-
Notifications
You must be signed in to change notification settings - Fork 65
Provider configuration
The module makes use of both AzureRM and AzAPI providers.
Also see required permissions for more information.
The AzureRM provider is used to manage the following resources:
- Subscription alias (
azurerm_subscription) - Subscription management group association (
azurerm_management_group_subscription_association)
The AzureRM provider must be configured with a subscription_id.
This must be an EXISTING subscription id, one that has not been created by this module.
The tenant_id property must also be set, and should reflect the tenant that any created subscriptions will be associated with.
For more information, including how to authenticate the provider, see the AzureRM provider documentation.
The AzAPI provider is used to manage the following resources:
- Resource locks
- Role assignments
- Virtual network
- Virtual network peering
- Virtual WAN hub virtual network connection
If you use az cli authentication, it is possible to not specify a subscription id for the provider using the --allow-no-subscriptions flag of az login.
A subscription id is not required as this module makes use of the parent_id property to deploy resources at different scopes.
This is also possible using the GitHub Actions Azure/login action.
However, if you must specify a subscription id, then use an existing subscription id, one that has not been created by this module.
For more information, including how to authenticate the provider, see the AzureRM provider documentation.
This wiki is being actively developed
If you discover any documentation bugs or would like to request new content, please raise them as an issue or feel free to contribute to the wiki via a pull request.
The wiki docs are located in the repository in the docs/wiki/ folder.