-
Notifications
You must be signed in to change notification settings - Fork 289
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Tracker - EntitlementManagment - AccessPackages #547
Comments
Bit of an update - had a bit of a hiatus on this but have been waiting to see where the specification ends up MS side, as some beta endpoints (resource request & role scope) are extremely idempotent Instead I will push this in two parts, first Catalogs, Access Package and Assignments - Then resource and role scopes. The first half are effectively done just some debug needed In the mean time, for role and resource scopes you may likely be able to work around this will script provisioners for these and use terraform for the primary bits and policy |
@kaovd any progress on this one? 🙏🏻 |
@sigurdfalk Some upstream fixes have been merged just waiting for the hamiltion release so can get changes in but AccessPackages,catalogs and policy is pretty much finalized |
@kaovd You beat me to it, your upstream PR is now released! Thanks for your work on this! :D |
The upstream PR in this case is for Hamilton, correct @manicminer ? is it anything else from Microsoft that is blocking progress? Eager to get a status update :D @kaovd , thanks for the work that has already been done. |
Hello people! It seems there are no more blockers! Are looking forward to! |
@QuduSEC see the linked PR Fix, this is still blocked by manicminer/hamilton#156 |
It looks like manicminer/hamilton#156 has been merged, are there any more blockers? |
Any updates on the progress of this one? Any blockers left? Waiting eagerly for the release of this feature :D |
I'm wondering if there's any worth investing time in a terraform/arm hybrid if the Graph API has been implemented. |
@jdelforno , you are mixing PIM and Entitlement Management now aren't you? Of course we need to handle access packages using Terraform, even though it is available through the Microsoft Graph. I see someone has linked both a Bicep issue, the PIM issue (68) and stuff , but this has nothing to do with access packages what so ever. |
agree with @mariussm here, I too believe this should be possible to handle with Terraform :) anything we can contribute with to push this forward? |
Waiting for the release of this feature. |
This functionality has been released in v2.37.0 of the Terraform Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you! |
Community Note
Description
Leaving a feature tracker here to get feedback / +1s as well as to track progress when downstream work starts
New or Affected Resource(s)
EntitlementManagement - AccessPackages manicminer/hamilton#92
Credit to @stanleyz for reviving this effort implementing all below code and getting upstream bugfixes merged to make this possible
(In order of dependencies)
Current Issues (Taken from #903 )
There is no valid MS graph API to delete the resource roles from an access package, hence can't be deleted programatically and would require manual deletion
Potential Terraform Configuration
References
manicminer/hamilton#92
manicminer/hamilton#93
#903
The text was updated successfully, but these errors were encountered: