azurerm_subscription_policy_exemption

Manages a Subscription Policy Exemption.

Example Usage

data "azurerm_subscription" "example" {}

data "azurerm_policy_set_definition" "example" {
  display_name = "Audit machines with insecure password security settings"
}

resource "azurerm_subscription_policy_assignment" "example" {
  name                 = "exampleAssignment"
  subscription_id      = data.azurerm_subscription.example.id
  policy_definition_id = data.azurerm_policy_set_definition.example.id
  location             = "westus"

  identity {
    type = "SystemAssigned"
  }
}

resource "azurerm_subscription_policy_exemption" "example" {
  name                 = "exampleExemption"
  subscription_id      = data.azurerm_subscription.example.id
  policy_assignment_id = azurerm_subscription_policy_assignment.example.id
  exemption_category   = "Mitigated"
}

Argument Reference

The following arguments are supported:

Attributes Reference

In addition to the Arguments listed above - the following Attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain actions:

Import

Policy Exemptions can be imported using the resource id, e.g.

terraform import azurerm_subscription_policy_exemption.exemption1 /subscriptions/00000000-0000-0000-000000000000/providers/Microsoft.Authorization/policyExemptions/exemption1