Enterprise Kubernetes, delivered

Tectonic ships with CoreOS's signature automated operations, runs multi-cloud, and is the fastest, most secure path to Kubernetes.

Terraform variables

This document gives an overview of variables used in the Azure platform of the Tectonic SDK.

Inputs

Name Description Type Default
tectonic_azure_client_secret (internal) The client secret to use. string -
tectonic_azure_cloud_environment (optional) Azure cloud environment to use. See https://github.com/Azure/go-autorest/blob/ec5f4903f77ed9927ac95b19ab8e44ada64c1356/autorest/azure/environments.go#L13 for available environments. string AZUREPUBLICCLOUD
tectonic_azure_config_version (internal) This declares the version of the Azure configuration variables. It has no impact on generated assets but declares the version contract of the configuration. string 1.1
tectonic_azure_etcd_root_volume_size The size of the volume in gigabytes for the root block device of etcd nodes. string 32
tectonic_azure_etcd_storage_type (optional) Storage account type for the etcd node(s). Example: Premium_LRS. Using Premium storage is constrained by the of instance specified in 'tectonic_azure_etcd_vm_size'. See https://docs.microsoft.com/en-us/azure/storage/storage-premium-storage#supported-vms string Premium_LRS
tectonic_azure_etcd_vm_size (optional) Instance size for the etcd node(s). Example: Standard_DS2_v2. string Standard_DS2_v2
tectonic_azure_external_dns_zone_id (optional) The ID of the external Azure DNS zone used for nodes & endpoints FQDNs. Required when 'tectonic_base_domain' is set. This must be a pre-existing, properly configured Azure DNS zone that the Azure service principal running the Tectonic installer has permission to perform operations on.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: "/subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/dnszones/my-k8s-dns
string ``
tectonic_azure_external_master_subnet_id (optional) Subnet ID within an existing VNet to deploy master nodes into. Required to use an existing VNet.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: "/subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/virtualNetworks/test-pre-vnet/subnets/my-k8s-subnet
string ``
tectonic_azure_external_nsg_master_id (optional) The ID of the external Network Security Group used for masters. Leave blank to have a new one created.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: "/subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/networkSecurityGroups/my-master-nsg
string ``
tectonic_azure_external_nsg_worker_id (optional) The ID of the external Network Security Group used for workers. Leave blank to have a new one created.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: "/subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/networkSecurityGroups/my-worker-nsg
string ``
tectonic_azure_external_resource_group (optional) Name of an external resource group to place created resources in. Leave blank to have a new one created. string ``
tectonic_azure_external_vnet_id (optional) Resource ID of an existing Virtual Network to launch nodes into. Leave blank to create a new Virtual Network.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: /subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/virtualNetworks/my-k8s-vnet
string ``
tectonic_azure_external_worker_subnet_id (optional) Subnet ID within an existing VNet to deploy worker nodes into. Required to use an existing VNet.

Note this is the complete ID as returned in the "id" field by the Azure client, not just the name of the resource.

Example: "/subscriptions/b520eabf-d6c0-4757-8a5e-0fa7d2fe12b5/resourceGroups/my-k8s-cluster/providers/Microsoft.Network/virtualNetworks/test-pre-vnet/subnets/my-k8s-subnet
string ``
tectonic_azure_extra_tags (optional) A map of extra Azure tags to be applied to created resources. NOTE: Tags MUST NOT contain reserved characters '<,>,%,&,,?,/' or control characters. map <map>
tectonic_azure_location (internal) An Azure location where the cluster will be built. Use the location name as returned in the Name column by az account list-locations CLI command. Lowercase string with no spaces between words. Example: southcentralus string -
tectonic_azure_location_fault_domains (internal) This mapping is for internal use only. It should not be overriden by users. It holds the correspondent number of fault domains for each location, because Azure doesn't provide an API call to query this data per location. The latest version of this data is always available at this location: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/manage-availability map <map>
tectonic_azure_master_root_volume_size The size of the volume in gigabytes for the root block device of master nodes. string 32
tectonic_azure_master_storage_type (optional) Storage account type for the master node(s). Example: Premium_LRS. Using Premium storage is constrained by the of instance specified in 'tectonic_azure_master_vm_size'. See https://docs.microsoft.com/en-us/azure/storage/storage-premium-storage#supported-vms string Premium_LRS
tectonic_azure_master_vm_size (optional) Instance size for the master node(s). Example: Standard_DS2_v2. string Standard_DS2_v2
tectonic_azure_private_cluster (optional) Setting this to true will result in NO public facing endpoints being created. All traffic is contained within the VNET. A VNET with an already configured and active VPN connection is required and needs to be supplied via 'tectonic_azure_external_vnet_id'. DNS is currently required, either the Azure managed one or configured via the generic DNS module. string false
tectonic_azure_ssh_key (required) Path to an SSH public key file to be provisioned as the SSH key for the 'core' user. string -
tectonic_azure_ssh_network_external (optional) Network (external) to allow SSH access from. Maps to source_address_prefix in Azure. Defaults to *. Can be external to Azure environment. Allowed values: [network CIDR (i.e., 10.0.0.0/16) | VirtualNetwork | Internet | * ] string *
tectonic_azure_ssh_network_internal (optional) Network (internal) to allow SSH access from. Maps to source_address_prefix in Azure. Defaults to VirtualNetwork. Should be internal to Azure environment. Allowed values: [network CIDR (i.e., 10.0.0.0/16) | VirtualNetwork | Internet | * ] string VirtualNetwork
tectonic_azure_vnet_cidr_block (optional) Range of IP addresses assigned to the Virtual Network in which the cluster nodes run. This should not overlap with any other networks, such as the Kubernetes cluster (pod) range, service range or a private datacenter connected via ExpressRoute." string 10.0.0.0/16
tectonic_azure_worker_root_volume_size The size of the volume in gigabytes for the root block device of worker nodes. string 32
tectonic_azure_worker_storage_type (optional) Storage account type for the worker node(s). Example: Premium_LRS. Using Premium storage is constrained by the of instance specified in 'tectonic_azure_worker_vm_size'. See https://docs.microsoft.com/en-us/azure/storage/storage-premium-storage#supported-vms string Premium_LRS
tectonic_azure_worker_vm_size (optional) Instance size for the worker node(s). Example: Standard_DS2_v2. string Standard_DS2_v2