» vault_azure_auth_backend_config
Configures the Azure Auth Backend in Vault.
This resource sets the access key and secret key that Vault will use when making API requests on behalf of an Azure Auth Backend. It can also be used to override the URLs Vault uses when making those API requests.
For more information, see the Vault docs.
Important All data provided in the resource configuration will be written in cleartext to state and plan files generated by Terraform, and will appear in the console output when Terraform runs. Protect these artifacts accordingly. See the main provider documentation for more details.
» Example Usage
resource "vault_auth_backend" "example" {
type = "azure"
}
resource "vault_azure_auth_backend_config" "example" {
backend = "${vault_auth_backend.example.path}"
tenant_id = "11111111-2222-3333-4444-555555555555"
client_id = "11111111-2222-3333-4444-555555555555"
client_secret = "01234567890123456789
resource = "https://vault.hashicorp.com"
}
» Argument Reference
The following arguments are supported:
-
tenant_id
- (Required) The tenant id for the Azure Active Directory organization. -
resource
- (Required) The configured URL for the application registered in Azure Active Directory. -
backend
- (Optional) The path the Azure auth backend being configured was mounted at. Defaults toazure
. -
client_id
- (Optional) The client id for credentials to query the Azure APIs. Currently read permissions to query compute resources are required. -
client_secret
- (Optional) The client secret for credentials to query the Azure APIs. -
environment
- (Optional) The Azure cloud environment. Valid values: AzurePublicCloud, AzureUSGovernmentCloud, AzureChinaCloud, AzureGermanCloud. Defaults toAzurePublicCloud
.
» Attributes Reference
No additional attributes are exported by this resource.
» Import
Azure auth backends can be imported using auth/
, the backend
path, and /config
e.g.
$ terraform import vault_azure_auth_backend_config.example auth/azure/config