Azure Policy Compliance Monitoring: A Solution in Terrafrom

This post was originally on arlanblogs.alvarnet.com on December 27, 2021, but moved to Medium.com as the new home for Arlan’s Blogs.

Introduction

This is a monitoring and email alerting solution for Non-Compliant resources in Azure.

Resources details

The list of resources created by this Bicep Project are as follows : -

• Log Analytics Workspace
• Event Grid Topic and Subscription
• App Service Plan
• Application Insights
• Storage Account
• Function App
• Azure Monitor Alert Rule

Diagram

Here’s a rough diagram of the resources it creates

Operations details

The main.tf creates the Resource Group and call each modules for creating the required resources. The terraform.auto.tfvars file contains variable values for all resources.