diff --git a/README.md b/README.md
index 2163884b..b37ad6a9 100644
--- a/README.md
+++ b/README.md
@@ -35,7 +35,7 @@ $ cd terraform-provider-sysdig
 $ make build
 ```
 
-If you're a rookie, check [Official Terraform Provider development guides](https://developer.hashicorp.com/terraform/plugin/frameworkO)
+If you're a rookie, check [Official Terraform Provider development guides](https://developer.hashicorp.com/terraform/plugin/framework)
 
 ### Creating new resource / data sources
 
diff --git a/examples/serverless-agent/fargate/orchestrator/README.md b/examples/serverless-agent/fargate/orchestrator/README.md
new file mode 100644
index 00000000..c528b975
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/README.md
@@ -0,0 +1,27 @@
+# Serverless Orchestrator Agent
+
+This example deploys an AWS ECS Fargate cluster to run the Serverless Orchestrator Agent. This Agent acts as a proxy between the Collector and many Serverless Workload Agents.
+
+## Prerequisites
+
+The following AWS prerequisites are required to deploy this cluster:
+- VPC
+- 2 subnets
+
+## Components
+
+The cluster will be called `<prefix>-cluster` and will deploy the following:
+- 1 Service (called `OrchestratorAgent`)
+  - 1 Task (with the latest version of the Serverless Orchestrator Agent)
+- Network Load balancer
+- Cloudwatch log group
+- Security group
+
+## Layout
+| **File** | **Purpose** |
+| --- | --- |
+| `main.tf` | AWS provider configuration |
+| `orchestrator.tf` | Orchestrator cluster definition |
+| `output.tf` | Defines the output variables |
+| `variables.tf` | AWS and Agent configuration |
+| `versions.tf` | Defines TF provider versions |
diff --git a/examples/serverless-agent/fargate/orchestrator/orchestrator.tf b/examples/serverless-agent/fargate/orchestrator/orchestrator.tf
new file mode 100644
index 00000000..102d9604
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/orchestrator.tf
@@ -0,0 +1,36 @@
+module "fargate-orchestrator-agent" {
+  source  = "sysdiglabs/fargate-orchestrator-agent/aws"
+  version = "0.5.0"
+
+  vpc_id  = var.vpc_id
+  subnets = [var.subnet_1, var.subnet_2]
+
+  access_key = var.access_key
+
+  collector_host = var.collector_host
+  collector_port = var.collector_port
+
+  name        = var.prefix
+  agent_image = var.agent_orchestrator_image
+
+  # True if the VPC uses an InternetGateway, false otherwise
+  assign_public_ip = true
+
+  tags = var.tags
+}
+
+
+data "aws_ecs_cluster" "fargate-orchestrator" {
+  depends_on = [
+    module.fargate-orchestrator-agent
+  ]
+  cluster_name = "${var.prefix}-cluster"
+}
+
+data "aws_ecs_service" "orchestrator-service" {
+  depends_on = [
+    module.fargate-orchestrator-agent
+  ]
+  service_name = "OrchestratorAgent"
+  cluster_arn  = data.aws_ecs_cluster.fargate-orchestrator.arn
+}
diff --git a/examples/serverless-agent/fargate/orchestrator/output.tf b/examples/serverless-agent/fargate/orchestrator/output.tf
new file mode 100644
index 00000000..0088749d
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/output.tf
@@ -0,0 +1,11 @@
+output "orchestrator_cluster_name" {
+  value = data.aws_ecs_cluster.fargate-orchestrator.cluster_name
+}
+
+output "orchestrator_cluster_arn" {
+  value = data.aws_ecs_cluster.fargate-orchestrator.arn
+}
+
+output "orchestrator_service_arn" {
+  value = data.aws_ecs_service.orchestrator-service.arn
+}
diff --git a/examples/serverless-agent/fargate/orchestrator/providers.tf b/examples/serverless-agent/fargate/orchestrator/providers.tf
new file mode 100644
index 00000000..f6f28cca
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/providers.tf
@@ -0,0 +1,4 @@
+provider "aws" {
+  region  = var.region
+  profile = var.profile
+}
diff --git a/examples/serverless-agent/fargate/orchestrator/variables.tf b/examples/serverless-agent/fargate/orchestrator/variables.tf
new file mode 100644
index 00000000..92af8fc9
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/variables.tf
@@ -0,0 +1,51 @@
+# AWS configuration
+variable "prefix" {
+  description = "All resources created by Terraform have this prefix prepended to them"
+}
+
+variable "profile" {
+  description = "AWS profile name"
+  type        = string
+}
+
+variable "region" {
+  description = "AWS Region for deployment"
+  default     = "us-east-1"
+}
+
+variable "subnet_1" {
+  description = "Subnet-1 Id"
+}
+
+variable "subnet_2" {
+  description = "Subnet-2 Id"
+}
+
+variable "vpc_id" {
+  description = "VPC Id"
+}
+
+variable "tags" {
+  type        = map(string)
+  description = "Tags to assign to resources in module"
+  default     = {}
+}
+
+# Serverless Agent Configuration
+variable "access_key" {
+  description = "Sysdig Agent access key"
+}
+
+variable "agent_orchestrator_image" {
+  description = "Orchestrator Agent image to use"
+  default     = "quay.io/sysdig/orchestrator-agent:latest"
+}
+
+variable "collector_host" {
+  description = "Collector host where agent will send the data"
+}
+
+variable "collector_port" {
+  description = "Collector port where agent will send the data"
+  default     = "6443"
+}
diff --git a/examples/serverless-agent/fargate/orchestrator/versions.tf b/examples/serverless-agent/fargate/orchestrator/versions.tf
new file mode 100644
index 00000000..37120d0a
--- /dev/null
+++ b/examples/serverless-agent/fargate/orchestrator/versions.tf
@@ -0,0 +1,18 @@
+terraform {
+  required_version = ">=1.7.2"
+
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 5.35.0"
+    }
+    local = {
+      source  = "hashicorp/local"
+      version = "~> 2.4.1"
+    }
+    sysdig = {
+      source  = "sysdiglabs/sysdig"
+      version = "~> 1.24.5"
+    }
+  }
+}
\ No newline at end of file
diff --git a/examples/serverless-agent/fargate/workload/README.md b/examples/serverless-agent/fargate/workload/README.md
new file mode 100644
index 00000000..f5b79e87
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/README.md
@@ -0,0 +1,28 @@
+# Workload with Serverless Workload Agent
+
+This example deploys a cluster with a workload and the Serverless Workload Agent as a sidecar to secure the workload.
+
+## Prerequisites
+
+The following prerequisites are required to deploy this cluster:
+- Orchestrator Agent deployed
+- VPC
+- 2 subnets
+
+## Components
+
+The cluster will be called `<prefix>-instrumented-workload` and will deploy the following:
+- 1 Service (called `<prefix-instrumented-service`)
+  - 1 Task (with the latest version of the Serverless Orchestrator Agent)
+    - 1 container named `event-gen-1` running `falcosecurity/event-generator`
+    - 1 container named `event-gen-2` also running `falcosecurity/event-generator`
+    - 1 container named `SysdigInstrumentation` running the Workload Agent which will secure both workload containers
+
+## Layout
+| **File** | **Purpose** |
+| --- | --- |
+| `instrumented_load.tf` | Workload definition. By default it instruments `falcosecurity/event-generator` |
+| `main.tf` | AWS provider configuration |
+| `output.tf` | Defines the output variables |
+| `variables.tf` | AWS and Agent configuration |
+| `versions.tf` | Defines TF provider versions |
diff --git a/examples/serverless-agent/fargate/workload/instrumented_load.tf b/examples/serverless-agent/fargate/workload/instrumented_load.tf
new file mode 100644
index 00000000..fe3307d0
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/instrumented_load.tf
@@ -0,0 +1,145 @@
+data "sysdig_fargate_workload_agent" "containers_instrumented" {
+  container_definitions = jsonencode([
+    {
+      "name" : "event-gen-1",
+      "image" : "falcosecurity/event-generator",
+      "command" : ["run", "syscall", "--all", "--loop"],
+      "logConfiguration" : {
+        "logDriver" : "awslogs",
+        "options" : {
+          "awslogs-group" : aws_cloudwatch_log_group.instrumented_logs.name,
+          "awslogs-region" : var.region,
+          "awslogs-stream-prefix" : "task"
+        },
+      }
+    },
+    {
+      "name" : "event-gen-2",
+      "image" : "falcosecurity/event-generator",
+      "command" : ["run", "syscall", "--all", "--loop"],
+      "logConfiguration" : {
+        "logDriver" : "awslogs",
+        "options" : {
+          "awslogs-group" : aws_cloudwatch_log_group.instrumented_logs.name,
+          "awslogs-region" : var.region,
+          "awslogs-stream-prefix" : "task"
+        },
+      }
+    }
+  ])
+
+  workload_agent_image = var.agent_workload_image
+
+  sysdig_access_key = var.access_key
+  orchestrator_host = var.orchestrator_host
+  orchestrator_port = var.orchestrator_port
+
+  log_configuration {
+    group         = aws_cloudwatch_log_group.instrumented_logs.name
+    stream_prefix = "instrumentation"
+    region        = var.region
+  }
+}
+
+resource "aws_ecs_task_definition" "task_definition" {
+  family             = "${var.prefix}-instrumented-task-definition"
+  task_role_arn      = aws_iam_role.task_role.arn
+  execution_role_arn = aws_iam_role.execution_role.arn
+
+  cpu                      = "256"
+  memory                   = "512"
+  network_mode             = "awsvpc"
+  requires_compatibilities = ["FARGATE"]
+  pid_mode                 = "task"
+
+  container_definitions = data.sysdig_fargate_workload_agent.containers_instrumented.output_container_definitions
+}
+
+
+resource "aws_ecs_cluster" "cluster" {
+  name = "${var.prefix}-instrumented-workload"
+}
+
+resource "aws_cloudwatch_log_group" "instrumented_logs" {
+}
+
+data "aws_iam_policy_document" "assume_role_policy" {
+  statement {
+    actions = ["sts:AssumeRole"]
+
+    principals {
+      type        = "Service"
+      identifiers = ["ecs-tasks.amazonaws.com"]
+    }
+  }
+}
+
+resource "aws_iam_role" "execution_role" {
+  assume_role_policy = data.aws_iam_policy_document.assume_role_policy.json
+
+  managed_policy_arns = ["arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy"]
+}
+
+resource "aws_iam_role" "task_role" {
+  assume_role_policy = data.aws_iam_policy_document.assume_role_policy.json
+
+  inline_policy {
+    name   = "root"
+    policy = data.aws_iam_policy_document.task_policy.json
+  }
+}
+
+data "aws_iam_policy_document" "task_policy" {
+  statement {
+    actions = [
+      "ecr:GetAuthorizationToken",
+      "ecr:BatchCheckLayerAvailability",
+      "ecr:GetDownloadUrlForLayer",
+      "ecr:BatchGetImage",
+      "logs:CreateLogGroup",
+      "logs:CreateLogStream",
+      "logs:PutLogEvents",
+    ]
+
+    resources = ["*"]
+  }
+}
+
+resource "aws_ecs_service" "service" {
+  name = "${var.prefix}-instrumented-service"
+
+  cluster          = aws_ecs_cluster.cluster.id
+  task_definition  = aws_ecs_task_definition.task_definition.arn
+  desired_count    = var.replicas
+  launch_type      = "FARGATE"
+  platform_version = "1.4.0"
+
+  network_configuration {
+    subnets          = [var.subnet_1, var.subnet_2]
+    security_groups  = [aws_security_group.security_group.id]
+    assign_public_ip = true
+  }
+}
+
+resource "aws_security_group" "security_group" {
+  description = "${var.prefix}-security-group"
+  vpc_id      = var.vpc_id
+}
+
+resource "aws_security_group_rule" "orchestrator_agent_ingress_rule" {
+  type              = "ingress"
+  protocol          = "tcp"
+  from_port         = 0
+  to_port           = 0
+  cidr_blocks       = ["0.0.0.0/0"]
+  security_group_id = aws_security_group.security_group.id
+}
+
+resource "aws_security_group_rule" "orchestrator_agent_egress_rule" {
+  type              = "egress"
+  protocol          = "all"
+  from_port         = 0
+  to_port           = 0
+  cidr_blocks       = ["0.0.0.0/0"]
+  security_group_id = aws_security_group.security_group.id
+}
diff --git a/examples/serverless-agent/fargate/workload/output.tf b/examples/serverless-agent/fargate/workload/output.tf
new file mode 100644
index 00000000..8556be22
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/output.tf
@@ -0,0 +1,15 @@
+output "workload_cluster_name" {
+  value = aws_ecs_cluster.cluster.name
+}
+
+output "workload_cluster_arn" {
+  value = aws_ecs_cluster.cluster.arn
+}
+
+output "service_arn" {
+  value = aws_ecs_service.service.id
+}
+
+output "task_revision" {
+  value = aws_ecs_task_definition.task_definition.revision
+}
diff --git a/examples/serverless-agent/fargate/workload/providers.tf b/examples/serverless-agent/fargate/workload/providers.tf
new file mode 100644
index 00000000..1305d94b
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/providers.tf
@@ -0,0 +1,4 @@
+provider "aws" {
+  region = var.region
+  profile = var.profile
+}
\ No newline at end of file
diff --git a/examples/serverless-agent/fargate/workload/variables.tf b/examples/serverless-agent/fargate/workload/variables.tf
new file mode 100644
index 00000000..bcdafe43
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/variables.tf
@@ -0,0 +1,56 @@
+# AWS configuration
+variable "prefix" {
+  description = "All resources created by Terraform have this prefix prepended to them"
+}
+
+variable "profile" {
+  description = "AWS profile name"
+  type        = string
+}
+
+variable "region" {
+  description = "AWS Region for deployment"
+  default     = "us-east-1"
+}
+
+variable "subnet_1" {
+  description = "Subnet-1 Id"
+}
+
+variable "subnet_2" {
+  description = "Subnet-2 Id"
+}
+
+variable "vpc_id" {
+  description = "VPC Id"
+}
+
+variable "tags" {
+  type        = map(string)
+  description = "Tags to assign to resources in module"
+  default     = {}
+}
+
+# Serverless Agent Configuration
+variable "access_key" {
+  description = "Sysdig Agent access key"
+}
+
+variable "agent_workload_image" {
+  description = "Workload agent container image"
+  default     = "quay.io/sysdig/workload-agent:latest"
+}
+
+variable "orchestrator_host" {
+  description = "Orchestrator Host"
+}
+
+variable "orchestrator_port" {
+  description = "Orchestrator Port"
+  default     = 6667
+}
+
+variable "replicas" {
+  description = "Number of workload replicas to run"
+  default     = 2
+}
diff --git a/examples/serverless-agent/fargate/workload/versions.tf b/examples/serverless-agent/fargate/workload/versions.tf
new file mode 100644
index 00000000..37120d0a
--- /dev/null
+++ b/examples/serverless-agent/fargate/workload/versions.tf
@@ -0,0 +1,18 @@
+terraform {
+  required_version = ">=1.7.2"
+
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 5.35.0"
+    }
+    local = {
+      source  = "hashicorp/local"
+      version = "~> 2.4.1"
+    }
+    sysdig = {
+      source  = "sysdiglabs/sysdig"
+      version = "~> 1.24.5"
+    }
+  }
+}
\ No newline at end of file
diff --git a/sysdig/internal/client/v2/ip_filtering_settings.go b/sysdig/internal/client/v2/ip_filtering_settings.go
new file mode 100644
index 00000000..6a2aabd8
--- /dev/null
+++ b/sysdig/internal/client/v2/ip_filtering_settings.go
@@ -0,0 +1,65 @@
+package v2
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+)
+
+const (
+	IPFiltersSettingsPath = "%s/platform/v1/ip-filters-settings"
+)
+
+type IPFilteringSettingsInterface interface {
+	Base
+	GetIPFilteringSettings(ctx context.Context) (*IPFiltersSettings, error)
+	UpdateIPFilteringSettings(ctx context.Context, ipFiltersSettings *IPFiltersSettings) (*IPFiltersSettings, error)
+}
+
+func (client *Client) GetIPFilteringSettings(ctx context.Context) (*IPFiltersSettings, error) {
+	response, err := client.requester.Request(ctx, http.MethodGet, client.GetIPFiltersSettingsURL(), nil)
+	if err != nil {
+		return nil, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		err = client.ErrorFromResponse(response)
+		return nil, err
+	}
+
+	ipFiltersSettings, err := Unmarshal[IPFiltersSettings](response.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	return &ipFiltersSettings, nil
+}
+
+func (client *Client) UpdateIPFilteringSettings(ctx context.Context, ipFiltersSettings *IPFiltersSettings) (*IPFiltersSettings, error) {
+	payload, err := Marshal(ipFiltersSettings)
+	if err != nil {
+		return nil, err
+	}
+
+	response, err := client.requester.Request(ctx, http.MethodPut, client.GetIPFiltersSettingsURL(), payload)
+	if err != nil {
+		return nil, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		return nil, client.ErrorFromResponse(response)
+	}
+
+	updated, err := Unmarshal[IPFiltersSettings](response.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	return &updated, nil
+}
+
+func (client *Client) GetIPFiltersSettingsURL() string {
+	return fmt.Sprintf(IPFiltersSettingsPath, client.config.url)
+}
diff --git a/sysdig/internal/client/v2/ip_filters.go b/sysdig/internal/client/v2/ip_filters.go
new file mode 100644
index 00000000..d1d20775
--- /dev/null
+++ b/sysdig/internal/client/v2/ip_filters.go
@@ -0,0 +1,114 @@
+package v2
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"net/http"
+)
+
+var IPFilterNotFound = errors.New("IP filter not found")
+
+const (
+	IPFiltersPath = "%s/platform/v1/ip-filters"
+	IPFilterPath  = "%s/platform/v1/ip-filters/%d"
+)
+
+type IPFiltersInterface interface {
+	Base
+	GetIPFilterById(ctx context.Context, id int) (*IPFilter, error)
+	CreateIPFilter(ctx context.Context, ipFilter *IPFilter) (*IPFilter, error)
+	UpdateIPFilter(ctx context.Context, ipFilter *IPFilter, id int) (*IPFilter, error)
+	DeleteIPFilter(ctx context.Context, id int) error
+}
+
+func (client *Client) GetIPFilterById(ctx context.Context, id int) (*IPFilter, error) {
+	response, err := client.requester.Request(ctx, http.MethodGet, client.GetIPFilterURL(id), nil)
+	if err != nil {
+		return nil, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		err = client.ErrorFromResponse(response)
+		return nil, err
+	}
+
+	ipFilter, err := Unmarshal[IPFilter](response.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	return &ipFilter, nil
+}
+
+func (client *Client) CreateIPFilter(ctx context.Context, ipFilter *IPFilter) (*IPFilter, error) {
+	payload, err := Marshal(ipFilter)
+	if err != nil {
+		return nil, err
+	}
+
+	response, err := client.requester.Request(ctx, http.MethodPost, client.GetIPFiltersURL(), payload)
+	if err != nil {
+		return nil, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusCreated {
+		return nil, client.ErrorFromResponse(response)
+	}
+
+	created, err := Unmarshal[IPFilter](response.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	return &created, nil
+
+}
+
+func (client *Client) UpdateIPFilter(ctx context.Context, ipFilter *IPFilter, id int) (*IPFilter, error) {
+	payload, err := Marshal(ipFilter)
+	if err != nil {
+		return nil, err
+	}
+
+	response, err := client.requester.Request(ctx, http.MethodPut, client.GetIPFilterURL(id), payload)
+	if err != nil {
+		return nil, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		return nil, client.ErrorFromResponse(response)
+	}
+
+	updated, err := Unmarshal[IPFilter](response.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	return &updated, nil
+}
+
+func (client *Client) DeleteIPFilter(ctx context.Context, id int) error {
+	response, err := client.requester.Request(ctx, http.MethodDelete, client.GetIPFilterURL(id), nil)
+	if err != nil {
+		return err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusNoContent && response.StatusCode != http.StatusNotFound {
+		return client.ErrorFromResponse(response)
+	}
+
+	return nil
+}
+
+func (client *Client) GetIPFilterURL(id int) string {
+	return fmt.Sprintf(IPFilterPath, client.config.url, id)
+}
+
+func (client *Client) GetIPFiltersURL() string {
+	return fmt.Sprintf(IPFiltersPath, client.config.url)
+}
diff --git a/sysdig/internal/client/v2/model.go b/sysdig/internal/client/v2/model.go
index fed05183..6339c980 100644
--- a/sysdig/internal/client/v2/model.go
+++ b/sysdig/internal/client/v2/model.go
@@ -174,6 +174,18 @@ type GroupMappingConfig struct {
 	DifferentTeamSameRoleStrategy string `json:"differentRolesSameTeamStrategy"`
 }
 
+type IPFilter struct {
+	ID          int    `json:"id,omitempty"`
+	IPRange     string `json:"ipRange"`
+	Note        string `json:"note,omitempty"`
+	Enabled     bool   `json:"isEnabled"`
+	LastUpdated string `json:"lastUpdated,omitempty"`
+}
+
+type IPFiltersSettings struct {
+	IPFilteringEnabled bool `json:"isFilteringEnabled"`
+}
+
 type alertWrapper struct {
 	Alert Alert `json:"alert"`
 }
@@ -913,7 +925,10 @@ type alertV2ChangeWrapper struct {
 }
 
 type CloudAccountCredentialsMonitor struct {
-	AccountId string `json:"accountId"`
+	AccountId   string `json:"accountId"`
+	RoleName    string `json:"roleName"`
+	SecretKey   string `json:"key"`
+	AccessKeyId string `json:"id"`
 }
 
 type CloudAccountMonitor struct {
diff --git a/sysdig/internal/client/v2/sysdig.go b/sysdig/internal/client/v2/sysdig.go
index dbf88ea4..ab419b48 100644
--- a/sysdig/internal/client/v2/sysdig.go
+++ b/sysdig/internal/client/v2/sysdig.go
@@ -23,6 +23,8 @@ type SysdigCommon interface {
 	CustomRoleInterface
 	CustomRolePermissionInterface
 	TeamServiceAccountInterface
+	IPFiltersInterface
+	IPFilteringSettingsInterface
 }
 
 type SysdigMonitor interface {
diff --git a/sysdig/provider.go b/sysdig/provider.go
index 6a9d1be1..e538b7ef 100644
--- a/sysdig/provider.go
+++ b/sysdig/provider.go
@@ -115,12 +115,14 @@ func (p *SysdigProvider) Provider() *schema.Provider {
 			},
 		},
 		ResourcesMap: map[string]*schema.Resource{
-			"sysdig_user":                 resourceSysdigUser(),
-			"sysdig_group_mapping":        resourceSysdigGroupMapping(),
-			"sysdig_group_mapping_config": resourceSysdigGroupMappingConfig(),
-			"sysdig_custom_role":          resourceSysdigCustomRole(),
-			"sysdig_team_service_account": resourceSysdigTeamServiceAccount(),
-			"sysdig_agent_access_key":     resourceSysdigAgentAccessKey(),
+			"sysdig_user":                  resourceSysdigUser(),
+			"sysdig_group_mapping":         resourceSysdigGroupMapping(),
+			"sysdig_group_mapping_config":  resourceSysdigGroupMappingConfig(),
+			"sysdig_custom_role":           resourceSysdigCustomRole(),
+			"sysdig_team_service_account":  resourceSysdigTeamServiceAccount(),
+			"sysdig_agent_access_key":      resourceSysdigAgentAccessKey(),
+			"sysdig_ip_filter":             resourceSysdigIPFilter(),
+			"sysdig_ip_filtering_settings": resourceSysdigIPFilteringSettings(),
 
 			"sysdig_secure_aws_ml_policy":                                 resourceSysdigSecureAWSMLPolicy(),
 			"sysdig_secure_custom_policy":                                 resourceSysdigSecureCustomPolicy(),
diff --git a/sysdig/resource_sysdig_ip_filter.go b/sysdig/resource_sysdig_ip_filter.go
new file mode 100644
index 00000000..4a9cd910
--- /dev/null
+++ b/sysdig/resource_sysdig_ip_filter.go
@@ -0,0 +1,155 @@
+package sysdig
+
+import (
+	"context"
+	v2 "github.com/draios/terraform-provider-sysdig/sysdig/internal/client/v2"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"strconv"
+)
+
+func resourceSysdigIPFilter() *schema.Resource {
+	return &schema.Resource{
+		ReadContext:   resourceSysdigIPFilterRead,
+		CreateContext: resourceSysdigIPFilterCreate,
+		UpdateContext: resourceSysdigIPFilterUpdate,
+		DeleteContext: resourceSysdigIPFilterDelete,
+		Schema: map[string]*schema.Schema{
+			"ip_range": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+			"note": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"enabled": {
+				Type:     schema.TypeBool,
+				Required: true,
+			},
+		},
+	}
+}
+
+func resourceSysdigIPFilterRead(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	id, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	ipFilter, err := client.GetIPFilterById(ctx, id)
+	if err != nil {
+		if err == v2.IPFilterNotFound {
+			d.SetId("")
+			return nil
+		}
+		return diag.FromErr(err)
+	}
+
+	err = ipFilterToResourceData(ipFilter, d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return nil
+}
+
+func resourceSysdigIPFilterCreate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	ipFilter, err := ipFilterFromResourceData(d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	createdIPFilter, err := client.CreateIPFilter(ctx, ipFilter)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	d.SetId(strconv.Itoa(createdIPFilter.ID))
+
+	resourceSysdigIPFilterRead(ctx, d, m)
+
+	return nil
+}
+
+func resourceSysdigIPFilterUpdate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	ipFilter, err := ipFilterFromResourceData(d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	id, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+
+	}
+
+	ipFilter.ID = id
+	_, err = client.UpdateIPFilter(ctx, ipFilter, id)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	resourceSysdigIPFilterRead(ctx, d, m)
+
+	return nil
+}
+
+func resourceSysdigIPFilterDelete(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	id, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	err = client.DeleteIPFilter(ctx, id)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return nil
+}
+
+func ipFilterToResourceData(ipFilter *v2.IPFilter, d *schema.ResourceData) error {
+	err := d.Set("ip_range", ipFilter.IPRange)
+	if err != nil {
+		return err
+	}
+	err = d.Set("note", ipFilter.Note)
+	if err != nil {
+		return err
+	}
+	err = d.Set("enabled", ipFilter.Enabled)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func ipFilterFromResourceData(d *schema.ResourceData) (*v2.IPFilter, error) {
+	return &v2.IPFilter{
+		IPRange: d.Get("ip_range").(string),
+		Note:    d.Get("note").(string),
+		Enabled: d.Get("enabled").(bool),
+	}, nil
+}
diff --git a/sysdig/resource_sysdig_ip_filter_test.go b/sysdig/resource_sysdig_ip_filter_test.go
new file mode 100644
index 00000000..86146e72
--- /dev/null
+++ b/sysdig/resource_sysdig_ip_filter_test.go
@@ -0,0 +1,62 @@
+//go:build tf_acc_sysdig_monitor || tf_acc_sysdig_secure || tf_acc_sysdig_common
+
+package sysdig_test
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/draios/terraform-provider-sysdig/sysdig"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func TestAccSysdigIpFilter_fullLifecycle(t *testing.T) {
+	ipRange1 := generateRandomIPRange()
+	ipRange2 := generateRandomIPRange()
+
+	resource.Test(t, resource.TestCase{
+		PreCheck: preCheckAnyEnv(t, SysdigMonitorApiTokenEnv),
+		ProviderFactories: map[string]func() (*schema.Provider, error){
+			"sysdig": func() (*schema.Provider, error) {
+				return sysdig.Provider(), nil
+			},
+		},
+		Steps: []resource.TestStep{
+			{
+				// Create resource with the first random IP range
+				Config: createIPFilter(ipRange1, "Initial note", true),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "ip_range", ipRange1),
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "note", "Initial note"),
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "enabled", "true"),
+				),
+			},
+			{
+				// Update resource with the second random IP range
+				Config: createIPFilter(ipRange2, "Updated note", false),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "ip_range", ipRange2),
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "note", "Updated note"),
+					resource.TestCheckResourceAttr("sysdig_ip_filter.test", "enabled", "false"),
+				),
+			},
+		},
+	})
+}
+
+func generateRandomIPRange() string {
+	return fmt.Sprintf("%d.%d.%d.0/24", acctest.RandIntRange(0, 255), acctest.RandIntRange(0, 255), acctest.RandIntRange(0, 255))
+}
+
+func createIPFilter(ipRange, note string, enabled bool) string {
+	return fmt.Sprintf(`
+resource "sysdig_ip_filter" "test" {
+  ip_range = "%s"
+  note     = "%s"
+  enabled  = %t
+}
+`, ipRange, note, enabled)
+}
diff --git a/sysdig/resource_sysdig_ip_filtering_settings.go b/sysdig/resource_sysdig_ip_filtering_settings.go
new file mode 100644
index 00000000..2ae25037
--- /dev/null
+++ b/sysdig/resource_sysdig_ip_filtering_settings.go
@@ -0,0 +1,93 @@
+package sysdig
+
+import (
+	"context"
+	v2 "github.com/draios/terraform-provider-sysdig/sysdig/internal/client/v2"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func resourceSysdigIPFilteringSettings() *schema.Resource {
+	return &schema.Resource{
+		ReadContext:   resourceSysdigIPFilteringSettingsRead,
+		CreateContext: resourceSysdigIPFilteringSettingsCreate,
+		UpdateContext: resourceSysdigIPFilteringSettingsUpdate,
+		DeleteContext: resourceSysdigIPFilteringSettingsDelete,
+		Schema: map[string]*schema.Schema{
+			"ip_filtering_enabled": {
+				Type:     schema.TypeBool,
+				Required: true,
+			},
+		},
+	}
+}
+
+func resourceSysdigIPFilteringSettingsRead(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	ipFilteringSettings, err := client.GetIPFilteringSettings(ctx)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	err = ipFilteringSettingsToResourceData(ipFilteringSettings, d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return nil
+}
+
+func resourceSysdigIPFilteringSettingsCreate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+
+	d.SetId("ip_filtering_settings_id") // It's singleton resource so we use a fixed ID
+
+	return updateIPFilteringSettings(ctx, d, m)
+}
+
+func resourceSysdigIPFilteringSettingsUpdate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	return updateIPFilteringSettings(ctx, d, m)
+}
+
+func resourceSysdigIPFilteringSettingsDelete(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	return nil
+}
+
+func updateIPFilteringSettings(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	client, err := m.(SysdigClients).sysdigCommonClientV2()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	ipFiltersSettings, err := ipFilteringSettingsFromResourceData(d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	_, err = client.UpdateIPFilteringSettings(ctx, ipFiltersSettings)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	resourceSysdigIPFilteringSettingsRead(ctx, d, m)
+
+	return nil
+}
+
+func ipFilteringSettingsToResourceData(ipFiltersSettings *v2.IPFiltersSettings, d *schema.ResourceData) error {
+	err := d.Set("ip_filtering_enabled", ipFiltersSettings.IPFilteringEnabled)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func ipFilteringSettingsFromResourceData(d *schema.ResourceData) (*v2.IPFiltersSettings, error) {
+	return &v2.IPFiltersSettings{
+		IPFilteringEnabled: d.Get("ip_filtering_enabled").(bool),
+	}, nil
+}
diff --git a/sysdig/resource_sysdig_ip_filtering_settings_test.go b/sysdig/resource_sysdig_ip_filtering_settings_test.go
new file mode 100644
index 00000000..f2f52a0e
--- /dev/null
+++ b/sysdig/resource_sysdig_ip_filtering_settings_test.go
@@ -0,0 +1,40 @@
+//go:build tf_acc_sysdig_monitor || tf_acc_sysdig_secure || tf_acc_sysdig_common
+
+package sysdig_test
+
+import (
+	"fmt"
+	"github.com/draios/terraform-provider-sysdig/sysdig"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func TestAccSysdigIpFilteringSettings_fullLifecycle(t *testing.T) {
+	resource.Test(t, resource.TestCase{
+		PreCheck: preCheckAnyEnv(t, SysdigMonitorApiTokenEnv),
+		ProviderFactories: map[string]func() (*schema.Provider, error){
+			"sysdig": func() (*schema.Provider, error) {
+				return sysdig.Provider(), nil
+			},
+		},
+		Steps: []resource.TestStep{
+			{
+				// Create resource
+				Config: createIPFilteringSettings(false),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr("sysdig_ip_filtering_settings.test", "ip_filtering_enabled", "false"),
+				),
+			},
+		},
+	})
+}
+
+func createIPFilteringSettings(ipFilteringEnabled bool) string {
+	return fmt.Sprintf(`
+resource "sysdig_ip_filtering_settings" "test" {
+  ip_filtering_enabled = %t
+}
+`, ipFilteringEnabled)
+}
diff --git a/sysdig/resource_sysdig_monitor_alert_downtime.go b/sysdig/resource_sysdig_monitor_alert_downtime.go
index a0ee83db..9f803e88 100644
--- a/sysdig/resource_sysdig_monitor_alert_downtime.go
+++ b/sysdig/resource_sysdig_monitor_alert_downtime.go
@@ -17,10 +17,11 @@ func resourceSysdigMonitorAlertDowntime() *schema.Resource {
 	timeout := 5 * time.Minute
 
 	return &schema.Resource{
-		CreateContext: resourceSysdigAlertDowntimeCreate,
-		UpdateContext: resourceSysdigAlertDowntimeUpdate,
-		ReadContext:   resourceSysdigAlertDowntimeRead,
-		DeleteContext: resourceSysdigAlertDowntimeDelete,
+		DeprecationMessage: "\"sysdig_monitor_alert_downtime\" has been deprecated and will be removed in future releases, use \"sysdig_monitor_alert_v2_downtime\" instead",
+		CreateContext:      resourceSysdigAlertDowntimeCreate,
+		UpdateContext:      resourceSysdigAlertDowntimeUpdate,
+		ReadContext:        resourceSysdigAlertDowntimeRead,
+		DeleteContext:      resourceSysdigAlertDowntimeDelete,
 		Importer: &schema.ResourceImporter{
 			StateContext: schema.ImportStatePassthroughContext,
 		},
diff --git a/sysdig/resource_sysdig_monitor_alert_event.go b/sysdig/resource_sysdig_monitor_alert_event.go
index 531feae4..cd245a61 100644
--- a/sysdig/resource_sysdig_monitor_alert_event.go
+++ b/sysdig/resource_sysdig_monitor_alert_event.go
@@ -17,10 +17,11 @@ func resourceSysdigMonitorAlertEvent() *schema.Resource {
 	timeout := 5 * time.Minute
 
 	return &schema.Resource{
-		CreateContext: resourceSysdigAlertEventCreate,
-		UpdateContext: resourceSysdigAlertEventUpdate,
-		ReadContext:   resourceSysdigAlertEventRead,
-		DeleteContext: resourceSysdigAlertEventDelete,
+		DeprecationMessage: "\"sysdig_monitor_alert_event\" has been deprecated and will be removed in future releases, use \"sysdig_monitor_alert_v2_event\" instead",
+		CreateContext:      resourceSysdigAlertEventCreate,
+		UpdateContext:      resourceSysdigAlertEventUpdate,
+		ReadContext:        resourceSysdigAlertEventRead,
+		DeleteContext:      resourceSysdigAlertEventDelete,
 		Importer: &schema.ResourceImporter{
 			StateContext: schema.ImportStatePassthroughContext,
 		},
diff --git a/sysdig/resource_sysdig_monitor_alert_metric.go b/sysdig/resource_sysdig_monitor_alert_metric.go
index 13fea74a..6e90f0d8 100644
--- a/sysdig/resource_sysdig_monitor_alert_metric.go
+++ b/sysdig/resource_sysdig_monitor_alert_metric.go
@@ -15,10 +15,11 @@ func resourceSysdigMonitorAlertMetric() *schema.Resource {
 	timeout := 5 * time.Minute
 
 	return &schema.Resource{
-		CreateContext: resourceSysdigAlertMetricCreate,
-		UpdateContext: resourceSysdigAlertMetricUpdate,
-		ReadContext:   resourceSysdigAlertMetricRead,
-		DeleteContext: resourceSysdigAlertMetricDelete,
+		DeprecationMessage: "\"sysdig_monitor_alert_metric\" has been deprecated and will be removed in future releases, use \"sysdig_monitor_alert_v2_metric\" instead",
+		CreateContext:      resourceSysdigAlertMetricCreate,
+		UpdateContext:      resourceSysdigAlertMetricUpdate,
+		ReadContext:        resourceSysdigAlertMetricRead,
+		DeleteContext:      resourceSysdigAlertMetricDelete,
 		Importer: &schema.ResourceImporter{
 			StateContext: schema.ImportStatePassthroughContext,
 		},
diff --git a/sysdig/resource_sysdig_monitor_alert_promql.go b/sysdig/resource_sysdig_monitor_alert_promql.go
index aa922084..356f4e67 100644
--- a/sysdig/resource_sysdig_monitor_alert_promql.go
+++ b/sysdig/resource_sysdig_monitor_alert_promql.go
@@ -15,10 +15,11 @@ func resourceSysdigMonitorAlertPromql() *schema.Resource {
 	timeout := 5 * time.Minute
 
 	return &schema.Resource{
-		CreateContext: resourceSysdigAlertPromqlCreate,
-		UpdateContext: resourceSysdigAlertPromqlUpdate,
-		ReadContext:   resourceSysdigAlertPromqlRead,
-		DeleteContext: resourceSysdigAlertPromqlDelete,
+		DeprecationMessage: "\"sysdig_monitor_alert_promql\" has been deprecated and will be removed in future releases, use \"sysdig_monitor_alert_v2_prometheus\" instead",
+		CreateContext:      resourceSysdigAlertPromqlCreate,
+		UpdateContext:      resourceSysdigAlertPromqlUpdate,
+		ReadContext:        resourceSysdigAlertPromqlRead,
+		DeleteContext:      resourceSysdigAlertPromqlDelete,
 		Importer: &schema.ResourceImporter{
 			StateContext: schema.ImportStatePassthroughContext,
 		},
diff --git a/sysdig/resource_sysdig_monitor_cloud_account.go b/sysdig/resource_sysdig_monitor_cloud_account.go
index be4a059f..1ca1b667 100644
--- a/sysdig/resource_sysdig_monitor_cloud_account.go
+++ b/sysdig/resource_sysdig_monitor_cloud_account.go
@@ -37,13 +37,29 @@ func resourceSysdigMonitorCloudAccount() *schema.Resource {
 				Required: true,
 			},
 			"account_id": {
-				Type:     schema.TypeString,
-				Required: true,
+				Type:      schema.TypeString,
+				Required:  true,
+				Sensitive: true,
 			},
-			"additional_options": {
+			"role_name": {
 				Type:     schema.TypeString,
 				Optional: true,
 			},
+			"secret_key": {
+				Type:      schema.TypeString,
+				Optional:  true,
+				Sensitive: true,
+			},
+			"access_key_id": {
+				Type:      schema.TypeString,
+				Optional:  true,
+				Sensitive: true,
+			},
+			"additional_options": {
+				Type:      schema.TypeString,
+				Optional:  true,
+				Sensitive: true,
+			},
 		},
 	}
 }
@@ -140,7 +156,10 @@ func monitorCloudAccountFromResourceData(data *schema.ResourceData) v2.CloudAcco
 		IntegrationType:   data.Get("integration_type").(string),
 		AdditionalOptions: data.Get("additional_options").(string),
 		Credentials: v2.CloudAccountCredentialsMonitor{
-			AccountId: data.Get("account_id").(string),
+			AccountId:   data.Get("account_id").(string),
+			RoleName:    data.Get("role_name").(string),
+			SecretKey:   data.Get("secret_key").(string),
+			AccessKeyId: data.Get("access_key_id").(string),
 		},
 	}
 }
@@ -166,5 +185,20 @@ func monitorCloudAccountToResourceData(data *schema.ResourceData, cloudAccount *
 		return err
 	}
 
+	err = data.Set("role_name", cloudAccount.Credentials.RoleName)
+	if err != nil {
+		return err
+	}
+
+	err = data.Set("secret_key", cloudAccount.Credentials.SecretKey)
+	if err != nil {
+		return err
+	}
+
+	err = data.Set("access_key_id", cloudAccount.Credentials.AccessKeyId)
+	if err != nil {
+		return err
+	}
+
 	return nil
 }
diff --git a/sysdig/resource_sysdig_secure_posture_control_test.go b/sysdig/resource_sysdig_secure_posture_control_test.go
index 9eb5d300..a3415365 100644
--- a/sysdig/resource_sysdig_secure_posture_control_test.go
+++ b/sysdig/resource_sysdig_secure_posture_control_test.go
@@ -1,4 +1,4 @@
-//go:build tf_acc_sysdig_secure || tf_acc_policies || tf_acc_onprem_secure
+//go:build tf_acc_sysdig_secure || tf_acc_policies
 
 package sysdig_test
 
diff --git a/website/docs/r/ip_filter.md b/website/docs/r/ip_filter.md
new file mode 100644
index 00000000..0ef37238
--- /dev/null
+++ b/website/docs/r/ip_filter.md
@@ -0,0 +1,46 @@
+---
+subcategory: "Sysdig Platform"
+layout: "sysdig"
+page_title: "Sysdig: sysdig_allowed_ip_range"
+description: |-
+  Creates allowed IP range in Sysdig which can be used to restrict access to the Sysdig platform.
+---
+
+# Resource: sysdig_ip_filter
+
+Configures IP address/range which can be used to restrict access to the Sysdig platform.
+The feature is activated by setting `ip_filtering_enabled` to `true` in the `sysdig_ip_filtering_settings` resource. At least one IP range must be defined in the `sysdig_ip_filter` before enabling the feature.
+
+-> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
+
+## Example Usage
+
+```terraform
+resource "sysdig_ip_filter" "example" {
+  ip_range = "192.168.100.0/24"
+  note     = "Office IP range"
+  enabled  = true
+}
+
+```
+This example creates a filter for IP range 192.168.100.0/24, with a note indicating it's for an office IP range, and it's enabled.
+
+
+## Argument Reference
+
+* `ip_range` - (Required) The IP range to allow access to the Sysdig platform. Must be in CIDR notation.
+* `enabled` - (Required) Specifies whether the IP range is enabled.
+* `note` - (Optional) A note describing the allowed IP range.
+
+## Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:  
+* `id` - The ID of the allowed IP range.
+
+## Import
+
+Sysdig IP filter can be imported using the ID, e.g.
+
+```
+$ terraform import sysdig_ip_filter.example 12345
+```
diff --git a/website/docs/r/ip_filtering_settings.md b/website/docs/r/ip_filtering_settings.md
new file mode 100644
index 00000000..c1d9d4a1
--- /dev/null
+++ b/website/docs/r/ip_filtering_settings.md
@@ -0,0 +1,48 @@
+---
+subcategory: "Sysdig Platform"
+layout: "sysdig"
+page_title: "Sysdig: sysdig_ip_filtering_settings"
+description: |-
+  Creates a IP filters settings in Sysdig.
+---
+
+# Resource: sysdig_ip_filtering_settings
+
+Configures settings for IP filters (`sysdig_ip_filter` resource) which can be used to restrict access to the Sysdig platform.
+Currently, there is only one setting available: `ip_filtering_enabled` which enables or disables the IP filtering feature. To enable the feature, at least one IP range must be defined in the `sysdig_ip_filter` resource.
+
+> **Warning**
+> This resource is global and is allowed to have only one instance per customer.
+> Please verify that all IP ranges are created before enabling the feature. Failure to include your IP range will block your access to Sysdig until you connect from an approved IP range.
+
+
+The `sysdig_ip_filtering_settings` behaves differently from normal resources, in that Terraform does not destroy this resource.
+On resource destruction, Terraform performs no actions in Sysdig.
+
+-> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
+
+## Example Usage
+
+```terraform
+resource "sysdig_ip_filtering_settings" "example" {
+  ip_filtering_enabled = true
+}
+
+```
+This example enables the IP filtering feature.
+
+## Argument Reference
+
+* `ip_filtering_enabled` - (Required) Specifies whether the IP filtering feature is enabled.
+
+## Attributes Reference
+
+No additional attributes are exported.
+
+## Import
+
+Sysdig IP filters settings can be imported, e.g.
+
+```
+$ terraform import sysdig_ip_filtering_settings.example ip_filtering_settings_id
+```
diff --git a/website/docs/r/monitor_alert_downtime.md b/website/docs/r/monitor_alert_downtime.md
index 9cfaf0a1..4a86ebc7 100644
--- a/website/docs/r/monitor_alert_downtime.md
+++ b/website/docs/r/monitor_alert_downtime.md
@@ -10,6 +10,8 @@ description: |-
 
 Creates a Sysdig Monitor Downtime Alert. Monitor any type of entity - host, container, process, service, etc - and alert when the entity goes down.
 
+~> **Deprecation Notice:** `sysdig_monitor_alert_downtime` has been deprecated and will be removed in future releases, use `sysdig_monitor_alert_v2_downtime` instead.
+
 -> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
 
 ## Example Usage
diff --git a/website/docs/r/monitor_alert_event.md b/website/docs/r/monitor_alert_event.md
index c0cc78c5..e9d40203 100644
--- a/website/docs/r/monitor_alert_event.md
+++ b/website/docs/r/monitor_alert_event.md
@@ -12,6 +12,8 @@ Creates a Sysdig Monitor Event Alert. Monitor occurrences of specific events, an
 number of occurrences violates a threshold. Useful for alerting on container, orchestration, and
 service events like restarts and deployments.
 
+~> **Deprecation Notice:** `sysdig_monitor_alert_event` has been deprecated and will be removed in future releases, use `sysdig_monitor_alert_v2_event` instead.
+
 -> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
 
 ## Example Usage
diff --git a/website/docs/r/monitor_alert_metric.md b/website/docs/r/monitor_alert_metric.md
index 5732a1c7..5305cb9f 100644
--- a/website/docs/r/monitor_alert_metric.md
+++ b/website/docs/r/monitor_alert_metric.md
@@ -10,6 +10,8 @@ description: |-
 
 Creates a Sysdig Monitor Metric Threshold Alert. Monitor time-series metrics and alert if they violate user-defined thresholds.
 
+~> **Deprecation Notice:** `sysdig_monitor_alert_metric` has been deprecated and will be removed in future releases, use `sysdig_monitor_alert_v2_metric` instead.
+
 -> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
 
 ## Example Usage
diff --git a/website/docs/r/monitor_alert_promql.md b/website/docs/r/monitor_alert_promql.md
index f93c9d55..7c845366 100644
--- a/website/docs/r/monitor_alert_promql.md
+++ b/website/docs/r/monitor_alert_promql.md
@@ -10,6 +10,8 @@ description: |-
 
 Creates a Sysdig Monitor Prometheus Alert. Monitor prometheus metrics and alert if they violate user-defined PromQL-based metric expression.
 
+~> **Deprecation Notice:** `sysdig_monitor_alert_promql` has been deprecated and will be removed in future releases, use `sysdig_monitor_alert_v2_prometheus` instead.
+
 -> **Note:** Sysdig Terraform Provider is under rapid development at this point. If you experience any issue or discrepancy while using it, please make sure you have the latest version. If the issue persists, or you have a Feature Request to support an additional set of resources, please open a [new issue](https://github.com/sysdiglabs/terraform-provider-sysdig/issues/new) in the GitHub repository.
 
 ## Example Usage
diff --git a/website/docs/r/monitor_cloud_account.md b/website/docs/r/monitor_cloud_account.md
index 6e266fa8..8e004702 100644
--- a/website/docs/r/monitor_cloud_account.md
+++ b/website/docs/r/monitor_cloud_account.md
@@ -15,18 +15,39 @@ Creates a Sysdig Monitor Cloud Account for monitoring cloud resources.
 ## Example Usage
 
 ```terraform
+// GCP example
 resource "sysdig_monitor_cloud_account" "sample" {
   cloud_provider = "GCP"
   integration_type = "API"
   account_id = "gcp_project_id"
 }
+
+// AWS example with role delegation
+resource "sysdig_monitor_cloud_account" "sample" {
+  cloud_provider = "AWS"
+  integration_type = "Metrics Streams"
+  account_id = "123412341234"
+  role_name = "SysdigTestRole"
+}
+
+// AWS example with secret key
+resource "sysdig_monitor_cloud_account" "sample" {
+  cloud_provider = "AWS"
+  integration_type = "Metrics Streams"
+  account_id = "123412341234"
+  secret_key = "Xxx5XX2xXx/Xxxx+xxXxXXxXxXxxXXxxxXXxXxXx"
+  access_key_id = "XXXXX33XXXX3XX3XXX7X"
+}
 ```
 
 ## Argument Reference
 
-* `cloud_provider` - (Required) Cloud platform that will be monitored. Only `GCP` is currently supported.
-* `integration_type` - (Required) Type of cloud integration. Only `API` is currently supported.
-* `account_id` - (Required) The GCP project id for the project that will be monitored.
+* `cloud_provider` - (Required) Cloud platform that will be monitored. Only `GCP` and `AWS` are currently supported.
+* `integration_type` - (Required) Type of cloud integration. Only `API` and `Metrics Streams` are currently supported (`Metrics Streams` only for `AWS`).
+* `account_id` - (Required for GCP) The GCP project id for the project that will be monitored . (Optional For AWS) This identified the target Account ID. If provided, a role_name must be set.
+* `role_name` - (Optional) The role name used for delegation over the customer resources towards the Sysdig AWS account. Only for AWS when the authentication mode is role delegation instead of secret key.
+* `secret_key` - (Optional) The the secret key for a AWS connection. It must be provided along `access_key_id` when this auth mode is used.
+* `access_key_id` - (Optional) The ID for the access key that has the permissions into the Cloud Account. It must be provided along `secret_key` when this auth mode is used.
 * `additional_options` - (Optional) The private key generated when creating a new GCP service account key. Must be in JSON format and base64 encoded.
 
 ## Attributes Reference