A Terraform provider for managing Ubiquiti's UniFi network controller. This provider allows you to automate the configuration of your UniFi network infrastructure using Terraform.
Note: You can't configure your network while connected to something that may disconnect (like WiFi). Use a hard-wired connection to your controller to use this provider.
- Manage UniFi network resources using Infrastructure as Code
- Support for UniFi Controller version 6.x and later
- Compatible with UDM, UDM-Pro, UCG, and standard controller deployments
- Comprehensive resource management including:
- Network/WLAN configuration
- Firewall rules
- Port forwarding
- DNS records
- User management
- And more...
This repo includes the go-unifi SDK as a local module (in ../go-unifi). Both are built together — no external repo references needed.
Prerequisites: Go 1.23+, Terraform 1.0+
make installThis builds the provider and installs it to ~/.terraform.d/plugins/ for local use.
make build-linux-arm64Then deploy to the remote host:
make deploy DEPLOY_HOST=root@<your-udm-ip>Or manually:
scp terraform-provider-unifi_linux_arm64 root@<host>:~/.terraform.d/plugins/registry.terraform.io/filipowm/unifi/99.0.0/linux_arm64/terraform-provider-unifimake deploy DEPLOY_HOST=root@<your-udm-ip> TF_DIR=/path/to/terraform/configsConfigure your versions.tf to use the local provider:
terraform {
required_providers {
unifi = {
source = "filipowm/unifi"
version = "= 99.0.0"
}
}
}After building/deploying, initialize Terraform:
rm -f .terraform.lock.hcl
terraform initThe upstream provider is available in the Terraform Registry:
terraform {
required_providers {
unifi = {
source = "filipowm/unifi"
version = "~> 1.0.0"
}
}
}The provider supports two authentication methods:
- Username/Password authentication
- API Key authentication (requires controller version 9.0.108 or later)
# Using environment variables (recommended)
# Export these variables:
# export UNIFI_API_KEY="my-api-key"
# export UNIFI_USERNAME="admin"
# export UNIFI_PASSWORD="password"
# export UNIFI_API="https://unifi.example.com:8443"
# export UNIFI_INSECURE=true # Only if using self-signed certificates
# Or configure directly in the provider block
provider "unifi" {
api_key = "my-api-key"
# username = "admin" # Use either username/password or API key
# password = "password"
api_url = "https://unifi.example.com:8443"
# Optional settings
allow_insecure = true # For self-signed certificates
site = "default" # Specify non-default site
}Here's a basic example of creating a wireless network:
resource "unifi_wlan" "wifi" {
name = "My WiFi Network"
security = "wpa2"
passphrase = "mystrongpassword"
network_id = unifi_network.vlan_50.id
}
resource "unifi_network" "vlan_50" {
name = "VLAN 50"
purpose = "corporate"
subnet = "10.0.50.0/24"
vlan_id = 50
}More examples can be found in the documentation.
Comprehensive documentation is available on the Terraform Registry
- UniFi Controller version 6.x and later
- UniFi Dream Machine (UDM)
- UniFi Dream Machine Pro (UDM-Pro)
- UniFi Cloud Gateway (UCG)
- Standard UniFi Controller deployments
- Add support for zone-based firewalls
- Add support for DNS records
- Add support for traffic management
- Add support for more setting resources (eg. guest access, connectivity, country, IPS/IDS, etc.)
- Support API key authentication
- Improve documentation
- Allow muxing of Terraform Plugin Framework resources with Terraform Plugin SDK v2 resources
- Migrate all resources to the Terraform Plugin Framework
- Fix flaky tests
- Implement validation for fields and structures
- Increase test coverage and make tests more reliable
- Update all dependencies to the latest versions
- Switch to filipowm/go-unifi SDK
- Support newest controller versions (9.x)
Contributions are welcome! Please follow contributing guide.
The provider is built on top of the go-unifi SDK.
This provider is licensed under the LICENSE file.
This project is a fork of paultyng/terraform-provider-unifi. We extend our heartfelt gratitude to Paul Tyng and all the contributors of the original provider for their outstanding work. Their efforts have laid a solid foundation for this fork.
Our goal with this fork is to build upon their excellent work by:
- Keeping the provider up-to-date with the latest UniFi Controller versions
- Expanding support for new resources
- Enhancing and improving documentation
- Migrating to the Terraform Plugin Framework
We are committed to maintaining a stable, current, and reliable Terraform Provider for UniFi Networks & Devices, ensuring that users have the best possible tools for managing their infrastructure.
We thank the original authors for their invaluable contribution to the UniFi and Terraform communities, and we look forward to continuing this important work.