Usage
module "azure_security_baseline" {
source = "github.com/fencepencil/fencepencil-azure-modules//azure-security-baseline"
name_prefix = "<name_prefix>"
tags = var.tags
}Inputs (6)
| Name | Type | Description | Default | Required |
|---|---|---|---|---|
name_prefix | string | Prefix for resource naming | — | yes |
location | string | Azure region | eastus | no |
log_retention_days | number | Log Analytics retention in days | 90 | no |
defender_plans | list(string) | Defender for Cloud plan types | ["VirtualMachines", "AppServices", ...] | no |
enable_cis_benchmark | bool | Assign CIS benchmark policy | true | no |
tags | map(string) | Tags to apply to all resources | {} | no |
Outputs (3)
| Name | Description |
|---|---|
log_analytics_workspace_id | Log Analytics workspace ID |
log_analytics_workspace_name | Log Analytics workspace name |
security_resource_group_name | Security resource group name |