azuread/users¶
Overview¶
This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.
Dependency diagram (Mermaid)¶
graph TD
azuread_user.account["azuread_user.account"]
azurecaf_name.account["azurecaf_name.account"]
azurerm_key_vault_secret.aad_user_name["azurerm_key_vault_secret.aad_user_name"]
azurerm_key_vault_secret.aad_user_password["azurerm_key_vault_secret.aad_user_password"]
data.azuread_domains.aad_domains["data.azuread_domains.aad_domains"]
random_password.pwd["random_password.pwd"]
time_rotating.pwd["time_rotating.pwd"]
azuread_user.account --> azurecaf_name.account
azuread_user.account --> random_password.pwd
azurerm_key_vault_secret.aad_user_name --> azuread_user.account
azurerm_key_vault_secret.aad_user_password --> random_password.pwd
azurerm_key_vault_secret.aad_user_password --> time_rotating.pwd
random_password.pwd --> time_rotating.pwd
Module Reference¶
Category: azuread
Path: modules/azuread/users
Azure Resources: azuread_user, azurecaf_name, azurerm_key_vault_secret, random_password, time_rotating
Inputs¶
| Name | Description | Type | Required | Default | Validation |
|---|---|---|---|---|---|
global_settings |
Global settings object (see module README.md) | any |
yes | - |
- |
client_config |
Client configuration object (see module README.md). | any |
yes | - |
- |
settings |
The settings for the Azure resource. | any |
yes | - |
- |
keyvaults |
any |
yes | - |
- | |
password_policy |
Map to define the password policy to apply | any |
no | {"expire_in_days": 180, "length": 250, "number": true, "rotation": {"months": 1}, "special": false, "upper": true} |
- |
Outputs¶
| Name | Description | Sensitive | Value |
|---|---|---|---|
rbac_id |
This attribute is used to set the role assignment | - | azuread_user.account.object_id |
id |
- | azuread_user.account.id |
Sources¶
modules/azuread/users/data.tfmodules/azuread/users/main.tfmodules/azuread/users/outputs.tfmodules/azuread/users/user.tfmodules/azuread/users/variables.tf