terraform-provider-checkpoint icon indicating copy to clipboard operation
terraform-provider-checkpoint copied to clipboard
verified publisher icon CheckPointSW

Enabled property of checkpoint_management_access_rule

Open Marquis79 opened this issue 4 months ago • 1 comments

There seems to be a problem with the "enabled" property of the "checkpoint_management_access_rule" resource. If the rule is enabled, and this property is set to false, the rule is never disabled. The same thing happens if I create a new rule and set the property to false, the rule is not disabled once created.

In the toher way, it works if the rule is disabled and I try to enable it with Terraform by setting the property to true.

Is this issue known?

resource "checkpoint_management_access_rule" "rules" {
    name = "Dom_Test"
    layer = "vs00001 Security"
    position = {bottom = "API Cloud"}
    action = "Accept"
    source = ["test_src"]
    destination = ["test_dst"]
    service = ["https"]
    content = ["Any"]
    time = ["Any"]
    install_on = ["Policy Targets"]
    enabled = false

    track = {
        type = "Log"
        accounting = false
        alert = "none"
        enable_firewall_session = false
        per_connection = true
        per_session = false
    }

    action_settings = {
        enable_identity_captive_portal = false
    }

    custom_fields = {}
    vpn = "Any"
    comments = "TEST"

}

Thanks

Marquis79 avatar Oct 23 '25 15:10 Marquis79

Hi @Marquis79 , Thanks for reporting this.

We can reproduce that enabled = false on access_rule isn’t applied (on create or when changing true to false). A fix for this issue will be included in the next provider release.

Regards, Tomer.

chkp-tomerassa avatar Oct 26 '25 10:10 chkp-tomerassa

Hi, This bug resolved in provider version v2.12.0. Please upgrade and check if it still occurs.

Thanks

chkp-tomerassa avatar Nov 30 '25 15:11 chkp-tomerassa