Terraform | Cloud Agent

How to set up a Terraform Cloud Agent on a private Azure infrastructure.

With a private Azure infrastructure, locked behind a firewall, I had no way of setting up Key Vaults and Storage Accounts. The Control and Data Planes that manage this access are subsequently locked down as private.

I needed to set up a Terraform Cloud Agent on my internal network to allow HCP access to perform runs and set up resources.

1. Click on Create Agent Pool in HCP.

   

2. Give it a name.

   

3. Give the token a meaningful description and click Create Token.

   

4. Copy the token information and store it in a secure password or key vault.

   

5. Set up a virtual network to host your internal Container (where the Cloud Agent will be installed). Amend the firewall to allow anything on the virtual network container subnet out.

   

6. I chose to host my agent on a container instance on an internal virtual network.

   

7. Configured as follows:

   

   

   

   

   

   

8. Once set up, check the status of the container.

   

   

   

9. Then check the status in HCP. It should be populated with an external IP address.

   

10. Go to the Workspace in HCP and change it to use the Agent Pool. Give the Workspace a run to make sure it will pick up and use the Agent.

Useful Links

https://developer.hashicorp.com/terraform/cloud-docs/agents/agents

https://developer.hashicorp.com/terraform/tutorials/cloud/cloud-agents

https://developer.hashicorp.com/terraform/cloud-docs/agents/agents