terraform-provider-azurestack icon indicating copy to clipboard operation
terraform-provider-azurestack copied to clipboard
verified publisher icon hashicorp

network_security_group_id missing

Open FawenYo opened this issue 3 years ago • 6 comments

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform (and AzureStack Provider) Version

Terraform v0.13.3 Azurestack v1.0.0

Affected Resource(s)

  • resource "azurestack_network_interface

Description

network_security_group_id argument is missing in Azurestack 1.0.0 with no documents.

Output

Error: Unsupported argument

  on modules/bastion/main.tf line 63, in resource "azurestack_network_interface" "bastion":
  63:   network_security_group_id = azurestack_network_security_group.bastion_ssh.id

An argument named "network_security_group_id" is not expected here.

Steps to Reproduce

  1. terraform apply

FawenYo avatar Jul 29 '22 04:07 FawenYo

This also applies to azurestack_subnet

paul-towler avatar Oct 18 '22 10:10 paul-towler

the azurestack_subnet is also missing route_table_id

jsburckhardt avatar Oct 26 '22 22:10 jsburckhardt

any chance that these two items could be fixed any time soon?

jonstevecg avatar Mar 06 '23 17:03 jonstevecg

#206 indirectly addresses this by adding the various association resource types that made these attributes redundant in the azurerm provider.

simonbrady avatar May 11 '23 07:05 simonbrady

We are having the same issue and are looking for a quick resolution soon. When using the azurestack Terraform provider, we are observing an issue where attaching a network security group id to a subnet isn’t an option. In the documentation, it seems like we should be able to supply a network security group id but when attempting this terraform gives us the following error: “Unsupported Argument: An argument named network_security_group_id is not expected here.”

bwilkinscloud avatar May 25 '23 13:05 bwilkinscloud

@bwilkinscloud We got around this issue by using the azure_stack_virtual_network resource with a dynamic field for subnets that loop through a map of subnets. For example:

resource "azurestack_virtual_network" "main" {
  name                = var.vnet_name
  location            = local.location
  resource_group_name = data.azurestack_resource_group.networks.name
  tags                = local.tags

  address_space = var.address_space
  dns_servers   = var.dns_servers

  dynamic "subnet" {
    for_each = var.subnets

    iterator = subnet
    content {
      name           = subnet.key
      address_prefix = subnet.value.ip_address
      security_group = subnet.value.nsg ? azurestack_network_security_group.vnet.id : null
    }
  }

  depends_on = [var.module_depends_on]
}

paul-towler avatar May 25 '23 23:05 paul-towler