Select the Terraform Cloud tile.
  4. Enter a name for the connector.
  5. Paste the API token that you generated in Terraform Cloud.
  6. Select Add Connector.
Last updated on