Skip to content

security/disk_encryption_set

Overview

This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.

Dependency diagram (Mermaid)

graph TD azurerm_disk_encryption_set.encryption_set["azurerm_disk_encryption_set.encryption_set"] azurerm_key_vault_access_policy.des["azurerm_key_vault_access_policy.des"] azurerm_key_vault_access_policy.des --> azurerm_disk_encryption_set.encryption_set

Module Reference

Category: security
Path: modules/security/disk_encryption_set
Azure Resources: azurerm_disk_encryption_set, azurerm_key_vault_access_policy

Inputs

Name Description Type Required Default Validation
"global_settings" any yes - -
"client_config" "Client configuration object (see module README.md)." any yes - -
"base_tags" any no {} -
"settings" "The settings for the Azure resource." any yes - -
"keyvault_id" any no - -
"key_vault_key_id" any yes - -
"resource_group_name" any yes - -
"location" any yes - -
"managed_identities" any yes - -

Outputs

Name Description Sensitive Value
"principal_id" - azurerm_disk_encryption_set.encryption_set.identity.0.principal_id
"tenant_id" - azurerm_disk_encryption_set.encryption_set.identity.0.tenant_id
"id" - azurerm_disk_encryption_set.encryption_set.id
"rbac_id" - azurerm_disk_encryption_set.encryption_set.identity.0.principal_id

Sources

  • modules/security/disk_encryption_set/disk_encryption_set.tf
  • modules/security/disk_encryption_set/keyvault_policy.tf
  • modules/security/disk_encryption_set/main.tf
  • modules/security/disk_encryption_set/outputs.tf
  • modules/security/disk_encryption_set/variables.tf