Terraform Modules Now Available

We’ve published fourteen Terraform modules (with more coming soon) in our public GitHub repository. These modules have been refactored from a collection of internal tools that have successfully managed hundreds of customer environments on AWS. The target audience for these modules are DevOps engineers managing HIPAA-compliant AWS environments.

The module defaults align with the recommendations from Amazon’s Architecting for HIPAA Security and Compliance on Amazon Web Services guide and the Security Pillar in the AWS Well-Architected Framework. For example, a compute environment with virtual machines includes EC2 instances running inside private subnets with NAT gateways in each availability zone routing public traffic. Our VPC module supports this architecture out of the box.

While most of the Terraform modules are pre-configured wrappers for resources available in the official Terraform AWS Provider, we’ve also include a solution for managing EC2 instance users and SSH keys. The ec2_instance_user_manager module deploys a Lambda function that works in concert with the data managed by the ec2_instance_user module. A usage example is included in the repo.

The project Wiki includes a list of available modules and basic documentation, while the examples folder demonstrates both individual and full stack use cases.