First commit

Author: adammazouz

Deploy-CBS-Greenfield/main.tf

@@ -0,0 +1,124 @@
+terraform {
+  required_providers {
+    cbs = {
+      source  = "PureStorage-OpenConnect/cbs"
+      version = "~> 0.9.0"
+    }
+    azurerm = {
+      source = "hashicorp/azurerm"
+    }
+    random = {
+      source  = "hashicorp/random"
+      version = "~> 3.1.0"
+    }
+  }
+  required_version = ">= 0.13"
+}
+
+ /*    If Authintication via Service Principles would be used: 
+    1. Uncomment the required params from main.tf and variables.tf 
+    2. Add your service principle in terraform.tfvars              */
+
+provider "azurerm" {
+  features {}
+  # client_id       = var.azure_client_id
+  # client_secret   = var.azure_client_secret
+  # tenant_id       = var.azure_tenant_id
+  # subscription_id = var.azure_subscription_id
+}
+
+provider "cbs" {
+  azure {
+    # client_id       = var.azure_client_id
+    # client_secret   = var.azure_client_secret
+    # tenant_id       = var.azure_tenant_id
+    # subscription_id = var.azure_subscription_id
+  }
+}
+
+resource "azurerm_resource_group" "azure_rg" {
+  name     = format("%s%s", var.resource_group_name, var.resource_group_location)
+  location = var.resource_group_location
+  tags     = var.tags
+}
+
+
+module "CBS_vNET" {
+  source                  = "../Modules/CBS-VNet"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  tags                    = var.tags
+}
+
+module "CBS-NAT-GW" {
+  source                  = "../Modules/CBS-NAT-GW"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  cbs_system_subnet_id    = module.CBS_vNET.azure_subnet_id.cbs_subnet_sys
+  tags                    = var.tags
+}
+
+module "VM-JUMPBOX" {
+  source                  = "../Modules/VM-JUMPBOX"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  tags                    = var.tags
+  cbs_vnet_name           = module.CBS_vNET.cbs_vnet_name
+  cbs_subnet_vms_address  = var.cbs_subnet_vms_address
+  azure_vm_size           = var.azure_vm_size
+  azure_vm_username       = var.azure_vm_username
+  azure_vm_password       = var.azure_vm_password
+}
+
+module "CBS-Key-Vault" {
+  source                  = "../Modules/CBS-Key-Vault"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+}
+
+module "CBS-Identity" {
+  source                  = "../Modules/CBS-Identity"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  cbs_vnet_id             = module.CBS_vNET.cbs_vnet_id
+  depends_on = [ azurerm_resource_group.azure_rg ]
+}
+
+module "CBS-VNET-Peering" {
+  source                         = "../Modules/CBS-VNet-Peering"
+  resource_group_name            = azurerm_resource_group.azure_rg.name
+  cbs_vnet_id                    = module.CBS_vNET.cbs_vnet_id
+  cbs_vnet_name                  = module.CBS_vNET.cbs_vnet_name
+  azure_virtualnetwork_peer_name = var.azure_virtualnetwork_peer_name
+  azure_virtualnetwork_peer_rg   = var.azure_virtualnetwork_peer_rg
+}
+
+module "CBS-Array" {
+  source                  = "../Modules/CBS-Array"
+  array_name              = var.array_name
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  cbs_vnet_id             = module.CBS_vNET.cbs_vnet_id
+  cbs_subnet_mgmt_name    = module.CBS_vNET.azure_subnet_name.cbs_subnet_mgmt
+  cbs_subnet_iscsi_name   = module.CBS_vNET.azure_subnet_name.cbs_subnet_iscsi
+  cbs_subnet_repl_name    = module.CBS_vNET.azure_subnet_name.cbs_subnet_repl
+  cbs_subnet_sys_name     = module.CBS_vNET.azure_subnet_name.cbs_subnet_sys
+  license_key             = var.license_key
+  cbs_key_vault           = module.CBS-Key-Vault.cbs_key_vault_id
+  log_sender_domain       = var.log_sender_domain
+  alert_recipients        = var.alert_recipients
+  array_model             = var.array_model
+  zone                    = var.zone
+  key_file_path           = var.key_file_path
+  jit_group_ids           = var.jit_group_ids
+  tags                    = var.tags
+  user_assigned_identity  = module.CBS-Identity.user_assigned_identity_id
+  depends_on = [ module.CBS-Identity ]
+
+}
+
+
+
+
+
+

Deploy-CBS-Greenfield/output.tf

@@ -0,0 +1,33 @@
+output "cbs_azure_deployed_plan" {
+  value = module.CBS-Array.cbs_azure_deployed_plans
+}
+
+output "cbs_mgmt_endpoint" {
+  value = module.CBS-Array.cbs_mgmt_endpoint
+}
+output "cbs_mgmt_endpoint_ct0" {
+  value = module.CBS-Array.cbs_mgmt_endpoint_ct0
+}
+output "cbs_mgmt_endpoint_ct1" {
+  value = module.CBS-Array.cbs_mgmt_endpoint_ct1
+}
+output "cbs_repl_endpoint_ct0" {
+  value = module.CBS-Array.cbs_repl_endpoint_ct0
+}
+output "cbs_repl_endpoint_ct1" {
+  value = module.CBS-Array.cbs_repl_endpoint_ct1
+}
+output "cbs_iscsi_endpoint_ct0" {
+  value = module.CBS-Array.cbs_iscsi_endpoint_ct0
+}
+output "cbs_iscsi_endpoint_ct1" {
+  value = module.CBS-Array.cbs_iscsi_endpoint_ct1
+}
+
+output "VM_Jumpbox_Private_IP" {
+  value = module.VM-JUMPBOX.VM_Jumpbox_Private_IP
+}
+
+output "VM_Jumpbox_Public_IP" {
+  value = module.VM-JUMPBOX.VM_Jumpbox_Public_IP
+}

Deploy-CBS-Greenfield/terraform.tfvars

@@ -0,0 +1,62 @@
+
+#Azure Variables
+resource_group_name     = "cbs-modules-prereq-" #Prefix for Jump Start Deployment Resources
+resource_group_location = "eastus"              #Region see entries below
+# azure_client_id                       = "xxxxxxxx-xxxx-xxx-xxxx-xxxxxxxxxxxxxx"
+# azure_client_secret                   = "xxxxxxxx-xxxx-xxx-xxxx-xxxxxxxxxxxxxx"
+# azure_subscription_id                 = "xxxxxxxx-xxxx-xxx-xxxx-xxxxxxxxxxxxxx"
+# azure_tenant_id                       = "xxxxxxxx-xxxx-xxx-xxxx-xxxxxxxxxxxxxx"
+azure_vm_size     = "Standard_B1s"
+azure_vm_username = "xxxxxxxxxx"
+azure_vm_password = "xxxxxxxx"
+
+vnet_address_space = ["10.10.0.0/16"]
+
+subnets = {
+  cbs_subnet_mgmt = {
+    name             = "cbs_subnet_mgmt"
+    address_prefixes = ["10.10.1.0/24"]
+  }
+  cbs_subnet_iscsi = {
+    name             = "cbs_subnet_iscsi"
+    address_prefixes = ["10.10.2.0/24"]
+  }
+  cbs_subnet_repl = {
+    name             = "cbs_subnet_repl"
+    address_prefixes = ["10.10.3.0/24"]
+  }
+  cbs_subnet_sys = {
+    name             = "cbs_subnet_sys"
+    address_prefixes = ["10.10.4.0/24"]
+  }
+}
+
+cbs_subnet_vms_address = ["10.10.5.0/24"]
+
+tags = {
+  "Environment" = "Lab"
+  "Owner"       = "CBS"
+}
+
+#CBS Array Name
+array_name = "CBS-Greenfiled"
+
+
+#CBS License key from Pure1
+license_key = "xxxxxxxxxxxxxxxxxxxxxxxxxx"
+#DNS Domain for Array
+log_sender_domain = "xxxxxxx.com"
+#Email for Alerts
+alert_recipients = ["xxxxxxxx@xxxxxxxx.com"]
+#Azure Zone                  
+zone = 1
+#Array Model ## Choose from (V10MUR1, V20MUR1, V20MP2R2)                                           
+array_model = "V10MUR1"
+
+azure_virtualnetwork_peer_name = "xxxxxx"
+azure_virtualnetwork_peer_rg   = "xxxxxx"
+
+#Azure AD Group for JIT Approval
+jit_group_ids = ["xxxxxxxxxxxxxxx"]
+# key file path for pureuser
+key_file_path = "~/.ssh/xxxxx" 

Deploy-CBS-Greenfield/variables.tf

@@ -0,0 +1,95 @@
+variable "resource_group_name" {
+  type        = string
+  description = "RG name in Azure"
+}
+
+variable "resource_group_location" {
+  type        = string
+  description = "RG location in Azure"
+}
+
+# variable "azure_client_id" {
+#     type = string
+# }
+# variable "azure_client_secret" {
+#     type = string
+# }
+# variable "azure_subscription_id" {
+#     type = string
+# }
+# variable "azure_tenant_id" {
+#     type = string
+# }
+
+variable "tags" {
+  type        = map(string)
+  description = "Tags used for the deployment"
+  default = {
+    "Environment" = "Lab"
+    "Owner"       = "CBS"
+  }
+}
+
+variable "vnet_address_space" {
+  type        = list(any)
+  description = "the address space of the VNet"
+  default     = ["10.10.0.0/16"]
+}
+
+variable "subnets" {
+  type = map(any)
+}
+
+variable "cbs_subnet_vms_address" {
+  type        = list(any)
+  description = "the address space of the initior VMs subnet"
+  default     = ["10.10.0.0/24"]
+}
+
+variable "array_name" {
+  type = string
+}
+variable "azure_vm_size" {
+  type = string
+}
+variable "azure_vm_username" {
+  type = string
+}
+variable "azure_vm_password" {
+  type = string
+}
+
+variable "azure_virtualnetwork_peer_name" {
+  type = string
+}
+
+variable "azure_virtualnetwork_peer_rg" {
+  type = string
+}
+
+variable "zone" {
+  type = number
+}
+variable "log_sender_domain" {
+  type = string
+}
+
+variable "alert_recipients" {
+  type = list(string)
+}
+
+variable "jit_group_ids" {
+  type = list(string)
+}
+variable "array_model" {
+  type = string
+}
+
+variable "license_key" {
+  type = string
+}
+
+variable "key_file_path" {
+  type = string
+}
+

Deploy-CBS-Prerequisites-Only/main.tf

@@ -0,0 +1,62 @@
+terraform {
+  required_providers {
+    azurerm = {
+      source  = "hashicorp/azurerm"
+      version = "~> 2.70.0"
+    }
+    random = {
+      source  = "hashicorp/random"
+      version = "~> 3.1.0"
+    }
+  }
+  required_version = ">= 0.13"
+}
+
+ /*    If Authintication via Service Principles would be used: 
+    1. Uncomment the required params from main.tf and variables.tf 
+    2. Add your service principle in terraform.tfvars              */
+
+provider "azurerm" {
+  features {}
+  # client_id       = var.azure_client_id
+  # client_secret   = var.azure_client_secret
+  # tenant_id       = var.azure_tenant_id
+  # subscription_id = var.azure_subscription_id
+}
+
+resource "azurerm_resource_group" "azure_rg" {
+  name     = format("%s%s", var.resource_group_name, var.resource_group_location)
+  location = var.resource_group_location
+  tags     = var.tags
+}
+
+module "CBS_vNET" {
+  source                  = "../Modules/CBS-VNet"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  tags                    = var.tags
+}
+
+module "CBS-NAT-GW" {
+  source                  = "../Modules/CBS-NAT-GW"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  cbs_system_subnet_id    = module.CBS_vNET.azure_subnet_id.cbs_subnet_sys
+  tags                    = var.tags
+}
+
+module "VM-JUMPBOX" {
+  source                  = "../Modules/VM-JUMPBOX"
+  resource_group_name     = azurerm_resource_group.azure_rg.name
+  resource_group_location = var.resource_group_location
+  tags                    = var.tags
+  cbs_vnet_name           = module.CBS_vNET.cbs_vnet_name
+  cbs_subnet_vms_address  = var.cbs_subnet_vms_address
+  azure_vm_size           = var.azure_vm_size
+  azure_vm_username       = var.azure_vm_username
+  azure_vm_password       = var.azure_vm_password
+}
+
+
+
+