# Deploy Organizational Unit

## Application Scenario

Huawei Cloud Organizations service is a multi-account management service provided by Huawei Cloud, supporting enterprises to centrally manage multiple Huawei Cloud accounts through organizational structure, achieving centralized resource management and unified permission control. Organizational unit is an important resource in Organizations service, used to create hierarchical organizational structures under organizations, achieving classification management of accounts and resources. By creating organizational units, accounts can be grouped by business, department, or project, achieving resource isolation, cost allocation, and fine-grained permission management, meeting enterprise-level multi-account management needs. This best practice introduces how to use Terraform to automatically deploy Organizations organizational units, including organizational unit creation and configuration.

## Related Resources/Data Sources

This best practice involves the following main resources and data sources:

### Resources

* [Organizations Organizational Unit Resource (huaweicloud\_organizations\_organizational\_unit)](https://registry.terraform.io/providers/huaweicloud/huaweicloud/latest/docs/resources/organizations_organizational_unit)

### Data Sources

* [Organizations Organization Data Source (huaweicloud\_organizations\_organization)](https://registry.terraform.io/providers/huaweicloud/huaweicloud/latest/docs/data-sources/organizations_organization)

### Resource/Data Source Dependencies

```
data.huaweicloud_organizations_organization
    └── huaweicloud_organizations_organizational_unit
```

> Note: Organizational unit depends on the organization data source to obtain the root organization ID, specified through the parent\_id parameter to indicate the parent organization or organizational unit. Organizational units can be nested to form hierarchical organizational structures.

## Operation Steps

### 1. Script Preparation

Prepare the TF file (such as main.tf) for writing the current best practice script in the specified workspace, ensuring that it (or other TF files in the same directory) contains the provider version declaration and Huawei Cloud authentication information required for deploying resources. For configuration details, refer to the introduction in [Preparation Before Deploying Huawei Cloud Resources](https://github.com/chnsz/hcbp-demo/blob/master/docs/introductions/prepare_before_deploy.md).

### 2. Query Organization Information

Add the following script to the TF file (such as main.tf) to query organization information:

```hcl
data "huaweicloud_organizations_organization" "test" {}
```

**Parameter Description**:

* This data source does not require input parameters and will automatically query the organization information of the current account, including the root organization ID.

### 3. Create Organizational Unit

Add the following script to the TF file (such as main.tf) to create an organizational unit:

```hcl
resource "huaweicloud_organizations_organizational_unit" "test" {
  name      = var.organizational_unit_name
  parent_id = data.huaweicloud_organizations_organization.test.root_id
  tags      = var.tags
}
```

**Parameter Description**:

* **name**: Organizational unit name, assigned by referencing the input variable `organizational_unit_name`, used to identify the organizational unit
* **parent\_id**: Parent organization or organizational unit ID, obtained by referencing the data source `data.huaweicloud_organizations_organization.test.root_id` to get the root organization ID, used to specify the parent organization or organizational unit to which the organizational unit belongs
* **tags**: Organizational unit tags, assigned by referencing the input variable `tags`, used to classify and manage organizational units

### 4. Preset Input Parameters Required for Resource Deployment (Optional)

In this practice, resources use input variables to assign configuration content. These input parameters need to be manually entered during subsequent deployment. Terraform also provides a method to preset these configurations through `tfvars` files, which can avoid repeated input each time.

Create a `terraform.tfvars` file in the working directory with the following example content:

```hcl
# Organizational unit configuration (Required)
organizational_unit_name = "tf_test_organizational_unit"

tags = {
  key   = "value"
  owner = "terraform"
}
```

**Usage**:

1. Save the above content as a `terraform.tfvars` file in the working directory (this filename allows Terraform to automatically import the variable values in this `tfvars` file when executing terraform commands. For other names, you need to add `.auto` before tfvars, such as `variables.auto.tfvars`)
2. Modify parameter values according to actual needs
3. When executing `terraform plan` or `terraform apply`, Terraform will automatically read the variable values in this file

In addition to using the `terraform.tfvars` file, you can also set variable values through the following methods:

1. Command-line parameters: `terraform apply -var="organizational_unit_name=tf_test_organizational_unit"`
2. Environment variables: `export TF_VAR_organizational_unit_name=tf_test_organizational_unit`
3. Custom-named variable files: `terraform apply -var-file="custom.tfvars"`

> Note: If the same variable is set through multiple methods, Terraform will use variable values according to the following priority: command-line parameters > variable files > environment variables > default values.

### 5. Initialize and Apply Terraform Configuration

After completing the above script configuration, execute the following steps to create resources:

1. Run `terraform init` to initialize the environment
2. Run `terraform plan` to view the resource creation plan
3. After confirming that the resource plan is correct, run `terraform apply` to start creating organizational unit
4. Run `terraform show` to view the created organizational unit

## Reference Information

* [Huawei Cloud Organizations Product Documentation](https://support.huaweicloud.com/intl/en-us/organizations/index.html)
* [Huawei Cloud Provider Documentation](https://registry.terraform.io/providers/huaweicloud/huaweicloud/latest/docs)
* [Best Practice Source Code Reference For Organizational Unit](https://github.com/huaweicloud/terraform-provider-huaweicloud/tree/master/examples/organizations/organization-unit)