From 8633a389cf72a671a00b37faa8727c9a09930a96 Mon Sep 17 00:00:00 2001 From: Rainer Halanek Date: Fri, 7 Jun 2024 09:53:48 +0200 Subject: [PATCH] enable rbac in kv --- main.tf | 60 ++++++++++++++++++++++++++++----------------------------- 1 file changed, 30 insertions(+), 30 deletions(-) diff --git a/main.tf b/main.tf index 5183918..b1179eb 100644 --- a/main.tf +++ b/main.tf @@ -65,33 +65,33 @@ resource "azurerm_monitor_diagnostic_setting" "vnet-diagnostics" { } } -# resource "azurerm_key_vault" "kv" { -# name = "kv-${var.prefix}349787" -# location = var.location -# resource_group_name = azurerm_resource_group.rg.name -# sku_name = "standard" -# tenant_id = data.azurerm_client_config.current.tenant_id -# enable_rbac_authorization = true -# } - -# resource "azurerm_monitor_diagnostic_setting" "kv-diagnostics" { -# name = "kv-diagnostics" -# target_resource_id = azurerm_key_vault.kv.id -# log_analytics_workspace_id = azurerm_log_analytics_workspace.law.id - -# log { -# category = "AuditEvent" - -# retention_policy { -# enabled = false -# } -# } - -# metric { -# category = "AllMetrics" - -# retention_policy { -# enabled = false -# } -# } -# } \ No newline at end of file +resource "azurerm_key_vault" "kv" { + name = "kv-${var.prefix}349787" + location = var.location + resource_group_name = azurerm_resource_group.rg.name + sku_name = "standard" + tenant_id = data.azurerm_client_config.current.tenant_id + enable_rbac_authorization = true +} + +resource "azurerm_monitor_diagnostic_setting" "kv-diagnostics" { + name = "kv-diagnostics" + target_resource_id = azurerm_key_vault.kv.id + log_analytics_workspace_id = azurerm_log_analytics_workspace.law.id + + log { + category = "AuditEvent" + + retention_policy { + enabled = false + } + } + + metric { + category = "AllMetrics" + + retention_policy { + enabled = false + } + } +} \ No newline at end of file