The tutorial uses Consul ECS v0.2. With Consul ECS v0.5, there are slightly different inputs compared to v0.2. You should double check the configuration is in line with the current documentation.
In particular:
Pass the consul_http_addr input variable to mesh-task. For example, consul_http_addr = hcp_consul_cluster.example.consul_private_endpoint_url.
Remove the consul_client_token_secret_arn and acl_secret_name_prefix input variables, which were removed in Consul ECS v0.5.
When using HCP Consul servers, you should not need to set the consul_https_ca_cert_arn. The certificate presented by HCP Consul for HTTPS should be trusted by your system.
Let me know if that helps, and thanks for your patience until we update our tutorials.