'Is it safe to create admin groups in Azure AD using infrastructure as code?

I would like to deploy an AKS cluster that is integrated with Azure Active Directory and, as far as I understood, the first step is to create an Azure Active Directory group and then give admin privileges for the AKS cluster to this group. To create this group I would like to use Terraform (something like this example) but for this, I need to create and use an identity with high privileges.

My question is: Is using Terraform, with high privileges to create the admin group in Azure AD, ok from the security point of view or it is safer to manually create the Active Directory group?

terraformazure-aksinfrastructure


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

How to enable terraform module only with a specific workspace

Use terraform to set up a lambda function triggered by a scheduled event source

Use terraform to set up a lambda function triggered by a scheduled event source

Terragrunt ignores newly added outputs in a project

tls unsigned certificate when using terraform

What is the best way to solve `EntityAlreadyExists` error in terraform?

Terraform: How to create API Gateway endpoints and methods from a list of objects?

Terraform - refactoring modules: Error: Provider configuration not present

Passing multiple provider aliases to a module in terraform 0.12.13

What is the AWS Service Principal value for stepfunction?

Terraform - Use of environment variables in TF files

Terraform : Init