The CrowdStrike provider enables terraform to manage CrowdStrike resources.
The CrowdStrike terraform provider is an open source project, not a CrowdStrike product. As such, it carries no formal support, expressed or implied.
The provider uses the CrowdStrike Falcon API to manage resources. In order to use the provider, you must have a CrowdStrike API client ID and client secret.
The following scopes are required to create and manage all the resources the provider currently supports:
[!NOTE] See a resource's documentation for the specific scopes required for that resource.
| Scope | Permission |
|---|---|
| Device Control Policies | READ, WRITE |
| Prevention Policies | READ, WRITE |
| Response Policies | READ, WRITE |
| Firewall Management | READ, WRITE |
| Host Groups | READ, WRITE |
| Sensor Update Policies | READ, WRITE |
| Falcon FileVantage | READ, WRITE |
The CrowdStrike provider supports importing existing resources into terraform state. This is useful for managing resources that were created outside of terraform. Refer to the importing guide for an example of using the import block and the terraform import command.