Azure ユーザに捧げる Terraform Cloud 101 / Terraform Cloud 101 for Azure Users

Transcript

1. APC #41 2024.02.02 Taichi Nonoshita @nnstt1 Terraform Cloud 101 Azure

2. SIer → → APC 👦(4y) 👦👦(1y) Azure 9/19 Terraform Associate

   #apc8a1 #apc8a1

3. Terraform Cloud #apc8a1

4. 38% 20% 18% IaC Terraform Terraform IaC Terraform Terraform

5. Terraform Cloud 101 Azure Terraform

6. HashiCorp IaC 2023 BSL Terraform plan/apply

7. Terraform Terraform Terraform O’Reilly Japan, Inc

8. Terraform Terraform plan/apply Azure Blob Storage plan/apply GitHub Actions commit

   Amazon S3 Amazon DynamoDB

9. Terraform Cloud 101 Azure Terraform Cloud

10. HashiCorp PoC Terraform Terraform AI Terraform Cloud

11. Free 500 Free/Standard Plus Terraform Cloud 2023/5 Terraform Cloud updates

    plans with an enhanced Free tier and more flexibility

12. mode=”managed” random_id time_sleep Data Source null_resource terraform_data Terraform Cloud

13. Terraform Cloud 101 Azure Terraform Cloud

14. GitHub Azure Terraform Cloud Terraform Cloud main .tf Plan Apply

15. HCP HCP HCP GitHub SSO Organization Terraform Cloud https://app.terraform.io/public/signup/account

16. Workspace Workspace CLI

17. Organization Project Workspace Project Workspace VCS Workspace Workspace Organization /

    Project / Workspace Organization Project Workspace Project Workspace Workspace

18. Workspace Workflow …

19. Version Control Workflow GitHub Azure DevOps CLI-Driven Workflow terraform API-Driven

    Workflow Terraform Cloud API Terraform Cloud Workflow Version Control Workflow

20. Plan

21. 1. Microsoft Entra ID Terraform Cloud Azure 2. Terraform Cloud

    ID, ID, ID, etc. ID

22. 2 Terraform Cloud Key Value ARM_TENANT_ID Microsoft Entra ID ARM_SUBSCRIPTION_ID

    ID ARM_CLIENT_ID ID ARM_CLIENT_SECRET

23. Terraform Cloud Dynamic Provider Credentials OIDC Terraform Cloud Terraform Cloud

    ID Key Value ARM_TENANT_ID Microsoft Entra ID ARM_SUBSCRIPTION_ID ID TFC_AZURE_RUN_CLIENT_ID ID TFC_AZURE_PROVIDER_AUTH true

24. Workspace 10 ID 20 Workspace 2 ID organization:<Org >:project:<Project >:workspace:<workspace

    >:run_phase:plan organization:<Org >:project:<Project >:workspace:<workspace >:run_phase:apply Dynamic Provider Credentials

25. Plan

26. Terraform Cloud Workspace main .tf Plan Apply 3 Free/Standard/Plus /

    ID VCS Workspace Workspace

27. Terraform Cloud 101 Azure Terraform Cloud Free

28. Local Terraform Cloud main .tf Plan Apply dev .tf PR

    Plan .tf Plan

29. Version Control Workflow CLI-Driven Workflow cloud Plan • terraform plan

    Terraform Cloud • • terraform apply

30. Workspace Plan Apply Plan & Apply PR Plan

31. Terraform Sentinel Open Policy Agent (OPA) Terraform Registry Sentinel Policy

    as Code Free https://registry.terraform.io/browse/policies

32. Terraform Sentinel Azure VM, VMSS, App Service Plan, SQL Database,

    Cosmos DB, Managed Disk, Firewall, etc. Cost Estimation Free

33. Private Registry Free

34. Terraform Cloud 101 Azure Terraform Cloud Plus

35. Local Terraform Cloud main .tf Plan Apply dev .tf .tf

    Cost Estimation Policy check Terraform Terraform Private Registry

36. IaC IaC Terraform Drift Detection Plus

37. check check Terraform v1.5.0 Plan/Apply Terraform Registry AzureRM check App

    Service 30 Continuous Validation Plus check precondition postcondition Apply Apply

38. Terraform Cloud Terraform v1.6.0 Free(beta) Free

39. AI (Beta) Plus(beta)

40. HCL Terraform module Workspace No-Code Provisioning Plus .tf Private Registry

    Workspace .tf Plan/Apply Terraform Terraform

41. Dynamic Provider Credentials No-Code Provisioning Workspace ID Workspace Azure No-Code

    Provisioning Plus

42. Workspace Apply No-Code Provisioning …… Ephemeral workspace Plus

43. Terraform Cloud 101 Azure

44. Terraform Cloud PoC Terraform Cloud #apc8a1 Terraform Cloud Terraform No

    More Terraform Cloud Plus

45. Terraform Cloud 101 Azure

46. 2024/2/21( ) 15:00-16:00 APC https://www.ap-com.co.jp/seminar/post-10679

47. We are hiring

48. Terraform Cloud 101 Azure