resource ise_active_directory_add_groups fails to update ISE when "groups" property changes. #113
Description
I create a resource from a local variable as follows:
resource "ise_active_directory_add_groups" "dynamic" {
for_each = { for name,def in local.dynamic_adgroups: name => def }
join_point_id = each.value.join_point_id
name = each.value.dictionary
domain = each.value.domain
groups = [
for property,value in each.value.map: {
name = value.name
sid = value.sid
type = "DOMAIN LOCAL"
}
]
}
At first the resource seems to work as it creates some groups in ISE.
However when more "groups" are added, the Terraform resource is updated in state file but newly added groups do not show up in Cisco ISE.
# some sensitive values replaced with *** below:
terraform state show --% ise_active_directory_add_groups.dynamic[\"AD\"]
# ise_active_directory_add_groups.dynamic["AD"]:
resource "ise_active_directory_add_groups" "dynamic" {
ad_scopes_names = "Default_Scope"
domain = "****"
enable_domain_allowed_list = true
groups = [
{
name = "****/prod/groups/application/***_admin_rights"
sid = "S-***"
type = "DOMAIN LOCAL"
},
{
name = "****/prod/groups/application/***_admin_rights"
sid = "S-***"
type = "DOMAIN LOCAL"
},
{
name = "****/prod/groups/application/***_admin_rights"
sid = "S-***"
type = "DOMAIN LOCAL"
},
Metadata
Metadata
Assignees
Labels
No labels