avm-res-network-bastionhost
Azure/avm-res-network-bastionhost/azurerm
Terraform Azure Verified Resource Module for Bastion Host
Azure Verified Module for Azure Bastion This module provides a generic way to create and manage a Azure Bastion resource. To use this module in your Terraform configuration, you'll need to provide values for the required variables. Features The module supports the Developer, Basic, Standard and Premium SKU's for Azure Bastion. Example Usage Here is an example of how you can use this module in your Terraform configuration: ``terraform module "azure_bastion" { source = "Azure/avm-res-network-bastionhost/azurerm" enable_telemetry = true name = module.naming.bastion_host.name_unique resource_group_name = azurerm_resource_group.this.name location = azurerm_resource_group.this.location copy_paste_enabled = true file_copy_enabled = false sku = "Standard" ip_configuration = { name = "my-ipconfig"
| Name | Type | Description | Default |
|---|---|---|---|
| parent_id | string | The ID of the resource group where the Azure Bastion Host will be deployed. | |
| location | string | The location of the Azure Bastion Host and related resources. | |
| name | string | The name of the Azure Bastion Host. | |
| file_copy_enabled | bool | Specifies whether file copy functionality is enabled for the Azure Bastion Host. | false |
| sku | string | The SKU of the Azure Bastion Host. Valid values are 'Basic', 'Standard', 'Devel | "Basic" |
| virtual_network_id | string | The ID of the virtual the Developer SKU Bastion hosts is attached to. Required f | null |
| lock | object({ kind = string | Controls the Resource Lock configuration for this resource. The following proper | null |
| ip_configuration | object({ name | The IP configuration for the Azure Bastion Host. - `name` - The name of the IP | null |
| private_only_enabled | bool | Specifies whether the Azure Bastion Host is configured to be private only. This | false |
| scale_units | number | The number of scale units for the Azure Bastion Host. | 2 |
| ip_connect_enabled | bool | Specifies whether IP connect functionality is enabled for the Azure Bastion Host | false |
| kerberos_enabled | bool | Specifies whether Kerberos authentication is enabled for the Azure Bastion Host. | false |
| copy_paste_enabled | bool | Specifies whether copy-paste functionality is enabled for the Azure Bastion Host | true |
| zones | set(string) | The availability zones where the Azure Bastion Host is deployed. | [
"1",
"2",
"3"
] |
| tags | map(string) | (Optional) Tags of the resource. | null |
| session_recording_enabled | bool | Specifies whether session recording functionality is enabled for the Azure Basti | false |
| shareable_link_enabled | bool | Specifies whether shareable link functionality is enabled for the Azure Bastion | false |
| tunneling_enabled | bool | Specifies whether tunneling functionality is enabled for the Azure Bastion Host. | false |
| diagnostic_settings | map(object({ name | A map of diagnostic settings to create on the Key Vault. The map key is delibera | {} |
| enable_telemetry | bool | This variable controls whether or not telemetry is enabled for the module. For m | true |
| role_assignments | map(object({ role_definit | A map of role assignments to create on the <RESOURCE>. The map key is deliberate | {} |
dns_name — The FQDN of the Azure Bastion resourcename — The name of the Azure Bastion resourceresource — The Azure Bastion resourceresource_id — The ID of the Azure Bastion resource