Last Updated on August 11, 2025 by Arnav Sharma
Managing cloud resources efficiently is crucial in today’s fast-paced IT environments. Microsoft Azure provides a vast array of resources, and managing them can be streamlined using Terraform, especially with the strategic use of tags. In this blog, we’ll explore how to use Terraform for tagging Azure resources, complete with practical examples.
Understanding Tags in Azure
Before diving into Terraform, let’s understand what tags are in the context of Azure. Tags are key-value pairs assigned to Azure resources. They serve as identifiers or metadata, allowing you to categorize resources based on different criteria like project, environment, or cost center.
The Role of Terraform
Terraform, an open-source infrastructure as code tool, automates the provisioning and management of cloud resources. It allows you to define, preview, and deploy cloud infrastructure with code. When it comes to Azure, Terraform not only creates and manages resources but also applies tags to them as defined in your Terraform scripts.
Example 1: Basic Tagging
Let’s start with a basic example. Suppose you want to tag a resource group in Azure to indicate its environment and department.
resource "azurerm_resource_group" "example" {
name = "example-resources"
location = "East US"
tags = {
Environment = "Production"
Department = "Finance"
}
}
In this Terraform script, we’re creating a resource group named example-resources and tagging it with Environment and Department.
Example 2: Using Variables for Tags
To enhance reusability and maintainability, you can use variables for tags. This approach is beneficial when the same set of tags is applied across multiple resources.
variable "common_tags" {
type = map(string)
default = {
Environment = "Production"
Department = "Finance"
}
}
resource "azurerm_virtual_machine" "example" {
// ... other configuration ...
tags = var.common_tags
}
Here, we define a variable common_tags and use it to tag a virtual machine. This method ensures consistency across different resources.
Example 3: Dynamic Tagging with Local Values
For more complex scenarios, you can use local values in Terraform to construct dynamic tags.
locals {
base_tags = {
Environment = "Production"
}
}
resource "azurerm_storage_account" "example" {
// ... other configuration ...
tags = merge(
local.base_tags,
{
"Project" = "TerraformDemo"
}
)
}
In this example, we merge a base set of tags defined in locals with additional tags specific to the resource. This approach offers flexibility in managing tags.
Best Practices for Tagging
- Consistency: Ensure that your tags are consistently applied across all resources for easier management and reporting.
- Automation: Utilize Terraform to automate the tagging process, reducing manual errors and saving time.
- Documentation: Keep your tagging strategy documented and ensure your team is aware of the conventions.
Tagging in Azure using Terraform is a powerful strategy for organizing and managing cloud resources. By using Terraform’s tagging capabilities, you can ensure consistency, enhance visibility, and enforce governance across your Azure environment. Whether you’re managing a few resources or orchestrating a large-scale cloud infrastructure, effective tagging is key to maintaining control and clarity in your cloud journey.
I help organisations secure their cloud infrastructure and stay ahead of evolving cyber threats. Microsoft MVP and Certified Trainer, author of Mastering Azure Security, and founder of arnav.au — a platform for practical Cloud, Cybersecurity, DevOps and AI content.