Skip to content

Commit

Permalink
comment out failing stack
Browse files Browse the repository at this point in the history
  • Loading branch information
Greg Whiting authored and Greg Whiting committed Jan 8, 2025
1 parent 46fa259 commit 0fda1f4
Showing 1 changed file with 28 additions and 28 deletions.
56 changes: 28 additions & 28 deletions terraform/environments/youth-justice-app-framework/modules/directory-service/certs.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,35 +10,35 @@
#############################
#Deploy the CA solution from the available AWS cloudformation stack

resource "aws_cloudformation_stack" "pki_quickstart" {
name = "MicrosoftPKIQuickStart"
#resource "aws_cloudformation_stack" "pki_quickstart" {
# name = "MicrosoftPKIQuickStart"

template_url = "https://aws-ia-us-east-1.s3.us-east-1.amazonaws.com/cfn-ps-microsoft-pki/templates/microsoft-pki.template.yaml"
# template_url = "https://aws-ia-us-east-1.s3.us-east-1.amazonaws.com/cfn-ps-microsoft-pki/templates/microsoft-pki.template.yaml"

capabilities = ["CAPABILITY_AUTO_EXPAND", "CAPABILITY_IAM"]
disable_rollback = false #change to true so we can debug
parameters = {
"VPCCIDR" = var.vpc_cidr_block
"VPCID" = var.ds_managed_ad_vpc_id
"CaServerSubnet" = var.ds_managed_ad_subnet_ids[0]
"DomainMembersSG" = aws_security_group.ad_sg.id
"KeyPairName" = module.key_pair.key_pair_name
"DirectoryType" = "AWSManaged"
"DomainDNSName" = aws_directory_service_directory.ds_managed_ad.name
"DomainNetBIOSName" = var.ds_managed_ad_short_name
"DomainController1IP" = tolist(aws_directory_service_directory.ds_managed_ad.dns_ip_addresses)[0]
"DomainController2IP" = tolist(aws_directory_service_directory.ds_managed_ad.dns_ip_addresses)[1]
"AdministratorSecret" = aws_secretsmanager_secret.mad_admin_secret.arn
"CADeploymentType" = "Two-Tier"
"UseS3ForCRL" = "No"
"EntCaServerNetBIOSName" = "SubordinateCA"
"OrCaServerNetBIOSName" = "RootCA"
}
# capabilities = ["CAPABILITY_AUTO_EXPAND", "CAPABILITY_IAM"]
# disable_rollback = true #change to true so we can debug
# parameters = {
# "VPCCIDR" = var.vpc_cidr_block
# "VPCID" = var.ds_managed_ad_vpc_id
# "CaServerSubnet" = var.ds_managed_ad_subnet_ids[0]
# "DomainMembersSG" = aws_security_group.ad_sg.id
# "KeyPairName" = module.key_pair.key_pair_name
# "DirectoryType" = "AWSManaged"
# "DomainDNSName" = aws_directory_service_directory.ds_managed_ad.name
# "DomainNetBIOSName" = var.ds_managed_ad_short_name
# "DomainController1IP" = tolist(aws_directory_service_directory.ds_managed_ad.dns_ip_addresses)[0]
# "DomainController2IP" = tolist(aws_directory_service_directory.ds_managed_ad.dns_ip_addresses)[1]
# "AdministratorSecret" = aws_secretsmanager_secret.mad_admin_secret.arn
# "CADeploymentType" = "Two-Tier"
# "UseS3ForCRL" = "No"
# "EntCaServerNetBIOSName" = "SubordinateCA"
# "OrCaServerNetBIOSName" = "RootCA"
# }

timeouts {
create = "60m"
update = "60m"
delete = "2h"
}
}
# timeouts {
# create = "60m"
# update = "60m"
# delete = "2h"
# }
#}

0 comments on commit 0fda1f4

Please sign in to comment.