For all your terraform needs

Rolling back state and encrypting secrets – Terraform Enterprise

anuj January 18, 2022 Rolling back state and encrypting secrets – Terraform Enterprise2022-01-18T15:05:27+00:00 Terraform Enterprise No Comment

This is a work in progress. TFE Rolling back State file (versioning) - Only viewing a previous state is possible, not actual rollback. One can then copy the contents of…

Recommendations for Secrets Use from an AWS Application

anuj September 28, 2021 Recommendations for Secrets Use from an AWS Application2021-09-28T14:50:27+00:00 Secrets Management No Comment

How do I ensure that my app uses secrets securely ( on AWS )? Create IAM roles for each application. Grant those roles the ability to retrieve secrets Update your…

Terraform Basics

anuj August 18, 2021 Terraform Basics2023-05-09T14:48:59+00:00 Terraform Basics No Comment

How do you apply to just a single resource? tf apply target How do you destroy without being prompted? terraform destroy --approval-true flag When would you use a null resource…

How many Pipelines?

anuj July 12, 2021 How many Pipelines?2021-07-12T02:17:01+00:00 CICD Pipelines No Comment

Also read How many Non Prod Environments should you have? The TWO most commonly implemented ones would be the managed infrastructure services pipeline (or just infra pipeline) and the app…

Production Terraform

anuj June 22, 2021 Production Terraform2023-02-13T04:31:11+00:00 Production Terraform No Comment

Single NON PROD Environment or MULTIPLE, SEPARATE ( DEV TEST STAGING ) Environments? Also read Multi developer Terraform and Reusable Modules in Terraform One of the common questions that arises…

Deep Monitoring – Vulnerability Management on GCP VMs

anuj June 11, 2021 Deep Monitoring – Vulnerability Management on GCP VMs2021-06-11T20:13:04+00:00 GCP No Comment

First, let us distinguish between Image Protection and Instance Protection. Instance Protection - Protection of a running instance GCP Shielded VMs - Vulnerability Management built in Image Protection -…

Terraform Landing Zones

anuj June 11, 2021 Terraform Landing Zones2021-06-11T16:32:24+00:00 CICD Pipelines No Comment

Where does Terraform fit in? Terraform modules can be common to any CI CD pipeline (whether Azure Devops or gitops). One typically starts with a baseline module - sometimes called…

Azure Devops versus Gitops

anuj June 11, 2021 Azure Devops versus Gitops2021-06-11T16:34:21+00:00 CICD Pipelines No Comment

Azure Devops has tooling for the entire CI CD pipeline and also the Agile management of the delivery. Azure Boards, Azure Repos and Azure Credentialing is what will be part…

tfplan sentinel policies in Terraform

anuj June 2, 2021 tfplan sentinel policies in Terraform2021-07-15T03:15:27+00:00 Reusable Terraform No Comment

Terrform policies fall into three broad categories - tfplan based, tfconfig based and tfstate based policies. This post discusses a couple of common tfplan based policies. A simple tfplan sentinel…

The Vault Provider in Terraform

anuj December 30, 2020 The Vault Provider in Terraform2021-07-28T17:00:45+00:00 GCP Terraform No Comment

These are some notes from the field around using Vault and Terraform. Storing a Sample Secret in Vault - Resource vault_generic_secret provider "vault" { # It is strongly recommended to…

1 234