github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/compute/AVD-GCP-0067/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/compute/AVD-GCP-0067/Terraform.md (about)

     1  
     2  Enable Shielded VM secure boot
     3  
     4  ```hcl
     5   resource "google_compute_instance" "good_example" {
     6     name         = "test"
     7     machine_type = "e2-medium"
     8     zone         = "us-central1-a"
     9   
    10     tags = ["foo", "bar"]
    11   
    12     boot_disk {
    13       initialize_params {
    14         image = "debian-cloud/debian-9"
    15       }
    16     }
    17   
    18     // Local SSD disk
    19     scratch_disk {
    20       interface = "SCSI"
    21     }
    22   
    23     shielded_instance_config {
    24       enable_secure_boot = true
    25     }
    26   }
    27   
    28  ```
    29  
    30  #### Remediation Links
    31   - https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_instance#enable_secure_boot
    32