search

adamrushuk / terraform-azure

Secure Azure Provisioning using Terraform
https://adamrushuk.github.io/secure-azure-provisioning-with-terraform-backend-and-azure-key-vault/
MIT License
17 stars 13 forks source link

Admin User access policy setup error #7

Open Laxman-SM opened 4 years ago

Laxman-SM commented 4 years ago

Hi,

Without Azure AD we can't use this script, also this create resources on every execution.

WARNING: The provided information does not map to an AD object id. WARNING: Access policy is not set. No user or application has access permission to use this vault. This can happen if the vault was created by a service principal. Please use Set-AzKeyVaultAccessPolicy to set access policies. SUCCESS!

Setting KeyVault Access Policy for Admin User: [TERRALADM].....................ERROR! Set-AzKeyVaultAccessPolicy : Cannot validate argument on parameter 'ObjectId'. The argument is null or empty. Provide an argument that is not null or empty, and then try the command again. At /home/rubik/Desktop/DocumentM/terraform-azure/scripts/ConfigureAzureForSecureTerraformAccess.ps1:264 char:58

adamrushuk commented 4 years ago

Hi Laxman,

Without Azure AD we can't use this script

Correct. You will need to provide an Azure AD Admin username for this script to work in it's current form. How would you like this to work instead?

also this create resources on every execution.

This script is not idempotent, so you will need to do some cleanup if it fails for some reason. I mainly use Azure CLI now, as most commands are idempotent.

If you wish to add these changes, I will accept PRs.

Cheers, Adam