Manages an Attestation Provider.
resource "azurerm_resource_group" "example" {
name = "example-resources"
location = "West Europe"
}
resource "azurerm_attestation_provider" "example" {
name = "exampleprovider"
resource_group_name = azurerm_resource_group.example.name
location = azurerm_resource_group.example.location
policy_signing_certificate_data = file("./example/cert.pem")
}
The following arguments are supported:
name
- (Required) The name which should be used for this Attestation Provider. Changing this forces a new resource to be created.
resource_group_name
- (Required) The name of the Resource Group where the attestation provider should exist. Changing this forces a new resource to be created.
location
- (Required) The Azure Region where the Attestation Provider should exist. Changing this forces a new resource to be created.
policy_signing_certificate_data
- (Optional) A valid X.509 certificate (Section 4 of RFC4648). Changing this forces a new resource to be created.
open_enclave_policy_base64
- (Optional) Specifies the base64 URI Encoded RFC 7519 JWT that should be used for the Attestation Policy.
sgx_enclave_policy_base64
- (Optional) Specifies the base64 URI Encoded RFC 7519 JWT that should be used for the Attestation Policy.
tpm_policy_base64
- (Optional) Specifies the base64 URI Encoded RFC 7519 JWT that should be used for the Attestation Policy.
sev_snp_policy_base64
- (Optional) Specifies the base64 URI Encoded RFC 7519 JWT that should be used for the Attestation Policy.
tags
- (Optional) A mapping of tags which should be assigned to the Attestation Provider.In addition to the Arguments listed above - the following Attributes are exported:
id
- The ID of the Attestation Provider.
attestation_uri
- The URI of the Attestation Service.
trust_model
- Trust model used for the Attestation Service.
The timeouts
block allows you to specify timeouts for certain actions:
create
- (Defaults to 30 minutes) Used when creating the Attestation Provider.read
- (Defaults to 5 minutes) Used when retrieving the Attestation Provider.update
- (Defaults to 30 minutes) Used when updating the Attestation Provider.delete
- (Defaults to 30 minutes) Used when deleting the Attestation Provider.Attestation Providers can be imported using the resource id
, e.g.
terraform import azurerm_attestation_provider.example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.Attestation/attestationProviders/provider1