Skip to content

Latest commit

 

History

History
76 lines (62 loc) · 3.04 KB

azure_account.md

File metadata and controls

76 lines (62 loc) · 3.04 KB
page_title subcategory description
cyberark_azure_account Resource - cyberark
Microsoft Azure Account Resource This resource is responsible for creating a new privileged account that contains all the required Azure information as mentioned below in Privilege Cloud. For more information click here https://docs.cyberark.com/privilege-cloud-shared-services/latest/en/Content/WebServices/Add%20Account%20v10.htm.

cyberark_azure_account (Resource)

Microsoft Azure Account Resource

This resource is responsible for creating a new privileged account that contains all the required Azure information as mentioned below in Privilege Cloud.

For more information click here.

Example Usage

variable "secret_key" {
  type      = string
  sensitive = true
}

resource "cyberark_azure_account" "mskey" {
  name                        = "user-ms"
  address                     = "1.2.3.4"
  username                    = "user-ms"
  platform                    = "MS_TF"
  safe                        = "TF_TEST_SAFE"
  secret                      = var.secret_key
  secret_name_in_secret_store = "azure_testing"
  sm_manage                   = false
  sm_manage_reason            = "No CPM Associated with Safe."
  ms_app_id                   = "Application ID"
  ms_app_obj_id               = "Application Object ID"
  ms_key_id                   = "Key ID"
  ms_ad_id                    = "AD Key ID"
  ms_duration                 = "300"
  ms_pop                      = "yes"
  ms_key_desc                 = "key descriptiong with spaces"
}

Schema

Required

  • address (String) URI, URL or IP associated with the credential.
  • ms_app_id (String) Microsoft Azure Application ID.
  • ms_app_obj_id (String) Microsoft Azure Application Object ID.
  • ms_key_id (String) Microsoft Azure Key ID.
  • name (String) Custom Account Name for customizing the object name in a safe.
  • platform (String) Management Platform associated with the Database Credential.
  • safe (String) Target Safe where the credential object will be onboarded.
  • secret (String, Sensitive) Password of the credential object.
  • username (String) Username of the Credential object.

Optional

  • ms_ad_id (String) Microsoft Azure Active Directory ID.
  • ms_duration (String) Duration.
  • ms_key_desc (String) Key Description.
  • ms_pop (String) Populate if not exist.
  • secret_name_in_secret_store (String) Name of the credential object.
  • sm_manage (Boolean) Automatic Management of a credential. Optional Value.
  • sm_manage_reason (String) If sm_manage is false, provide reason why credential is not managed.

Read-Only

  • id (String) CyberArk Privilege Cloud Credential ID- Generated from CyberArk after onboarding account into a safe.
  • last_updated (String)
  • secret_type (String) Should always be 'password' for Azure Account.