If your organization has blocked registry.terraform.io and has instead downloaded the provider binaries to Nexus, then you can do the following to still make your Terraform execute correctly.

Step 1 - Download the Required Providers

In our example, we need the following providers:

  1. AWS
  2. Archive

These commands below are running directly from the pipeline that executes the Terraform:

# Download the providers from the Nexus repository
- curl -u ${Nexus_REPO_USER}:${Nexus_REPO_PASS} -o terraform-provider-aws4.65.0linuxamd64.zip https://nexus.example.com/repository/some-local-mirror/registry.terraform.io/hashicorp/aws/terraform-provider-aws_4.65.0_linux_amd64.zip
- curl -u ${Nexus_REPO_USER}:${Nexus_REPO_PASS} -o terraform-provider-archive_2.3.0_linux_amd64.zip https://nexus.example.com/repository/local-mirror/registry.terraform.io/hashicorp/archive/terraform-provider-archive_2.3.0_linux_amd64.zip
# Make a local directory to store these providers
- mkdir -p $HOME/.terraform.d/plugins/registry.terraform.io/hashicorp/aws/
- mkdir -p $HOME/.terraform.d/plugins/registry.terraform.io/hashicorp/archive/
# Move the downloaded zip files to these directories
- mv terraform-provider-aws_4.65.0_linux_amd64.zip $HOME/.terraform.d/plugins/registry.terraform.io/hashicorp/aws/
- mv terraform-provider-archive_2.3.0_linux_amd64.zip $HOME/.terraform.d/plugins/registry.terraform.io/hashicorp/archive/
# Give the permissions (not always required)
- chmod 777 -R $HOME/.terraform.d/plugins/

Step 2 - Run the Terraform code with a Plugin Directory

The following code continues the pipeline from above where we left off:

# Add the "-plugin-dir" to use the same location as above
- terraform init -plugin-dir=$HOME/.terraform.d/plugins/ -backend-config=env/dev/backend.conf -reconfigure-force-copy

Step 3 - Update the terraform block to the same versions as above

Now we need to modify or add the following code into our Terraform code:

terraform {

  required_providers {
    aws = {
      source = "hashicorp/aws"
      version = "4.65.0"
    archive = {
      source = "hashicorp/archive"
      version = "2.3.0"

  # Add other features you need here... e.g.
  # backend "s3" {
  #  ...