Allow UserAssigned Identities for Policy Assignments

[SeSeicht]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

Is your feature request related to a problem?

Currently only SystemAssigned Identies are supported for Policy Assignments

# Dynamic configuration blocks
  # The identity block only supports a single value
  # for type = "SystemAssigned" so the following logic
  # ensures the block is only created when this value
  # is specified in the source template
  dynamic "identity" {
    for_each = {
      for ik, iv in try(each.value.template.identity, local.empty_map) :
      ik => iv
      if lower(iv) == "systemassigned"
    }
    content {
      type = "SystemAssigned"
    }
  }

https://github.com/Azure/terraform-azurerm-caf-enterprise-scale/blob/main/resources.policy_assignments.tf#LL40C23-L40C23

Describe the solution you'd like

Enable to use UserAssigned Identities for Policy Assignement

Additional context

[matt-FFFFFF]

Hi @SeSeicht

We plan to have this capability for the next version

[vasniko]

Hi @SeSeicht

We plan to have this capability for the next version

I have checked and the feature is not yet released. Pls, could you confirm when is it planned for?

[LaurentLesle]

Let me work on it.

[jtracey93]

AB#30503

[LaurentLesle]

@jtracey93 can you close it now. Reopen if there is still an issue

[madhulikasarangam]

Hi Laurent and Team,

As you said user assigned managed identity support in next version i.e., 5.2.0. Now we are pointing to the 4.2.0, upgrade will take a time mean while is there any workaround to pass the user assigned managed identity in policy assignment using CAF