cfn-cli cannot update ElasticLoadBalancingV2::TargetGroup - HealthCheckProtocol from HTTPS to HTTP

[reddyaws]

When creating networking loadbalancer with targetsgroups that has health checks configured, its not possible to update cloud formations from one protocol to another

Example cloud formation

Tcp8080TargetGroupNlb: Type: AWS::ElasticLoadBalancingV2::TargetGroup Condition: EnableTcp8080Nlb Properties: Name: !Sub ${ShortHostname}-tcp8080 HealthCheckIntervalSeconds: 30 HealthCheckProtocol: HTTP HealthyThresholdCount: 3 HealthCheckPath: / Port: 8080 Protocol: TCP TargetType: alb Targets: - Id: !Ref PrivateALBArn Port: 8080 UnhealthyThresholdCount: 3 VpcId: !Ref VpcId

If we try to update HealthCheckProtocol: HTTP to HealthCheckProtocol: HTTPS , cfl-cli update fails

ERROR:backoff:Giving up wait_until_update_complete(...) after 1 tries (botocore.exceptions.WaiterError: Waiter StackUpdateComplete failed: Waiter encountered a terminal failure state: For expression "Stacks[].StackStatus" we matched expected path: "UPDATE_ROLLBACK_COMPLETE" at least once) Waiter StackUpdateComplete failed: Waiter encountered a terminal failure state: For expression "Stacks[].StackStatus" we matched expected path: "UPDATE_ROLLBACK_COMPLETE" at least once Aborted!

[mircealam]

Is this the cfn cli or aws cli that you are using?