Feature: Template for Dedicated Service Principal Generation?

[jimbrig]

Would you be able to make a template (similar to the remote storage backend template) but for setting up a dedicated Terraform Service Principal, or AD Application, to authenticate to Terraform before attempting to run Terraform.

For example, to run terraform in CI/CD you need to have a way to authenticate without user credentials on from your local azure-cli configuration. Therefore, as a pre-requisite to these templates, you could have a separate pipeline that uses azure-cli or resource manager service connection to create that RBSP and retrieve the credentials, stash then (keyvaul / devops variable group) and then proceed to the terraform IaC pipelines.