TechQA.

Can somene help me how to give the specific service principal name for azure custom policy in terraform code

45 views Asked by At

The Scenario is:We need to create resources in azure portal through terraform cloud only by using service principals and azure portal shouldn't allow creation of resources by other means. (No manual creation in azure portal,and also by SVM's tools like vs code) The following code which i tried:

resource "azurerm_policy_definition" "policych" {
  name         = "PolicyTestSP"
  policy_type  = "Custom"
  mode         = "Indexed"
  display_name = "Allow thru SP"

  metadata = <<METADATA
    {
    "category": "General"
    }

METADATA


  policy_rule = <<POLICY_RULE
    {
    "if": {
        "not": {
          "field": "type",
          "equals": "https://app.terraform.io/"
          
        }
        
      },
      "then": {
        "effect": "deny"
      }
    }
POLICY_RULE
}

resource "azurerm_policy_assignment" "policych" {
  name                 = "Required servive-principles"
  display_name         = "Allow thru SP"
  description          = " Require SP Authentication'"
  policy_definition_id = "${azurerm_policy_definition.policych.id}"
  scope                = "/subscriptions/xxxx-xxxx-xxxx-xxxx"
}
azure-devops azureportal azure-policy azure-service-principal terraform-cloud
Original Q&A
0

There are 0 answers

Related Questions in AZURE-DEVOPS

Related Questions in AZUREPORTAL

Related Questions in AZURE-POLICY

Related Questions in AZURE-SERVICE-PRINCIPAL

Related Questions in TERRAFORM-CLOUD

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions