Templates the setup the Terraform remoate backend in Azure.
- Creates a Service Principals setup of the Azure infrastructure.
- The password for the service principal expires after 5 years.
- If roles must be assigned to users with the service principal, then the service principal must be given the role
User Access Adminstrator.
- The prerequisite is the above service principal.
- Creates a resource group.
- Creates an Azure Storage Account.
- Creates a container in the Azure Storage Account.
- Sets firewall rules on the Azure Storage Account, if necessary..
- Scripts can be used as the basis for a local deployment of Azure resources in a PowerShell session or BASH session.
- The prerequisite is the installation of the Azure CLI and terraform.
ARM_CLIENT_ID="00000000-0000-0000-0000-000000000000"App ID des Service Principal (not the Object ID)ARM_CLIENT_SECRET="00000000-0000-0000-0000-000000000000"Client secret des Service PrincipalsARM_SUBSCRIPTION_ID="00000000-0000-0000-0000-000000000000"Azure Subscription IDARM_TENANT_ID="00000000-0000-0000-0000-000000000000"Tenant IDTF_VAR_client_secret="00000000-0000-0000-0000-000000000000"Variable is declared in the filemain.tfand Terraform reads the value from the environment variable.TF_CLI_ARGS_initparameter for theterraform initcommand.TF_CLI_ARGS_planparameter for theterraform plancommand.TF_CLI_ARGS_applyparameter for theterraform applycommand.TF_CLI_ARGS_destroyparameter for theterraform destroycommand.
TF_STATE_ENV="<customer>-<project>-<environment>"ID of the state file.<customer>three characters of the customer.<project>three characters of the project<environment>up to four charactersdev|int|poc|prod|qa|testTF_STATE_STORAGE_ACCOUNT_NAME="<STORAGE_ACCOUNT_NAME>"name of the Azure Storage Account.
TF_STATE_CONTAINER_NAME="statefiles"name of the container in the Azure Storage Account.TF_STATE_KEY="${TF_STATE_ENV}.tfstate"name of the state file in the container.