How to create azure app registration and client secret using terraform
I am trying to create an Terraform code for Azure app registration and client secret (A service principal with Read access to the subscription)
Basically, I am trying to Integrate Azuresafe with Terraform and trying to identify how to configure step by step.https://docs.safe.security/docs/azure. If there is already any terrafrom code out there to review etc.. will be helpful or for this I would like to understand how to create a app registration and clien secret.
# Create new app registration
resource "azuread_application" "app" {
display_name = var.azuread_app_display_name
}
# Create a service principal
resource "azuread_service_principal" "app" {
application_id = azuread_application.app.application_id
}
# Create Service Principal password
resource "azuread_service_principal_password" "app" {
application_object_id = azuread_application.app.object_id
}
I tried to create Azure app registration, Service principal & client secret using Terraform and I was successfully able to provision them
Here as per the requirement, we need need to provision Azure App registration & its secret, Service principal in read-only access. For this, we need contributor-level access to our active subscription.
my terraform code
main.tf
resource "azuread_application" "app" {
display_name = "Azuresafe Application VK"
}
resource "azuread_service_principal" "app" {
application_id = azuread_application.app.application_id
}
resource "azuread_application_password" "example" {
application_object_id = azuread_application.app.object_id
}
# Output the Service Principal and password
output "app" {
value = azuread_application.app.id
sensitive = true
}
output "app_password" {
value = azuread_application_password.example.value
sensitive = true
}
Output:
now execute the terrafrom_output command to check the app and app_secret
terraform_output
Portal Output:
App Registration
App registration password
- How to install multiple or two versions of Terraform?
- Terraform will damage your computer on macOS Intel
- Upgrade terraform to specific version
- Should I commit my .terraform-version file?
- Terraform code not creating multiple rules in Azure Storage lifecycle
- How to resolve 'Step Functions State Machine is not authorized to create managed-rule'?
- How to output URL of Azure Logic Apps with Terraform?
- Terraform fails to import key pair with Amazon EC2
- Check if the resource exists before using data
- Invalid arn error for terraform code with kms data resource
- Nat Gateway Profile for AKS using terraform
- Can I use helm for fire and forget k8s Jobs?
- Does AWS VPC Endpoint require subnets?
- Maps containing keys with spaces are not properly validated when those keys are used as resource names
- Adding additional storage to VM with terraform
- EC2 can't get a public ip address after stop-start
- Terraform Cloud Run Service URL
- Can I use condition's variable in the error_message of a Terraform variable validation?
- OPA eval command
- Rancher - controlplane node got into worker pool
- Terraform for-each with list of objects
- Timezone error creating SQL instance in Azure using Terraform
- Terraform shows `InvalidGroup.NotFound` while creating an EC2 instance
- How can I use Terraform to run a script to initialise the database on a newly-created Azure mssql_virtual_machine?
- 'terraform plan' NOT updating state file
- Pass a Terraform Output to an Azure DevOps Varibale
- Terraform outputs 'Error: Variables not allowed' when doing a plan
- terraform conditional resource creation for_each and list
- How to get the "Function Url" which is with in a Function-App deployed using Terraform?
- Unable to ping azure vm1 to azure vm2