Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Azure ユーザに捧げる Terraform Cloud 101 / Terraform C...

ののし
February 02, 2024
0
460

Azure ユーザに捧げる Terraform Cloud 101 / Terraform Cloud 101 for Azure Users

ののし

February 02, 2024
Tweet

More Decks by ののし

See All by ののし
HCP Vault Secrets でシークレット管理を始めよう / Getting Started with Secret Management Using HCP Vault Secrets
nnstt1
0
41
HashiCorp Ambassador が予想!Red Hat × HashiCorp の未来 / The Future of Red Hat and HashiCorp
nnstt1
1
120
Terraform を使った Front Door の小ネタ / Terraform for Front Door
nnstt1
0
76
つまずきから学ぶ Backstage の Golden Path 構築
nnstt1
2
910
AKS と HCP Vault の組み合わせでつまずいた話 / Stumbles with AKS and HCP Vault combination
nnstt1
1
96
Vault Secrets Operator と HCP Vault を使った AKS のシークレット管理 / AKS secret management using the Vault Secrets Operator and HCP Vault
nnstt1
0
110
Vault Secrets Operator と Dynamic Secrets で安全にシークレットを使おう / Vault Secrets Operator and Dynamic Secrets
nnstt1
4
780
OpenShift を身近に感じる Single Node OpenShift と OpenShift Local / Single Node OpenShift and OpenShift Local that makes OpenShift familiar
nnstt1
1
980
カンタンお手軽?!k8sから使えるラズパイ分散ストレージ / Raspberry Pi distributed storage from k8s
nnstt1
1
1.5k

Featured

See All Featured
Building Your Own Lightsaber
phodgson
103
6.1k
GraphQLの誤解/rethinking-graphql
sonatard
67
10k
Build your cross-platform service in a week with App Engine
jlugia
229
18k
[RailsConf 2023] Rails as a piece of cake
palkan
52
4.9k
Done Done
chrislema
181
16k
Unsuck your backbone
ammeep
668
57k
Gamification - CAS2011
davidbonilla
80
5k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
506
140k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
131
33k
Bootstrapping a Software Product
garrettdimon
PRO
305
110k
A Modern Web Designer's Workflow
chriscoyier
693
190k

Transcript

  1. APC #41 2024.02.02 Taichi Nonoshita @nnstt1 Terraform Cloud 101 Azure

  2. SIer → → APC 👦(4y) 👦👦(1y) Azure 9/19 Terraform Associate

    #apc8a1 #apc8a1

  3. Terraform Cloud #apc8a1

  4. 38% 20% 18% IaC Terraform Terraform IaC Terraform Terraform

  5. Terraform Cloud 101 Azure Terraform

  6. HashiCorp IaC 2023 BSL Terraform plan/apply

  7. Terraform Terraform Terraform O’Reilly Japan, Inc

  8. Terraform Terraform plan/apply Azure Blob Storage plan/apply GitHub Actions commit

    Amazon S3 Amazon DynamoDB

  9. Terraform Cloud 101 Azure Terraform Cloud

  10. HashiCorp PoC Terraform Terraform AI Terraform Cloud

  11. Free 500 Free/Standard Plus Terraform Cloud 2023/5 Terraform Cloud updates

    plans with an enhanced Free tier and more flexibility

  12. mode=”managed” random_id time_sleep Data Source null_resource terraform_data Terraform Cloud

  13. Terraform Cloud 101 Azure Terraform Cloud

  14. GitHub Azure Terraform Cloud Terraform Cloud main .tf Plan Apply

  15. HCP HCP HCP GitHub SSO Organization Terraform Cloud https://app.terraform.io/public/signup/account

  16. Workspace Workspace CLI

  17. Organization Project Workspace Project Workspace VCS Workspace Workspace Organization /

    Project / Workspace Organization Project Workspace Project Workspace Workspace

  18. Workspace Workflow …

  19. Version Control Workflow GitHub Azure DevOps CLI-Driven Workflow terraform API-Driven

    Workflow Terraform Cloud API Terraform Cloud Workflow Version Control Workflow

  20. Plan

  21. 1. Microsoft Entra ID Terraform Cloud Azure 2. Terraform Cloud

    ID, ID, ID, etc. ID

  22. 2 Terraform Cloud Key Value ARM_TENANT_ID Microsoft Entra ID ARM_SUBSCRIPTION_ID

    ID ARM_CLIENT_ID ID ARM_CLIENT_SECRET

  23. Terraform Cloud Dynamic Provider Credentials OIDC Terraform Cloud Terraform Cloud

    ID Key Value ARM_TENANT_ID Microsoft Entra ID ARM_SUBSCRIPTION_ID ID TFC_AZURE_RUN_CLIENT_ID ID TFC_AZURE_PROVIDER_AUTH true

  24. Workspace 10 ID 20 Workspace 2 ID organization:<Org >:project:<Project >:workspace:<workspace

    >:run_phase:plan organization:<Org >:project:<Project >:workspace:<workspace >:run_phase:apply Dynamic Provider Credentials

  25. Plan

  26. Terraform Cloud Workspace main .tf Plan Apply 3 Free/Standard/Plus /

    ID VCS Workspace Workspace

  27. Terraform Cloud 101 Azure Terraform Cloud Free

  28. Local Terraform Cloud main .tf Plan Apply dev .tf PR

    Plan .tf Plan

  29. Version Control Workflow CLI-Driven Workflow cloud Plan • terraform plan

    Terraform Cloud • • terraform apply

  30. Workspace Plan Apply Plan & Apply PR Plan

  31. Terraform Sentinel Open Policy Agent (OPA) Terraform Registry Sentinel Policy

    as Code Free https://registry.terraform.io/browse/policies

  32. Terraform Sentinel Azure VM, VMSS, App Service Plan, SQL Database,

    Cosmos DB, Managed Disk, Firewall, etc. Cost Estimation Free

  33. Private Registry Free

  34. Terraform Cloud 101 Azure Terraform Cloud Plus

  35. Local Terraform Cloud main .tf Plan Apply dev .tf .tf

    Cost Estimation Policy check Terraform Terraform Private Registry

  36. IaC IaC Terraform Drift Detection Plus

  37. check check Terraform v1.5.0 Plan/Apply Terraform Registry AzureRM check App

    Service 30 Continuous Validation Plus check precondition postcondition Apply Apply

  38. Terraform Cloud Terraform v1.6.0 Free(beta) Free

  39. AI (Beta) Plus(beta)

  40. HCL Terraform module Workspace No-Code Provisioning Plus .tf Private Registry

    Workspace .tf Plan/Apply Terraform Terraform

  41. Dynamic Provider Credentials No-Code Provisioning Workspace ID Workspace Azure No-Code

    Provisioning Plus

  42. Workspace Apply No-Code Provisioning …… Ephemeral workspace Plus

  43. Terraform Cloud 101 Azure

  44. Terraform Cloud PoC Terraform Cloud #apc8a1 Terraform Cloud Terraform No

    More Terraform Cloud Plus

  45. Terraform Cloud 101 Azure

  46. 2024/2/21( ) 15:00-16:00 APC https://www.ap-com.co.jp/seminar/post-10679

  47. We are hiring

  48. Terraform Cloud 101 Azure