Skip to content

security/managed_identity

Overview

This page documents the Terraform module implementation, key configuration surfaces, and how it integrates with CAF.

Dependency diagram (Mermaid)

graph TD azurecaf_name.msi["azurecaf_name.msi"] azurerm_user_assigned_identity.msi["azurerm_user_assigned_identity.msi"] time_sleep.propagate_to_azuread["time_sleep.propagate_to_azuread"] azurerm_user_assigned_identity.msi --> azurecaf_name.msi time_sleep.propagate_to_azuread --> azurerm_user_assigned_identity.msi

Module Reference

Category: security
Path: modules/security/managed_identity
Azure Resources: azurecaf_name, azurerm_user_assigned_identity, time_sleep

Inputs

Name Description Type Required Default Validation
"client_config" "Client configuration object" any yes - -
"name" any yes - -
"global_settings" "Global settings object (see module README.md)" any yes - -
"settings" "The settings for the Azure resource." any yes - -
"tags" any no - -
"location" "(Required) Specifies the supported Azure location where to create the resource. Changing this forces a new resource ... string yes - -
"base_tags" "Base tags for the resource to be inherited from the resource group." map(any) yes - -
"resource_group_name" "Name of the existing resource group to deploy the resource" any yes - -

Outputs

Name Description Sensitive Value
"id" - azurerm_user_assigned_identity.msi.id
"principal_id" - azurerm_user_assigned_identity.msi.principal_id
"client_id" - azurerm_user_assigned_identity.msi.client_id
"rbac_id" "This attribute is used to set the role assignment" - azurerm_user_assigned_identity.msi.principal_id
"name" - azurerm_user_assigned_identity.msi.name
"resource_group_name" - azurerm_user_assigned_identity.msi.resource_group_name

Sources

  • modules/security/managed_identity/locals.tf
  • modules/security/managed_identity/main.tf
  • modules/security/managed_identity/managed_identity.tf
  • modules/security/managed_identity/outputs.tf
  • modules/security/managed_identity/variables.tf