FEATURES:
- provider: added the
enhanced_validationblock with thelocationsandresource_providersproperties to replace theARM_PROVIDER_ENHANCED_VALIDATIONenvironment variable (#31678)
ENHANCEMENTS:
azurerm_site_recovery_replicated_vm- add support forPremiumV2_LRSin thetarget_replica_disk_typeproperty (#31890)
BUG FIXES:
azurerm_analysis_services_server- fix an issue that prevented creation of the resource withpower_bi_service_enabledset tofalseand one or moreipv4_firewall_ruleblocks defined (#31870)azurerm_analysis_services_server- fix an issue that prevented adding or removingipv4_firewall_ruleblocks without also modifyingpower_bi_service_enabled(#31870)azurerm_linux_web_app,azurerm_windows_web_app,azurerm_windows_function_app,azurerm_linux_function_app,azurerm_function_app_flex_consumption- fix API error when removing auth_settings_v2 configuration from a previously deployed appservice (#31821) (#31821)- dependencies:
dataprotection- downgrade to API version2025-07-01due to new validation introduced by Azure on2025-09-01that is blocking deployments (#31877)
BUG FIXES:
azurerm_data_factory- fix removal ofcustomer_managed_key_identity_idto no longer send an empty string to Azure, instead sending an empty object (#31858)azurerm_data_factory_customer_managed_key- fix a persistent ID parsing error onuser_assigned_identity_idwhen Azure returned an empty string (#31858)azurerm_data_factory_customer_managed_key- fix removal ofuser_assigned_identity_idto no longer send an empty string to Azure, instead sending an empty object (#31858)azurerm_linux_function_app_slot- fix an issue that prevented users from deploying a slot to a container-based function app (#31842)
FEATURES:
- New List Resource:
azurerm_network_ddos_protection_plan(#31768) - New List Resource:
azurerm_private_dns_a_record(#31785) - New List Resource:
azurerm_private_endpoint(#31769) - New List Resource:
azurerm_redis_cache(#31770) - New List Resource:
azurerm_redis_firewall_rule(#31770) - New List Resource:
azurerm_route(#31760) - New List Resource:
azurerm_mssql_elasticpool(#31736) - New List Resource:
azurerm_mssql_virtual_machine(#31737)
ENHANCEMENTS:
- dependencies:
databricks- update to API version2026-01-01(#31654) - dependencies:
dataprotection- update to API version2025-09-01(#31402) azurerm_dashboard_grafana- add support for the12value in thegrafana_major_versionproperty and remove the deprecated10value (#31653)azurerm_linux_function_app- add support for25in thejava_versionproperty (#31096)azurerm_linux_web_app- add support for3.14in thepython_versionproperty (#31826)azurerm_linux_web_app- add support for25in thejava_versionproperty (#31096)azurerm_linux_web_app_slot- add support for3.14in thepython_versionproperty (#31826)azurerm_windows_function_app- add support for25in thejava_versionproperty (#31096)azurerm_windows_web_app- add support for25in thejava_versionproperty (#31096)
BUG FIXES:
azurerm_container_app_job- fix an issue wheretemplate.container.startup_probe.initial_delayandtemplate.container.readiness_probe.initial_delaywere not set in the API request (#31796)
FEATURES:
- New List Resource:
azurerm_application_gateway(#31749) - New List Resource:
azurerm_application_security_group(#31742) - New List Resource:
azurerm_firewallandazurerm_firewall_policy(#31734) - New List Resource:
azurerm_firewall_policy_rule_collection_group(#31741) - New List Resource:
azurerm_ip_group(#31740) - New List Resource:
azurerm_mssql_database(#31735) - New List Resource:
azurerm_mssql_job_agent(#31738) - New List Resource:
azurerm_mssql_server(#31650) - New List Resource:
azurerm_nat_gatway(#31764) - New List Resource:
azurerm_network_security_rule(#31748) - New List Resource:
azurerm_public_ip(#31762) - New List Resource:
azurerm_web_application_firewall_policy(#31758)
ENHANCEMENTS:
- dependencies:
goupdate to1.25.5 - dependencies:
go-azure-sdk- update tov0.20260212.1143955 azurerm_managed_redis-sku_namecan now be updated (#31203)azurerm_managed_redis-default_databasemust be specified when creating a new resource (#31724)azurerm_point_to_site_vpn_gateway-connection_configuration.x.internet_security_enabledcan now be updated (#31733)azurerm_security_center_storage_defender- update to API version2025-06-01(#31759)
BUG FIXES:
azurerm_managed_redis_geo_replication- fix an issue that prevented linking 3 or more clusters (#31385)azurerm_signalr_service- fix setting default values into state, preventing diffs on import forconnectivity_logs_enabled,http_request_logs_enabled, andmessaging_logs_enabled(#31566)
FEATURES:
- New Data Source:
azurerm_cognitive_account_project(#31605) - New Data Source:
azurerm_managed_redis_access_policy_assignment(#30980) - New Data Source:
azurerm_oracle_database_system_versions(#31001) - New Resource:
azurerm_api_management_workspace_named_value(#31299) - New List Resource:
azurerm_cognitive_account(#31624) - New Resource:
azurerm_data_factory_linked_service_sql_managed_instance(#30896) - New Resource:
azurerm_managed_redis_access_policy_assignment(#30980) - New List Resource:
azurerm_mysql_flexible_database,azurerm_mysql_flexible_server_firewall_rule,azurerm_mysql_flexible_server_configuration- includes addition of Identity (#31646) (#31646) - New List Resource:
azurerm_service_plan(#31610)
ENHANCEMENTS:
- dependencies:
containerinstance- update to API version2025-09-01(#31640) - dependencies:
storagemover- update to API version2025-07-01(#31587) - Data Source:
azurerm_container_app- add support for theread_secretsproperty allowing users to skip secret retrieval that may trigger authorization errors (#31199) azurerm_application_gateway- add support for2.2towaf_configuration.rule_set_version(#31674)azurerm_application_gateway- add support forMS-ThreatIntel-XSStowaf_configuration.disabled_rule_group.rule_group_name(#31674)azurerm_express_route_port- add support forGcmAesXpn128andGcmAesXpn256ciphers tolink*.macsec_cipher(#30240)azurerm_postgresql_flexible_server- add support forcluster(#31315)azurerm_web_application_firewall_policy- add support for2.2tomanaged_rules.managed_rule_set.versionandmanaged_rules.exclusion.excluded_rule_set.version(#31674)azurerm_web_application_firewall_policy- add support forMS-ThreatIntel-XSStomanaged_rules.managed_rule_set.rule_group_override.rule_group_nameandmanaged_rules.exclusion.excluded_rule_set.rule_group.rule_group_name(#31674)- provider: the
subscription_idproperty can now be populated based on theazCLI (#30251)
BUG FIXES:
azurerm_express_route_port- fix an issue that causedidentityto be removed when updating unrelated properties (#30240)azurerm_federated_identity_credential- theidis now built using the resource group name segment from theparent_idpreventing unexpected 404 statuses (#30860)azurerm_kubernetes_cluster- fixedcapacity_reservation_group_idloss during node pool cycling (#30654)azurerm_monitor_aad_diagnostic_setting- add polling as a workaround to an eventual consistency issue (#31123)list.azurerm_private_dns_zone- fix context handling resolving an issue where this list resources never returned results (#31719)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20260129.1200123(#31621) azurerm_automation_runbook- add support for theruntime_environment_nameproperty (#30992)azurerm_kusto_eventgrid_data_connection- update validation foreventhub_consumer_group_nameto allow$Defaultas input (#31551)azurerm_linux_function_app- add support for3.14tosite_config.application_stack.python_version(#31195)azurerm_linux_function_app_slot- add support for3.14tosite_config.application_stack.python_version(#31195)azurerm_netapp_volume_group_sap_hana_resource- add support forzone,encryption_key_source,key_vault_private_endpoint_id, andnetwork_features(#31603)azurerm_user_assigned_identity- add support for theisolation_scopeproperty (#31216)
BUG FIXES:
azurerm_kubernetes_cluster- thenetwork_policyproperty now allows updating fromcalicotocilium(#31627)azurerm_logic_app_trigger_http_request- fix an issue that prevented importing existing resources due to empty trigger inputs (#31433)azurerm_mssql_database- fix validation formin_capacityandauto_pause_delay_in_minutes(#31690)
FEATURES:
- New Data Source:
azurerm_network_security_perimeter(#31356) - New Data Source:
azurerm_network_security_perimeter_profile(#31356) - New Resource:
azurerm_network_security_perimeter(#31356) - New Resource:
azurerm_network_security_perimeter_access_rule(#31356) - New Resource:
azurerm_network_security_perimeter_association(#31356) - New Resource:
azurerm_network_security_perimeter_profile(#31356) - New List Resource:
azurerm_resource_group(#31270)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20251219.1184026(#31397) azurerm_backup_policy_file_share- add support forbackup_tierandsnapshot_retention_in_days(#29243)azurerm_cosmosdb_cassandra_cluster-versionnow supports4.1and5.0(#31424)azurerm_function_app_flex_consumption- themaximum_instance_countproperty now allows values from1-1000(#31392)azurerm_kubernetes_cluster-network_data_planeandnetwork_policynow support updating tocilium(#30958)azurerm_kusto_eventhub_data_connection- add support forretrieval_start_date(#31445)azurerm_kusto_iothub_data_connection- add support forretrieval_start_date(#31413)azurerm_kusto_script- add support forscript_levelandprincipal_permissions_action(#31403)azurerm_linux_function_app- add support for24tosite_config.application_stack.node_version(#31098)azurerm_linux_function_app_slot- add support for24tosite_config.application_stack.node_version(#31098)azurerm_linux_web_app- add support for24-ltstosite_config.application_stack.node_version(#31098)azurerm_linux_web_app_slot- add support for24-ltstosite_config.application_stack.node_version(#31098)azurerm_mssql_managed_instance- increasestorage_size_in_gbmaximum to32768(#31387)azurerm_netapp_volume_group_oracle-service_levelnow supportsFlexible(#31508)azurerm_netapp_volume_group_sap_hana-service_levelnow supportsFlexible(#31508)azurerm_network_manager_routing_configuration- add support for theroute_table_usage_modeproperty (#31463)azurerm_windows_function_app- add support for~24tosite_config.application_stack.node_version(#31248)azurerm_windows_function_app_slot- add support for~24tosite_config.application_stack.node_version(#31248)data.azurerm_container_registry-admin_passwordis now sensitive (#31428)
BUG FIXES:
azurerm_api_management- fix an issue that prevented updates tohostname_configuration.*.key_vault_certificate_id(#31534)azurerm_api_management_custom_domain- fix an issue that prevented updates to[management|portal|developer_portal|scm|gateway].key_vault_certificate_id(#31534)azurerm_container_app_custom_domain- no longer error during read when container app is deleted outside of Terraform (#31523)azurerm_databricks_workspace- removed a legacy workaround that prevented apply operations from succeeding whenmanaged_disk_cmk_rotation_to_latest_version_enabledandtagswere updated simultaneously (#31509)azurerm_storage_account- can now update a Storage Standard ZRS account (#31431)clients- fix correlation id across many clients (#31368)
NOTE: This release removes the Mobile Network (azurerm_mobile_network*) resources and data sources due to Azure having retired the service
FEATURES:
- New Resource:
azurerm_automation_runtime_environment(#30991)
ENHANCEMENTS:
azurerm_data_protection_backup_vault_customer_managed_key- thekey_vault_key_idproperty now supports keys from a Managed HSM vault (#31365)azurerm_kubernetes_cluster- support for thenode_provisioning_profileblock (#30517)azurerm_log_analytics_cluster_customer_managed_key- thekey_vault_key_idproperty now supports keys from a Managed HSM vault (#31375)azurerm_mssql_database- thetransparent_data_encryption_key_vault_key_idproperty now supports keys from a Managed HSM vault (#31373)
BUG FIXES:
azurerm_data_factory- fix ID parsing errors whencustomer_managed_key_identity_idis an empty string (#28621)azurerm_eventhub-partition_countcan now be updated for dedicated clusters (#30993)azurerm_linux_function_app- fix panic when deployed without all required permissions (#31344)
ENHANCEMENTS:
- dependencies:
healthbot- update to API version2025-05-25(#31328) - dependencies:
terraform-plugin-testing- update tov1.14.0(#31334) - Data Source:
azurerm_cognitive_account- add support for new attributes (#30778) azurerm_cognitive_account- add support for thekindproperty to rollback or upgrade fromOpenAItoAIServices(#31063)azurerm_databricks_workspace_root_dbfs_customer_managed_key- thekey_vault_key_idproperty now supports keys from Managed HSM Vaults (#31336)azurerm_databricks_workspace_root_dbfs_customer_managed_key- thekey_vault_key_idproperty now supports versionless keys (#31336)azurerm_healthbot- add support for theC1andPESSKUs (#31328)azurerm_lbfixignore_changesbehaviour in updatable properties (#31318)azurerm_network_manager_network_group- add support for themember_typeproperty [GH-30672azurerm_network_manager_static_member- add support for using a subnet as the target resource (#30672)azurerm_virtual_network_gateway- add support for theErGwScaleSKU (#31082)
BUG FIXES:
azurerm_container_app_environment_certificate- fix an issue that prevented creating the resource with an empty value forcertificate_password(#31335)azurerm_databricks_workspace_root_dbfs_customer_managed_key- fix a panic that occurred when the customer managed key was removed from the workspace outside of Terraform (#31336)azurerm_databricks_workspace_root_dbfs_customer_managed_key- fix the timeout for the delete operation (#31336)azurerm_storage_blob_inventory_policy- fix setting Resource Identity data (#31313)
FEATURES:
- New Data Source:
azurerm_api_management_workspace(#30241) - New Resource:
azurerm_cognitive_account_project(#30916) - New Resource:
azurerm_log_analytics_workspace_table_custom_log(#30800) - New Resource:
azurerm_mongo_cluster_user(#31205) - New Resource:
azurerm_palo_alto_next_generation_firewall_virtual_hub_strata_cloud_manager(#30613) - New Resource:
azurerm_palo_alto_next_generation_firewall_virtual_network_strata_cloud_manager(#30613) - New List Resource:
azurerm_private_dns_zone(#31157)
ENHANCEMENTS:
- dependencies:
containerregistry- update to API version2025-04-01(#30205) - dependencies:
go-azure-helpers- update tov0.75.1(#31148) - dependencies:
go-azure-sdk- update tov0.20251202.1181053(#31253) - dependencies:
managedidentity- upgrade API version to2024-11-30(#30535) - dependencies:
postgres- update to API version2025-08-01(#31162) azurerm_cognitive_account- update validation forcustomer_managed_key.key_vault_key_idto allow managed HSM keys as input (#31147)azurerm_container_app_environment- extend validation forworkload_profile_typefor additional supported SKUs (#30738)azurerm_container_app_environment_certificate- add support for thecertificate_key_vaultblock (#30510)azurerm_data_factory- update validation forcustomer_managed_key_idto allow managed HSM keys as input (#31146)azurerm_mongo_cluster- support for new propertiescustomer_managed_key,data_api_mode_enabled,identity,restore,authentication_methodsandstorage_type(#31100)azurerm_mysql_flexible_server- add support for MySQL version8.4(#31099)azurerm_oracle_autonomous_database- theadmin_passwordproperty is no longerForceNew(#30966)azurerm_postgresql_flexible_server- update validation forcustomer_managed_key.key_vault_key_idandcustomer_managed_key.geo_backup_key_vault_key_idto allow managed HSM keys as input (#31148)azurerm_postgresql_flexible_server- add support for PostgreSQL version18(#31162)azurerm_storage_encryption_scope- update validation forkey_vault_key_idto allow managed HSM keys as input (#31145)
BUG FIXES:
- Data Source:
azurerm_ssh_public_key- fix normalisation forpublic_keyto avoid removing a literalEOTfrom the base64 encoded content (#31249) azurerm_data_protection_backup_vault- poll delete request for completion (#31202)azurerm_function_app_hybrid_connection- remove validation preventing resource import when using an elastic service plan SKU (#31134)azurerm_key_vault_key-not_before_dateandexpiration_dateare now set into state when empty, fixing an issue where drift was not detected (#31192)azurerm_key_vault_secret-not_before_dateandexpiration_dateare now set into state when empty, fixing an issue where drift was not detected (#31192)azurerm_kubernetes_cluster- fix drift onazure_policy_enabledwhen updating cluster (#30917)azurerm_kubernetes_fleet_update_run- fix a nil pointer dereference to prevent panics (#31213)azurerm_lb_nat_rule- fix an issue that prevented changingfloating_ip_enabledandtcp_reset_enabledfromtruetofalse(#31244)azurerm_lb_outbound_rule- fix an issue that prevented changingtcp_reset_enabledfromtruetofalse(#31244)azurerm_lb_rule- fix an issue that prevented changingfloating_ip_enabledandtcp_reset_enabledfromtruetofalse(#31244)azurerm_private_endpoint- ensure Resource Identity data is set on create to avoidMissing Resource Identity After Createerrors (#31246)azurerm_resource_group- fix poller for theprevent_deletion_if_contains_resourcesfeature, resolving an Azure eventual consistency issue (#31253)azurerm_storage_account- ensure Resource Identity data is set on create to avoidMissing Resource Identity After Createerrors (#31246)azurerm_traffic_manager_profile- fix an issue that prevented changingtraffic_view_enabledfromtruetofalse(#31066)
FEATURES:
- New Action:
azurerm_cdn_front_door_cache_purge(#30765) - New Action:
azurerm_data_protection_backup_instance_protect(#31085) - New Action:
azurerm_managed_redis_databases_flush(#31132) - New Action:
azurerm_mssql_execute_job(#31095) - New List Resource:
azurerm_network_interface(#31012) - New List Resource:
azurerm_network_profile(#31127) - New List Resource:
azurerm_network_security_group(#31014) - New List Resource:
azurerm_route_table(#31015)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20251107.1191907(#31095) - Data Source:
azurerm_container_app- add support for thetemplate.cooldown_period_in_secondsandtemplate.polling_interval_in_secondsproperties (#29426) azurerm_container_app- add support for thetemplate.cooldown_period_in_secondsandtemplate.polling_interval_in_secondsproperties (#29426)azurerm_linux_function_app- add support fordotnet_version10.0(#31007)azurerm_linux_function_app_slot- add support fordotnet_version10.0(#31007)azurerm_linux_web_app- add support fordotnet_version10.0(#31007)azurerm_linux_web_app_slot- add support fordotnet_version10.0(#31007)azurerm_managed_redis- add support forpersistence_append_only_file_backup_frequencyandpersistence_redis_database_backup_frequencyproperties (#30964)azurerm_resource_group- refactored from legacy SDK to usego-azure-sdk(#30616)azurerm_service_plan- suppress casing difference onsku_name(#30907)azurerm_storage_share_directory- Deprecatestorage_share_idin favour ofstorage_share_url(#28457)azurerm_storage_share_file- Deprecatestorage_share_idin favour ofstorage_share_url(#28457)azurerm_windows_function_app- add support fordotnet_versionv10.0(#31007)azurerm_windows_function_app_slot- add support fordotnet_versionv10.0(#31007)azurerm_windows_web_app- add support fordotnet_versionv10.0(#31007)azurerm_windows_web_app_slot- add support fordotnet_versionv10.0(#31007)
BUG FIXES:
azurerm_orchestrated_virtual_machine_scale_set- Fix issue when using a specialized image (#30889)azurerm_virtual_network- remove RO values from update to avoid issues with API payload size limitation (#30945)
FEATURES:
- New Resource:
azurerm_api_management_workspace_certificate(#30628) - New Resource:
azurerm_mongo_cluster_firewall_rule(#31062)
ENHANCEMENTS:
- dependencies:
automation- update to API version2024-10-23(#30890) - dependencies:
go-azure-sdk- update tov0.20251029.1173336(#31051) - dependencies:
managedredis- update to API Version2025-07-01(#31051) - dependencies:
mongocluster- update to API version2025-09-01(#30982) azurerm_api_management_backend- add support for thecircuit_breaker_ruleblock (#30471)azurerm_dynatrace_monitor- support for theYEARLYvalue in thebilling_cycleproperty (#31078)azurerm_kubernetes_cluster_node_pool- support for theundrainable_node_behaviorandmax_unavailableproperties (#30563)azurerm_managed_disk- support expanding Ultra Disks and Premium SSD v2 disk without downtime (#30593)azurerm_managed_redis- add support forpublic_network_access(#31051)azurerm_storage_table_entity- resource is now removed from state if it no longer exists in Azure (#31064)azurerm_synapse_spark_pool- add support forspark_version3.5(#30900)data.azurerm_postgresql_flexible_server- add support forzoneandhigh_availability(#31034)
BUG FIXES:
azurerm_dynatrace_monitor- thephone_numberandcountryproperties are no longer Required (#31077)azurerm_dynatrace_tag_rules- thelog_rule.filtering_tagproperty is no longer required (#31065)azurerm_dynatrace_tag_rules- themetric_rule.filtering_tagproperty is no longer required (#31065)azurerm_kubernetes_cluster- fix crash in use ofazure_active_directory_role_based_access_control(#31101)azurerm_logic_app_workflow- fix inaccurate error messages (#30963)azurerm_virtual_network_gateway- fix validation forpolicy_group.nameandvpn_client_configuration.virtual_network_gateway_client_connection.policy_group_names(#30454)
NOTE: This release removes the azurerm_spatial_anchors_account resource and data source due to Azure having retired the service
FEATURES:
- New Resource:
azurerm_api_management_workspace_api_version_set(#30498)
ENHANCEMENTS:
- dependencies:
Goupdated tov1.25.3(#31020) - Data Source:
azurerm_application_gateway- add support for thebackend_http_settings.dedicated_backend_connection_enabledproperty (#31033) azurerm_application_gateway- add support for thebackend_http_settings.dedicated_backend_connection_enabledproperty (#31033)azurerm_machine_learning_datastore_blobstorage- improve validation forstorage_container_id(#31002)azurerm_machine_learning_datastore_datalake_gen2- improve validation forstorage_container_id(#31002)azurerm_windows_web_app- add support for thevirtual_network_image_pull_enabledproperty (#30920)azurerm_windows_web_app_slot- add support for thevirtual_network_image_pull_enabledproperty (#30920)
BUG FIXES:
azurerm_container_registry_task- prevent a panic by adding a nil check (#31043)
FEATURES:
- New Data Source:
azurerm_oracle_resource_anchor(#30823) - New Resource:
azurerm_network_manager_routing_rule(#30439) - New Resource:
azurerm_oracle_resource_anchor(#30823)
ENHANCEMENTS:
- dependencies:
dashboard- update to API version2025-08-01(#30972) - dependencies:
go-azure-sdk- update tov0.20251024.1223440(#30952) - dependencies:
network- update to API version2025-01-01(#30904) azurerm_cognitive_account- addTextAnalyticsto allowedkindvalidation fornetwork_acls.bypass(#30887)azurerm_subnet_service_endpoint_storage_policy- add support for the/services/Azure/Databricksvalue in thedefinition.service_resourcesproperty (#30762)
BUG FIXES:
- Data Source:
azurerm_managed_redis- fix a panic caused by a nested field access on a pointer without nil checking (#30978)
FEATURES:
- New Data Source:
azurerm_managed_redis(#30060) - New Resource:
azurerm_managed_redis(#30060) - New Resource:
azurerm_managed_redis_geo_replication(#30060)
ENHANCEMENTS:
- dependencies:
go-azure-sdkupdate tov0.20251016.1163854(#30883) - dependencies:
oracle- update to API version2025-09-01(#30796) - Data Source:
azurerm_container_app_environment- add support for thepublic_network_accessproperty (#30817) azurerm_container_app_environment- add support for thepublic_network_accessproperty (#30817)azurerm_mssql_job_target_group- thejob_target.job_credential_idproperty is no longer required whendatabase_nameis not set to allow for authentication using a managed identity (#30898)azurerm_netapp_volume_resource- support for Cross Zone Region replication through thedata_protection_replicationblock (#30872)azurerm_search_service- implement plan time error whenlocal_authentication_enabled = falseandauthentication_failure_modeis set (#30882)
BUG FIXES:
azurerm_mssql_database- allow existing zero or null value forauto_pause_delay_in_minutesandmin_capacityof non-serverless database (#30924)
FEATURES:
- New Data Source:
azurerm_graph_services_account(#30697) - New Data Source:
azurerm_oracle_exascale_database_storage_vault(#30043) - New Resource:
azurerm_api_management_workspace_policy_fragment(#30678) - New Resource:
azurerm_oracle_exascale_database_storage_vault(#30043)
ENHANCEMENTS:
- Data Source:
azurerm_data_protection_backup_vault- add support for theidentity.identity_idsproperty (#29061) azurerm_consumption_budget_management_group- remove the maximum count validation for thenotificationblock (#29200)azurerm_consumption_budget_resource_group- remove the maximum count validation for thenotificationblock (#29200)azurerm_consumption_budget_subscription- remove the maximum count validation for thenotificationblock (#29200)azurerm_data_protection_backup_vault- add support for theidentity.identity_idsproperty (#29061)azurerm_data_protection_backup_vault- add support forUserAssignedandSystemAssigned, UserAssignedvalues to theidentity.typeproperty (#29061)azurerm_monitor_data_collection_rule- improve validation fordata_sources.*.name(#30851)azurerm_search_service- support upgrading theskubased on tier (#30842)azurerm_storage_queue- support migrating fromstorage_account_nametostorage_account_id(#30836)
BUG FIXES:
azurerm_application_insights- fix an issue that causedtagsto be removed when other properties were updated (#30758)azurerm_container_registry- fix thenamelength validation to allow 50 rather than 49 (#30858)azurerm_function_app_flex_consumption- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_linux_function_app- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_linux_function_app_slot- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_linux_web_app- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_linux_web_app_slot- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_mssql_database- fix validation formin_capacityandauto_pause_delay_in_minutesbeing set on non-serverless SKUs (#30856)azurerm_signalr_service_custom_certificate- remove unnecessary API requests and checks that could lead to a panic (#30412)azurerm_windows_function_app- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_windows_function_app_slot- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_windows_web_app- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)azurerm_windows_web_app_slot- theauth_settingsblock contents are now set into state whenauth_settings.enabledis set tofalse(#30781)
FEATURES:
- New Data Source:
azurerm_oracle_autonomous_database_clone_from_backup(#29633) - New Data Source:
azurerm_oracle_autonomous_database_clone_from_database(#29633) - New Resource:
azurerm_oracle_autonomous_database_clone_from_backup(#29633) - New Resource:
azurerm_oracle_autonomous_database_clone_from_database(#29633)
ENHANCEMENTS:
- dependencies:
containerapps- update to API version2025-07-01(#30801) - dependencies:
containerservice- update to API version2025-07-01(#30719) - dependencies:
go-azure-sdk- update tov0.20251007.1195632(#30799) - dependencies:
guestconfiguration- update to API version2024-04-05(#30642) - dependencies:
search- update to API version2025-05-01(#30314) azurerm_kubernetes_cluster- add support forAzureLinux3andUbuntu2204to thedefault_node_pool.os_skuproperty (#30719)azurerm_kubernetes_cluster- add support for theai_toolchain_operator_enabledproperty (#30713)azurerm_kubernetes_cluster_node_pool- add support forAzureLinux3andUbuntu2204to theos_skuproperty (#30719)azurerm_linux_virtual_machine_scale_set- add support for theresilient_vm_creation_enabledandresilient_vm_deletion_enabledproperties (#30204)azurerm_network_watcher_flow_log- changing thetarget_resource_idproperty no longer forces the resource to be replaced (#30776)azurerm_notification_hub_namespace- add support forreplication_regionandzone_redundancy_enabled(#30531)azurerm_windows_virtual_machine_scale_set- add support for theresilient_vm_creation_enabledandresilient_vm_deletion_enabledproperties (#30204)
BUG FIXES:
azurerm_eventhub_namespace-maximum_throughput_unitscan be set to0whenauto_inflate_enabledis disabled (#30777)azurerm_log_analytics_workspace- fix the default value forlocal_authentication_enabled(#30759)azurerm_mssql_database- add validation to ensure thatmin_capacityandauto_pause_delay_in_minutescan only be set on serverless dbs (#30790)azurerm_mssql_server- theazuread_administratorblock now updates in place rather than being deleted/recreated (#30742)azurerm_network_watcher_flow_log- thetarget_resource_idproperty is now included in the update request payload resolving an issue where changing it failed to recreate or update the resource (#30776)azurerm_pim_eligible_role_assignment- improve filter used during List requests to prevent timeouts (#30705)azurerm_postgresql_flexible_server_virtual_endpoint- fix read error when in replica set in failover state (#30789)
FEATURES:
- New Resource:
azurerm_api_management_workspace_policy(#30547)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20250924.1155608(#30693) azurerm_cognitive_account- add support for valueAIServicestokindproperty (#30423)azurerm_cognitive_account- add theproject_management_enabledproperty (#30423)azurerm_cognitive_account- add thenetwork_injectionproperty (#30423)azurerm_palo_alto_local_rulestack_rule- increase limit forpriorityto1000000(#30712)azurerm_stream_analytics_job- add support for theMsivalue in thejob_storage_account.authentication_modeproperty (#30728)
BUG FIXES:
azurerm_management_group_policy_remediation- suppress casing difference onpolicy_definition_reference_idto avoid a perpetual diff as the API doesn't honour casing (#30736)azurerm_resource_group_policy_remediation- suppress casing difference onpolicy_definition_reference_idto avoid a perpetual diff as the API doesn't honour casing (#30736)azurerm_resource_policy_remediation- suppress casing difference onpolicy_definition_reference_idto avoid a perpetual diff as the API doesn't honour casing (#30736)azurerm_storage_account- fix error that occurs aroundqueue_propertieswhen not specified (#30746)azurerm_subscription_policy_remediation- suppress casing difference onpolicy_definition_reference_idto avoid a perpetual diff as the API doesn't honour casing (#30736)
ENHANCEMENTS:
- dependencies:
frontdoor/webapplicationfirewallpolicies- update to API version2025-03-01(#29742) azurerm_cdn_frontdoor_firewall_policy- support for thecaptcha_cookie_expiration_in_minutesproperty and theCAPTCHAvalue in thecustom_rule.actionproperty (#29742)azurerm_cdn_frontdoor_security_policy- add update ability (#30299)azurerm_cognitive_account- add support forC2,C3,C4,D3, andS1tosku_name(#30655)azurerm_flex_function_app- add support for thehttp_concurrencyproperty (#29678)azurerm_kubernetes_cluster- add support for theapi_server_access_profile.virtual_network_integration_enabledandapi_server_access_profile.subnet_idproperties (#30559)azurerm_machine_learning_workspace- add support for theservice_side_encryption_enabledproperty (#30478)azurerm_mysql_flexible_server- add support for themanaged_hsm_key_idproperty (#30502)azurerm_netapp_volume- add support for updatingprotocols(#30643)azurerm_netapp_volume_group_oracle- add support for updatingprotocols(#30643)azurerm_netapp_volume_group_sap_hana- add support for updatingprotocols(#30643)azurerm_postgresql_flexible_server- add support for the17value in theversionproperty (#30683)azurerm_storage_queue- add support for thestorage_account_idproperty (#28752)
BUG FIXES:
azurerm_cdn_frontdoor_firewall_policy- fix the read function so it now correctly marks the resource as gone (#30704)
NOTES:
This release contains a Terraform Plugin SDK v2 version bump that prevents identity change validation from raising an error when prior identity is empty (all attributes are null).
BUG FIXES:
- dependencies:
hashicorp/terraform-plugin-sdk/v2- update tov2.38.1(#30667) azurerm_network_interface- ensure identity is set during non-refresh apply operations (#30667)
FEATURES:
- New Action:
azurerm_virtual_machine_power(#30647) - New List Resource:
azurerm_storage_account(#30614) - New List Resource:
azurerm_virtual_network(#30614)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20250908.1192604(#30644) azurerm_kubernetes_cluster- add support for thenetwork_profile.advanced_networkingblock (#30434)azurerm_storage_account-expiration_actionsupportsBlock(#30599) (#30599)azurerm_subnet- add support forsharing_scope(#30600)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20250903.1204452(#30557) - dependencies:
paloaltonetworks/firewalls- update to API version2025-05-23(#30587) azurerm_kubernetes_cluster- add support forbootstrap_profile(#30532)azurerm_kubernetes_cluster- add support for thenonevalue fornetwork_profile.outbound_type(#30532)azurerm_netapp_volume- add support foraccept_grow_capacity_pool_for_short_term_clone_split(#30494)azurerm_service_plan- add support for Premium V4 SKUs (#30163)
BUG FIXES:
azurerm_application_insights_standard_web_test- prevent Resource ID parsing errors when parsinghidden-linktags (#28034)azurerm_custom_ip_prefix- fix an incorrect type-assertion that caused an error when attempting to read the API response (#30537)azurerm_monitor_activity_log_alert- fixnamevalidation (#30590)azurerm_palo_alto_next_generation_firewall_virtual_hub_local_rulestack- fix import by parsingnetwork_virtual_appliance_idinsensitively (#30597)azurerm_palo_alto_next_generation_firewall_virtual_hub_panorama- fix import by parsingnetwork_virtual_appliance_idinsensitively (#30597)azurerm_postgresql_flexible_server- fix a bug when setting thesource_server_idproperty (#30497)
FEATURES:
- New Data Source:
azurerm_oracle_autonomous_database_backup(#30201) - New Data Source:
azurerm_oracle_autonomous_database_backups(#30201) - New Resource:
azurerm_oracle_autonomous_database_backup(#30201)
ENHANCEMENTS:
- dependencies:
azurerm_api_management_backend- upgrade API version to2024-05-01(#30500) - dependencies:
eventgrid- upgrade to API version2025-02-15(#30481) - Data Source:
azurerm_dev_center_project_pool- add support for thesingle_sign_on_enabledproperty (#30440) azurerm_dev_center_project_pool- add support for thesingle_sign_on_enabledproperty (#30440)azurerm_management_group_policy_assignment-override.kindcan now be configured (#30524)azurerm_monitor_activity_log_alert- add support for theSecurityvalue in therecommendation_categoryproperty (#30192)azurerm_postgresql_flexible_server_firewall_rule- improve validation for thestart_ip_addressandend_ip_addressproperties to ensure the values are valid IPv4 addresses (#30514)azurerm_resource_group_policy_assignment-override.kindcan now be configured (#30524)azurerm_resource_policy_assignment-override.kindcan now be configured (#30524)azurerm_sentinel_automation_rule- add support for theaction_incident_taskblock (#29295)azurerm_subscription_policy_assignment-override.kindcan now be configured (#30524)
BUG FIXES:
azurerm_flex_function_app- fixinstance_memory_in_mbupdate issue (GH-30489)azurerm_kubernetes_cluster- remove read-only fieldNodeImageVersionwhen cycling node pool (#30416)azurerm_kubernetes_cluster_node_pool- remove read-only fieldNodeImageVersionwhen cycling node pool (#30416)azurerm_management_group_policy_set_definition- fix an issue that caused API errors whenpolicy_definition_referenceblocks were added or removed (#30493)azurerm_policy_set_definition- fix an issue that caused API errors whenpolicy_definition_referenceblocks were added or removed (#30493)azurerm_virtual_machine- fix potential panic caused by the hash function for theos_profile_linux_configblock (#30456)
NOTES:
- This release contains a state migration that fixes a resource state parsing error for
azurerm_kusto_clusterwhen thelanguage_extensionsproperty is defined. Users upgrading from a version older than4.0.0should upgrade directly to this release.
FEATURES:
- New Data Source:
azurerm_managed_disks(#30394)
ENHANCEMENTS:
- dependencies:
containerservice- update api version to2025-05-01(#30401) - dependencies:
go-azure-sdk/resourcemanagerupdate tov0.20250814.1105543(#30401) - dependencies:
go-azure-sdk/sdkupdate tov0.20250814.1105543(#30401) azurerm_iothub- add support forendpoint.subscription_idproperty (#27524)azurerm_iothub_endpoint_cosmosdb_account- add support forendpoint.subscription_idproperty (#27524)azurerm_iothub_endpoint_eventhub- add support forendpoint.subscription_idproperty (#27524)azurerm_iothub_endpoint_servicebus_queue- add support forendpoint.subscription_idproperty (#27524)azurerm_iothub_endpoint_servicebus_topic- add support forendpoint.subscription_idproperty (#27524)azurerm_linux_virtual_machine- add support foros_managed_disk_idproperty (#30394)azurerm_windows_virtual_machine- add support foros_managed_disk_idproperty (#30394)
BUG FIXES:
azurerm_kusto_cluster- add a state migration forlanguage_extensionsto migrate from a list of strings to a list of objects (block) (#30438)azurerm_kusto_cluster- fix an issue where removal of thelanguage_extensionsproperty was not applied to the API request (#30449)azurerm_linux_web_app- normalize docker url (#30368)
FEATURES:
- New Resource:
azurerm_network_manager_ipam_pool_static_cidr(#29501) - New Resource:
azurerm_network_manager_routing_rule_collection(#29783)
ENHANCEMENTS:
azurerm_cdn_frontdoor_profile- add support for thelog_scrubbing_ruleblock (#30115)azurerm_monitor_diagnostic_setting- update validation fortarget_resource_idto allow management group IDs as input (#30447)azurerm_netapp_account_encryption- add support forfederated_client_idandcross_tenant_key_vault_resource_id(#30373)azurerm_netapp_pool- add support forcustom_throughput_mibps(#30404)
BUG FIXES:
azurerm_app_service_environment_v3- fix drift on theallow_new_private_endpoint_connectionsproperty (#30391)azurerm_private_endpoint- retry onRetryableErrorandStorageAccountOperationInProgresserrors during LRO (#28112)
FEATURES:
- New Resource:
azurerm_data_factory_customer_managed_key(#30341)
ENHANCEMENTS:
azurerm_eventgrid_system_topic- suppress case difference onsource_resource_id(#30379)azurerm_kubernetes_cluster- add support forgpu_profileproperty (#29954)azurerm_load_test- improved validation for theencryption.identity.identity_idproperty (#30323)azurerm_logic_app_standard- refactored to leverage shared code with otherappserviceapps (#30272)azurerm_machine_learning_workspace- supportprovision_on_creation_enabledproperty (#30312)
FEATURES:
- New Resource:
azurerm_api_management_standalone_gateway(#30226) - New Resource:
azurerm_eventgrid_partner_namespace(#30266) - New Resource:
azurerm_postgresql_flexible_server_backup(#29201)
ENHANCEMENTS:
- dependencies:
cognitive- update API version to2025-06-01(#30302) - dependencies:
machinelearning- update API version to2025-06-01(#30268) - Data Source:
azurerm_oracle_db_system_shapes- add support for thezoneproperty (#30071) - Data Source:
azurerm_oracle_gi_versions- add support for theshapeandzoneproperties (#30071) azurerm_cognitive_deployment- removemodel.formatvalidation (#30276)azurerm_eventgrid_system_topic- add support for theSystemAssigned, UserAssignedvalue for theidentity.typeproperty (#30339)azurerm_linux_web_app- add support for the8.4value in thephp_versionproperty (#30281)azurerm_linux_web_app_slot- add support for the8.4value in thephp_versionproperty (#30281)azurerm_postgresql_flexible_server- thecustomer_managed_key.geo_backup_key_vault_key_idnow supports versionless IDs (#30305)azurerm_site_recovery_replicated_vm- thetarget_disk_typeproperty now supports theStandardSSD_ZRS,Premium_ZRSandPremiumV2_LRSvalues and thetarget_replica_disk_typenow supports theStandardSSD_ZRSandPremium_ZRSproperties (#30291)
BUG FIXES:
azurerm_container_app_environment- fix an issue whereidentitywas not set to the update request payload (#30311)azurerm_function_app_flex_consumption- themaximum_instance_countproperty now updates as expected (#30342)azurerm_kubernetes_cluster_node_pool- add locks onvnet_subnet_idandpod_subnet_idto prevent conflicts while updating multiple node pools in parallel (#29537)azurerm_postgresql_flexible_server- fix an issue whereadministrator_password_wowas not set to the update request payload (#29475)
NOTE: This patch release addresses a critical problem in App Service and Logic Apps resources preventing all Long Running Operations from completing successfully.
BUG FIXES:
- dependencies:
go-azure-sdk/sdkupdate tov0.20250731.1142049(#30282)
FEATURES:
- New Data Source :
azurerm_api_connection(#30178) - New Data Source:
azurerm_log_analytics_workspace_table(#30261) - New Data Source:
azurerm_mssql_failover_group(#29428) - New Data Source:
azurerm_trusted_signing_account(#29293) - New Resource:
azurerm_application_load_balancer_security_policy(#30128) - New Resource :
azurerm_eventgrid_partner_registration(#29736) - New Resource:
azurerm_mssql_managed_instance_start_stop_schedule(#26702)
ENHANCEMENTS:
- dependencies:
go-azure-sdkupdate tov0.20250728.1144148(#30254) - dependencies:
go-azure-sdkupdate to v0.20250716.1144812 (#30171) - dependencies:
golang.org/x/cryptoupdate tov0.40.0(#30171) - dependencies:
golang.org/x/modupdate tov0.26.0(#30171) - dependencies:
golang.org/x/netupdate tov0.42.0(#30171) - dependencies:
golang.org/x/syncupdate tov0.16.0(#30171) - dependencies:
golang.org/x/sysupdate tov0.34.0(#30171) - dependencies:
golang.org/x/textupdate tov0.27.0(#30171) - dependencies:
golang.org/x/toolsupdate tov0.35.0(#30171) - dependencies:
servicebus- update to API version2024-01-01(#30231) - Data Source:
azurerm_databricks_workspace- add support for thecustom_parametersproperty (#30214) - Data Source:
azurerm_oracle_cloud_vm_cluster- add support for thefile_system_configurationblock (#30092) - Data Source:
azurerm_oracle_exadata_infrastructure- add support for thedefined_file_system_configurationblock (#30092) azurerm_batch_pool- fixstart_task.0.task_retry_maximumvalidation (#30182)azurerm_dev_center- add support for theproject_catalog_item_sync_enabledproperty (#29274)azurerm_dev_center_project_pool- add support for themanaged_virtual_network_regionsproperty (#30061)azurerm_dynatrace_monitor- add support for theenvironment_propertiesblock (#29251)azurerm_image- improve validation foros_disk,data_diskandzone_resilient(#30222)azurerm_managed_lustre_file_system- add support for theroot_squashblock (#29876)azurerm_management_group_policy_assignment- improve validation for thenameproperty (#30179)azurerm_management_group_policy_set_definition- now forces a new resource to be created when the number ofparametersis decreased (#29866)azurerm_mongo_cluster- add support forversion8.0 (#29823)azurerm_network_security_rule- improve validation for source and destination properties (#29675)azurerm_oracle_cloud_vm_cluster- add support for thefile_system_configurationblock (#30092)azurerm_policy_set_definition- now forces a new resource to be created when the number ofparametersis decreased (#29866)azurerm_resource_group_policy_assignment- improve validation for thenameproperty (#30179)azurerm_resource_policy_assignment- improve validation for thenameproperty (#30179)azurerm_subnet- add support for theip_address_poolblock (#29840)azurerm_subscription_policy_assignment- improve validation for thenameproperty (#30179)azurerm_video_indexer_account- add support for thepublic_network_accessproperty (#29725)
BUG FIXES:
- Data Source:
azurerm_kusto_cluster- fix returned error if cluster was not found (#30232) appservice- now checks for deployment service availability before zip deployment (#30066)azurerm_ai_foundry- no longer crashes when thekey_vault_idproperty is nil (#30252)azurerm_container_app_environment- no longer panics whenlog_analytics_workspace_idis from another subscription (#29829)azurerm_eventhub- fix perpetual diff withmessage_retention(#30169)azurerm_kusto_attached_database_configuration- resource is now removed from state if it no longer exists (#30232)azurerm_kusto_cluster- resource is now removed from state if it no longer exists (#30232)azurerm_kusto_cluster_customer_managed_key- resource is now removed from state if it no longer exists (#30232)azurerm_kusto_cluster_principal_assignment- resource is now removed from state if it no longer exists (#30232)azurerm_log_analytics_workspace_table- theretention_in_daysproperty can now be reset (#29182)azurerm_monitor_alert_prometheus_rule_group- prevent an error caused by the request containing an empty string for therule.forproperty when not set (#30180)azurerm_mssql_database- themax_size_gbcan now support0.1and0.5(#28334)azurerm_mssql_managed_instance-administrator_loginis now Computed, preventing resource recreation whenazure_active_directory_administrator.azuread_authentication_only_enabledistrue(#30263)azurerm_postgresql_flexible_server_virtual_endpoint- no longer causes an error whenreplica_server_idis from another subscription (#29270)azurerm_role_management_policy- fix perpetual diff onactivation_rules.approval_stage(#29084)azurerm_service_plan- fix an issue that prevented supported SKUs from specifyingzone_balancing_enabledastrue(#30165)azurerm_web_application_firewall_policy-js_challenge_cookie_expiration_in_minutesis now set to default value if not returned from API (#30245)
FEATURES:
- New Data Source:
azurerm_network_manager_ipam_pool(#30145)
ENHANCEMENTS:
- Data Source:
azurerm_virtual_machine_scale_set- add support for theauxiliary_modeandauxiliary_skuproperties (#30159) azurerm_container_app_environment- add support for theidentityblock (#29409)azurerm_eventhub- add support for theretention_descriptionblock (#29427)azurerm_kubernetes_cluster- add support for theDailyvalue in themaintenance_window_auto_upgrade.frequencyproperty (#30133)azurerm_kubernetes_flux_configuration- add support for thegit_repository.providerproperty (#30082)azurerm_mssql_job_step- thejob_credential_idandoutput_target.job_credential_idproperties are now optional (#30031)azurerm_orchestrated_virtual_machine_scale_set- add support forauxiliary_modeandauxiliary_sku(#30102)azurerm_storage_account- add support for theprovisioned_billing_model_versionproperty (#29043)azurerm_vpn_gateway_connection- add support for thedpd_timeout_secondsproperty (#29434)
BUG FIXES:
- Data Source:
azurerm_virtual_machine_scale_set- fix a panic caused by missing properties (#30159) azurerm_container_app_environment- fix import forworkload_profile(#30139)azurerm_mongo_cluster- thecreate_modeproperty no longer causes ForceNews on import (#29375)azurerm_virtual_network- suppress a perpetual diff onaddress_spacewhen usingip_address_pool(#30073)azurerm_vpn_gateway_connection- theshared_keyis now Optional + Computed (#30152)
FEATURES:
- New Resource:
azurerm_api_management_workspace(#30033) - New Resource:
azurerm_network_manager_verifier_workspace_reachability_analysis_intent(#28956)
ENHANCEMENTS:
- dependencies:
kubernetesconfiguration- update to API version2024-11-01(#29896) - dependencies:
oracle- update to API version2025-03-01(#29721) - dependencies:
servicenetworking- update to API version2025-01-01(#30103) - Data Source:
azurerm_container_registry- add support for thedata_endpoint_host_namesproperty (#30086) - Data Source:
azurerm_dev_center_dev_box_definition- add support for thehibernate_support_enabledproperty (#29995) - Data Source:
azurerm_marketplace_agreement- add support for theacceptedproperty (#30118) - Data Source:
azurerm_oracle_autonomous_database- add support forcompute_modelproperty (#29801) - Data Source:
azurerm_oracle_cloud_vm_cluster- add support forcompute_modelproperty (#29801) - Data Source:
azurerm_oracle_db_servers- add support for thecompute_modelproperty (#29801) - Data Source:
azurerm_oracle_db_system_shapes- add support for thedisplay_nameproperty (#29801) - Data Source:
azurerm_oracle_db_system_shapes- add support for theare_server_types_supportedproperty (#29801) - Data Source:
azurerm_oracle_db_system_shapes- add support for thecompute_modelproperty (#29801) - Data Source:
azurerm_oracle_exadata_infrastructure- add support for thecompute_modelproperty (#29801) - Data Source:
azurerm_oracle_exadata_infrastructure- add support for thedatabase_server_typeproperty (#29801) - Data Source:
azurerm_oracle_exadata_infrastructure- add support for thestorage_server_typeproperty (#29801) - Data Source:
azurerm_private_dns_zone_virtual_network_link- add support for theresolution_policyproperty (#29861) azurerm_api_management-sku_namenow supports V2 Tiers (#29657)azurerm_container_registry- add support for thedata_endpoint_host_namesproperty (#30086)azurerm_data_protection_backup_instance_disk- support cross subscription snapshot resource group (#30087)azurerm_dev_center_dev_box_definition- add support for thehibernate_support_enabledproperty (#29995)azurerm_kubernetes_cluster- add support for thecustom_ca_trust_certificates_base64property (#29894)azurerm_kubernetes_cluster- support for theweb_app_routing.default_nginx_controllerproperty (#29879)azurerm_linux_virtual_machine_scale_set- add support for thenetwork_interface.auxiliary_modeandnetwork_interface.auxiliary_skuproperties (#29724)azurerm_linux_web_app- support for thevnet_image_pull_enabledproperty (#29452)azurerm_linux_web_app_slot- support for thevnet_image_pull_enabledproperty (#29452)azurerm_log_analytics_workspace- now returns an error during planning when creating with/updating to aStandardorPremiumSKU as this is no longer supported by Azure (#30101)azurerm_logic_app_workflow- Theaccess_control.trigger.allowed_caller_ip_address_rangeproperty is now optional (#30041)azurerm_machine_learning_datastore_blobstorage- theshared_access_signatureandaccount_keyproperties are now optional (#30079)azurerm_netapp_volume- add support for thecool_accessblock (#29915)azurerm_oracle_autonomous_database- Add support forallowed_ips(#29412)azurerm_oracle_exadata_infrastructure- add support for thedatabase_server_typeproperty (#29801)azurerm_oracle_exadata_infrastructure- add support for thestorage_server_typeproperty (#29801)azurerm_private_dns_zone_virtual_network_link- add support for theresolution_policyproperty (#29861)azurerm_public_ip_prefix- add support for thecustom_ip_prefix_idproperty (#29851)azurerm_service_plan- allow updatingzone_balancing_enabledwithout recreating the resource in supported configurations (#29810)azurerm_virtual_hub- add support for thebranch_to_branch_traffic_enabledproperty (#29453)azurerm_windows_virtual_machine_scale_set- add support for thenetwork_interface.auxiliary_modeandnetwork_interface.auxiliary_skuproperties (#29724)
BUG FIXES:
azurerm_mobile_network_packet_core_control_plane- thesite_idsproperty is now marked asForceNew(#30056)azurerm_mobile_network_slice- thesingle_network_slice_selection_assistance_informationproperty is now updated correctly (#30057)azurerm_private_dns_resolver_dns_forwarding_ruleset- fix an issue whereprivate_dns_resolver_outbound_endpoint_idsfailed to update (#30046)
FEATURES:
- New Resource:
azurerm_email_communication_service_domain_sennder_username(#29340) - New Resource:
azurerm_management_group_policy_set_definition(#29863)
ENHANCEMENTS:
- Data Source:
azurerm_communication_service- add support for theimmutable_resource_idproperty (#29912) azurerm_cdn_endpoint- block creation of all Azure CDN(classic) resources while allowing existing resources to be updated (#29299)azurerm_cdn_endpoint_custom_domain- block creation of all Azure CDN(classic) resources while allowing existing resources to be updated (#29299)azurerm_cdn_profile- block creation of all Azure CDN(classic) resources while allowing existing resources to be updated (#29299)azurerm_container_app_job- add support for thevolume_mounts.sub_pathproperty (#29883)azurerm_container_app- add support for thecorsproperty (#29785)azurerm_data_protection_backup_policy_disk- theabsolute_criteriaproperty now supports theAllBackup,FirstOfMonthandFirstOfYearvalues (#29917)azurerm_frontdoor- block new resource creation while allowing existing resources to be updated (#29257)azurerm_frontdoor_custom_https_configuration- block new resource creation while allowing existing resources to be updated (#29257)azurerm_frontdoor_firewall_policy- block new resource creation while allowing existing resources to be updated (#29257)azurerm_frontdoor_rules_engine- block new resource creation while allowing existing resources to be updated (#29257)azurerm_function_app_flex_consumption- add support for thevnet_route_all_enabledproperty (#29839)azurerm_machine_learning_compute_cluster- thescale_settingsblock and its sub-properties are no longerForceNew(#29878)azurerm_machine_learning_compute_cluster- thetagsproperty is no longerForceNew(#29878)azurerm_oracle_autonomous_database- add support forlong_term_backup_schedule(#29207)azurerm_policy_set_definition- add support for thepolicy_definition_reference.versionproperty (#29924)azurerm_policy_set_definition- migrate to usego-azure-sdk(#29863)azurerm_private_link_service- add support for thedestination_ip_addressproperty (#29395)azurerm_purview_account- add support for themanaged_event_hub_enabledandaws_external_idproperties (#29732)azurerm_virtual_network_gateway- theip_configuration.public_ip_address_idproperty is now optional (#30038)azurerm_windows_virtual_machine:os_disk.0.diff_disk_settings.0.placementnow supportsNvmeDisk(#29922)
BUG FIXES:
provider- allow missingsubscription_idwhenuse_cliistrue(#29985)azurerm_netapp_backup_policy- theweekly_backups_to_keepandmonthly_backups_to_keepproperties can now be set to0(#29920)
ENHANCEMENTS:
-
dependencies:
containerservice- update API version to2025-02-01(#29761) -
azurerm_network_manager_ipam_pool-display_nameis now optional (#29842) -
dependencies:go-azure-sdk- update tov0.20250613.1153526(#29871) -
provider: add support formsi_api_versionproperty andARM_MSI_API_VERSIONenv var. (#29871) -
azurerm_kusto_cluster_customer_managed_key- add support formanaged_hsm_key_id(#29416)
FEATURES:
- New Data Source:
azurerm_dev_center_environment_type(#29782) - New Data Source:
azurerm_dev_center_project_pool(#29778)
BUG FIXES:
azurerm_eventgrid_namespace- validations formaximum_session_expiry_in_hoursandmaximum_client_sessions_per_authentication_nameare now correct (#29919)azurerm_api_management_api_operation- fix validation for theurl_templateproperty to allow parameters prefixed with*(#29895)azurerm_mysql_flexible_server- reverted a change made to the validation of thesku_nameproperty that caused errors for existing resources (#29909)azurerm_orchestrated_virtual_machine_scale_set- prevent a panic when an emptyos_profileblock is present in the configuration (#29809)
FEATURES:
- New Data Source:
azurerm_dev_center_attached_network(#29793) - New Data Source:
azurerm_dev_center_dev_box_definition(#29790) - New Data Source:
azurerm_dev_center_catalog(#29794) - New Data Source:
azurerm_dev_center_gallery(#29795) - New Data Source:
azurerm_dev_center_network_connection(#29792)
ENHANCEMENTS:
azurem_netapp_volume_group_oracle_resource- add support fordata_protection_replicationincluding Cross-Region Replication (CRR) and Cross-Zone Replication (CZR) (#29771)azurerm_postgresql_flexible_server- thecreate_modeproperty now supports theReviveDroppedvalue (#29814)azurerm_postgresql_flexible_server- add support forSystemAssigned, UserAssignedto theidentity.typeproperty (#29320)
BUG FIXES:
azurerm_windows_function_app- theapp_settingsproperty is no longer marked as sensitive (#29834)azurerm_mssql_server_vulnerability_assessment-storage_account_access_keyandstorage_container_sas_keyare no longer required to be set (#29789)
FEATURES:
- New Data Source:
azurerm_dev_center_project(#29747) - New Data Source:
azurerm_dev_center_project_environment_type(#29762) - New Resource:
azurerm_qumulo_file_system(#28704)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20250526.1224007(#29745) - Data Source:
azurerm_netapp_volume- export thelarge_volume_enabledproperty (#29712) - Data Source:
azurerm_vpn_gateway- export theip_configurationblock (#29186) azurerm_kubernetes_cluster- thevm_sizeproperty is now optional (#29612)azurerm_kubernetes_cluster_node_pool- thevm_sizeproperty is now optional (#29612)azurerm_netapp_volume- allow volumes made from snapshots to have a different pool than the original volume (#29425)azurerm_netapp_volume- add support for thelarge_volume_enabledproperty (#29712)azurerm_postgresql_flexible_server- add support for versionless key vault key IDs to thecustomer_managed_key.key_vault_key_idproperty (#29741)azurerm_virtual_network- add support for theip_address_poolblock (#29021)azurerm_vpn_gateway- export theip_configurationblock (#29186)
BUG FIXES:
- Data Source:
azurerm_lb_backend_address_pool- theinbound_nat_rule_port_mapping.frontend_portandinbound_nat_rule_port_mapping.backend_portare now set correctly (#29791) keyvault- fix locking around the keyvault cache (#28330)
FEATURES:
- New Data Source:
azurerm_dev_center(#29716) - New Resource:
azurerm_network_manager_routing_configuration(#29310)
ENHANCEMENTS:
- dependencies:
azurerm_managed_lustre_file_system- update to API version2024-07-01(#29433) - dependencies:
azurerm_mssql_server_vulnerability_assessment- update to API version2023-08-01-preview(#29373) - dependencies:
azurerm_virtual_machine_scale_set_standby_pool- update to API version2025-03-01(#29649) - dependencies:
compute- partial update to API version2024-11-01(#29666) - dependencies:
videoindexer- update to API version2025-04-01(#29715) azurerm_backup_protected_vm- add support for theBackupsSuspendedvalue to theprotection_stateproperty (#29710)azurerm_dashboard_grafana_managed_private_endpoint- add support for theprivatelink_service_urlproperty (#29466)azurerm_dynatrace_tag_rules- add support for thesending_metrics_enabledproperty (#29499)azurerm_function_app_flex_consumption- add support for thehttps_onlyproperty (#29024)azurerm_mysql_flexible_server- add support for theMO_Standard_E96ads_v5value to thesku_nameproperty (#29709)azurerm_postgresql_flexible_server- lock the source server when creating a replica server (#29337)
BUG FIXES:
azurerm_api_management_product- allow setting thesubscriptions_limitproperty to0(#28133)azurerm_api_management_api- add additional validation to catch whenapi_typeiswebsocketbutservice_urlis left empty (#29624)azurerm_batch_pool- thedata_disksproperty will now be correctly updated (#29377)azurerm_data_factory_dataset_binary- fix incorrect casing of thecompression.typeproperty when sent to the API which caused compression to not be set (#29273)azurerm_cdn_frontdoor_rule- fix shared schema validation of theoperatorproperty and use the correct package for validations (#29482)azurerm_hdinsight_hadoop_cluster- changing thescript_actionproperty now forces a new resource to be created instead of silenty failing to update (#28262)azurerm_hbase_hadoop_cluster- changing thescript_actionproperty now forces a new resource to be created instead of silenty failing to update (#28262)azurerm_interactive_query_hadoop_cluster- changing thescript_actionproperty now forces a new resource to be created instead of silenty failing to update (#28262)azurerm_kafka_hadoop_cluster- changing thescript_actionproperty now forces a new resource to be created instead of silenty failing to update (#28262)azurerm_linux_virtual_machine- fix update foridentitywhen VM has VMExtensions configured (#29717)azurerm_mongo_cluster- connection strings conaining a$now get exported correctly (#29669)azurerm_mssql_virtual_machine-auto_patchingis now disabled when the block is not specified (#29723)azurerm_mssql_server_vulnerability_assessment-storage_account_access_keyorstorage_container_sas_keyproperty is now arequiredfield (#29373)azurerm_network_interface-tagscan now be updated when NIC is attached to a private endpoint (#29319)azurerm_postgresql_flexible_server_configuration- now checks the server state before restarting it (#29221)azurerm_search_service- prevent a bug that cleared thenetwork_rule_bypass_optionproperty when only updating theallowed_ipsproperty (#29246)azurerm_service_fabric_managed_cluster- support for thesubnet_idproperty (#29216)azurerm_spark_hadoop_cluster- changing thescript_actionproperty now forces a new resource to be created instead of silenty failing to update (#28262)
ENHANCEMENTS:
- dependencies:
go-azure-sdk- update tov0.20250520.1180806(#29665) - Data Source:
azurerm_managed_disk- add support forlocation(#29513) azurerm_dns_caa_record- add support for thecontactemailvalue in thetagproperty (#29664)azurerm_eventhub_namespace_schema_group- add support for theJsonvalue in theschema_typeproperty (#29641)azurerm_function_app_flex_consumption- add support for thealways_readyblock (#29023)azurerm_security_center_subscription_pricing- add support for theAIvalue for theresource_typeproperty (#29631)
FEATURES:
- New Resource:
azurerm_system_center_virtual_machine_manager_virtual_machine_instance_guest_agent(#28953)
ENHANCEMENTS:
azurerm_api_management_api- fiximportof resources (#28193)azurerm_app_configuration- add support fordevelopertier to theskuproperty (#29492)azurerm_app_configuration- theskuproperty can now be downgraded frompremiumtostandardwithout recreating the resource (#29492)azurerm_key_vault_managed_hardware_security_module_key- add support for theimportvalue in thekey_optsproperty (#29524)azurerm_netapp_pool- add support forcool_access_enabled(#29468)azurerm_network_manager_deployment- add support for theRoutingvalue in thescope_accessproperty (#29536)azurerm_private_endpoint_application_security_group_association- resource is now removed from state if it no longer exist (#29601)azurerm_virtual_machine_implicit_data_disk_from_source- thedisk_size_gbproperty can now be increased without recreating the resource (#29239)azurerm_web_application_firewall_policy- add support for theJSChallengein theactionproperty (#29614)
BUG FIXES:
azurerm_api_management_api- no longer returns an error on theoauth2_authorizationandopenid_authenticationproperties when updating (#29042)azurerm_route_map- the validation for thenamenow allows numbers (#29519)
FEATURES:
ENHANCEMENTS:
- dependencies:
azurerm_mssql_database- Update to API version2023-08-01-preview/replicationlinks(#28705) - dependencies:
azurerm_mssql_server_security_alert_policy- update to API version2023-08-01-preview/serversecurityalertpolicies(#29363) - dependencies:
eventhub- update to API version2024-01-01(#29397) - dependencies:
azurerm_shared_image_version- update to API version2024-03-01(#28954) azurerm_ai_foundry_project- add support for theprimary_user_assigned_identityproperty (#29197)azurerm_storage_account_static_website- theindex_documentproperty now has validation for length and excluding slashes (#29431)
BUG FIXES:
azurerm_application_insights- theworkspace_idis nowComputed(#29396)azurerm_batch_pool- prevent error whencertificateis not used (#29443)azurerm_nginx_deployment- add support for theweb_application_firewallproperty (#27454)azurerm_postgresql_flexible_server_virtual_endpoint- is no longer removed from state when a fail-over occurs (#29424)azurerm_servicebus_queue- no longer waits on resource creation (#29435)azurerm_virtual_network_gateway- prevent a panic whenvpn_client_configurationis removed from from the configuration (#29456)azurerm_web_pubsub_custom_certificate- no longer crashes whencustom_certificate_idis in a different subscription (#29410)azurerm_windows_web_app- fix perpetual diff around incorrect default foralways_onand ignore default values forlogs.0.application_logs(#29150)azurerm_windows_web_app_slot- fix perpetual diff around incorrect default foralways_onand ignore default values forlogs.0.application_logs(#29150)
FEATURES:
- New Resource:
azurerm_eventgrid_partner_configuration(#28676)
ENHANCEMENTS:
- dependencies: update
go-azure-sdktov0.20250409.1192141(#29307) - dependencies:
containerapps- update to API version2025-01-01(#29296) - dependencies:
netapp- update to API version2025-01-01(#29382) - dependencies:
operationalinsights- partial update to API version2023-09-01(#29283) azurerm_cdn_frontdoor_origin- supportmanagedEnvironmentsvalue forprivate_link.target_type(#28239)azurerm_cdn_frontdoor_origin- add support for theweb_secondaryGatewayvalues in theprivate_link.target_typeproperty (#29380)azurerm_cognitive_deployment- add support for theCoherevalue in themodel.formatproperty (#29143)azurerm_container_app_environment: add support for cross subscriptionlog_analytics_workspace_id(#28740)azurerm_dev_center_project- add support for theidentityproperty (#29278)azurerm_dynatrace_tag_rules- thelog_ruleandmetric_ruleblocks and their properties are no longerForceNew(#29298)azurerm_monitor_data_collection_endpoint- add support for themetrics_ingestion_endpointattribute (#29292)azurerm_mysql_flexible_server- support for thelog_on_disk_enabledproperty (#28929)azurerm_subnet- add support for theMicrosoft.PowerAutomate/hostedRpavalue in thedelegation.service_delegation.nameproperty (#29271)azurerm_subnet- add support for theMicrosoft.Network/applicationGatewaysvalue in thedelegation.service_delegation.nameproperty (#29361)azurerm_virtual_network- add support for theMicrosoft.PowerAutomate/hostedRpavalue in thesubnet.delegation.service_delegation.nameproperty (#29271)azurerm_virtual_network- add support for theMicrosoft.Network/applicationGatewaysvalue in thesubnet.delegation.service_delegation.nameproperty (#29361)
BUG FIXES:
- provider: ensure
x-ms-correlation-request-idheader is only set once during list operations (#28974) azurerm_app_configuration_feature- suppress casing differences forconfiguration_store_idto prevent resource recreation (#29285)azurerm_app_configuration_key- suppress casing differences forconfiguration_store_idto prevent resource recreation (#29285)azurerm_container_app_environment- updates are now made using thePATCHmethod, preventing errors due to missing properties in the request (#29317)azurerm_eventhub_namespace- remove max items from network/ip rules as they can be increased above upon request (#29333)azurerm_kusto_iothub_data_connection- updateevent_system_propertiesvalidation and documentation to be more flexible (#29314)azurerm_linux_web_app- correctly readbackup.schedule.start_timeinto state (#29254)azurerm_netapp_volume- update validation forstorage_quota_in_gbto allow values from50to102400(#29341)azurerm_postgresql_flexible_server- downgradingversionforces a new resource to be created (#28559)azurerm_postgresql_flexible_server- downgradingstorage_mbforces a new resource to be created (#29309)azurerm_private_endpoint-private_dns_zone_group.private_dns_zone_idscan now be updated correctly (#29329)azurerm_search_shared_private_link_service- add locks to prevent conflicts when creating multiple instances (#29294)
BREAKING CHANGES:
- feature: The Provider
featureconfiguration itemvirtual_machines.graceful_shutdownis now not used due to a breaking change in thecomputeAPI. This feature block setting is now deprecated and ignored if set and will be removed in v5.0 of the provider. (#29185) azurerm_linux_virtual_machine- thevm_agent_platform_updates_enabledproperty is now read-only due to a recent API breaking change (#29211)azurerm_windows_virtual_machine- thevm_agent_platform_updates_enabledproperty is now read-only due to a recent API breaking change (#29211)
FEATURES:
- New Data Source:
azurerm_role_assignments(#29214)
ENHANCEMENTS:
- dependencies:
azurerm_sentinel_automation_rule- update to API version2024-09-01(#29240) - dependencies:
devcenter- update to API version2025-02-01(#29240) - dependencies:
recoveryservices- partial update to API version2024-10-01(#29240) - Data Source:
azurerm_mssql_server- export theexpress_vulnerability_assessment_enabledproperty (#29168) azurerm_dashboard_grafana-grafana_major_versionis no longer ForceNew (#29212)azurerm_data_factory_linked_service_sftp- add support for SSH authentication and Key Vault secret references (#28690)azurerm_databricks_workspace- resources using managed resource groups that contain UC can now be deleted with theforce_deleteProvider Feature flag (#29095)azurerm_mssql_server- add support for theexpress_vulnerability_assessment_enabledproperty (#29168)azurerm_mysql_flexible_server- deprecatepublic_network_access_enabledin favor ofpublic_network_access(#28890)azurerm_netapp_volume-service_levelcan now be updated (#29209)azurerm_nginx_deployment-frontend_public,frontend_private, andnetwork_interfaceare no longerForceNew(#28577)azurerm_orchestrated_virtual_machine_scale_set- add support for theupgrade_modeandrolling_upgrade_policyproperties (#28354)azurerm_static_webapp- markapp_settingssensitive in schema (#28689)
BUG FIXES:
azurerm_linux_virtual_machine-license_typecan now be updated to None (#28786)azurerm_mysql_flexible_server- prevent a panic whencustomer_managed_keyis nil (#29225)azurerm_traffic_manager_nested_endpoint- removeComputedfrompriorityproperty as these are assigned dynamically by the API (#29217)
ENHANCEMENTS:
- dependencies:
go-azure-helpers- update to0.72.0(#29206) - dependencies:
redisenterprise- update to API version2024-10-01(#29073) - dependencies:
servicefabricmanaged- update to API version2024-04-01(#29199) - Data Source:
azurerm_virtual_hub_connection- add support for thestatic_vnet_propagate_static_routesproperty (#28560) azurerm_cosmosdb_account- add support for theDeleteAllItemsByPartitionKeyvalue in thecapabilitiesproperty (#29126)azurerm_hdinsight_spark_cluster_resource- add support for thezonesproperty (#28149)azurerm_linux_function_app- add support for Python version3.13(#29131)azurerm_linux_function_app_slot- add support for Python version3.13(#29131)azurerm_linux_web_app- add support for Python version3.13(#29131)azurerm_linux_web_app_slot- add support for Python version3.13(#29131)azurerm_log_analytics_workspace- add support for theLAClusterSKU (#29137)azurerm_managed_disk- allow disk expansion without downtime for allstorage_account_type(#28730)azurerm_mssql_job_agent- add support for theidentityandskuproperties (#29090)azurerm_network_manager-scope_accessesis now optional (#28781)azurerm_oracle_cloud_vm_cluster- add support for thesystem_versionproperty (#29093)azurerm_powerbi_embedded- add support forA7andA8values forsku_name(#29153)azurerm_virtual_hub_connection- add support for thestatic_vnet_propagate_static_routesproperty (#28560)
BUG FIXES
- Data source:
azurerm_container_app_environment- prevent an error when the log analytics workspace is in a different subscription (#28647) azurerm_kubernetes_cluster_node_pool- fix issue wherekubelet_disk_typecouldn't be updated, updating this will now rotate the node pool (#29135)azurerm_linux_virtual_machine- fix issue where a user assigned identity couldn't be removed from the resource (#29157)azurerm_linux_virtual_machine_scale_set- fix issue where a user assigned identity couldn't be removed from the resource (#29157)azurerm_log_analytics_workspace- prevent an error when the workspace is in a soft-deleted state and linked to a log analytics cluster (#29137)azurerm_postgresql_flexible_server_virtual_endpoint- add a lock on the replica server to prevent a race condition (#29071)azurerm_signalr_service- setlocationin payload when updating to prevent an API error (#29184)azurerm_storage_account_queue_properties- prevent a panic when the storage account is removed out of band (#28371)azurerm_storage_account_static_website- prevent a panic when the storage account is removed out of band (#28371)azurerm_stream_analytics_job- update validation to notify users ifcontent_storage_policyhasn't been correctly set to setupjob_storage_account(#29158)
FEATURES:
- New Resource:
azurerm_servicebus_namespace_customer_managed_key(#28888) - New Resource:
azurerm_stream_analytics_job_storage_account(#29113) - New Resource:
azurerm_web_pubsub_socketio(#28992)
ENHANCEMENTS:
- dependencies:
hashicorp/go-azure-sdk- update tov0.20250314.1213156(#29081) - dependencies:
loganalytics- partial update to API version2023-03-01(#28977) - dependencies:
monitor- partial update to API version2023-03-01(#28977) - dependencies:
postgresql- partial update to API version2024-08-01(#28964) - Data Source:
azurerm_linux_function_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012) - Data Source:
azurerm_linux_web_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012) - Data Source:
azurerm_windows_function_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012) azurerm_ai_services- add support for thenetwork_acls.bypassproperty (#28569)azurerm_dashboard_grafana- add support forgrafana_major_version11(#28884)azurerm_kubernetes_cluster_node_pool- remove call to retrieve the parent cluster in the read (#29088)azurerm_linux_function_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_linux_function_app- setpre_warmed_instance_counton create (#28739)azurerm_linux_function_app_slot- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_linux_web_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_linux_web_app_slot- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_redis_cache- tighten validation forsku_name,family,capacity(#29079)azurerm_windows_function_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_windows_function_app- setpre_warmed_instance_counton create (#28739)azurerm_windows_function_app_slot- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_windows_web_app- add support for node version~22(#29082)azurerm_windows_web_app- add support for thevirtual_network_backup_restore_enabledproperty (#29012)azurerm_windows_web_app_slot- add support for node version~22(#29082)azurerm_windows_web_app_slot- add support for thevirtual_network_backup_restore_enabledproperty (#29012)
BUG FIXES:
azurerm_app_configuration- theencryptionblock can now be removed (#28173)azurerm_cdn_frontdoor_origin_group-health_probeno longer resets during update unless specified (#29094)azurerm_cognitive_account-customer_managed_keycan now be removed (#28368)azurerm_container_group-dns_name_label_reuse_policyis now marked as ForceNew (#29040)azurerm_disk_encryption_set- prevent crash when retrieving Key Vault details when updating (#29018)azurerm_express_route_circuit- fix issue wherebandwidth_in_mbpsisn't updated correctly (#28822)azurerm_key_vault_secret- revert CustomizeDiff logic to recreate the resource whenexpiration_dateis removed (#28920)azurerm_kubernetes_cluster-fips_enabledcan be updated by cycling the default node pool (#29096)azurerm_monitor_diagnostic_setting- theenabled_logblock can now be removed (#28485)azurerm_mssql_database- fix validation forauto_pause_delay_in_minutes(#28670)azurerm_mssql_server- fix an issue where the provider would incorrectly error during plan operations ifadministrator_loginoradministrator_login_passwordwere added tolifecycle.ignore_changes(#29107)
NOTES:
azurerm_key_vault_secret- resource now supports thevalue_wowrite-only argument (#28947)
FEATURES:
- New Resource:
azurerm_network_manager_ipam_pool(#28695)
ENHANCEMENTS:
- dependencies: update
Goversion to1.24.1(#28999) - dependencies:
hashicorp/go-azure-sdk- update tov0.20250310.1130319(#29009) azurerm_cognitive_deployment- add support forDataZoneBatchin thesku.nameproperty (#28973)azurerm_mongo_cluster- add support forM10,M20, andM200compute tiers (#29026)
BUG FIXES:
azurerm_linux_function_app- fix validation forsite_config.application_stack.node_versionto allow22(#28988)azurerm_postgresql_flexible_server- fix validation forcustomer_managed_key.key_vault_key_idandcustomer_managed_key.geo_backup_key_idto disallow versionless keys preventing unclear error messages (#28981)azurerm_web_pubsub_hub- validation for theauth.managed_identity_idnow supports token audience as a valid input (#28495)
FEATURES:
- New Data Source:
azurerm_extended_location_custom_location(#28066) - New Resource:
azurerm_system_center_virtual_machine_manager_virtual_machine_instance(#27622)
ENHANCEMENTS:
- dependencies:
containers- update API version to2024-09-01(#28598) - dependencies:
hashicorp/go-azure-sdk- update tov0.20250227.1125644(#28902) - dependencies:
signalr- update API version to2024-03-01(#28940) - Data Source:
azurerm_container_app- add support for thetemplate.volume.mount_optionsproperty (#28619) - Data Source:
azurerm_storage_account_queue_properties- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617) - Data Source:
azurerm_storage_account_static_website- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617) - Data Source:
azurerm_storage_containers- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617) azurerm_api_connection-display_nameandparameter_valuesare no longerForceNew(#28721)azurerm_cdn_frontdoor_firewall_policy- add support for thelog_scrubbingproperties (#28834)azurerm_container_app- add support for thetemplate.volume.mount_optionsproperty (#28619)azurerm_container_app_job- add support for thetemplate.volume.mount_optionsproperty (#28619)azurerm_extended_custom_location- deprecated in favour ofazurerm_extended_location_custom_location(#28066)azurerm_mongo_cluster- add support for theconnection_stringsattribute (#28880)azurerm_storage_account- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617)azurerm_storage_account_queue_properties- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617)azurerm_storage_account_static_website- now gets the parent account directly rather than searching the list of all accounts when the Resource Manager ID is available (#28617)azurerm_workloads_sap_discovery_virtual_instance- add support for themanaged_resources_network_access_typeproperty (#28881)azurerm_workloads_sap_single_node_virtual_instance- add support for themanaged_resources_network_access_typeproperty (#28881)azurerm_workloads_sap_three_tier_virtual_instance- add support for themanaged_resources_network_access_typeproperty (#28881)
BUG FIXES:
azurerm_api_management_api- split create/update methods (#28271)azurerm_express_route_circuit-allow_classic_operationsis now set when resource is created (#28748)azurerm_key_vault_certificate- set partial when updating key vault certificate (#28848)azurerm_managed_disk- always setnetwork_access_policyinto state to allow Terraform to detect drift (#28934)azurerm_mssql_managed_instance- fix an issue that prevented using values only known during apply foradministrator_login_password(#28843)azurerm_mssql_server- prevent panic by removing function call on a value that may be unknown (#28949)
BUG FIXES:
azurerm_mssql_server- prevent panic by checking ifadministrator_loginexists in the raw config map (#28909)
NOTES:
- The
azurerm_mssql_job_credentialresource now supports thepassword_wowrite-only argument - The
azurerm_mssql_serverresource now supports theadministrator_login_password_wowrite-only argument - The
azurerm_mysql_flexible_serverresource now supports theadministrator_password_wowrite-only argument - The
azurerm_postgresql_flexible_serverresource now supports theadministrator_password_wowrite-only argument - The
azurerm_postgresql_serverresource now supports theadministrator_login_password_wowrite-only argument
FEATURES:
- New Resource:
azurerm_linux_function_app_flex_consumption(#28199) - New Resource:
azurerm_network_manager_verifier_workspace(#28754)
ENHANCEMENTS:
- dependencies:
azurerm_kubernetes_cluster_trusted_access_role_binding- update API version to2024-05-01(#28853) - dependencies:
desktopvirtualization- update API version to2024-04-03(#28771) - dependencies:
kusto- update API version to2024-04-13(#28685) - dependencies:
redis- update API version to2024-11-01(#28696) - dependencies:
workloads- update API version to2024-09-01(#28825) azurerm_fluid_relay_server- fixversionless_idsupport forkey_vault_key_id(#28864)azurerm_kubernetes_cluster- add support for theupgrade_override_settingproperty (#27962)azurerm_kusto_cluster_principal_assignment- add support forAllDatabaseMonitorrole type (#28685)azurerm_linux_function_app- correctly updateWEBSITE_CONTENTSHAREandWEBSITE_CONTENTAZUREFILECONNECTIONSTRINGwhen changed inapp_settings(#28859)azurerm_linux_function_app_slot- correctly updateWEBSITE_CONTENTSHAREandWEBSITE_CONTENTAZUREFILECONNECTIONSTRINGwhen changed inapp_settings(#28859)azurerm_linux_web_app- add support for Node Version22(#28840)azurerm_linux_web_app_slot- add support for Node Version22(#28840)azurerm_logic_app_standard- add support for thevnet_content_share_enabledproperty (#28879)azurerm_mssql_job_credential- add support for thepassword_woandpassword_wo_versionproperties (#28808)azurerm_mssql_managed_instance- add support for thedatabase_formatandhybrid_secondary_usageproperties (#28248)azurerm_mssql_server- add support for theadministrator_login_password_woandadministrator_login_password_wo_versionproperties (#28818)azurerm_mysql_flexible_server- add support for theadministrator_password_woandadministrator_password_wo_versionproperties (#28799)azurerm_postgresql_flexible_server- add support for theadministrator_password_woandadministrator_password_wo_versionproperties (#28857)azurerm_postgresql_server- add support for theadministrator_login_password_woandadministrator_login_password_wo_versionproperties (#28856)azurerm_service_plan- add support for theI1mv2,I2mv2,I3mv2,I4mv2,I5mv2skus (#28316)azurerm_servicebus_namespace- split create/update functions (#28539)azurerm_storage_account- nested attributes inimmutability_policycan now be updated (#28122)azurerm_windows_function_app- correctly updateWEBSITE_CONTENTSHAREandWEBSITE_CONTENTAZUREFILECONNECTIONSTRINGwhen changed inapp_settings(#28859)azurerm_windows_function_app_slot- correctly updateWEBSITE_CONTENTSHAREandWEBSITE_CONTENTAZUREFILECONNECTIONSTRINGwhen changed inapp_settings(#28859)
BUG FIXES:
azurerm_key_vault_secret- recreate the resource ifexpiration_dateis removed after having been set (#28494)azurerm_log_analytics_cluster_customer_managed_key- fix error due to read-only property included in request payload during create/update/delete operations (#28862)azurerm_log_analytics_cluster_customer_managed_key- remove resource from state when deleted outside of Terraform (#28862)azurerm_log_analytics_cluster_customer_managed_key- fix resource delete function (#28862)azurerm_security_center_pricing- updatingsubplannow recreates the resource to work around API behaviour that enables certain settings on updated (#27805)azurerm_windows_web_app- fix change detection fortomcat_version(#28842)
FEATURES:
- New Data Source:
azurerm_dynatrace_monitor(#28381) - New Resource:
azurerm_data_protection_backup_vault_customer_managed_key(#28679)
ENHANCEMENTS:
- dependencies:
hashicorp/terraform-plugin-sdk/v2- update tov2.36.0(#28788) - dependencies:
azurerm_data_factory_pipeline- update to usehashicorp/go-azure-sdk(#28768) - Data Source:
azurerm_logic_app_standard- add support for theftp_publish_basic_authentication_enabledandscm_publish_basic_authentication_enabledproperties (#28763) azurerm_logic_app_standard- add support for theftp_publish_basic_authentication_enabledandscm_publish_basic_authentication_enabledproperties (#28763)azurerm_pim_active_role_assignment- add support for Azure RBAC conditions (#27947)azurerm_storage_container- add support for migrating from deprecatedstorage_account_nametostorage_account_id(#28784)azurerm_storage_share- add support for migrating from deprecatedstorage_account_nametostorage_account_id(#28784)azurerm_storage_table- add attributeresource_manager_id(#28809)azurerm_windows_function_app- add support for node~22(#28815)azurerm_windows_function_app_slot- add support for node~22(#28815)
BUG FIXES:
- Data Source:
azurerm_container_app- add missingingress.client_certificate_modeproperty that caused an error when retrieving data (#28793) azurerm_data_factory_pipeline- fix error when unmarshaling the headers for a web activity (#28768)azurerm_mssql_virtual_machine- fix an issue that prevented users from using values only known during apply as the value forauto_backup.encryption_password(#28223)
FEATURES:
- New Data Source:
azurerm_stack_hci_storage_path(#28602) - New Resource:
azurerm_ai_foundry(#27424) - New Resource:
azurerm_ai_foundry_project(#27424) - New Resource:
azurerm_mssql_job_step(#28691) - New Resource:
azurerm_netapp_volume_group_oracle(#28391) - New Resource:
azurerm_virtual_machine_scale_set_standby_pool(#28441)
ENHANCEMENTS:
- dependencies:
hashicorp/go-azure-sdkupdate tov0.20250213.1092825(#28767) - dependencies:
sentinelpartial update to2023-12-01-preview(#28195) - Data Source:
azurerm_app_configuration- add support for thedata_plane_proxy_authentication_modeanddata_plane_proxy_private_link_delegation_enabledproperties (#28712) azurerm_app_configuration- add support for thedata_plane_proxy_authentication_modeanddata_plane_proxy_private_link_delegation_enabledproperties (#28712)azurerm_container_app- add support for theclient_certificate_modeproperty (#28523)azurerm_cdn_frontdoor_firewall_policy- add support forJSChallengeforcustomrules (#28717)azurerm_express_route_circuit- add support for therate_limiting_enabledproperty (#28659)azurerm_mssql_managed_instance_failover_group- add support forsecondary_type(#28633)azurerm_sentinal_alert_rule_scheduled- increase combined limit ofentity_mappingandsentinal_entity_mappingto 10 (#28195)azurerm_service_plan- support forpremium_plan_auto_scale_enabled(#28524)
BUG FIXES:
azurerm_cdn_frontdoor_firewall_policy- fixed issue where thejs_challenge_cookie_expiration_in_minutespoliciesdefaultvalue causedStandard_AzureFrontDoorskus to receive aBadRequesterror (#28726)azurerm_servicebus_topic- prevent perma diff when provisioning a partitioned topic within a non-partitioned namespace (#26680)azurerm_linux_function_app- will no longer plan whensite_config.0.corsis the default value (#28703)azurerm_linux_function_app_slot- fix issue wheresite_config.0.elastic_instance_minimumwas not being set (#28725)azurerm_linux_web_app- will no longer plan whensite_config.0.corsis the default value (#28703)azurerm_postgresql_flexible_server_virtual_endpoint- allowsource_server_idandreplica_server_idto reference the same server (#28733)azurerm_windows_function_app- will no longer plan whensite_config.0.corsis the default value (#28703)azurerm_windows_function_app_slot- fix issue wheresite_config.0.elastic_instance_minimumwas not being set (#28725)azurerm_windows_web_app- will no longer plan whensite_config.0.corsis the default value (#28703)
ENHANCEMENTS:
- dependencies:
appconfiguration- update to API version2024-05-01(#28700) - dependencies: update
azurerm_cdn_frontdoor_ruleto API version2024-02-01(#28308) - dependencies: update
azurerm_cdn_frontdoor_rulesetto API version2024-02-01(#28308) - dependencies: update
go-azure-sdktov0.20250131.1134653(#28674) - Data Source:
azurerm_cdn_frontdoor_firewall_policy- add support forjs_challenge_cookie_expiration_in_minutespolicy (#28284) - Data Source:
azurerm_nginx_configuration- add support for theprotected_file.content_hashproperty (#28532) azurerm_cdn_frontdoor_firewall_policy- add support forjs_challenge_cookie_expiration_in_minutespolicy (#28284)azurerm_cdn_frontdoor_firewall_policy- add support forJSChallengeactiontype in themanaged_ruleoverrideblock (#28308)azurerm_container_app- add support for thevolume_mounts.sub_pathproperty (#27533)azurerm_nginx_configuration- add support for theprotected_file.content_hashproperty (#28532)azurerm_palo_alto_next_generation_firewall_virtual_hub_local_rulestack- add support for themarketplace_offer_idandplan_idproperties (#28537)azurerm_palo_alto_next_generation_firewall_virtual_hub_panorama- add support for themarketplace_offer_idandplan_idproperties (#28537)azurerm_palo_alto_next_generation_firewall_virtual_network_local_rulestack- add support for themarketplace_offer_idandplan_idproperties (#28537)azurerm_palo_alto_next_generation_firewall_virtual_network_panorama- add support for themarketplace_offer_idandplan_idproperties (#28537)azurerm_route_server- add support for thehub_routing_preferenceproperty (#28363)
BUG FIXES:
azurerm_logic_app_action_http- fix issue wherequerieswould be set to an empty map instead of null when omitted from the configuration (#28447)azurerm_machine_learning_compute_cluster- allow resource creation whennode_public_ip_enabledisfalseandsubnet_resource_idhas not been specified (#28673)azurerm_network_watcher_flow_log- prevent panic when removing thetraffic_analyticsblock (#28416)azurerm_oracle_autonomous_database- fix incorrect type for thesupported_regions_to_clone_toproperty (#28536)
FEATURES:
- New Data Source:
azurerm_api_management_subscription(#27824) - New Resource:
azurerm_cognitive_account_rai_policy(#28013) - New Resource:
azurerm_mssql_job_target_group(#28492)
ENHANCEMENTS:
- dependencies:
network- update to use2024-05-01(#28146) - dependencies:
privatedns- update to use2024-06-01(#28599) - dependencies:
storage- update to use2023-05-01(#27760) - Data Source:
azure_communication_service- add support for thehostnameproperty (#28620) azurerm_api_management-capacitynow has a max limit of 50 (#28648)azurerm_backup_protected_vm- add support for featurevm_backup_suspend_protection_and_retain_data_on_destroy(#27950)azurerm_cognitive_account- support for thebypassproperty (#28221)azure_communication_service- add support for thehostnameproperty (#28620)azurerm_container_app_environment- add support for Azure Monitor as a log destination (#26047)azurerm_mssql_elasticpool- add support forMOPRMSpool type and update validation forPRMSandGen5pool types (#28453)azurerm_mssql_managed_instance_transparent_data_encryption- support for themanaged_hsm_key_idproperty (#28480)azurerm_stream_analytics_output_cosmosdb- support for theauthentication_modeproperty (#28372)azurerm_stream_analytics_stream_input_blob- add support forauthentication_mode(#27853)
BUG FIXES:
azurerm_container_app- update the validation regex for the resource's name (#28528)azurerm_kubernetes_cluster- parseoms_agent.log_analytics_workspace_idinsensitively to handle inconsistent casing (#28575)azurerm_kubernetes_flux_configuration- fix issue where removingpost_buildfrom akustomizationresulted in an error from the API (#28590)azurerm_linux_virtual_machine_scale_set- prevent crash caused by ommitedextensions_to_provision_after_vm_creationblock (#28549)azurerm_log_analytics_storage_insights- use subscription from workspace ID when building the resource ID (#28469)azurerm_orchestrated_virtual_machine_scale_set- prevent crash caused by ommitedextensions_to_provision_after_vm_creationblock (#28549)azurerm_virtual_machine- parseos_diskinsensitively to handle inconsistent casing (#28592)azurerm_windows_virtual_machine_scale_set- Prevent crash caused by ommitedextensions_to_provision_after_vm_creationblock (#28549)
NOTE: This release contains a breaking change reverting redisenterprise API version from 2024-10-01 to 2024-06-01-preview as not all regions are currently supported in the 2024-10-01 version
BREAKING CHANGES:
- dependencies -
redisenterpriseAPI version reverted from2024-10-01to2024-06-01-preview(#28516)
FEATURES:
- New Resource:
azurerm_container_registry_credential_set(#27528) - New Resource:
azurerm_mssql_job(#28456) - New Resource:
azurerm_mssql_job_schedule(#28456)
ENHANCEMENTS:
- dependencies - update
hashicorp/go-azure-sdktov0.20250115.1141151(#28519) - dependencies -
costmanagementupdate to use2023-08-01(#27680) - dependencies -
postgresql- partial upgrade to API version2024-08-01(#28474) azurerm_container_app– support for thetermination_grace_period_secondsproperty (#28307)azurerm_cost_anomaly_alert- add support for thenotification_emailproperty (#27680)azurerm_data_protection_backup_vault- support forimmutabilityproperty (#27859)azurerm_databricks_workspace- fixignore_changessupport (#28527)azurerm_kubernetes_cluster_node_pool- add support for thetemporary_name_for_rotationproperty to allow node pool rotation (#27791)azurerm_linux_function_app- add support for node22and java17support forJBOSSEAP(#28472)azurerm_linux_web_app- add support for node22and java17support forJBOSSEAP(#28472)azurerm_windows_function_app- add support for node22and java17support forJBOSSEAP(#28472)
BUG FIXES:
azurerm_logic_app_standard- fix settingpublic_network_accessfor conflicting API properties (#28465)azurerm_redis_cache-data_persistence_authentication_methodcan now be unset (#27932)azurerm_mssql_database- fix bug where verifying TDE might fail to return an error on failure (#28505)azurerm_mssql_database- fix several potential bugs where retry functions could return false negatives for actual errors (#28505)azurerm_private_endpoint- fix a bug where reading Private DNS could error and exit the Read of the resource early without raising an error (#28505)
FEATURES:
- New Data Source:
azurerm_kubernetes_fleet_manager(#28278) - New Resource:
azurerm_arc_kubernetes_provisioned_cluster(#28216) - New Resource:
azurerm_machine_learning_workspace_network_outbound_rule_private_endpoint(#27874) - New Resource
azurerm_machine_learning_workspace_network_outbound_rule_service_tag(#27931) - New Resource
azurerm_dynatrace_tag_rules(#27985)
ENHANCEMENTS:
- dependencies - update tool Go version and bump
go-gitversion to5.13.0(#28425) - dependencies - update
hashicorp/go-azure-sdktov0.20241212.1154051(#28360) - dependencies -
frontdoor- partial update to use2024-02-01API (#28233) - dependencies -
postgresql- update to2024-08-01(#28380) - dependencies -
redisenterprise- update to2024-10-01and support for new skus (#28280) - Data Source:
azurerm_healthcare_dicom_service- add support for thedata_partitions_enabled,cors,encryption_key_urlandstorageproperties (#27375) - Data Source:
azurerm_nginx_deployment- add support for thedataplane_api_endpointproperty (#28379) - Data Source:
azurerm_static_web_app- add support for therepository_urlandrepository_branchproperties (#27401) azurerm_billing_account_cost_management_export- add support for thefile_formatproperty (#27122)azurerm_cdn_frontdoor_profile- add support for theidentityproperty (#28281)azurerm_cognitive_deployment-DataZoneProvisionedManagedandGlobalProvisionedManagedskus are now supported (#28404)azurerm_databricks_access_connector-SystemAssigned,UserAssignedidentity is now supported (#28442)azurerm_healthcare_dicom_service- add support for thedata_partitions_enabled,cors,encryption_key_urlandstorageproperties (#27375)azurerm_kubernetes_flux_configuration- add support for thepost_buildandwaitproperties (#25695)azurerm_linux_virtual_machine- export theos_disk.0.idattribute (#28352)azurerm_netapp_volume- make thenetwork_featuresproperty Optional/Computed (#28390)azurerm_nginx_deployment- add support for thedataplane_api_endpointproperty (#28379)azurerm_resource_group_cost_management_export- add support for thefile_formatproperty (#27122)azurerm_site_recovery_replicated_vm- support for thenetwork_interface.recovery_load_balancer_backend_address_pool_idsproperty (#28398)azurerm_static_web_app- add support for therepository_url,repository_branchandrepository_tokenproperties (#27401)azurerm_subscription_cost_management_export- add support for thefile_formatproperty (#27122)azurerm_virtual_network- support for theprivate_endpoint_vnet_policiesproperty (#27830)azurerm_windows_virtual_machine- export theos_disk.0.idattribute (#28352)azurerm_mssql_managed_instance- support for new propertyazure_active_directory_administrator(#24801)
BUG FIXES:
azurerm_api_management- update thecapacityproperty to allow increasing the apim scalability to31(#28427)azurerm_automation_software_update_configurationremove deprecated misspelled attributeerror_meesage(#28312)azurerm_batch_pool- support for new blocksecurity_profile(#28069)azurerm_log_analytics_data_export_rule- now creates successfully without returning404(#27876)azurerm_mongo_cluster- remove CustomizeDiff logic foradministrator_passwordto allow the input to be generated by therandom_passwordresource (#28215)azurerm_mongo_cluster- valdation updated so the resource now creates successfully when usingcreate_modeGeoReplica(#28269)azurerm_mssql_managed_instance- allow system and user assigned identities, fix update failure (#28319)azurerm_storage_account- fix error handling forstatic_websiteandqueue_propertiesavailability checks (#28279)
BREAKING CHANGES:
nginx- update api version to2024-09-01-preview, this API no longer supports certain properties which have had to be deprecated in the provider for the upgrade (#27776)- Data Source:
azurerm_nginx_configuration- theprotected_file.contentproperty will not be populated and has been deprecated (#27776) - Data Source:
azurerm_nginx_deployment- themanaged_resource_groupproperty will not be populated and has been deprecated (#27776) azurerm_network_function_collector_policy- the API doesn't preserve the ordering of theipfx_ingestion.source_resource_idsproperty causing non-empty plans after apply, this property's type has been changed from a list to a set to prevent Terraform from continually trying to recreate this resource. If this property is being referenced anywhere you will need to update your config to convert it to a list before referencing it (#27915)azurerm_nginx_deployment- themanaged_resource_groupproperty is no longer supported and has been deprecated (#27776)
FEATURES:
- New Resource:
azurerm_cognitive_account_rai_blocklist(#28043) - New Resource:
azurerm_fabric_capacity(#28080)
ENHANCEMENTS:
- dependencies - update
go-azure-sdktov0.20241206.1180327(#28211) nginx- update api version to2024-11-01-preview(#28227)azurerm_linux_function_app- add support for preview value21forjava_version(#26304)azurerm_linux_function_app_slot- support1.3forsite_config.minimum_tls_versionandsite_config.scm_minimum_tls_version(#28016)azurerm_linux_web_app- add support for preview value21forjava_version(#26304)azurerm_orchestrated_virtual_machine_scale_set- support hot patching for2025-datacenter-azure-edition-core-smalldisk(#28160)azurerm_search_service- add support for thenetwork_rule_bypass_optionproperty (#28139)azurerm_windows_function_app- add support for preview value21forjava_version(#26304)azurerm_windows_function_app_slot- support1.3forsite_config.minimum_tls_versionandsite_config.scm_minimum_tls_version(#28016)azurerm_windows_virtual_machine- support hot patching for2025-datacenter-azure-edition-core-smalldisk(#28160)azurerm_windows_web_app- add support for preview value21forjava_version(#26304)
BUG FIXES:
azurerm_management_group- fix regression where subscription ID can't be parsed correctly anymore (#28228)
ENHANCEMENTS:
azurerm_cognitive_deployment- support for thedynamic_throttling_enabledproperty (#28100)azurerm_key_vault_managed_hardware_security_module_key- thekey_typeproperty now supportsoct-HSM(#28171)azurerm_machine_learning_datastore_datalake_gen2- can now be used with storage account in a different subscription (#28123)azurerm_network_watcher_flow_log-target_resource_idsupports subnets and network interfaces (#28177)
BUG:
- Data Source:
azurerm_logic_app_standard- update theidentityproperty to support User Assigned Identities (#28158) azurerm_cdn_frontdoor_origin_group- update validation of theinterval_in_secondsproperty to match API behaviour (#28143)azurerm_container_group- retrieve log analytics workspace key from config when updating resource (#28025)azurerm_mssql_elasticpool- fix sku tier and family validation that prevented the creation of Hyperscale PRMS pools (#28178)azurerm_search_service- thepartition_countproperty can now be up to3when using basic sku (#28105)
FEATURES:
- New Data Source:
azurerm_mssql_managed_database(#27026)
BUG FIXES:
azurerm_application_insights_api_key- fix condition that nil checks the list of available API keys to prevent an indefinate loop when keys created outside of Terraform are present (#28037)azurerm_data_factory_linked_service_azure_sql_database- sendtenant_idonly if it has been specified (#28120)azurerm_eventgrid_event_subscription- fix crash when flatteningadvanced_filter(#28110)azurerm_virtual_network_gateway- fix crash issue when specifyingroot_certificateorrevoked_certificate(#28099)
ENHANCEMENTS:
- dependencies - update
go-azure-sdktov0.20241128.1112539(#28137) containerapps- update api version to2024-03-01(#28074)Search- update api version to2024-06-01-preview(#27803)- Data Source:
azurerm_logic_app_standard- add support for thepublic_network_accessproperty (#27913) - Data Source:
azurerm_search_service- add support for thecustomer_managed_key_encryption_compliance_statusproperty (#27478) azurerm_container_registry_task- add validation oncpuas well as onagent_pool_nameandagent_setting(#28098)azurerm_databricks_workspace- add support for theenhanced_security_complianceblock (#26606)azurerm_eventhub- deprecatenamespace_nameandresource_group_namein favour ofnamespace_id(#28055)azurerm_logic_app_standard- add support for thepublic_network_accessproperty (#27913)azurerm_search_service- add support for thecustomer_managed_key_encryption_compliance_statusproperty (#27478)azurerm_cosmosdb_account- add support for valueEnableNoSQLFullTextSearchin thecapabilities.nameproperty (#28114)
NOTES:
- New ephemeral resources
azurerm_key_vault_certificateandazurerm_key_vault_secretnow support ephemeral values
FEATURES:
- New Ephemeral Resource:
azurerm_key_vault_certificate(#28083) - New Ephemeral Resource:
azurerm_key_vault_secret(#28083) - New Resource:
azurerm_eventgrid_namespace(#27682)
ENHANCEMENTS:
- dependencies: update
hashicorp/go-azure-sdktov0.20241118.1115603(#28075) batch- upgrade api version to2024-07-01(#27982)containerregistry- upgrade api version to2023-11-01-preview(#27983)azurerm_application_gateway-1.1is now accepted as a validrule_set_versionin thewaf_configurationblock (#28039)azurerm_arc_machine- add support for theidentityandtagsproperties (#27987)azurerm_container_app-secret.namenow accepts up to 253 characters and.(#27935)azurerm_network_manager-scope_accessesnow acceptsRouting(#28033)azurerm_network_watcher_flow_log- add support for thetarget_resource_idproperty (#26015)azurerm_role_assignment-condition_versionwill be defaulted to2.0whenconditionhas been set (#27189)azurerm_subnet-Informatica.DataManagement/organizationsis a validservice_delegation(#27993)azurerm_virtual_network-Informatica.DataManagement/organizationsis a validservice_delegation(#27993)azurerm_web_application_firewall_policy-1.1is now accepted as a validversionforMicrosoft_BotManagerRuleSetrule types (#28039)
BUG FIXES:
azurerm_api_management-public_ip_address_idis no longer required whenzonehas been set (#27976)azurerm_api_management_diagnostic- raise and error whenoperation_name_formatis used with andidentitythat is notapplicationinsights(#27630)azurerm_api_management_api_diagnostic- raise and error whenoperation_name_formatis used with andidentitythat is notapplicationinsights(#27630)azurerm_application_gateway-rewrite_rule_setcan be supplied when usingBasicsku (#28011)azurerm_container_registry_token_password- correctly mark as gone if container registry token doesn't exist (#27232)azurerm_kusto_cluster-allowed_fqdnandallowed_ip_rangescan now be set to empty lists (#27529)azurerm_linux_function_app_slot- create content settings when using a consumpton plan (#25412)azurerm_virtual_network_gatway- updatingip_configurationnow recreates the resource (#27828)
BREAKING CHANGES:
- dependencies - update
cognitiveto2024-10-01, due to a behavioural change in this version of the API, theprimary_access_keyandsecondary_access_keycan not be retrieved iflocal_authentication_enabledhas been set tofalse. These properties that may have had values previously will now be empty. This has affected theazurerm_ai_servicesandazurerm_cognitive_accountresources as well as theazurerm_cognitive_accountdata source (#27851)
FEATURES:
- New Data Source:
azurerm_key_vault_managed_hardware_security_module_key(#27827) - New Resource:
azurerm_netapp_backup_vault(#27188) - New Resource:
azurerm_netapp_backup_policy(#27188)
ENHANCEMENTS:
- dependencies: update
terraform-plugin-frameworkto versionv1.13.0(#27936) - dependencies: update
terraform-plugin-framework-validatorsto versionv0.14.0(#27936) - dependencies: update
terraform-plugin-goto versionv0.25.0(#27936) - dependencies: update
terraform-plugin-muxto versionv0.17.0(#27936) - dependencies: update
terraform-plugin-sdk/v2to versionv2.35.0(#27936) - Data Source:
azurerm_bastion_host- add support for thezonesproperty (#27909) azurerm_application_gateway- support more values for thestatus_codeproperty (#27535)azurerm_bastion_host- support for thezonesproperty (#27909)azurerm_communication_service- support forusgovregion (#27919)azurerm_email_communication_service- support forusgovregion added (#27919)azurerm_linux_function_app- support for .NET 9 (#27879)azurerm_linux_function_app_slot- support for .NET 9 (#27879)azurerm_linux_web_app- support for .NET 9 (#27879)azurerm_linux_web_app_slot- support for .NET 9 (#27879)azurerm_windows_web_app- support for .NET 9 (#27879)azurerm_windows_web_app_slot- support for .NET 9 (#27879)azurerm_windows_function_app- support for .NET 9 (#27879)azurerm_windows_function_app_slot- support for .NET 9 (#27879)
BUG FIXES:
azurerm_log_analytics_workspace_table- use the subscription from workspace ID (#27590)azurerm_traffic_manager_external_endpoint- the value forprioritywill be dynamically assigned by the API (#27966)azurerm_traffic_manager_azure_endpoint- the value forprioritywill be dynamically assigned by the API (#27966)
FEATURES:
- New Resource:
azurerm_dynatrace_monitor(#27432) - New Resource:
azurerm_dashboard_grafana_managed_private_endpoint(#27781) - New Resource:
azurerm_data_protection_backup_instance_mysql_flexible_server(#27464) - New Resource:
azurerm_mongo_cluster(#27636) - New Resource:
azurerm_stack_hci_network_interface(#26888)
ENHANCEMENTS:
- dependencies - update
go-azure-sdktov0.20241104.1140654(#27896) - dependencies - update
go-azure-helperstov0.71.0(#27897) - dependencies - update
golang-jwttov4.5.1(#27938) storage- allowazurerm_storage_accountto be used in Data Plane restrictive environments (#27818)azurerm_cognitive_deployment-sku.0.namenow supportsDataZoneStandard(#27926)azurerm_mssql_managed_database- support for thetagsproperty (#27857)azurerm_oracle_cloud_vm_cluster- support for thedomain,scan_listener_port_tcp,scan_listener_port_tcp_sslandzone_idproperties (#27808)azurerm_public_ip_prefix- support for thesku_tierproperty (#27882)azurerm_public_ip- support for thedomain_name_label_scopeproperty (#27748)azurerm_subnet-default_outbound_access_enabledcan now be updated (#27858)azurerm_storage_container- support for thestorage_account_idproperty (#27733)azurerm_storage_share- support for thestorage_account_idproperty (#27733)
FEATURES:
- New Data Source:
azurerm_virtual_network_peering(#27530) - New Resource:
azurerm_machine_learning_workspace_network_outbound_rule_fqdn(#27384) - New Resource:
azurerm_stack_hci_extension(#26929) - New Resource:
azurerm_stack_hci_marketplace_gallery_image(#27532) - New Resource:
azurerm_trusted_signing_account(#27720)
ENHANCEMENTS:
mysql- upgrade api version to2023-12-30(#27767)network- upgrade api version to2024-03-01(#27746)azurerm_cosmosdb_account: support for CMK throughmanaged_hsm_key_idproperty (#26521)azurerm_cosmosdb_account- support further versions formongo_server_version(#27763)azurerm_container_app_environment- changing thelog_analytics_workspace_idproperty no longer creates a new resource (#27794)azurerm_data_factory_linked_service_azure_sql_database- add support for thecredential_nameproperty (#27629)azurerm_key_vault_key-expiration_dateonly recreates the resource when it is removed from the config file (#27813)azurerm_kubernetes_cluster- fix issue wheremaintenance_window_auto_upgrade/maintenance_window_auto_upgrade/maintenance_window_node_osmight not be read into state (#26915)azurerm_kubernetes_cluster- support for thebackend_pool_typeproperty (#27596)azurerm_kubernetes_cluster- support for thedaemonset_eviction_for_empty_nodes_enabled,daemonset_eviction_for_occupied_nodes_enabled, andignore_daemonsets_utilization_enabledproperties (#27588)azurerm_load_test-descriptioncan now be updated (#27800)azurerm_oracle_cloud_vm_cluster- export theocidproperty (#27785)azurerm_orchestrated_virtual_machine_scale_set- add support forsku_profileblock (#27599)azurerm_web_application_firewall_policy- add support forpolicy_settings.0.file_upload_enforcement(#27774)
BUG FIXES:
azurerm_automation_hybrid_runbook_worker_group- correctly mark resource as gone if it's absent when reading it (#27797)azurerm_automation_hybrid_runbook_worker- correctly mark resource as gone if it's absent when reading it (#27797)azurerm_automation_python3_package- correctly mark resource as gone if it's absent when reading it (#27797)azurerm_data_protection_backup_vault- prevent panic when checking value ofcross_region_restore_enabled(#27762)azurerm_role_management_policy- fix panic when unmarshalling the policy into a specific type (#27731)azurerm_security_center_subscription_pricing- correctly type assert theadditional_extension_propertiesproperty when building the payload (#27721)azurerm_synapse_workspace_aad_admin- will no correctly delete when usingazurerm_synapse_workspace_aad_adminwithazurerm_synapse_workspace(#27606)azurerm_windows_function_app_slot- fixed panic in state migration (#27700)
FEATURES:
- New Data Source:
azurerm_oracle_adbs_character_sets(#27698) - New Data Source:
azurerm_oracle_adbs_national_character_sets(#27698) - New Data Source:
azurerm_oracle_autonomous_database(#27696) - New Data Source:
azurerm_oracle_db_nodes(#27698) - New Data Source:
azurerm_oracle_db_system_shapes(#27698) - New Data Source:
azurerm_oracle_gi_versions(#27698) - New Resource:
azurerm_dev_center_project_pool(#27706) - New Resource:
azurerm_oracle_autonomous_database(#27696) - New Resource:
azurerm_video_indexer_account(#27632)
ENHANCEMENTS:
- dependencies - update
go-azure-sdktov0.20241021.1074254(#27713) newrelic- upgrade api version to2024-03-01(#27135)cosmosdb- upgrade api version to2024-08-15(#27659)azurerm_application_gateway- support for the newBasicSKU value (#27440)azurerm_consumption_budget_management_group- the propertynotification.threshold_typecan now be updated (#27511)azurerm_consumption_budget_resource_group- the propertynotification.threshold_typecan now be updated (#27511)azurerm_container_app- add support for thetemplate.container.readiness_probe.initial_delayandtemplate.container.startup_probe.initial_delayproperties (#27551)azurerm_mssql_managed_instance- thestorage_account_typeproperty can now be updated (#27737)
BUG FIXES:
azurerm_automation_software_update_configuration- correct validation to not allow5and allow-1(#25574)azurerm_cosmosdb_sql_container- fix recreation logic forpartition_key_version(#27692)azurerm_mssql_database- updating short term retention policy now works as expected (#27714)azurerm_network_watcher_flow_log- fix issue wheretagswere not being updated (#27389)azurerm_postgresql_flexible_server_virtual_endpoint- retrieve and parsereplica_server_idfor cross-region scenarios as well as remove custom poller for the delete operation (#27509)
FEATURES:
- New Resource:
azurerm_dev_center_attached_network(#27638) - New Resource:
azurerm_oracle_cloud_vm_cluster(#27678) - New Resource:
azurerm_oracle_exadata_infrastructure(#27678) - New Data Source:
azurerm_oracle_cloud_vm_cluster(#27678) - New Data Source:
azurerm_oracle_db_servers(#27678) - New Data Source:
azurerm_oracle_exadata_infrastructure(#27678)
ENHANCEMENTS:
redisenterprise- upgrade api version to2024-06-01-preview(#27597)azurerm_app_configuration- support for premium sku (#27674)azurerm_container_app- support for themax_inactive_revisionsproperty (#27598)azurerm_kubernetes_cluster- remove lock on subnets (#27583)azurerm_nginx_deployment- allow updates forsku(#27604)azurerm_fluid_relay_server- support for thecustomer_managed_keyproperty (#27581)azurerm_linux_virtual_machine- support theUBUNTU_PROvalue for thelicense_typeproperty (#27534)
BUGS:
azurerm_api_management_api_diagnostic- do not setOperationNameFormatwhen theidentifierproperty isazuremonitor(#27456)azurerm_api_management- prevent a panic (#27649)azurerm_mssql_database- makeshort_term_retention_policy.backup_interval_in_hourscomputed (#27656)
FEATURES:
- New Resource:
azurerm_stack_hci_virtual_hard_disk(#27474)
ENHANCEMENTS:
azurerm_bastion_host- support for thePremiumSKU andsession_recording_enabledproperty (#27278)azurerm_log_analytics_cluster- thesize_gbproperty now supports all of 100, 200, 300, 400, 500, 1000, 2000, 5000, 10000, 25000, and 50000 (#27616)azurerm_mssql_elasticpool- allowPRMSfor thefamilyproperty (#27615)
BUG FIXES:
azurerm_mssql_database- now creates successfully when elastic pool is hyperscale (#27505)azurerm_postgresql_flexible_server_configuration- now locks to prevent conflicts when deploying multiple (#27355)
ENHANCEMENTS:
- dependencies - update
github.com/hashicorp/go-azure-sdktov0.20240923.1151247(#27491) azurerm_site_recovery_replicated_vm- support for thetarget_virtual_machine_sizeproperty (#27480)
BUG FIXES:
azurerm_app_service_certificate-key_vault_secret_idcan now be versionless (#27537)azurerm_linux_virtual_machine_scale_set- prevent crash whenauto_upgrade_minor_version_enabledis nil (#27353)azurerm_role_assignment- correctly parse ID when it's a root or provider scope (#27237)azurerm_storage_blob-source_contentis now ForceNew (#27508)azurerm_virtual_network_gateway_connection- revertshared_keyto Optional and Computed (#27560)
FEATURES:
- New Resource:
azurerm_advisor_suppression(#26177) - New Resource:
azurerm_data_protection_backup_policy_mysql_flexible_server(#26955) - New Resource:
azurerm_key_vault_managed_hardware_security_module_key_rotation_policy(#27306) - New Resource:
azurerm_stack_hci_deployment_setting(#25646) - New Resource:
azurerm_stack_hci_storage_path(#26509) - New Data Source:
azurerm_vpn_server_configuration(#27054)
ENHANCEMENTS:
managementgroups- migrate tohashicorp/go-azure-sdk(#26430)nginx- upgrade api version to2024-06-01-preview(#27345)azurerm_linux[windows]_web[function]_app[app_slot]- upgrade api version from2023-01-01to2023-12-01(#27196)azurerm_cosmosdb_account- support for the capabilityEnableNoSQLVectorSearch(#27357)azurerm_container_app_custom_domain - fix parsing the certificate ID error #25972azurerm_container_app_custom_domain- support other certificate types (#25972)azurerm_linux_virtual_machine_scale_set- thezonesproperty can now be updated without creating a new resource (#27288)azurerm_orchestrated_virtual_machine_scale_set- thezonesproperty can now be updated without creating a new resource (#27288)azurerm_role_management_policy- support for resource scope (#27205)azurerm_spring_cloud_gateway- changing theenvironment_variablesandsensitive_environment_variablesproperties no longer creates a new resource (#27404)azurerm_static_web_app- support for thepublic_network_access_enabledproperty (#26345)azurerm_shared_image- support for thedisk_controller_type_nvme_enabledproperty (#26370)azurerm_storage_blob- changing thesourceproperty no longer creates a new resource (#27394)azurerm_storage_object_replication- changing therules.x. source_container_nameandrules.x. destination_container_nameproperties no longer creates a new resource (#27394)azurerm_windows_virtual_machine_scale_set- thezonesproperty can now be updated without creating a new resource (#27288)
BUG FIXES:
azurerm_application_insights- fix crash when read forDataVolumeCapisnil(#27352)azurerm_container_app- relax validation on the ingress traffic property (#27396)azurerm_log_analytics_workspace_table- will now correctly settotal_retention_in_dayswhenskuisBasic(#27420)
FEATURES:
- New Resource:
azurerm_arc_machine(#26647) - New Resource:
azurerm_arc_machine_automanage_configuration_assignment(#26657)
ENHANCEMENTS:
network/bastionhosts- upgrade api version from2023-11-01to2024-01-01(#27277)recoveryservices- upgraderecoveryservicessiterecoveryfrom2022-10-01 to2024-04-01(#27281)azurerm_data_protection_backup_vault- support for theproperty cross_region_restore_enabledproperty (#27197)azurem_mssql_managed_instance- support for theservice_principal_typeproperty (#27240)
BUG FIXES:
azurerm_cosmosdb_account- fix crash during state migration (#27302)azurerm_servicebus_queue- fix defaults of thedefault_message_ttlandauto_delete_on_idleproperties (#27305)
ENHANCEMENTS:
- dependencies - bump
hashicorp/go-azure-sdktov0.20240903.1111904(#27268) - Virtual Machine Scale Sets - upgrade api version from
2024-03-01to2024-07-01(#27230) hdinsights- update the HDInsights Node definition validation of VM sizes to include new V5 types (#27270)azurerm_api_management_logger- support for theapplication_insights.connection_stringproperty (#27137)azurerm_bot_service_azure_bot- will now send the value for thedeveloper_app_insights_api_keyproperty (#27280)azurerm_netapp_volume- support for thesmb3_protocol_encryption_enabledproperty (#27228)azurerm_subnet- supportMicrosoft.DevOpsInfrastructureas delegation service (#27259)
BUG FIXES:
azurerm_mysql_flexible_server- correctly setsource_server_idin the state file (#27295)azurerm_cosmosdb_account- theip_range_filterproperty now supports IPV4 addresses (#27208)azurerm_cosmosdb_account- added state migration forip_range_filterunderlying type change fromstringtoset(#27276)azurerm_linux_virtual_machine- theadmin_ssh_key.public_keyproperty now supports ed25519 ssh keys (#27202)azurerm_sentinel_automation_rule- no longer panics when usingcondition_json(#27269)azurerm_kubernetes_cluster- thehost_encryption_enabledandnode_public_ip_enabledproperties are now set correctly (#27218)
BUG FIXES:
- provider: fix a validation bug that prevents
terraform validatefrom working whensubscription_idis not specified (#27178) azurerm_cognitive_deployment- fixed replacement ofscaleblock withsku(#27173)azurerm_kubernetes_cluster- prevent a panic (#27183)azurerm_kubernetes_cluster_node_pool- prevent a panic caused by renamedenable_*properties (#27164)azurerm_sentinel_data_connector_microsoft_threat_intelligence- prevent error by removing deprecated propertybing_safety_phishing_url_lookback_date(#27171)
NOTES:
- Major Version: Version 4.0 of the Azure Provider is a major version - some behaviours have changed and some deprecated fields/resources have been removed - please refer to the 4.0 upgrade guide for more information.
- When upgrading to v4.0 of the AzureRM Provider, we recommend upgrading to the latest version of Terraform Core (which can be found here).
ENHANCEMENTS:
- Data Source:
azurerm_shared_image- add support for thetrusted_launch_supported,trusted_launch_enabled,confidential_vm_supported,confidential_vm_enabled,accelerated_network_support_enabledandhibernation_enabledproperties (#26975) - dependencies: updating
hashicorp/go-azure-sdktov0.20240819.1075239(#27107) applicationgateways- updating to use2023-11-01(#26776)containerregistry- updating to use2023-06-01-preview(#23393)containerservice- updating to2024-05-01(#27105)mssql- updating to usehashicorp/go-azure-sdkand023-08-01-preview(#27073)mssqlmanagedinstance- updating to usehashicorp/go-azure-sdkand2023-08-01-preview(#26872)azurerm_image- add support for thedisk_encryption_set_idproperty to thedata_diskblock (#27015)azurerm_log_analytics_workspace_table- add support for moretotal_retention_in_daysandretention_in_daysvalues (#27053)azurerm_mssql_elasticpool- add support for theHS_MOPRMSandMOPRMSskus (#27085)azurerm_netapp_pool- allow1as a valid value forsize_in_tb(#27095)azurerm_notification_hub- add support for thebrowser_credentialproperty (#27058)azurerm_redis_cache- add support for theaccess_keys_authentication_enabledproperty (#27039)azurerm_role_assignment- add support for the/,/providers/Microsoft.Capacityand/providers/Microsoft.BillingBenefitsscopes (#26663)azurerm_shared_image- add support for thehibernation_enabledproperty (#26975)azurerm_storage_account- supportqueue_encryption_key_typeandtable_encryption_key_typefor more storage account kinds (#27112)azurerm_web_application_firewall_policy- add support for therequest_body_enforcementproperty (#27094)
BUG FIXES:
azurerm_ip_group_cidr- fixed the position of the CIDR check to correctly refresh the resource when it's no longer present (#27103)azurerm_monitor_diagnostic_setting- add further polling to work around an eventual consistency issue when creating the resource (#27088)azurerm_storage_account- prevent API error by populatinginfrastructure_encryption_enabledwhen updatingcustomer_managed_key(#26971)azurerm_storage_blob_inventory_policy- thefilterproperty can now be set whenscopeiscontainer(#27113)azurerm_virtual_network_dns_servers- moved locks to prevent the creation of subnets with stale data (#27036)azurerm_virtual_network_gateway_connection- allow0as a valid value foripsec_policy.sa_datasize(#27056)
For information on changes between the v3.116.0 and v3.0.0 releases, please see the previous v3.x changelog entries.
For information on changes between the v2.99.0 and v2.0.0 releases, please see the previous v2.x changelog entries.
For information on changes between the v1.44.0 and v1.0.0 releases, please see the previous v1.x changelog entries.
For information on changes prior to the v1.0.0 release, please see the v0.x changelog.