Terraform-Iac-Azure

 key vault To manage Azure resources using Terraform, you need to ensure that your service principal or managed identity has the appropriate permissions for each block. Here’s a breakdown of the necessary permissions grouped by resource group and other scopes: Primary Subscription (azurerm.primary)     Resource Group: rg-esp-qa         Permissions:             Microsoft.Resources/subscriptions/resourceGroups/read     Resource Group: NET-EUS2-QA-RG         Permissions:             Microsoft.Resources/subscriptions/resourceGroups/read             Microsoft.Network/virtualNetworks/read             Microsoft.Network/virtualNetworks/subnets/read     Resource...

 SERVICE BUS Resource Group Level Permissions     Resource Group: rg-esp-qa         Role: Custom role combining Network Contributor, Service Bus Contributor         Permissions:             Microsoft.Resources/subscriptions/resourceGroups/read             Microsoft.Resources/subscriptions/resourceGroups/write             Microsoft.ServiceBus/namespaces/write             Microsoft.ServiceBus/namespaces/read             Microsoft.Network/privateEndpoints/write             Microsoft.Network/privateEndpoints/read     Resource Group: NET-EUS2-QA-RG   ...

 APIM Resource Group Level Permissions     Resource Group: rg-esp-qa         Role: Custom role combining API Management Service Contributor         Permissions:             Microsoft.Resources/subscriptions/resourceGroups/read             Microsoft.Resources/subscriptions/resourceGroups/write             Microsoft.ApiManagement/service/write             Microsoft.ApiManagement/service/read     Resource Group: NET-EUS2-QA-RG         Role: Custom role combining Network Contributor         Permissions:             Microsoft.Network/virtualNetworks/...