From 7aaad51f811b7504123c63c7235b82c0dc4f7d70 Mon Sep 17 00:00:00 2001
From: Rob Gil <dds@rem5.com>
Date: Fri, 17 Jan 2020 09:28:42 -0500
Subject: [PATCH] 170268346 - Enables access for admins to manage certificates
 in keyvault

Grants access to the admins to manage certificates in keyvault
---
 terraform/modules/keyvault/main.tf | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/terraform/modules/keyvault/main.tf b/terraform/modules/keyvault/main.tf
index d5153831..ddfb8465 100644
--- a/terraform/modules/keyvault/main.tf
+++ b/terraform/modules/keyvault/main.tf
@@ -56,4 +56,17 @@ resource "azurerm_key_vault_access_policy" "keyvault_admin_policy" {
     "list",
     "set",
   ]
+
+  # backup create delete deleteissuers get getissuers import list listissuers managecontacts manageissuers purge recover restore setissuers update
+  certificate_permissions = [
+    "get",
+    "list",
+    "create",
+    "import",
+    "listissuers",
+    "manageissuers",
+    "deleteissuers",
+    "backup",
+    "update",
+  ]
 }
\ No newline at end of file