Gets information about a Key Vault.
data "azurerm_key_vault" "test" {
name = "mykeyvault"
resource_group_name = "some-resource-group"
}
output "vault_uri" {
value = "${data.azurerm_key_vault.test.vault_uri}"
}
The following arguments are supported:
name - (Required) Specifies the name of the Key Vault.
resource_group_name - (Required) The name of the Resource Group in which the Key Vault exists.
The following attributes are exported:
id - The Vault ID.
vault_uri - The URI of the vault for performing operations on keys and secrets.
location - The Azure Region in which the Key Vault exists.
sku - A sku block as described below.
tenant_id - The Azure Active Directory Tenant ID used for authenticating requests to the Key Vault.
access_policy - One or more access_policy blocks as defined below.
enabled_for_deployment - Can Azure Virtual Machines retrieve certificates stored as secrets from the Key Vault?
enabled_for_disk_encryption - Can Azure Disk Encryption retrieve secrets from the Key Vault?
enabled_for_template_deployment - Can Azure Resource Manager retrieve secrets from the Key Vault?
tags - A mapping of tags assigned to the Key Vault.
A sku block exports the following:
name - The name of the SKU used for this Key Vault. access_policy supports the following:
tenant_id - The Azure Active Directory Tenant ID used to authenticate requests for this Key Vault.
object_id - An Object ID of a User, Service Principal or Security Group.
application_id - The Object ID of a Azure Active Directory Application.
certificate_permissions - A list of certificate permissions applicable to this Access Policy.
key_permissions - A list of key permissions applicable to this Access Policy.
secret_permissions - A list of secret permissions applicable to this Access Policy.
© 2018 HashiCorpLicensed under the MPL 2.0 License.
https://www.terraform.io/docs/providers/azurerm/d/key_vault.html