Support for integrity monitor in azurerm_linux_virtual_machine module

[d-mankowski-synerise]

Is there an existing issue for this?

• [X] I have searched the existing issues

Community Note

• Please vote on this issue by adding a :thumbsup: reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

Hello, when creating a new trusted lunch virtual machine, it is possible to configure security features:

In azurerm_linux_virtual_machine module I can find variables to enable security boot and vTPM, however, it seems that is it not possible to enable Integrity monitor at the moment

New or Affected Resource(s)/Data Source(s)

azurerm_linux_virtual_machine

Potential Terraform Configuration

integrity_monitor_enabled = <true/false>

References

No response

[myc2h6o]

@d-mankowski-synerise there is currently no properties from Swagger to toggle this. From the Azure document, this is done by installing a VM extension https://learn.microsoft.com/azure/virtual-machines/boot-integrity-monitoring-overview?tabs=template, you can refer to azurerm_virtual_machine_extension for how to use this resource.