如何使用 terraform 将 Azure Analysis Services Server (AASS) 与 Azure SQL 数据库和 Azure 数据工厂 (ADF) 连接

如何使用 terraform 将 Azure Analysis Services Server (AASS) 与 Azure SQL 数据库和 Azure 数据工厂 (ADF) 连接。

根据 MSDoc 和 github，Azure Analysis Services 目前似乎不支持专用终结点，并且几乎没有其他方法可以考虑其中之一，即虚拟网络服务终结点或虚拟网络规则。

Terraform 配置：

provider "azurerm" {
  features {}
}

resource "azurerm_resource_group" "example" {
  name     = "vksb-rg"
  location = "East US2"
}

resource "azurerm_virtual_network" "example" {
  name                = "vksb-vnet"
  address_space       = ["10.0.0.0/16"]
  location            = azurerm_resource_group.example.location
  resource_group_name = azurerm_resource_group.example.name
}

resource "azurerm_subnet" "example" {
  name                 = "vksb-subnet"
  resource_group_name  = azurerm_resource_group.example.name
  virtual_network_name = azurerm_virtual_network.example.name
  address_prefixes     = ["10.0.1.0/24"]
  service_endpoints    = ["Microsoft.Sql", "Microsoft.Storage"]
}

resource "azurerm_mssql_server" "example" {
  name                         = "vksbsqlserver"
  resource_group_name          = azurerm_resource_group.example.name
  location                     = azurerm_resource_group.example.location
  version                      = "12.0"
  administrator_login          = "sqladmin"
  administrator_login_password = "H@Sh1CoR3!"
  minimum_tls_version          = "1.2"
}

resource "azurerm_mssql_database" "example" {
  name                = "vksbdb"
  server_id           = azurerm_mssql_server.example.id
  collation           = "SQL_Latin1_General_CP1_CI_AS"
  license_type        = "LicenseIncluded"
  max_size_gb         = 10  
  sku_name            = "S0"
  zone_redundant      = false
  read_scale          = false  
}

resource "azurerm_analysis_services_server" "example" {
  name                    = "vksbanalysisservicesserver"
  location                = azurerm_resource_group.example.location
  resource_group_name     = azurerm_resource_group.example.name
  sku                     = "S0"
  admin_users             = ["[email protected]"]
}

resource "azurerm_data_factory" "example" {
  name                = "vksbdf"
  location            = azurerm_resource_group.example.location
  resource_group_name = azurerm_resource_group.example.name
}

resource "azurerm_network_security_group" "example" {
  name                = "vksb-nsg"
  location            = azurerm_resource_group.example.location
  resource_group_name = azurerm_resource_group.example.name

  security_rule {
    name                       = "AllowSQL"
    priority                   = 1001
    direction                  = "Inbound"
    access                     = "Allow"
    protocol                   = "Tcp"
    source_port_range          = "*"
    destination_port_range     = "1433"
    source_address_prefix      = "*"
    destination_address_prefix = "*"
  }

  security_rule {
    name                       = "AllowAnalysisServices"
    priority                   = 1002
    direction                  = "Inbound"
    access                     = "Allow"
    protocol                   = "Tcp"
    source_port_range          = "*"
    destination_port_range     = "80"
    source_address_prefix      = "*"
    destination_address_prefix = "*"
  }
}

resource "azurerm_subnet_network_security_group_association" "example" {
  subnet_id                 = azurerm_subnet.example.id
  network_security_group_id = azurerm_network_security_group.example.id
}

部署：

参考：

https://learn.microsoft.com/en-us/azure/azure-sql/database/sql-database-paas-overview?view=azuresql

https://learn.microsoft.com/en-us/azure/data-factory/introduction

https://learn.microsoft.com/en-us/azure/analysis-services/analysis-services-vnet-gateway