/terraform-azure-mdc-defender-plans-azure

Primary LanguageHCLMIT LicenseMIT

Microsoft Defender for Cloud

Terraform module for MDC onboarding

Requirements

Name Version
terraform >= 1.3
azurerm >= 3.47, < 4.0

Providers

Name Version
azurerm >= 3.47, < 4.0

Modules

No modules.

Resources

Name Type
azurerm_role_assignment.va_auto_provisioning_containers_role resource
azurerm_role_assignment.va_auto_provisioning_la_role resource
azurerm_role_assignment.va_auto_provisioning_vm_role resource
azurerm_security_center_auto_provisioning.auto_provisioning resource
azurerm_security_center_auto_provisioning.la_auto_provisioning resource
azurerm_security_center_setting.setting_mcas resource
azurerm_security_center_subscription_pricing.asc_plans resource
azurerm_subscription_policy_assignment.container resource
azurerm_subscription_policy_assignment.sql resource
azurerm_subscription_policy_assignment.vm resource
azurerm_policy_definition.container_policies data source
azurerm_policy_definition.la_policies data source
azurerm_policy_definition.vm_policies data source
azurerm_role_definition.container_roles data source
azurerm_role_definition.la_roles data source
azurerm_role_definition.vm_roles data source
azurerm_subscription.current data source

Inputs

Name Description Type Default Required
default_status (Optional) Default status to use. Valid values are true for enable, false for disable. bool true no
default_subplan (Optional) Resource type pricing default subplan. Contact your MSFT representative for possible values string null no
location (Optional) The location/region where the policy should exist. string "West Europe" no
mdc_databases_plans (Optional) Set of all MDC databases plans set(string) 
[
  "OpenSourceRelationalDatabases",
  "SqlServers",
  "SqlServerVirtualMachines",
  "CosmosDbs"
]
 no
mdc_plans_list (Optional) Set of all MDC plans set(string) 
[
  "AppServices",
  "Arm",
  "CloudPosture",
  "Containers",
  "Dns",
  "KeyVaults",
  "OpenSourceRelationalDatabases",
  "SqlServers",
  "SqlServerVirtualMachines",
  "CosmosDbs",
  "StorageAccounts",
  "VirtualMachines"
]
 no
statuses (Optional) A map of the status to use, the key is resource type and the value is status. This variable takes precedence over var.default_status. map(bool) {} no
subplans (Optional) A map of resource type pricing subplan, the key is resource type. This variable takes precedence over var.default_subplan. Contact your MSFT representative for possible values map(string) {} no

Outputs

Name Description
plans_details All plans details
subscription_pricing_id The subscription pricing ID