Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/terraform-cisco-modules/easy-imm

Cisco Easy Intersight Managed Mode - Terraform Module
https://github.com/terraform-cisco-modules/easy-imm

cisco cisco-intersight cisco-ucs intersight intersight-api terraform terraform-module terraform-modules

Last synced: about 2 months ago
JSON representation

Cisco Easy Intersight Managed Mode - Terraform Module

Awesome Lists containing this project

README 

        

[![License: GPL v3](https://img.shields.io/badge/License-GPLv3-blue.svg)](https://www.gnu.org/licenses/gpl-3.0)

[![Developed by: Cisco](https://img.shields.io/badge/Developed%20by-Cisco-blue)](https://developer.cisco.com)



# Easy IMM



## Table of Content



* [Recommended Module Versions](#recommended-module-versions)

* [Updates](#updates)

* [Examples](#examples-for-using-the-easy-imm-terraform-modules)

* [Important Notes](#important-notes)

* [YAML Schema Notes](#yaml-schema-notes-for-auto-completion-help-and-error-validation)

* [Cloud Posse `tfenv`](#cloud-posse-tfenv)

* [Recommended Firmware](#recommended-firmware)

* [Environment Variables](#environment-variables)

* [Sensitive Variables for the Policies Module](#sensitive-variables-for-the-policies-module)

* [Execute Terraform Apply/Plan](#execute-the-terraform-applyplan)

* [Terraform Requirements](#requirements)

* [Terraform Providers](#providers)

* [Terraform Modules](#modules)

* [Terraform Inputs](#inputs)

* [Terraform Outputs](#outputs)

* [Sub Modules - Terraform Registry](#sub-modules---terraform-registry)



## Recommended Module Versions



## SaaS API Version >=v1.0.11-20250122215055407

## CVA  API Version >=v1.0.11-20250122215055407.hotfix.20250205093545023

## PVA  API Version >=v1.0.11-20250122215055407.hotfix.20250205093545023



| **Module** | **Module Version** | **Provider Version**  | **Appliance Version** | **Module Notes**

| :-----------: | :----------------: | :------------------:  | :-------------------: | :--------------------------: |

| organizations | 4.2.11-20250122215055407  | 1.0.61                | CVA/PVA 1.1.2-0       |  New Module to Manage Organizations/Resource Groups. |

| pools         | 4.2.11-20250122215055407  | 1.0.61                | CVA/PVA 1.1.2-0       |  Adds IP Pool Block Level IP Configuration. |

| policies      | 4.2.11-20250122215055407  | 1.0.61                | CVA/PVA 1.1.2-0       |  * New Memory and Scrub Policies  |

| profiles      | 4.2.11-20250122215055407  | 1.0.61                | CVA/PVA 1.1.2-0       |  * Adds Support for Certificate Management/LDAP to Domain Profiles/Templates. |



### [Back to Top](#easy-imm)



## Updates

* 2025-04-01: Recommended release is 4.2.11-20250122215055407 SaaS/CVA/PVA

* 2025-01-21: Recommended releases are 4.2.11-20241204094351081 (SaaS) or 4.2.11-18775 (CVA 1.1.1-0)

* 2024-11-12: Recommended releases are 4.2.11-20241004054146475 (SaaS) or 4.2.11-18775 (CVA 1.1.1-0). 

  IMPORTANT NOTE: 4.2.11-20241004054146475 introduces support for multi-ethernet network group policies for Ethernet Uplink Port-Channels and Ethernet Uplink.  If you are still using older module versions make sure to point to the older JSON Schema for Visual Studio Code.

  For example: v4.2.11-18775 - https://github.com/terraform-cisco-modules/easy-imm/blob/39542dfc4ee2f368d42ff6a73ee4e08cb26a4c09/yaml_schema/easy-imm.json

* 2024-10-23: Recommended releases are 4.2.11-20241004054146474 or 4.2.11-16712.  Adding Memory Policy.  Intersight API versioning changed to include date.

* 2024-10-11: Recommended releases are 4.2.11-18775 or 4.2.11-16712.  Adding Scrub Policy.

* 2024-09-13: Recommended releases are 4.2.11-18371 or 4.2.11-16712.  ISSUE 287 resolved.

* 2024-09-08: Rolling back SaaS recommendation to 4.2.11-17769 since provider v1.0.54 is broken again for server templates [ISSUE 287](https://github.com/CiscoDevNet/terraform-provider-intersight/issues/287) .  Version v4.2.11-18369 and v4.2.11-18370 is on hold for now until provider fixed.

* 2024-09-07: Recommended releases are 4.2.11-18369 or 4.2.11-16711.  This update changes the drive security policy to match the updated API of 1.0.11-18369.  Make sure to update your variables.tf, locals.tf from the eas-imm repository to get the updated sensitive variables for drive_security.  The variables have also been updated to do validation using the regular expression patterns from the API.

* 2024-07-23: Recommended releases are 4.2.11-17769 or 4.2.11-16711.

* 2024-07-16: Terraform Provider 1.0.48, 1.0.49, and 1.0.50 depricated due to breaking BIOS changes and bulk_merger problems.  Do not use these provider versions.



### [Back to Top](#easy-imm)



## Examples for Using the Easy IMM Terraform Modules



Examples are shown in the following directories:



  * `organizations`

  * `policies`

  * `pools`

  * `profiles`

  * `recommended_firmware` - This is used to get the latest recommended firmware releases from Intersight

  * `templates`

  * `Wakanda` - To Show profiles using pools/policies/templates as Data Sources (Mostly)



`organizations/policies/pools/profiles/templates` Folders are the `common/default/Asgard` organizations in our lab environment.



`Wakanda` Folder is the Wakanda organization in our lab environment.  It is not using the organizations module.



### [Back to Top](#easy-imm)



### IMPORTANT NOTES



Take notice of the `ezi.yaml` extension on the files.  This is how the  `data.utils_yaml_merge.model`, in the `main.tf`, is configured to recognize the files that should be imported with the module.



The Structure of the YAML files is very flexible.  You can have all the YAML Data in a single file or you can have it in multiple individual folders like is shown in this module.  The important part is that the `data.utils_yaml_merge.model` is configured to read the folders that you put the Data into.



When defining Identity reservations under a server profile, see example in `profiles` folder, note the flag in the example with `ignore_reservations`.  Reservation records are ephimeral.  Meaning that as soon as the reservation is assigned to a server profile, the identity reservation record is removed from the API.  Thus, after you run the first plan and the identities are created, this flag should be configured to `true` or you need to remove the reservations from the `server_profiles`.  Either way the reservations will only work on the first apply.  Subsequent applies with the reservations defined will cause the plan/apply to fail due to the identity being consumed.



## YAML Schema Notes for auto-completion, Help, and Error Validation:



If you would like to utilize Autocomple, Help Context, and Error Validation, `(HIGHLY RECOMMENDED)` make sure the files all utilize the `.ezi.yaml` file extension.



Add the Following to `YAML: Schemas`.  In Visual Studio Code: Settings > Settings > Search for `YAML: Schema`: Click edit in `settings.json`.  In the `yaml.schemas` section:



```bash

"https://raw.githubusercontent.com/terraform-cisco-modules/easy-imm/main/yaml_schema/easy-imm.json": "*.ezi.yaml"

```



Soon the Schema for these YAML Files have been registered with [*SchemaStore*](https://github.com/SchemaStore/schemastore/blob/master/src/api/json/catalog.json) via utilizing this `.ezi.yaml` file extension.  But until that is complete, need to still add to settings.



### Modify `global_settings.ezi.yaml` for SaaS versus CVA/PVA FQDN



`global_settings.ezi.yamls` contains variable `intersight_fqdn`.



#### Notes for the `global_settings.ezi.yamls`



  * `intersight_fqdn`:  SaaS will by default be `intersight.com`.  Available in the event of CVA or PVA deployments.

  * `tags`:  Not Required, but by default the version of the script is being flagged here.



#### Note: Modules can be added or removed dependent on the use case.  The primary example in this repository is consuming/showing a full environment deployment.



### [Back to Top](#easy-imm)



## [Cloud Posse `tfenv`](https://github.com/cloudposse/tfenv)



Command line utility to transform environment variables for use with Terraform. (e.g. HOSTNAME → TF_VAR_hostname)



Recently I adopted the `tfenv` runner to standardize environment variables with multiple orchestration tools.  tfenv makes it so you don't need to add TF_VAR_ to the variables when you add them to the environment.  But it doesn't work for windows would be the caveat.



In the export examples below, for the Linux Example, the 'TF_VAR_' is excluded because Cloud Posse tfenv is used to insert it during the run.



### Make sure you have already installed go



## [go](https://go.dev/doc/install)



```bash

go install github.com/cloudposse/tfenv@latest

```



### Add go/bin to PATH



```bash

GOPATH="$HOME/go"

PATH="$GOPATH/bin:$PATH"

```



### Aliases for `.bashrc`



Additionally to Save time on typing commands I use the following aliases by editing the `.bashrc` for my environment.



```bash

alias tfa='tfenv terraform apply main.plan'

alias tfap='tfenv terraform apply -parallelism=1 main.plan'

alias tfd='tfenv terraform destroy'

alias tff='terraform fmt'

alias tfi='terraform init'

alias tfim='tfenv terraform import'

alias tfp='tfenv terraform plan -out=main.plan'

alias tfu='terraform init -upgrade'

alias tfv='terraform validate'

```



### [Back to Top](#easy-imm)



## Recommended Firmware



In the `recommended_firmware` folder is a simple terraform setup that you can use to query Intersight for the latest recommended firmware for servers.  Following is an example output:



## Creating Server Profiles from Templates or Attaching Server Profiles to Templates



If you want to create server profiles from templates use the flag `create_from_template` under the server profile in :profiles:server.  See examples in `./profiles`.



Do not create from template if you want to assign identity reservations to a server profile.  Instead set the `attach_template` flag in the server profile.  This will also attach the template to the profile but will reserve the identities to the profile prior to template attachement.



### [Back to Top](#easy-imm)



## Environment Variables



Note that all the variables in `variables.tf` are marked as sensitive.  Meaning these are variables that shouldn't be exposed due to the sensitive nature of them.



Take note of the `locals.tf` that currently has the following sensitive variables defined:



  * `certificate_management`

  * `drive_security`

  * `firmware`

  * `ipmi_over_lan`

  * `iscsi_boot`

  * `ldap`

  * `local_user`

  * `persistent_memory`

  * `snmp`

  * `virtual_media`



The Reason to add these variables as maps of string is to allow the flexibility to add or remove iterations of these sensitive variables as needed.  Sensitive Variables cannot be iterated with a `for_each` loop.  Thus instead of adding these variables to the YAML schema, directly, they are added to these seperate maps to allow lookup of the variable index.



In example, if you needed to add 100 iterations of the `certificate_management` variables you can do that, and simply reference the index in the map of the iteration that will consume that instance.



### Terraform Cloud/Enterprise - Workspace Variables



- Add variable `intersight_api_key_id` with the value of your-intersight-api-key

- Add variable `intersight_secret_key` with the value of your-intersight-secret-file-content

- Add additional variables as required for the sensitive policy values



#### Add Other Variables as discussed below based on use cases.



## Sensitive Variables for the Policies Module:



Take note of the `locals.tf` that currently has all the sensitive variables mapped.



This is the default sensitive variable mappings.  You can add or remove to these according to the needs of your environment.



The important point is that if you need more than is added by default you can expand the locals.tf and variables.tf to accomodate your environment.



### IMPORTANT: 



ALL EXAMPLES BELOW ASSUME USING `tfenv` in LINUX



#### Linux - with tfenv



```bash

export intersight_api_key_id=""

export intersight_secret_key=""

```



#### Windows



```powershell

$env:TF_VAR_intersight_api_key_id=""

$env:TF_VAR_intersight_secret_key=""

```



#### To Assign any of these values for consumption you can define them as discussed below.



### Certificate Management



  * `cert_mgmt_certificate`: Options are by default 1-5 for Up to 5 Certificates.  Variable Should Point to the File Location of the PEM Certificate or be the value of the PEM certificate.

  * `cert_mgmt_private_key`: Options are by default 1-5 for Up to 5 Private Keys.  Variable Should Point to the File Location of the PEM Private Key or be the value of the PEM Private Key.



#### Linux - with tfenv



```bash

export cert_mgmt_certificate_1=''

```

```bash

export cert_mgmt_private_key_1=''

```



#### Windows



```powershell

$env:TF_VAR_cert_mgmt_certificate_1=''

```

```powershell

$env:TF_VAR_cert_mgmt_private_key_1=''

```



### Drive Security - KMIP Sensitive Variables

  * `drive_security_current_security_key_passphrase`: Used by Manual and Remote Key Management, if the server has a previous passphrase configured.

  * `drive_security_new_security_key_passphrase`: Used by Manual Key Management to Assign a new passphrase to the server.

  * `drive_security_authentication_password`: If Authentication is supported/used by the KMIP Server, This is the User Password to Configure.

  * `drive_security_server_ca_certificate`: KMIP Server CA Certificate Contents.



#### Linux - with tfenv



```bash

export drive_security_authentication_password=''

```

```bash

export drive_security_server_ca_certificate=''

```



#### Windows



```powershell

$env:drive_security_authentication_password=''

```

```powershell

$env:TF_VAR_drive_security_server_ca_certificate=''

```



### Firmware - CCO  Credentials



  * `cco_user`: If Configuring Firmware Policies, the CCO User for Firmware Downloads.

  * `cco_password`: If Configuring Firmware Policies, the CCO Password for Firmware Downloads.



#### Linux - with tfenv



```bash

export cco_user=''

```

```bash

export cco_password=''

```



#### Windows



```powershell

$env:TF_VAR_cco_user=''

```

```powershell

$env:TF_VAR_cco_password=''

```



### [Back to Top](#easy-imm)



## Execute the Terraform Apply/Plan



### Terraform Cloud



When running in Terraform Cloud with VCS Integration the first Plan will need to be run from the UI but subsiqent runs should trigger automatically



### Terraform CLI



* Execute the Plan - Linux



```bash

# First time execution requires initialization.  Not needed on subsequent runs.

terraform init

terraform plan -out="main.plan"

terraform apply "main.plan"

```



* Execute the Plan - Windows



```powershell

# First time execution requires initialization.  Not needed on subsequent runs.

terraform.exe init

terraform.exe plan -out="main.plan"

terraform.exe apply "main.plan"

```



## Requirements



| Name | Version |

|------|---------|

|  [terraform](#requirement\_terraform) | >=1.3.0 |

|  [intersight](#requirement\_intersight) | 1.0.61 |

|  [time](#requirement\_time) | 0.9.1 |

|  [utils](#requirement\_utils) | >= 0.1.3 |



### [Back to Top](#easy-imm)



## Providers



| Name | Version |

|------|---------|

|  [utils](#provider\_utils) | 0.2.6 |



### [Back to Top](#easy-imm)



## Modules



| Name | Source | Version |

|------|--------|---------|

|  [organizations](#module\_organizations) | terraform-cisco-modules/organizations/intersight | 4.2.11-20250122215055407 |

|  [pools](#module\_pools) | terraform-cisco-modules/pools/intersight | 4.2.11-20250122215055407 |

|  [policies](#module\_policies) | terraform-cisco-modules/policies/intersight | 4.2.11-20250122215055407 |

|  [profiles](#module\_profiles) | terraform-cisco-modules/profiles/intersight | 4.2.11-20250122215055407 |



**NOTE: When the Data is merged from the YAML files, it will run through the modules using for_each loop(s).  Sensitive Variables cannot be added to a for_each loop, instead use the variables below to add sensitive values for policies.**



### [Back to Top](#easy-imm)



## Inputs



| Name | Description | Type | Default | Required |

|------|-------------|------|---------|:--------:|

|  [intersight\_api\_key\_id](#input\_intersight\_api\_key\_id) | Intersight API Key. | `string` | n/a | yes |

|  [intersight\_secret\_key](#input\_intersight\_secret\_key) | Intersight Secret Key. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_certificate\_1](#input\_cert\_mgmt\_certificate\_1) | The Server Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_certificate\_2](#input\_cert\_mgmt\_certificate\_2) | The Server Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_certificate\_3](#input\_cert\_mgmt\_certificate\_3) | The Server Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_certificate\_4](#input\_cert\_mgmt\_certificate\_4) | The Server Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_certificate\_5](#input\_cert\_mgmt\_certificate\_5) | The Server Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_private\_key\_1](#input\_cert\_mgmt\_private\_key\_1) | The Server Private Key, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_private\_key\_2](#input\_cert\_mgmt\_private\_key\_2) | The Server Private Key, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_private\_key\_3](#input\_cert\_mgmt\_private\_key\_3) | The Server Private Key, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_private\_key\_4](#input\_cert\_mgmt\_private\_key\_4) | The Server Private Key, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cert\_mgmt\_private\_key\_5](#input\_cert\_mgmt\_private\_key\_5) | The Server Private Key, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [drive\_security\_current\_security\_key\_passphrase](#input\_drive\_security\_current\_security\_key\_passphrase) | Drive Security Current Security Key Passphrase for Manual or Remote Key Management.  It must meet the following criteria:
  - One Uppercase Letter
  - One LowerCase Letter
  - One Number
  - One Special Character: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [drive\_security\_new\_security\_key\_passphrase](#input\_drive\_security\_new\_security\_key\_passphrase) | Drive Security New Security Key Passphrase for Manual Key Management.  It must meet the following criteria:
  - One Uppercase Letter
  - One LowerCase Letter
  - One Number
  - One Special Character: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [drive\_security\_authentication\_password](#input\_drive\_security\_authentication\_password) | Drive Security User Password. | `string` | `""` | no |

|  [drive\_security\_server\_ca\_certificate](#input\_drive\_security\_server\_ca\_certificate) | Drive Security Server CA Certificate, in PEM Format, File Location. | `string` | `"blah.txt"` | no |

|  [cco\_password](#input\_cco\_password) | Cisco.com Authentication Password.  It must meet the following criteria:
  - One Uppercase Letter
  - One Lowercase Letter
  - One Number
  - One Special Character: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 12 and 60 Characters in Length. | `string` | `""` | no |

|  [cco\_user](#input\_cco\_user) | CCO User Account Email for Firmware Policies. | `string` | `"cco_user"` | no |

|  [ipmi\_encryption\_key](#input\_ipmi\_encryption\_key) | Encryption key to use for IPMI communication. It should have an even number of hexadecimal characters and not exceed 40 characters. | `string` | `""` | no |

|  [iscsi\_boot\_password](#input\_iscsi\_boot\_password) | Password to Assign to the iSCSI Boot Policy if doing Authentication. It can be any string that adheres to the following constraints.
  - Any non-white space character
  - Be between 12 and 16 Characters in Length. | `string` | `""` | no |

|  [binding\_parameters\_password](#input\_binding\_parameters\_password) | The password of the user for initial bind process with an LDAP Policy. It can be any string that adheres to the following constraints.
  - Any non-white space character
  - Be between 8 and 254 Characters in Length. | `string` | `""` | no |

|  [local\_user\_password\_1](#input\_local\_user\_password\_1) | Password to assign to a Local User Policy -> User.
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 127 Characters in Length. | `string` | `""` | no |

|  [local\_user\_password\_2](#input\_local\_user\_password\_2) | Password to assign to a Local User Policy -> User.
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 127 Characters in Length. | `string` | `""` | no |

|  [local\_user\_password\_3](#input\_local\_user\_password\_3) | Password to assign to a Local User Policy -> User.
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 127 Characters in Length. | `string` | `""` | no |

|  [local\_user\_password\_4](#input\_local\_user\_password\_4) | Password to assign to a Local User Policy -> User.
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 127 Characters in Length. | `string` | `""` | no |

|  [local\_user\_password\_5](#input\_local\_user\_password\_5) | Password to assign to a Local User Policy -> User.
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 127 Characters in Length. | `string` | `""` | no |

|  [persistent\_passphrase](#input\_persistent\_passphrase) | Secure passphrase to be applied on the Persistent Memory Modules on the server. The allowed characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `!`, `@`, `#`, `$`, `%`, `^`, `&`, `*`, `+`, `_`, `=`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [access\_community\_string\_1](#input\_access\_community\_string\_1) | The default SNMPv1, SNMPv2c community name or SNMPv3 username to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [access\_community\_string\_2](#input\_access\_community\_string\_2) | The default SNMPv1, SNMPv2c community name or SNMPv3 username to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [access\_community\_string\_3](#input\_access\_community\_string\_3) | The default SNMPv1, SNMPv2c community name or SNMPv3 username to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [access\_community\_string\_4](#input\_access\_community\_string\_4) | The default SNMPv1, SNMPv2c community name or SNMPv3 username to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [access\_community\_string\_5](#input\_access\_community\_string\_5) | The default SNMPv1, SNMPv2c community name or SNMPv3 username to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [snmp\_auth\_password\_1](#input\_snmp\_auth\_password\_1) | The SNMPv3 User Authorization password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_auth\_password\_2](#input\_snmp\_auth\_password\_2) | The SNMPv3 User Authorization password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_auth\_password\_3](#input\_snmp\_auth\_password\_3) | The SNMPv3 User Authorization password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_auth\_password\_4](#input\_snmp\_auth\_password\_4) | The SNMPv3 User Authorization password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_auth\_password\_5](#input\_snmp\_auth\_password\_5) | The SNMPv3 User Authorization password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_privacy\_password\_1](#input\_snmp\_privacy\_password\_1) | The SNMPv3 User Privacy password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_privacy\_password\_2](#input\_snmp\_privacy\_password\_2) | The SNMPv3 User Privacy password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_privacy\_password\_3](#input\_snmp\_privacy\_password\_3) | The SNMPv3 User Privacy password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_privacy\_password\_4](#input\_snmp\_privacy\_password\_4) | The SNMPv3 User Privacy password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_privacy\_password\_5](#input\_snmp\_privacy\_password\_5) | The SNMPv3 User Privacy password.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `@`, `_`, `*`, `-`
  - Be between 8 and 64 Characters in Length. | `string` | `""` | no |

|  [snmp\_trap\_community\_1](#input\_snmp\_trap\_community\_1) | The SNMPv1, SNMPv2c community name to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [snmp\_trap\_community\_2](#input\_snmp\_trap\_community\_2) | The SNMPv1, SNMPv2c community name to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [snmp\_trap\_community\_3](#input\_snmp\_trap\_community\_3) | The SNMPv1, SNMPv2c community name to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [snmp\_trap\_community\_4](#input\_snmp\_trap\_community\_4) | The SNMPv1, SNMPv2c community name to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [snmp\_trap\_community\_5](#input\_snmp\_trap\_community\_5) | The SNMPv1, SNMPv2c community name to include on any trap messages sent to the SNMP host. The name can be 32 characters long.  Allowed Characters are:
  - Lower or Upper Case Letters
  - Numbers
  - Special Characters: `.`, `=`, `!`, `&`, `#`, `$`, `%`, `+`, `^`, `_`, `*`, `-`
  - Be between 8 and 32 Characters in Length. | `string` | `""` | no |

|  [vmedia\_password\_1](#input\_vmedia\_password\_1) | Virtual Media Policy -> Mapping Target Password when authentication is enabled.  Allowed Characters are:
  - Any non-white space character
  - Be between 6 and 255 Characters in Length. | `string` | `""` | no |

|  [vmedia\_password\_2](#input\_vmedia\_password\_2) | Virtual Media Policy -> Mapping Target Password when authentication is enabled.  Allowed Characters are:
  - Any non-white space character
  - Be between 6 and 255 Characters in Length. | `string` | `""` | no |

|  [vmedia\_password\_3](#input\_vmedia\_password\_3) | Virtual Media Policy -> Mapping Target Password when authentication is enabled.  Allowed Characters are:
  - Any non-white space character
  - Be between 6 and 255 Characters in Length. | `string` | `""` | no |

|  [vmedia\_password\_4](#input\_vmedia\_password\_4) | Virtual Media Policy -> Mapping Target Password when authentication is enabled.  Allowed Characters are:
  - Any non-white space character
  - Be between 6 and 255 Characters in Length. | `string` | `""` | no |

|  [vmedia\_password\_5](#input\_vmedia\_password\_5) | Virtual Media Policy -> Mapping Target Password when authentication is enabled.  Allowed Characters are:
  - Any non-white space character
  - Be between 6 and 255 Characters in Length. | `string` | `""` | no |



### [Back to Top](#easy-imm)



## Outputs



| Name | Description |

|------|-------------|

|  [organizations](#output\_organizations) | Outputs from the organizations module. |

|  [policies](#output\_policies) | Outputs from the policies module. |

|  [pools](#output\_pools) | Outputs from the pools module. |

|  [profiles](#output\_profiles) | Outputs from the profiles module. |



### [Back to Top](#easy-imm)



## Sub Modules - Terraform Registry



If you want to see documentation on Variables for Submodules use the links below:



#### * [Organizations](https://registry.terraform.io/modules/terraform-cisco-modules/organizations/intersight/latest)



#### * [Policies](https://registry.terraform.io/modules/terraform-cisco-modules/policies/intersight/latest)



#### * [Pools](https://registry.terraform.io/modules/terraform-cisco-modules/pools/intersight/latest)



#### * [Profiles](https://registry.terraform.io/modules/terraform-cisco-modules/profiles/intersight/latest)



### [Back to Top](#easy-imm)