When working with Azure Storages security of data is a common topic of discussion. With the latest changes in Azure, the security of the data at rest is now by default. It is also possible to set the transfer of files to use TLS 1.2 for further security. However a commonly missed security setting is … Continue reading Securing an Azure Storage File Share behind a Point to Site (P2S) VPN

When deploying complex architectures, sometimes it might be necessary to run SQL imports or PowerShell scripts using Terraform. It is not uncommon that these commands are executed in local or remote provisioner under a special resource called null_resource. A Null Resource simply stores the desired state without doing anything to the environment. After the first … Continue reading Re-Running scripts using Terraform

When working with Terraform it might become necessary to include an ARM template deployment for part of the solution. When this happens and the ARM template is creating resources with a managed identity it is necessary to return the managed identity to the Terraform script. ARM templates can output values as part of their deployment … Continue reading Passing values between ARM template and Terraform

When managing an environment with multiple teams accessing and managing different services in the same subscription it is sometimes ideal to segregate the services by a resource group dedicated for each team. Segragation on top of subscription can be achieved by Resource Groups. When multiple teams and resource groups exists, it is important to apply … Continue reading Creating a Resource Group with a Service Principal for Deployments