Description
Describe the bug
resource lacework_policy_compliance mention the use of tags like the example https://registry.terraform.io/providers/lacework/lacework/latest/docs/resources/policy_compliance
tags = ["security:compliance", "domain:AWS", "subdomain:Configuration"]
but if you used get the following error:
│ Error:
│ [POST] https://company.fra.lacework.net/api/v2/Policies
│ **[400] [Error: tag key: domain is reserved]**
│
│ with lacework_policy_compliance.public_rds_instances_policy,
│ on custom_policies.tf line 25, in resource "lacework_policy_compliance" "public_rds_instances_policy":
│ 25: resource "lacework_policy_compliance" "public_rds_instances_policy" {
To Reproduce
use the example structure:
resource "lacework_policy_compliance" "public_rds_instances_policy" { query_id = lacework_query.public_rds_instances_query.id title = "[CUSTOM] Ensure that RDS instances are not publicly accessible" enabled = true severity = "Critical" description = "RDS instances can be publicly accessible using Public accessibility parameter. This should not be enabled unless it's a dev environment" remediation = "modify a DB instance to turn on or off public accessibility by modifying the Public access option. Check if the SG and NACL allow internet access and make the instance private" tags = ["security:compliance", "domain:AWS"] alerting_enabled = true }
Expected behavior
new rule on console filtered by domain
Please complete the following information):
- Terraform provider lacework 2.0.5
Additional context
updating rules from old provider