» Sentinel Overview
Sentinel is an embedded policy as code framework integrated with the HashiCorp Enterprise products. It enables fine-grained, logic-based policy decisions, and can be extended to use information from external sources.
To learn how to use Sentinel to enforce policies in Terraform, read the Sentinel documentation.
» Sentinel in Terraform Enterprise
Using Sentinel with Terraform Enterprise involves:
- Defining the Policies - Policies are defined using the policy language with imports for parsing the Terraform plan, state and configuration.
- Managing the policies for organizations - Policies are added to an organization by an organization owner by setting the policy name, policy file, and the enforcement level.
- Enforcing policy checks on runs - Policies are checked when
a run is performed, after the
terraform planbut before it can be confirmed or the
terraform applyis executed.