This Terraform module provisions a DSF DRA Analytics instance on Azure as a Virtual Machine.
- Terraform, refer to versions.tf for supported versions.
- An Azure account.
- DRA image or VHD located in an Azure Storage account. Request access to vhd here.
There is an option to provide details for either the image or the VHD. When supplying the VHD details, Terraform will use them to create the image and this image will be utilized to create the Virtual Machine.
NOTE: In case you are not yet an Imperva customer, please contact our team.
This Terraform module provisions several resources on Azure. These resources include:
- A Virtual Machine instance for running the DSF Analytics Server software.
- Security group rules to allow the required network access to and from the DSF Analytics Server instance.
- An Azure Key Vault that hold the passwords.
- An Azure network interface.
The Virtual Machine instance provide the computing resource needed to run the DSF Analytics Server software. The security group rules controls the inbound and outbound traffic to the instance. The Vault is used for encrypting sensitive data (passwords).
The following input variables are required:
resource_group
: Resource group to provision all the resources intosubnet_id
: The ID of the subnet in which to launch the DSF Analytics Server instance inssh_public_key
: SSH public key to access the DSF Analytics Server instanceimage_vhd_details
: Image or VHD details to create the Virtual Machine from. There is an option to provide details for either the image or the VHD. When supplying the VHD details, Terraform will use them to create the image which will be utilized to create the Virtual Machineadmin_registration_password
: Password to be used to register Analytics Server to Admin Serveranalytics_ssh_password
: Password to be used to SSH to the Analytics Server instancearchiver_password
: Password to be used to upload archive files for the Analysis Serveradmin_server_private_ip
: Private IP of the Admin Server (Used for registration)admin_server_public_ip
: Public IP of the Admin Server (Used for verifying the Analytics Server is launched successfully)
Refer to variables.tf for additional variables with default values and additional info.
Refer to outputs or https://registry.terraform.io/modules/imperva/dsf-dra-analytics/aws/latest?tab=outputs.
To use this module, add the following to your Terraform configuration:
provider "azurerm" {
features {}
}
module "dra_analytics" {
source = "imperva/dsf-dra-analytics/azurerm"
resource_group = azurerm_resource_group.example.name
subnet_id = azurerm_subnet.example.id
ssh_public_key = var.ssh_public_key
image_vhd_details = {
image = {
resource_group_name = var.image_details.resource_group_name
image_id = var.image_details.image_id
}
}
admin_registration_password = var.admin_registration_password
analytics_ssh_password = var.analytics_ssh_password
archiver_password = var.archiver_password
admin_server_public_ip = module.dra_admin.public_ip
admin_server_private_ip = module.dra_admin.private_ip
allowed_all_cidrs = var.allowed_all_cidrs
}
To see a complete example of how to use this module in a DSF deployment with other modules, check out the examples directory.
We recommend using a specific version of the module (and not the latest). See available released versions in the main repo README here.
Specify the module's version by adding the version parameter. For example:
module "dsf_dra_analytics" {
source = "imperva/dsf-dra-analytics/azure"
version = "x.y.z"
}
For more information about the DSF DRA Analytics and its features, refer to the official documentation here.
For additional information about DSF deployment using terraform, refer to the main repo README here.