Cloud governance doesn’t stop at AWS, Azure, or GCP. As monitoring stacks grow more complex, DevOps teams need visibility and control across every layer – including Datadog. That’s why ControlMonkey now offers full support for Datadog Terraform Provider, bringing automation, inventory, and disaster recovery to your Datadog environment through Terraform and OpenTofu.

Introducing Datadog Support in ControlMonkey

With Datadog support now available, ControlMonkey enables:

Inventory of Datadog Assets

Unified visibility across dashboards, monitors, alerts, users, and roles.

IaC Coverage Assessment

Know instantly which resources are managed by Terraform and OpenTofu –

Terraform Import for Datadog resources

Import unmanaged Datadog resources into Terraform with AI-powered code generation.

Datadog Backup Snapshots for Disaster Recovery

Daily backups of all Datadog configurations for fast, reliable recovery.

Governance Posture Insights from Datadog Terraform Integration

Spot compliance gaps and strengthen monitoring governance across environments.

Real-World Example: Bring Datadog Into Terraform

Datadog is often configured manually, outside of version control. That creates visibility and compliance gaps. With ControlMonkey support for Datadog:

• DevOps teams can identify dashboards and monitors not defined in Terraform.
• Automatically generate Terraform code for those unmanaged resources, importing them to Terraform.
• Enable disaster recovery snapshots to ensure rollback options are always available.

This brings governance into the same IaC workflow you use for cloud infrastructure.

How Datadog Terraform Provider Works

Once connecting your Datadog tenant, ControlMonkey:

• Scans all resources and displays a full inventory.
• Flags resources not managed via IaC.
• Allows you to import them into Terraform in seconds (e.g Terraform Import)
• Enables daily backup snapshots for disaster recovery coverage.

There’s no tagging or scripting required – just visibility and control where it matters.

Stay Ahead with Cloud Governance and Infrastructure Control

By bringing Datadog into ControlMonkey, you benefit from:

• Extend visibility beyond cloud providers to observability tools.
• Reduce risk from untracked, misconfigured, or orphaned monitoring assets.
• Align Datadog configurations with Terraform and OpenTofu policy and workflows.
• Improve your team’s disaster recovery posture.
• Apply infrastructure governance consistently across layers.

Explore Datadog support in ControlMonkey today

Recently, our engineering team has been developing various GCP capabilities to enhance multi-cloud support for the ControlMonkey Platform. With comprehensive releases such as Inventory Dashboard and GCP IaC Coverage, our GCP users can now leverage more advanced Terraform Automation solutions to govern and automate their GCP environments.  Today we are happy to announce the General Availability of ControlMonkey’s Terraform Import Engine for GCP Users! GCP Terraform Import!

New GCP Terraform Import

Starting today, ControlMonkey users with old systems can easily move their GCP resources to Terraform. Our AI-powered Terraform Code Generator makes this simple.
ControlMonkey’s Terraform Import Engine finds GCP resources that Terraform does not manage. It creates code that shows the resources’ current state with just one click.
Our platform also generates the Terraform state file, so you don’t need to run any ‘Import’ commands or use any ‘Import’ blocks within your code and then run ‘Apply.’

We use our Smart Stacking algorithm to find related resources. It can also create stacks that are ready to import.

Importing 1000s of GCP resources to Terraform has never been easier:

• Visualize how many resources are not managed with Terraform and their cost with the option to filter by region.

• Select the stacks to import to Terraform and choose the import method. You can also search and filter by resource type.

• Get a 100% verified Terraform code and state file that matches your resource’s configuration.

TL,DR – Terraform Import and ControlMonkey

The benefits of leveraging ControlMonkey’s Terraform Import Engine:

1. Generate Terraform code in 75% less time.
2. Increase Terraform coverage to 99%.
3. Out-of-the-box automatic custom Terraform Module creation.
4. Save thousands of DevOps hours by eliminating manual Terraform code writing.

Do you have GCP infrastructure that you’re looking to shift to Terraform? ControlMonkey offers the easiest and most swift way to do it.

Are you interested in learning more and seeing it for yourself? 
Book a 30-minute technical discussion with our Terraform Experts.

Today, we are pleased to announce another milestone in our support for Azure with the release of our Custom Terraform Modules Creation Wizard.

Following the major announcement of our Terraform Import Engine for Azure, our Azure users can now build custom Terraform modules with just a few clicks.
This enhancement makes our Terraform Import Engine a 360 automated solution that simplifies the import of Azure resources to Terraform.

Rather than spending time manually writing Custom Terraform Modules, the ControlMonkey Terraform Import Dashboard provides the easiest way to create modules with a user-friendly wizard in a few clicks.

After selecting which resources to bundle together, ControlMonkey automatically generates the Terraform module code. It’s as easy as that.

After the code is generated, users can rename the resources and extract variables to customize it even further.  

ControlMonkey saves cloud engineers precious time and improves productivity: 

• Automatically generates the Terraform module code rather than manually.
• Determines the relationship between the resources by leveraging ControlMonkey’s
  ‘Smart Stacking’ technology.
• Replicates resources or environments in a fast and productive way. 

Do you have Azure infrastructure that you’re looking to manage with Terraform?
ControlMonkey offers the easiest and most swift way to do it.

Are you interested in learning more and seeing it for yourself?
Book a 30-minute technical discussion with our Terraform Experts.

In the past few months, our engineering team has been developing more and more Azure capabilities to enhance our multi-cloud support of the ControlMonkey Platform.
With exciting releases such as Resource Explorer, Managed Policies, and Azure IaC Coverage, our Azure users can now leverage advanced Terraform Automation solutions to manage and govern their Azure environments.

So, we are delighted to announce that we have released ControlMonkey’s Terraform Import Engine for Azure Users!

ControlMonkey’s Terraform Import Engine for Azure

Starting today, ControlMonkey users with legacy infrastructure can easily shift their Azure resources to Terraform with our AI-powered Terraform Code Generator.
ControlMonkey’s Terraform Import Engine automatically detects Azure resources not managed with Terraform and generates the code representing the resources’ current state with a single click.
Our platform also generates the Terraform state file, so you don’t need to run any ‘Import’ commands or use any ‘Import’ blocks within your code and then run ‘Apply.’

Using our Smart Stacking contextual algorithm, we can identify which resources are related to each other and automatically generate ready-to-import stacks.

Importing 1000s of Azure resources to Terraform has never been easier:

• Visualize how many resources are not managed with Terraform and their cost with the option to filter by region.

• Select the stacks to import to Terraform and choose the import method. You can also search and filter by resource type.

• Get a 100% verified Terraform code and state file that matches your resource’s configuration.

Benefits of leveraging ControlMonkey’s Terraform Import Engine for Azure:

1. Generate Terraform code in 75% less time.
2. Increase Terraform coverage to 99%.
3. Out-of-the-box automatic custom Terraform Module creation.
4. Save thousands of DevOps hours by eliminating manual Terraform code writing.

Do you have Azure infrastructure that you’re looking to shift to Terraform?
ControlMonkey offers the easiest and most swift way to do it.
Are you interested in learning more and seeing it for yourself? Book a 30-minute technical discussion with our Terraform Experts.

Today, ControlMonkey is pleased to announce that we have added the capability to easily import AWS Identity Center resources to Terraform/OpenTofu Code using our Terraform Import Engine.

AWS Identity Center is a service that provides centralized management of access to multiple AWS accounts and applications. It enables organizations to manage user identities and permissions efficiently, allowing users to sign in to their AWS accounts and applications with a single set of credentials

Provisioning Identity Stores resources with Terraform/OpenTofu provides a consistent, version-controlled, simplified, and automated way to manage AWS Accounts permissions and RBAC and reduces the overall risk of manual misconfigurations.

ControlMonkey now supports the one-click Terraform/OpenTofu Import of the following Identity Store resources:

IdentityStore::User (aws_identitystore_user)
IdentityStore::Group (aws_identitystore_group)
IdentityStore::GroupMembership (aws_identitystore_group_membership)
SSO:Assignment(aws_ssoadmin_account_assignment)
SSO:PermissionSet(aws_ssoadmin_permission_set)

Are you using Identity Center and have resources you would like to shift to Terraform?
Feel free to book an intro meeting to learn more about how ControlMonkey generates the Terraform/OpenTofu code that represents your Identity Center configuration, making the shift to Terraform as seamless as possible.

Today, ControlMonkey is pleased to announce that we have added the capability to easily import AWS OpenSearch domain resources to Terraform Code using our Terraform Import Engine.

AWS OpenSearch is a fully managed service that simplifies the deployment, operation, and scaling of OpenSearch, a powerful search and analytics engine based on Elasticsearch.
It provides real-time search, monitoring, and analysis capabilities for various use cases.

Managing OpenSearch resources with Terraform provides a consistent, version-controlled, and automated way to provision, update, and manage OpenSearch deployments, which enhances efficiency and reduces the risk of manual misconfigurations.

ControlMonkey now supports the one-click Terraform Import of the following OpenSearch resources:

OpenSearchService::Domain (aws_opensearch_domain)

So, if you’re using OpenSearch in your environments, swiftly shift your OpenSearch resources to Terraform code and manage the cluster’s configuration with Terraform to create, update, and delete OpenSearch domains reliably and repeatedly.

Are you using OpenSearch and have resources you would like to shift to Terraform?
Feel free to book an intro meeting to learn more about how ControlMonkey generates the Terraform code that represents your OpenSearch configuration, making the shift to Terraform as seamless as possible.

Today, ControlMonkey is pleased to announce that we have added the capability to easily import EC2 Image Builder resources to Terraform Code using our Terraform Import Engine.

EC2 Image Builder is an AWS service that automates creating, managing, and deploying customized and secure machine images for EC2 instances.

Managing EC2 Image Builder with Terraform is important because it ensures consistent, repeatable, and version-controlled deployments of machine images across different environments.

ControlMonkey now supports the one-click Terraform Import of the following Image Builder resources:

ImageBuilder::Component (aws_imagebuilder_component)
ImageBuilder::ContainerRecipe (aws_imagebuilder_container_recipe)
ImageBuilder::DistributionConfiguration (aws_imagebuilder_distribution_configuration)
ImageBuilder::Image (aws_imagebuilder_image)
ImageBuilder::ImagePipeline (aws_imagebuilder_image_pipeline)
ImageBuilder::ImageRecipe (aws_imagebuilder_image_recipe)
ImageBuilder::InfrastructureConfiguration (aws_imagebuilder_infrastructure_configuration)
ImageBuilder::Workflow (aws_imagebuilder_workflow)

So, if you’re building images using EC2 Image Builder, you can now manage their configuration with Terraform.

Are you using Image Builder and have resources you would like to shift to Terraform?
Feel free to book an intro meeting with us to learn more about how ControlMonkey generates the Terraform code that represents your Image Builder resources configuration, making the shift to Terraform as seamless as possible.

Today ControlMonkey is pleased to announce that we have reinforced our Terraform Import Engine with the ability to Import AWS Direct Connect resources to Terraform.

AWS Direct Connect is a networking service that provides an alternative to using the internet to connect to AWS. Using AWS Direct Connect, data that would have previously been transported over the internet is delivered through a private network connection between private facilities and AWS.

ControlMonkey now supports one-click Terraform Import of the following Direct Connect resources:

Connections (aws_dx_connection)
Lag (aws_dx_lag)
Virtual Interface (aws_dx_private_virtual_interface)

Are you using Direct Connect and have resources that you would like to shift to Terraform?
Feel free to book an intro meeting  with us to learn more!

Today ControlMonkey is pleased to announce that we have reinforced our Terraform Import Engine  with the ability to Import AWS Code Pipeline  resources to Terraform.

AWS CodePipeline is a continuous integration and continuous delivery (CI/CD) service provided by Amazon Web Services (AWS). It automates the build, test, and deployment phases of your release process for software applications.

AWS CodePipeline is commonly used to automate the software release process, ensuring that code changes are tested and deployed quickly and consistently, thus reducing manual errors and speeding up the delivery of features to end-users. It promotes best practices such as infrastructure as code, version control, and automated testing.

ControlMonkey now supports one-click Terraform Import of the following Code Pipeline resources:

Pipeline (aws_codepipeline)
Custom Action Type (aws_codepipeline_custom_action_type)
Webhook (aws_codepipeline_webhook)

Managing AWS CodePipeline with Terraform offers several benefits:

1. Infrastructure as Code (IaC): Terraform allows you to define your CodePipeline configuration in code, which can be version-controlled, reviewed, and managed just like your application code.
   This enables you to maintain consistency and reproducibility in your pipeline configurations.
2. Consistency: With Terraform, you can ensure that your CodePipeline setups are consistent across different environments (e.g., development, staging, production) by using the same Terraform configuration with appropriate variables for each environment.
3. Versioning and Rollbacks: Since Terraform configurations are version-controlled, you can track changes made to your CodePipeline setups over time and easily roll back to previous versions if needed. This helps in maintaining a history of changes and troubleshooting any issues that may arise.

Do you have Code Pipeline resources that you would like to shift to Terraform?
Feel free to book an intro meeting  with us to learn more!

Today ControlMonkey is pleased to announce that we have reinforced our Terraform Import Engine with the ability to Import Network Firewall resources to Terraform.

AWS Network Firewalls are leveraged in order to prevent malicious attacks on the application by defining multiple allow/deny rules on the networking layer.

However, in large-scale cloud environments with a lot of moving parts, the chance for mistakes misconfigurations rises.
For example, downtimes can be caused for your application’s users by blocking your VPC to legitimate connections, and on the other hand, misconfigured firewall rules can expose your application to malicious attacks.
On top of that, you would also want to track all the changes made to your Firewall rules and have the ability to roll back at any given moment to the previous state.

Therefore, managing your Network Firewall configuration with Terraform is highly important and is considered the ideal solution for scale.
But what if you already have a running firewall that you span up manually from the AWS console?
How do you import that to Terraform?

Luckily, ControlMonkey now supports one-click Terraform Import of the following Network Firewall resources:

Network Firewall (aws_networkfirewall_firewall)
Network Firewall Policy (aws_networkfirewall_firewall_policy)
Network Rule Group (aws_networkfirewall_rule_group)

ControlMonkey automatically generates the Terraform code + the Terraform state file so you can shift your Network Firewall management from ClickOps to GitOps in a few minutes with absolutely zero effort.

Managing AWS network firewalls with Terraform code offers several advantages:

1. Infrastructure as Code (IaC): Terraform allows you to define your AWS network firewall configurations as code, making it easier to manage, version control, and replicate across different environments (such as development, staging, and production). This approach enhances consistency and reduces the risk of configuration drift.
2. Automation: Terraform enables you to automate the provisioning, configuration, and management of AWS network firewalls. This automation can save time and reduce the potential for human error that may occur with manual configuration changes.
3. Scalability: With Terraform, you can easily scale your AWS network firewall configurations up or down based on changing requirements. You can dynamically adjust rules, add new firewall instances, or modify existing configurations as needed, without the need for manual intervention.
4. Visibility and Auditability: Using Terraform, you can maintain a clear and documented history of changes to your AWS network firewall configurations. This enhances visibility into your infrastructure and facilitates auditing and compliance efforts.
5. Collaboration: Terraform code can be easily shared and collaborated on by teams of developers and operations engineers. This collaborative approach promotes knowledge sharing, improves communication, and fosters best practices in managing AWS network firewalls.
6. Integration with CI/CD Pipelines: Terraform can be integrated into your continuous integration and continuous delivery (CI/CD) pipelines, allowing you to automate the deployment of changes to your AWS network firewall configurations as part of your software delivery process. This helps streamline the development lifecycle and ensures that infrastructure changes are tested and deployed consistently.

Overall, managing AWS network firewalls with Terraform code provides greater control, automation, scalability, and visibility, leading to more efficient and reliable infrastructure management in the cloud.

Want to learn more? Feel free to book an intro meeting with us.