vault
hashicorp/vault/azurerm
A Terraform Module for how to run Vault on AzureRM using Terraform and Packer
Vault Azure Module This repo contains a Module to deploy a Vault cluster on Azure using Terraform. Vault is an open source tool for managing secrets. This Module uses Azure Storage as a storage backend and a Consul server cluster as a high availability backend: !Vault architecture This Module includes: install-vault: This module can be used to install Vault. It can be used in a Packer template to create a Vault Azure Manager Image. run-vault: This module can be used to configure and run Vault. It can be used in a Custom Data script to fire up Vault while the server is booting. vault-cluster: Terraform code to deploy a cluster of Vault servers using an [Scale Set] (https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-scale-sets-create). private-tls-cert: Generat
| Name | Type | Description | Default |
|---|---|---|---|
| tenant_id | string | The Azure tenant ID | |
| client_id | string | The Azure client ID | |
| storage_account_name | string | The name of an Azure Storage Account. This SA should already exist | |
| secret_access_key | string | The Azure secret access key | |
| resource_group_name | string | The name of the Azure resource group consul will be deployed into. This RG shoul | |
| subscription_id | string | The Azure subscription ID | |
| storage_account_key | string | The key for storage_account_name. | |
| image_uri | string | The URI to the Azure image that should be deployed to the consul cluster. | |
| key_data | string | The SSH public key that will be added to SSH authorized_users on the consul inst | |
| allowed_inbound_cidr_blocks | list | A list of CIDR-formatted IP address ranges from which the Azure Instances will a | |
| location | string | The Azure region the consul cluster will be deployed in | "East US" |
| subnet_address | string | The subnet that consul resources will be deployed into | "10.0.10.0/24" |
| instance_size | string | The instance size for the servers | "Standard_A0" |
| consul_cluster_name | string | What to name the Consul cluster and all of its associated resources | "consul-example" |
| num_consul_servers | string | The number of Consul server nodes to deploy. We strongly recommend using 3 or 5. | 3 |
| vault_cluster_name | string | What to name the Vault cluster and all of its associated resources | "vault-example" |
| num_vault_servers | string | The number of Vault server nodes to deploy. We strongly recommend using 3 or 5. | 3 |
| address_space | string | The supernet for the resources that will be created | "10.0.0.0/16" |
vault_admin_user_nameload_balancer_ip_addressvault_cluster_size