Archives for GCP
Terraform for IAM resource creation
Overview Is terraform a suitable tool for creating and managing cloud IAM resources? The short answer is - no. Especially, if you are going to be dealing with a large…
Error – ‘registry.terraform.io/hashicorp/local: there is no package for registry.terraform.io/hashicorp/local cached in .terraform/providers’
Terraform init or terraform init -upgrade or terraform apply fails with this error message: The installed provider plugins are not consistent with the packages selected in the dependency lock file:…
What if there is no Terraform Support for certain GCP Features?
Sometimes, there isn't Terraform GCP support for a particular feature - use asset manager to retrieve all resources, upload of a file to a Kubernetes pod) that lacks Terraform support.…
More on Remote State and State Files
State File Locking is something terraform does by default. But what if the actual backend does not support locking ( S3 by itself doesn't - S3 with DynamoDB does). If…
Terraform SaaS versus Terraform Enterprise (TFE)
This is a work in How does Terraform Cloud SaaS work? Through IP Range API and Remote Access Licensing TFE licensing is per workspace (state files) License for SaaS is…
How many Pipelines?
Also read How many Non Prod Environments should you have? The TWO most commonly implemented ones would be the managed infrastructure services pipeline (or just infra pipeline) and the app…
Deep Monitoring – Vulnerability Management on GCP VMs
First, let us distinguish between Image Protection and Instance Protection. Instance Protection - Protection of a running instance GCP Shielded VMs - Vulnerability Management built in Image Protection -…