I’m trying to create a conditional access policy using the included_guests_or_external_users block. Including just the ‘users’ block for brevity:
users {
included_users =
excluded_users = [“xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx”, “xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx”]
included_groups =
excluded_groups = [“xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx”, “xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx”, “xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx”]
included_roles =
excluded_roles =
included_guests_or_external_users {
guest_or_external_user_types = [“internalGuest”,“b2bCollaborationGuest”,“b2bCollaborationMember”,“b2bDirectConnectUser”,“otherExternalUser”,“serviceProvider”]
external_tenants {
membership_kind = [“all”]
}
}
}
However, I’m having issues with the ‘membership_kind’ portion. I keep getting the below error when it is formatted as the above ‘membership_kind = [“all”]’:
Inappropriate value for attribute “membership_kind”: string required.
I’m not sure why the above isn’t being considered as a string. I also tried formatting like this: membership_kind = “all”, but then got the error:
Error: expected conditions.0.users.0.included_guests_or_external_users.0.external_tenants.0.membership_kind to be one of [“all” “enumerated”], got All
Which seems to me it’s asking for wat I was providing in the original example above. I’m new to Terraform, so it’s probably something simple I’ve done from a formatting perspective. But any help would be much appreciated.
Summary
This text will be hidden