azurerm_automanage_configuration

Manages an Automanage Configuration.

Example Usage

resource "azurerm_resource_group" "example" {
  name     = "example-automanage"
  location = "West Europe"
}

resource "azurerm_automanage_configuration" "example" {
  name                = "example-acmp"
  resource_group_name = azurerm_resource_group.example.name
  location            = azurerm_resource_group.example.location

  antimalware {
    exclusions {
      extensions = "exe;dll"
      paths      = "C:\\Windows\\Temp;D:\\Temp"
      processes  = "svchost.exe;notepad.exe"
    }

    real_time_protection_enabled   = true
    scheduled_scan_enabled         = true
    scheduled_scan_type            = "Quick"
    scheduled_scan_day             = 1
    scheduled_scan_time_in_minutes = 1339
  }

  azure_security_baseline {
    assignment_type = "ApplyAndAutoCorrect"
  }

  automation_account_enabled = true

  backup {
    policy_name                        = "acctest-backup-policy-%d"
    time_zone                          = "UTC"
    instant_rp_retention_range_in_days = 2

    schedule_policy {
      schedule_run_frequency = "Daily"
      schedule_run_days      = ["Monday", "Tuesday"]
      schedule_run_times     = ["12:00"]
      schedule_policy_type   = "SimpleSchedulePolicy"
    }

    retention_policy {
      retention_policy_type = "LongTermRetentionPolicy"

      daily_schedule {
        retention_times = ["12:00"]
        retention_duration {
          count         = 7
          duration_type = "Days"
        }
      }

      weekly_schedule {
        retention_times = ["14:00"]
        retention_duration {
          count         = 4
          duration_type = "Weeks"
        }
      }
    }
  }

  boot_diagnostics_enabled    = true
  defender_for_cloud_enabled  = true
  guest_configuration_enabled = true
  log_analytics_enabled       = true
  status_change_alert_enabled = true

  tags = {
    "env" = "test"
  }
}

Arguments Reference

The following arguments are supported:


The antimalware block supports the following:


The exclusions block supports the following:


The azure_security_baseline block supports the following:


The backup block supports the following:


The schedule_policy block supports the following:


The retention_policy block supports the following:


The daily_schedule block supports the following:


The weekly_schedule block supports the following:


The retention_duration block supports the following:


Attributes Reference

In addition to the Arguments listed above - the following Attributes are exported:

Timeouts

The timeouts block allows you to specify timeouts for certain actions:

Import

Automanage Configuration can be imported using the resource id, e.g.

terraform import azurerm_automanage_configuration.example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.AutoManage/configurationProfiles/configurationProfile1