This topic describes how to use Terraform to call API operations to configure log audit.


  1. Use RAM to grant permissions.
    Use Terraform to call RAM API operations to grant required permissions. For more information, see alicloud_ram_policy. You must call RAM API operations to create RAM roles, configure permission policies for log audit, and attach the polices to the roles. For more information, see Authorize log collection.
  2. Configure log collection.
    Use Terraform to call the API operations of the Log Audit Service application to configure log collection. For more information about the API operations, see alicloud_log_audit. For more information about log collection configuration examples, see terraform-provider-alicloud.