This feature (module composition) gathers the following Azure Global Services in one feature:
Module version | Terraform version | AzureRM version |
---|---|---|
>= 7.x.x | 1.3.x | >= 3.0 |
>= 6.x.x | 1.x | >= 3.0 |
>= 5.x.x | 0.15.x | >= 2.0 |
>= 4.x.x | 0.13.x / 0.14.x | >= 2.0 |
>= 3.x.x | 0.12.x | >= 2.0 |
>= 2.x.x | 0.12.x | < 2.0 |
< 2.x.x | 0.11.x | < 2.0 |
If you want to contribute to this repository, feel free to use our pre-commit git hook configuration which will help you automatically update and format some files for you by enforcing our Terraform code module best-practices.
More details are available in the CONTRIBUTING.md file.
This module is optimized to work with the Claranet terraform-wrapper tool
which set some terraform variables in the environment needed by this module.
More details about variables set by the terraform-wrapper
available in the documentation.
data "azurerm_log_analytics_workspace" "workspace1" {
name = "workspace1-log"
resource_group_name = "test-rg"
}
data "azurerm_log_analytics_workspace" "workspace2" {
name = "workspace2-log"
resource_group_name = "test-rg"
}
data "azurerm_resource_group" "example" {
name = "existing"
}
module "global_services" {
source = "claranet/global-services/azurerm"
version = "x.x.x"
security_center_contact_email = var.contact_email
security_center_contact_phone = var.contact_phone
# Optional
security_center_pricing_tier = "Standard"
security_center_pricing_resource_types = ["StorageAccounts"]
security_center_alert_notifications = true
security_center_alerts_to_admins = true
security_center_workspaces = [{
scope_id = "/subscriptions/00000000-0000-0000-0000-000000000000"
workspace_id = data.azurerm_log_analytics_workspace.workspace1.id
}, {
scope_id = data.azurerm_resource_group.example.id
workspace_id = data.azurerm_log_analytics_workspace.workspace2.id
}]
}
No providers.
Name | Source | Version |
---|---|---|
security_center | ./modules/security-center | n/a |
No resources.
Name | Description | Type | Default | Required |
---|---|---|---|---|
security_center_alert_notifications | Whether to send security alerts notifications to the security contact or not. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#alert_notifications | bool |
true |
no |
security_center_alerts_to_admins | Whether to send security alerts notifications to subscription admins or not. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#alerts_to_admins | bool |
true |
no |
security_center_contact_email | The email of the Security Center Contact. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#email | string |
n/a | yes |
security_center_contact_phone | The phone number of the Security Center Contact. https://www.terraform.io/docs/providers/azurerm/r/security_center_contact.html#phone | string |
n/a | yes |
security_center_pricing_resource_types | List of resource type to apply the Azure Security Center pricing tier. Possible values are AppServices, ContainerRegistry, KeyVaults, KubernetesService, SqlServers, SqlServerVirtualMachines, StorageAccounts, and VirtualMachines. Source: https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/security_center_subscription_pricing#resource_type | list(string) |
[ |
no |
security_center_pricing_tier | Manages the Pricing Tier for Azure Security Center in the current subscription. Possible values are Free and Standard. NOTE: Changing the pricing tier to Standard affects all resources in the subscription and could be quite costly. Deletion of this resource does not change or reset the pricing tier to Free. Source: https://www.terraform.io/docs/providers/azurerm/r/security_center_subscription_pricing.html | string |
"Standard" |
no |
security_center_workspaces | Map of the scopes with the associated Log Analytics Workspace. Can only be used on Standard tier. Scope can be a Subscription or Resource Group ID.See https://www.terraform.io/docs/providers/azurerm/r/security_center_workspace.html" |
list(object({ |
[] |
no |
Name | Description |
---|---|
security_center_contact_id | The Security Center contact ID. |
security_center_pricing_ids | The Security Center subscription pricing IDs list. |
security_center_workspaces | The Security Center Workspaces |
Microsoft Azure Security Center documentation: docs.microsoft.com/en-us/azure/security-center/