Stikkord: terraform
-
How I Accidentally Spent a stupid amount on a Test Firewall (And Built a Solution So It Never Happens Again)
Picture this: You’re sitting on a beach in Thailand, coconut in hand, completely disconnected from work. Life is good. Then you make the mistake of checking your Azure bill. $650 For one month. For a test subscription that should cost maybe $50. The culprit? One Azure Firewall. Premium tier. Running 24/7 for two weeks while I was…
-
Simplifying Azure IPAM Hierarchies with Terraform: Two Approaches
Azure Virtual Network Manager (AVNM) has recently gone GA with a powerful new feature: IP Address Management (IPAM). I’ve been diving deep into this feature—exploring how to implement it using Infrastructure as Code (IaC) and designing operational models around it. Link to the module. While working with IPAM, I encountered a few challenges when designing a…
-
How to get custom condition as IaC for the role Role Based Access Control Administrator
TL;DR The new Azure Role, “Role Based Access Control Administrator,” allows for granular control over role assignments. This blog post details the creation of a Terraform module to implement this functionality. The process involves understanding the functionality via the Azure portal, writing the code, and dealing with unsupported functions in the azurerm provider from Terraform…
-
Azure Landing Zones: Enhancing Security and Simplifying Resource Management with Access Packages
What is Access Packages? Access packages are a powerful feature of Microsoft Entra ID that can help organizations manage identity and access lifecycle at scale. Access packages must be in a container called a catalog, which defines what resources you can add to your access package. If you don’t specify a catalog, your access package…
-
Protecting Your Organization’s Resources with Microsoft Entra’s (Azure AD’s) Powerful Tools
In today’s digital age, protecting your organization’s resources is more important than ever. With the rise of cyber threats and data breaches, it’s crucial to have the right tools in place to manage access and enforce security policies. Microsoft Entra ID (Azure Active Directory (Azure AD)) offers a range of powerful features to help you…
-
Tips and tricks when using the ALZ terraform module
I have been playing around with the terraform module from Microsoft for the Azure Landing Zone (ALZ) for some time now. It is one of the technical implementation option for the ALZ under the CAF framework. While the module offers commendable features, its utilization and reverse engineering process can be intricate at time. I have…
Håvard Løkensgard 