I’m new to using Sentinel, and I’m currently on the trial of the Team and Governance plan. During this trial phase I’m evaluating how Sentinel could be used for my team. I’m using Terraform Cloud as a backend for my state file, but using local execution mode for my workspace.
Are Sentinel policies defined in Terraform Cloud policy sets applied to Terraform plans that are being executed from the local CLI? Or do they only apply to remotely-executed plans?
I have tested out a simple policy for enforcing a naming convention for VMs, and have verified that it is working using mock data for my Sentinel policy test. However, what prompted me to post in this forum is that when running
terraform plan from my CLI, the plan is carried out without any issues, which made me wonder if Sentinel policies are enforced locally.