vault_secrets_sync_azure_destination

Creates a Azure Key Vault destination to synchronize secrets in Vault. Requires Vault 1.16+. Available only for Vault Enterprise.

For more information on syncing secrets with Azure Key Vault, please refer to the Vault documentation.

Example Usage

resource "vault_secrets_sync_azure_destination" "az" {
  name                 = "az-dest"
  key_vault_uri        = var.key_vault_uri
  client_id            = var.client_id
  client_secret        = var.client_secret
  tenant_id            = var.tenant_id
  secret_name_template = "vault_{{ .MountAccessor | lowercase }}_{{ .SecretPath | lowercase }}"
  custom_tags = {
    "foo" = "bar"
  }
}

Argument Reference

The following arguments are supported:

Attributes Reference

The following attributes are exported in addition to the above:

Import

Azure Secrets sync destinations can be imported using the name, e.g.

$ terraform import vault_secrets_sync_azure_destination.az az-dest