updating to provider 1.0.59 API version 20241017091918219

scotttyso · scotttyso · commit bd65e647b3ee · 2024-11-30T11:33:37.000-05:00
diff --git a/.terraform-docs.yml b/.terraform-docs.yml
@@ -29,14 +29,14 @@ content: |-
 
   ## Recommended Module Versions
 
-  ## SaaS API Version >=1.0.11-20241004054146473
+  ## SaaS API Version >=1.0.11-20241017091918219
 
   | **Module** | **Module Version** | **Provider Version**  | **Appliance Version** | **Module Notes**
   | :-----------: | :----------------: | :------------------:  | :-------------------: | :--------------------------: |
-  | organizations | 4.2.11-20241004054146475  | 1.0.58                | Not Supported         |  New Module to Manage Organizations/Resource Groups. |
-  | pools         | 4.2.11-20241004054146475  | 1.0.58                | Not Supported         |  Adds IP Pool Block Level IP Configuration. |
-  | policies      | 4.2.11-20241004054146475  | 1.0.58                | Not Supported         |  * New Memory and Scrub Policies  |
-  | profiles      | 4.2.11-20241004054146475  | 1.0.58                | Not Supported         |  * Adds Memory/Scrub Policies to Server Profiles/Templates. |
+  | organizations | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  New Module to Manage Organizations/Resource Groups. |
+  | pools         | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  Adds IP Pool Block Level IP Configuration. |
+  | policies      | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  * New Memory and Scrub Policies  |
+  | profiles      | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  * Adds Support for Certificate Management/LDAP to Domain Profiles/Templates. |
 
   ## CVA Version >=1.1.1-0 API Version >=1.0.11-18735
 
diff --git a/README.md b/README.md
@@ -25,16 +25,25 @@
 
 ## Recommended Module Versions
 
-## SaaS API Version >=1.0.11-20241004054146473
+## SaaS API Version >=1.0.11-20241017091918219
 
 | **Module** | **Module Version** | **Provider Version**  | **Appliance Version** | **Module Notes**
 | :-----------: | :----------------: | :------------------:  | :-------------------: | :--------------------------: |
-| organizations | 4.2.11-20241004054146474  | 1.0.58                | Not Supported         |  New Module to Manage Organizations/Resource Groups. |
-| pools         | 4.2.11-20241004054146474  | 1.0.58                | Not Supported         |  Adds IP Pool Block Level IP Configuration. |
-| policies      | 4.2.11-20241004054146474  | 1.0.58                | Not Supported         |  * New Memory and Scrub Policies  |
-| profiles      | 4.2.11-20241004054146474  | 1.0.58                | Not Supported         |  * Adds Memory/Scrub Policies to Server Profiles/Templates. |
+| organizations | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  New Module to Manage Organizations/Resource Groups. |
+| pools         | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  Adds IP Pool Block Level IP Configuration. |
+| policies      | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  * New Memory and Scrub Policies  |
+| profiles      | 4.2.11-20241017091918219  | 1.0.59                | Not Supported         |  * Adds Support for Certificate Management/LDAP to Domain Profiles/Templates. |
 
-## CVA/PVA Version >=1.1.0-0 API Version >=1.0.11-16711
+## CVA Version >=1.1.1-0 API Version >=1.0.11-18735
+
+| **Module** | **Module Version** | **Provider Version**  | **Appliance Version** | **Module Notes**
+| :-----------: | :----------------: | :------------------:  | :-------------------: | :--------------------------: |
+| organizations | 4.2.11-18775  | 1.0.51                | >=1.1.1-0             |  New Module to Manage Organizations/Resource Groups. |
+| pools         | 4.2.11-16711  | 1.0.51                | >=1.1.1-0             |  With IP Pools use Configuration outside IP Block. |
+| policies      | 4.2.11-16713  | 1.0.51                | >=1.1.1-0             |  Anything supported by YAML Schema Outside of New Features in 17769  |
+| profiles      | 4.2.11-16712  | 1.0.51                | >=1.1.1-0             |  * Adds Scrub Policies to Server Profiles/Templates. |
+
+## PVA Version >=1.1.0-0 API Version >=1.0.11-16711
 
 | **Module** | **Module Version** | **Provider Version**  | **Appliance Version** | **Module Notes**
 | :-----------: | :----------------: | :------------------:  | :-------------------: | :--------------------------: |
@@ -46,12 +55,15 @@
 ### [<ins>Back to Top<ins>](#easy-imm)
 
 ## Updates
+* 2024-11-12: Recommended releases are 4.2.11-20241004054146475 (SaaS) or 4.2.11-18775 (CVA 1.1.1-0). 
+  <ins>IMPORTANT NOTE</ins>: 4.2.11-20241004054146475 introduces support for multi-ethernet network group policies for Ethernet Uplink Port-Channels and Ethernet Uplink.  If you are still using older module versions make sure to point to the older JSON Schema for Visual Studio Code.
+  For example: v4.2.11-18775 - https://github.com/terraform-cisco-modules/easy-imm/blob/39542dfc4ee2f368d42ff6a73ee4e08cb26a4c09/yaml_schema/easy-imm.json
 * 2024-10-23: Recommended releases are 4.2.11-20241004054146474 or 4.2.11-16712.  Adding Memory Policy.  Intersight API versioning changed to include date.
 * 2024-10-11: Recommended releases are 4.2.11-18775 or 4.2.11-16712.  Adding Scrub Policy.
 * 2024-09-13: Recommended releases are 4.2.11-18371 or 4.2.11-16712.  ISSUE 287 resolved.
 * 2024-09-08: Rolling back SaaS recommendation to 4.2.11-17769 since provider v1.0.54 is broken again for server templates [ISSUE 287](https://github.com/CiscoDevNet/terraform-provider-intersight/issues/287) .  Version v4.2.11-18369 and v4.2.11-18370 is on hold for now until provider fixed.
 * 2024-09-07: Recommended releases are 4.2.11-18369 or 4.2.11-16711.  This update changes the drive security policy to match the updated API of 1.0.11-18369.  Make sure to update your variables.tf, locals.tf from the eas-imm repository to get the updated sensitive variables for drive_security.  The variables have also been updated to do validation using the regular expression patterns from the API.
-* 2024-07-23: Recommended releases are 4.2.11-17769 or 4.2.11-16711.  See Notes for modules above.
+* 2024-07-23: Recommended releases are 4.2.11-17769 or 4.2.11-16711.
 * 2024-07-16: Terraform Provider 1.0.48, 1.0.49, and 1.0.50 depricated due to breaking BIOS changes and bulk_merger problems.  Do not use these provider versions.
 
 ### [<ins>Back to Top<ins>](#easy-imm)
@@ -183,8 +195,9 @@ In example, if you needed to add 100 iterations of the `certificate_management`
 
 ### Terraform Cloud/Enterprise - Workspace Variables
 
-- Add variable `intersight_api_key_id` with the value of <your-api-key>
-- Add variable `intersight_secret_key` with the value of <your-secret-file-content>
+- Add variable `intersight_api_key_id` with the value of <ins>your-intersight-api-key</ins>
+- Add variable `intersight_secret_key` with the value of <ins>your-intersight-secret-file-content</ins>
+- Add additional variables as required for the sensitive policy values
 
 #### Add Other Variables as discussed below based on use cases.
 
@@ -319,7 +332,7 @@ terraform.exe apply "main.plan"
 | Name | Version |
 |------|---------|
 | <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >=1.3.0 |
-| <a name="requirement_intersight"></a> [intersight](#requirement\_intersight) | 1.0.58 |
+| <a name="requirement_intersight"></a> [intersight](#requirement\_intersight) | 1.0.59 |
 | <a name="requirement_time"></a> [time](#requirement\_time) | 0.9.1 |
 | <a name="requirement_utils"></a> [utils](#requirement\_utils) | >= 0.1.3 |
 
@@ -337,10 +350,10 @@ terraform.exe apply "main.plan"
 
 | Name | Source | Version |
 |------|--------|---------|
-| <a name="module_organizations"></a> [organizations](#module\_organizations) | terraform-cisco-modules/organizations/intersight | 4.2.11-20241004054146474 |
-| <a name="module_pools"></a> [pools](#module\_pools) | terraform-cisco-modules/pools/intersight | 4.2.11-20241004054146474 |
-| <a name="module_policies"></a> [policies](#module\_policies) | terraform-cisco-modules/policies/intersight | 4.2.11-20241004054146474 |
-| <a name="module_profiles"></a> [profiles](#module\_profiles) | terraform-cisco-modules/profiles/intersight | 4.2.11-20241004054146474 |
+| <a name="module_organizations"></a> [organizations](#module\_organizations) | terraform-cisco-modules/organizations/intersight | 4.2.11-20241017091918219 |
+| <a name="module_pools"></a> [pools](#module\_pools) | terraform-cisco-modules/pools/intersight | 4.2.11-20241017091918219 |
+| <a name="module_policies"></a> [policies](#module\_policies) | terraform-cisco-modules/policies/intersight | 4.2.11-20241017091918219 |
+| <a name="module_profiles"></a> [profiles](#module\_profiles) | /home/tyscott/terraform-cisco-modules/terraform-intersight-profiles | n/a |
 
 **NOTE: When the Data is merged from the YAML files, it will run through the modules using for_each loop(s).  Sensitive Variables cannot be added to a for_each loop, instead use the variables below to add sensitive values for policies.**
 
diff --git a/Wakanda/global_settings.ezi.yaml b/Wakanda/global_settings.ezi.yaml
@@ -8,4 +8,4 @@ global_settings:
     - key: "Module"
       value: "easy-imm"
     - key: "Version"
-      value: "4.2.11-20241004054146475"
+      value: "4.2.11-20241017091918219"
diff --git a/Wakanda/main.tf b/Wakanda/main.tf
@@ -20,7 +20,7 @@ data "utils_yaml_merge" "model" {
 module "pools" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-pools"
   source  = "terraform-cisco-modules/pools/intersight"
-  version = "4.2.11-20241004054146475"
+  version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in setsubtract(keys(local.model), local.non_orgs) : [
       for e in keys(lookup(local.model[org], "pools", {})) : e]])) > 0 || length(
@@ -42,7 +42,7 @@ module "pools" {
 module "policies" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-policies"
   source  = "terraform-cisco-modules/policies/intersight"
-  version = "4.2.11-20241004054146475"
+  version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in keys(local.model) : [
       for e in keys(lookup(local.model[org], "policies", {})) : local.model[org].policies[e] if length(lookup(lookup(
@@ -64,7 +64,7 @@ module "policies" {
 module "profiles" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-profiles"
   source  = "terraform-cisco-modules/profiles/intersight"
-  version = "4.2.11-20241004054146475"
+  version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in keys(local.model) : [for e in ["profiles", "templates"] : [
       for d in ["chassis", "domain", "server"] : lookup(lookup(local.model[org], e, {}), d, [])]]]
diff --git a/Wakanda/provider.tf b/Wakanda/provider.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     intersight = {
       source  = "CiscoDevNet/intersight"
-      version = "1.0.58"
+      version = "1.0.59"
     }
     time = {
       source  = "time"
diff --git a/global_settings.ezi.yaml b/global_settings.ezi.yaml
@@ -8,4 +8,4 @@ global_settings:
     - key: "Module"
       value: "easy-imm"
     - key: "Version"
-      value: "4.2.11-20241004054146475"
+      value: "4.2.11-20241017091918219"
diff --git a/main.tf b/main.tf
@@ -20,7 +20,7 @@ data "utils_yaml_merge" "model" {
 module "organizations" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-organizations"
   source          = "terraform-cisco-modules/organizations/intersight"
-  version         = "4.2.11-20241004054146475"
+  version         = "4.2.11-20241017091918219"
   for_each        = { for i in ["map"] : i => i if length([setsubtract(keys(local.model), local.non_orgs)]) > 0 }
   global_settings = local.global_settings
   model           = { for k, v in local.model : k => v if length(regexall("^global_settings|intersight$", k)) == 0 }
@@ -34,7 +34,7 @@ module "organizations" {
 module "pools" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-pools"
   source  = "terraform-cisco-modules/pools/intersight"
-  version = "4.2.11-20241004054146475"
+  version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in setsubtract(keys(local.model), local.non_orgs) : [
       for e in keys(lookup(local.model[org], "pools", {})) : e]])) > 0 || length(
@@ -56,7 +56,7 @@ module "pools" {
 module "policies" {
   # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-policies"
   source  = "terraform-cisco-modules/policies/intersight"
-  version = "4.2.11-20241004054146475"
+  version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in keys(local.model) : [
       for e in keys(lookup(local.model[org], "policies", {})) : local.model[org].policies[e] if length(lookup(lookup(
@@ -77,9 +77,9 @@ module "policies" {
 # GUI Location: Infrastructure Service > Configure > Templates
 #_________________________________________________________________________________________
 module "profiles" {
-  # source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-profiles"
-  source  = "terraform-cisco-modules/profiles/intersight"
-  version = "4.2.11-20241004054146475"
+  source = "/home/tyscott/terraform-cisco-modules/terraform-intersight-profiles"
+  # source  = "terraform-cisco-modules/profiles/intersight"
+  # version = "4.2.11-20241017091918219"
   for_each = {
     for i in ["map"] : i => i if length(flatten([for org in keys(local.model) : [for e in ["profiles", "templates"] : [
       for d in ["chassis", "domain", "server"] : lookup(lookup(local.model[org], e, {}), d, [])]]]
diff --git a/policies/management.ezi.yaml b/policies/management.ezi.yaml
@@ -15,6 +15,31 @@ common:
       - description: ipmi IPMI over LAN Policy
         name: ipmi
         privilege: admin
+    ldap:
+      - base_settings:
+          domain: rich.ciscolabs.com
+        binding_parameters:
+          bind_method: LoginCredentials
+        description: RICH LDAP Policy
+        enable_group_authorization: true
+        ldap_groups:
+          - end_point_role: admin
+            group_dn: CN=Domain Admins,OU=Users,DC=rich,DC=ciscolabs,DC=com
+            name: Domain Admins
+        ldap_servers:
+          - port: 389
+            server: 10.101.128.15
+            vendor: MSAD
+          - port: 389
+            server: 10.101.128.16
+            vendor: MSAD
+        name: RICH
+        nested_group_search_depth: 128
+        search_parameters:
+          attribute: CiscoAvPair
+          filter: sAMAccountName
+          group_attribute: memberOf
+        user_search_precedence: LocalUserDb
     local_user:
       - description: users Local User Policy
         name: users
@@ -68,34 +93,8 @@ default:
       - configuration_from_intersight_only: false
         description: devcon Device Connector Policy
         name: devcon
-    ldap:
-      - base_settings:
-          base_dn: DC=example,DC=com
-          domain: example.com
-          timeout: 0
-        binding_parameters:
-          bind_method: LoginCredentials
-        description: ldap LDAP Policy
-        enable_encryption: true
-        enable_group_authorization: true
-        enable_ldap: true
-        ldap_groups:
-          - name: ucs-admins
-            role: admin
-          - name: netops
-            role: user
-        ldap_servers:
-          - port: 636
-            server: 198.18.6.36
-        name: ldap
-        nested_group_search_depth: 128
-        search_parameters:
-          attribute: CiscoAvPair
-          filter: sAMAccountName
-          group_attribute: memberOf
-        user_search_precedence: LocalUserDb
     network_connectivity:
-      - description: dns Network Connectivity Policy
+      - description: dns_with_v6 Network Connectivity Policy
         dns_servers_v4:
           - 208.67.220.220
           - 208.67.222.222
diff --git a/policies/templates.ezi.yaml b/policies/templates.ezi.yaml
@@ -18,7 +18,8 @@ common:
         enable_failover: true
         ethernet_adapter_policy:  Win-AzureStack
         ethernet_network_control_policy: both
-        ethernet_network_group_policy: aci-mgmt
+        ethernet_network_group_policies:
+          - aci-mgmt
         ethernet_qos_policy: best-effort
         mac_address_pool: dual-fabric
         name: vnic0
diff --git a/profiles/domain.ezi.yaml b/profiles/domain.ezi.yaml
@@ -7,6 +7,7 @@ Asgard:
     domain:
       - action: No-op
         description: r143e-1 UCS Domain Profile
+        ldap_policy: common/RICH
         name: r143e-1
         network_connectivity_policy: common/dns
         ntp_policy: common/ntp
diff --git a/provider.tf b/provider.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     intersight = {
       source  = "CiscoDevNet/intersight"
-      version = "1.0.58"
+      version = "1.0.59"
     }
     time = {
       source  = "time"
diff --git a/yaml_schema/easy-imm.json b/yaml_schema/easy-imm.json

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@ terraform {`
`8`	`8`	`required_providers {`
`9`	`9`	`intersight = {`
`10`	`10`	`source = "CiscoDevNet/intersight"`
`11`		`- version = "1.0.58"`
	`11`	`+ version = "1.0.59"`
`12`	`12`	`}`
`13`	`13`	`time = {`
`14`	`14`	`source = "time"`