Skip to content

security/disk_encryption_set

Overview

This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.

Dependency diagram (Mermaid)

graph TD azurerm_disk_encryption_set.encryption_set["azurerm_disk_encryption_set.encryption_set"] azurerm_key_vault_access_policy.des["azurerm_key_vault_access_policy.des"] azurerm_key_vault_access_policy.des --> azurerm_disk_encryption_set.encryption_set

Module Reference

Category: security
Path: modules/security/disk_encryption_set
Azure Resources: azurerm_disk_encryption_set, azurerm_key_vault_access_policy

Inputs

Name Description Type Required Default Validation
global_settings any yes - -
client_config Client configuration object (see module README.md). any yes - -
base_tags any no {} -
settings The settings for the Azure resource. any yes - -
keyvault_id any no - -
key_vault_key_id any yes - -
resource_group_name any yes - -
location any yes - -
managed_identities any yes - -

Outputs

Name Description Sensitive Value
principal_id - azurerm_disk_encryption_set.encryption_set.identity[0].principal_id
tenant_id - azurerm_disk_encryption_set.encryption_set.identity[0].tenant_id
id - azurerm_disk_encryption_set.encryption_set.id
rbac_id - azurerm_disk_encryption_set.encryption_set.identity[0].principal_id

Sources

  • modules/security/disk_encryption_set/disk_encryption_set.tf
  • modules/security/disk_encryption_set/keyvault_policy.tf
  • modules/security/disk_encryption_set/main.tf
  • modules/security/disk_encryption_set/outputs.tf
  • modules/security/disk_encryption_set/variables.tf