Skip to content
This repository has been archived by the owner on Jun 9, 2023. It is now read-only.
/ terraform-azurerm-global-services Public archive

[Deprecated] Terraform module composition (feature) for Global (cross Subscriptions) Azure Services

License

Apache-2.0 license
0 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

claranet/terraform-azurerm-global-services

BranchesTags

Repository files navigation

Azure Global Services

Changelog Notice Apache V2 License TF Registry

This feature (module composition) gathers the following Azure Global Services in one feature:

Global versioning rule for Claranet Azure modules

Module version Terraform version AzureRM version
>= 7.x.x 1.3.x >= 3.0
>= 6.x.x 1.x >= 3.0
>= 5.x.x 0.15.x >= 2.0
>= 4.x.x 0.13.x / 0.14.x >= 2.0
>= 3.x.x 0.12.x >= 2.0
>= 2.x.x 0.12.x < 2.0
< 2.x.x 0.11.x < 2.0

Contributing

If you want to contribute to this repository, feel free to use our pre-commit git hook configuration which will help you automatically update and format some files for you by enforcing our Terraform code module best-practices.

More details are available in the CONTRIBUTING.md file.

Usage

This module is optimized to work with the Claranet terraform-wrapper tool which set some terraform variables in the environment needed by this module. More details about variables set by the terraform-wrapper available in the documentation.

data "azurerm_log_analytics_workspace" "workspace1" {
  name                = "workspace1-log"
  resource_group_name = "test-rg"
}

data "azurerm_log_analytics_workspace" "workspace2" {
  name                = "workspace2-log"
  resource_group_name = "test-rg"
}

data "azurerm_resource_group" "example" {
  name = "existing"
}

module "global_services" {
  source  = "claranet/global-services/azurerm"
  version = "x.x.x"

  security_center_contact_email = var.contact_email
  security_center_contact_phone = var.contact_phone

  # Optional
  security_center_pricing_tier           = "Standard"
  security_center_pricing_resource_types = ["StorageAccounts"]
  security_center_alert_notifications    = true
  security_center_alerts_to_admins       = true

  security_center_workspaces = [{
    scope_id     = "/subscriptions/00000000-0000-0000-0000-000000000000"
    workspace_id = data.azurerm_log_analytics_workspace.workspace1.id
    }, {
    scope_id     = data.azurerm_resource_group.example.id
    workspace_id = data.azurerm_log_analytics_workspace.workspace2.id
  }]
}

Providers

No providers.

Modules

Name Source Version
security_center ./modules/security-center n/a

Resources

No resources.

Inputs

Name Description Type Default Required
security_center_alert_notifications Whether to send security alerts notifications to the security contact or not. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#alert_notifications bool true no
security_center_alerts_to_admins Whether to send security alerts notifications to subscription admins or not. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#alerts_to_admins bool true no
security_center_contact_email The email of the Security Center Contact. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#email string n/a yes
security_center_contact_phone The phone number of the Security Center Contact. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#phone string n/a yes
security_center_pricing_resource_types List of resource type to apply the Azure Security Center pricing tier. Possible values are AppServices, ContainerRegistry, KeyVaults, KubernetesService, SqlServers, SqlServerVirtualMachines, StorageAccounts, and VirtualMachines. Source: https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/security_center_subscription_pricing#resource_type list(string) 
[
  "AppServices",
  "ContainerRegistry",
  "KeyVaults",
  "KubernetesService",
  "SqlServers",
  "SqlServerVirtualMachines",
  "StorageAccounts",
  "VirtualMachines"
]
 no
security_center_pricing_tier Manages the Pricing Tier for Azure Security Center in the current subscription. Possible values are Free and Standard. NOTE: Changing the pricing tier to Standard affects all resources in the subscription and could be quite costly. Deletion of this resource does not change or reset the pricing tier to Free. Source: https://www.terraform.io/docs/providers/azurerm/r/security_center_subscription_pricing.html string "Standard" no
security_center_workspaces Map of the scopes with the associated Log Analytics Workspace.
Can only be used on Standard tier. Scope can be a Subscription or Resource Group ID.
See https://www.terraform.io/docs/providers/azurerm/r/security_center_workspace.html"		 
list(object({
    scope_id     = string
    workspace_id = string
  }))
 [] no

Outputs

Name Description
security_center_contact_id The Security Center contact ID.
security_center_pricing_ids The Security Center subscription pricing IDs list.
security_center_workspaces The Security Center Workspaces

Related documentation

Microsoft Azure Security Center documentation: docs.microsoft.com/en-us/azure/security-center/

About

[Deprecated] Terraform module composition (feature) for Global (cross Subscriptions) Azure Services

Topics

module azure terraform claranet

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

8 watching

Forks

3 forks
Report repository

Releases

12 tags

Packages

No packages published

Contributors 5

Languages