azure/terraform: Add azure vault vm using terraform
Related T1716
Test Plan
($ terraform init)
$ terraform planOutput:
$ terraform plan
[0m[1mRefreshing Terraform state in-memory prior to plan...[0m
The refreshed state will be used to calculate this plan, but will not be
persisted to local or remote state storage.
[0m
[0m[1mdata.azurerm_subnet.default: Refreshing state...[0m
[0m[1mdata.azurerm_network_security_group.worker-nsg: Refreshing state...[0m
------------------------------------------------------------------------
An execution plan has been generated and is shown below.
Resource actions are indicated with the following symbols:
[32m+[0m create
[0m
Terraform will perform the following actions:
[32m [32m+[0m [32mazurerm_network_interface.vault-servers_interfaces
[0m id: <computed>
applied_dns_servers.#: <computed>
dns_servers.#: <computed>
enable_accelerated_networking: "false"
enable_ip_forwarding: "false"
internal_dns_name_label: <computed>
internal_fqdn: <computed>
ip_configuration.#: "1"
ip_configuration.0.application_gateway_backend_address_pools_ids.#: <computed>
ip_configuration.0.application_security_group_ids.#: <computed>
ip_configuration.0.load_balancer_backend_address_pools_ids.#: <computed>
ip_configuration.0.load_balancer_inbound_nat_rules_ids.#: <computed>
ip_configuration.0.name: "vaultNicConfiguration"
ip_configuration.0.primary: <computed>
ip_configuration.0.private_ip_address_allocation: "dynamic"
ip_configuration.0.private_ip_address_version: "IPv4"
ip_configuration.0.subnet_id: "/subscriptions/<redacted>/resourceGroups/swh-resource/providers/Microsoft.Network/virtualNetworks/swh-vnet/subnets/default"
location: "westeurope"
mac_address: <computed>
name: "vault-server-0-interface"
network_security_group_id: "/subscriptions/<redacted>/resourceGroups/swh-resource/providers/Microsoft.Network/networkSecurityGroups/worker-nsg"
private_ip_address: <computed>
private_ip_addresses.#: <computed>
resource_group_name: "euwest-vault"
tags.%: <computed>
virtual_machine_id: <computed>
[0m
[0m[32m [32m+[0m [32mazurerm_resource_group.euwest-vault
[0m id: <computed>
location: "westeurope"
name: "euwest-vault"
tags.%: "1"
tags.environment: "SWH Vault"
[0m
[0m[32m [32m+[0m [32mazurerm_storage_account.vault-storage
[0m id: <computed>
access_tier: "Cool"
account_encryption_source: "Microsoft.Storage"
account_kind: "BlobStorage"
account_replication_type: "LRS"
account_tier: "Standard"
enable_blob_encryption: "false"
enable_file_encryption: "false"
identity.#: <computed>
is_hns_enabled: "false"
location: "westeurope"
name: "vaultstorage"
primary_access_key: <computed>
primary_blob_connection_string: <computed>
primary_blob_endpoint: <computed>
primary_blob_host: <computed>
primary_connection_string: <computed>
primary_dfs_endpoint: <computed>
primary_dfs_host: <computed>
primary_file_endpoint: <computed>
primary_file_host: <computed>
primary_location: <computed>
primary_queue_endpoint: <computed>
primary_queue_host: <computed>
primary_table_endpoint: <computed>
primary_table_host: <computed>
primary_web_endpoint: <computed>
primary_web_host: <computed>
resource_group_name: "euwest-vault"
secondary_access_key: <computed>
secondary_blob_connection_string: <computed>
secondary_blob_endpoint: <computed>
secondary_blob_host: <computed>
secondary_connection_string: <computed>
secondary_dfs_endpoint: <computed>
secondary_dfs_host: <computed>
secondary_file_endpoint: <computed>
secondary_file_host: <computed>
secondary_location: <computed>
secondary_queue_endpoint: <computed>
secondary_queue_host: <computed>
secondary_table_endpoint: <computed>
secondary_table_host: <computed>
secondary_web_endpoint: <computed>
secondary_web_host: <computed>
tags.%: "1"
tags.environment: "SWH Vault"
[0m
[0m[32m [32m+[0m [32mazurerm_virtual_machine.vault-servers
[0m id: <computed>
availability_set_id: <computed>
delete_data_disks_on_termination: "false"
delete_os_disk_on_termination: "false"
identity.#: <computed>
location: "westeurope"
name: "vatican"
network_interface_ids.#: <computed>
os_profile.#: "1"
os_profile.3272332376.admin_password: <sensitive>
os_profile.3272332376.admin_username: "ardumont"
os_profile.3272332376.computer_name: "vatican"
os_profile.3272332376.custom_data: <computed>
os_profile_linux_config.#: "1"
os_profile_linux_config.69840937.disable_password_authentication: "true"
os_profile_linux_config.69840937.ssh_keys.#: "1"
os_profile_linux_config.69840937.ssh_keys.0.key_data: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDZarzgHrzUYspvrgSI6fszrALo92BDys7QOkJgUfZa9t9m4g7dUANNtwBiqIbqijAQPmB1zKgG6QTZC5rJkRy6KqXCW/+Qeedw/FWIbuI7jOD5WxnglbEQgvPkkB8kf1xIF7icRfWcQmK2je/3sFd9yS4/+jftNMPPXkBCxYm74onMenyllA1akA8FLyujLu6MNA1D8iLLXvz6pBDTT4GZ5/bm3vSE6Go8Xbuyu4SCtYZSHaHC2lXZ6Hhi6dbli4d3OwkUWz+YhFGaEra5Fx45Iig4UCL6kXPkvL/oSc9KGerpT//Xj9qz1K7p/IrBS8+eA4X69bHYYV0UZKDADZSn ardumont@bespin"
os_profile_linux_config.69840937.ssh_keys.0.path: "/home/ardumont/.ssh/authorized_keys"
resource_group_name: "euwest-vault"
storage_data_disk.#: <computed>
storage_image_reference.#: "1"
storage_image_reference.1202893792.id: ""
storage_image_reference.1202893792.offer: "Debian"
storage_image_reference.1202893792.publisher: "credativ"
storage_image_reference.1202893792.sku: "9"
storage_image_reference.1202893792.version: "latest"
storage_os_disk.#: "1"
storage_os_disk.0.caching: "ReadWrite"
storage_os_disk.0.create_option: "FromImage"
storage_os_disk.0.disk_size_gb: <computed>
storage_os_disk.0.managed_disk_id: <computed>
storage_os_disk.0.managed_disk_type: "Premium_LRS"
storage_os_disk.0.name: "vault-server-0_osdisk"
storage_os_disk.0.write_accelerator_enabled: "false"
tags.%: "1"
tags.environment: "SWH Vault"
vm_size: "Standard_DS2_v2"
[0m
[0m
[0m[1mPlan:[0m 4 to add, 0 to change, 0 to destroy.[0m
------------------------------------------------------------------------
Note: You didn't specify an "-out" parameter to save this plan, so Terraform
can't guarantee that exactly these actions will be performed if
"terraform apply" is subsequently run.
Migrated from D1495 (view on Phabricator)