sap-linuxlab
diff --git a/‎README.md
Lines changed: 15 additions & 5 deletions b/‎README.md
Lines changed: 15 additions & 5 deletions
diff --git a/‎all/ansible_sap_ecc_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions b/‎all/ansible_sap_ecc_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions
diff --git a/‎all/ansible_sap_nwas_abap_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions b/‎all/ansible_sap_nwas_abap_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions
diff --git a/‎all/ansible_sap_nwas_java_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions b/‎all/ansible_sap_nwas_java_sapase_install/create_ansible_extravars.tf
Lines changed: 2 additions & 2 deletions
diff --git a/‎aws_ec2_instance/host_network_access_sap/network_security_groups_sap_hana.tf
Lines changed: 2 additions & 22 deletions b/‎aws_ec2_instance/host_network_access_sap/network_security_groups_sap_hana.tf
Lines changed: 2 additions & 22 deletions
diff --git a/‎gcp_ce_vm/host_network_access_sap/network_security_fw_rules_sap_hana.tf
Lines changed: 3 additions & 33 deletions b/‎gcp_ce_vm/host_network_access_sap/network_security_fw_rules_sap_hana.tf
Lines changed: 3 additions & 33 deletions
diff --git a/‎ibmcloud_vs/bastion_inject/bastion_provision.tf
Lines changed: 4 additions & 1 deletion b/‎ibmcloud_vs/bastion_inject/bastion_provision.tf
Lines changed: 4 additions & 1 deletion
diff --git a/‎ibmcloud_vs/host_network_access_sap/network_security_groups_sap_hana.tf
Lines changed: 4 additions & 28 deletions b/‎ibmcloud_vs/host_network_access_sap/network_security_groups_sap_hana.tf
Lines changed: 4 additions & 28 deletions
diff --git a/‎ibmcloud_vs/host_provision/build_dns_update.tf
Lines changed: 2 additions & 2 deletions b/‎ibmcloud_vs/host_provision/build_dns_update.tf
Lines changed: 2 additions & 2 deletions
diff --git a/‎ibmcloud_vs/host_provision/build_execution.tf
Lines changed: 2 additions & 2 deletions b/‎ibmcloud_vs/host_provision/build_execution.tf
Lines changed: 2 additions & 2 deletions
@@ -29,7 +29,9 @@ Therefore it is not possible to match precisely the same functionality when boot
 
 In addition, dependant upon the additional configuration and policies within an existing configured environment - these Terraform Modules for SAP may not work at all and may require custom changes to fit the bespoke environment.
 
-Contributions to these Terraform Modules need to retain as much parity across each infrastructure platform.
+For further information, please see below for the [Infrastructure provisioning parity comparison](#infrastructure-provisioning-parity-comparison) table.
+
+N.B. Contributions to these Terraform Modules need to retain as much parity across each infrastructure platform. 
 
 ## Execution time
 
@@ -42,6 +44,8 @@ Please note, for all SAP software installations the execution time will vary bas
 
 All detailed execution permissions are listed in the documentation for the Terraform Modules of each Infrastructure Platform. See the next section.
 
+---
+
 ## List of Terraform Modules for SAP
 
 The below table lists the Terraform Modules for SAP, and any detailed documentation:
@@ -86,17 +90,17 @@ The below table lists the Terraform Modules for SAP, and any detailed documentat
 | &emsp;&emsp;*Compute*<br/>&emsp;&emsp;*Type* | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) | Virtual Machine<br> (Type 1) |
 | &emsp;&emsp;*Compute*<br/>&emsp;&emsp;*Hypervisor* | KVM | KVM | HyperV | KVM | IBM PowerVM<br> (PHYP LE) | IBM PowerVM<br> (PHYP LE) | VMware vSphere |
 | <br/><br/>***Account Init*** |   |   |   |   |   |   |   |
-| Create Resource Group, or re-use existing Resource Group | :x: | :x: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
+| Create Resource Group, or re-use existing Resource Group | :no_entry_sign: | :no_entry_sign: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | Create VPC/VNet, or re-use existing VPC/VNet | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | Create Subnet, or re-use existing Subnet | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | Create Many-to-One NAT Gateway (Public Internet access for hosts) | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | <br/>***Account Bootstrap<br/>(aka. minimal landing zone)*** |   |   |   |   |   |   |   |
 | Create Private DNS | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
-| Create Network Interconnectivity hub (e.g. Transit Gateway) | :white_check_mark: | :x: | :x: | :white_check_mark: | :white_check_mark: | N/A | N/A |
+| Create Network Interconnectivity hub (e.g. Transit Gateway) | :white_check_mark: | :no_entry_sign: | :no_entry_sign: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | Create Network Security for Subnet/s (e.g. ACL, NSG) | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
-| Create Network Security for Host/s (e.g. Security Groups) | :white_check_mark: | :x: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
+| Create Network Security for Host/s (e.g. Security Groups) | :white_check_mark: | :no_entry_sign: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | Create TLS key pair for SSH (using RSA algorithm) | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
-| Import public key to Cloud platform | :white_check_mark: | :x: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
+| Import public key to Cloud platform | :white_check_mark: | :no_entry_sign: | :white_check_mark: | :white_check_mark: | :white_check_mark: | N/A | N/A |
 | <br/>***Account IAM*** |   |   |   |   |   |   |   |
 | Create IAM Access Group/s and contained Policies for SAP 'Basis' Administrators | :x: WIP | :x: WIP | :x: WIP | :warning: WIP | :x: WIP | N/A | N/A |
 | <br/>***Bastion Injection*** |   |   |   |   |   |   |   |
@@ -123,3 +127,9 @@ The below table lists the Terraform Modules for SAP, and any detailed documentat
 | Build scripts for Host:<sub><br>     - Enable root login<br>     - Set hostname<br>     - Set DNS in resolv.conf<br>     - Disks and Filesystem setup (LVM with XFS and striping, or Physical with XFS)</sub> | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: | :white_check_mark: |
 | Build scripts for increased security Hosts:<sub><br>     - Set DNS Proxy in resolv.conf<br>     - Set Web Proxy for non-interactive login shell</sub> | N/A | N/A | N/A | N/A | :white_check_mark: | :white_check_mark: | :white_check_mark: |
 | Build scripts for BYOL OS:<sub><br>     - Enable OS Subscription with BYOL, setup OS Package Repositories</sub> | N/A | N/A | N/A | N/A | :white_check_mark: | :white_check_mark: | :white_check_mark: |
+
+<sub>**Key:**</sub>
+- :white_check_mark: <sub>Ready and Tested</sub>
+- :warning: <sub>Pending work</sub>
+- :x: <sub>Not available yet</sub>
+- :no_entry_sign: <sub>Capability not provided by vendor (or construct concept does not exist)</sub>
@@ -139,7 +139,7 @@ sap_swpm_templates_install_dictionary:
       - 'igshelper_17-10010245.sar'
       - 'SYBCTRL_1110-80002616.SAR'
       - '51056224_1' # SAP ASE 16.0.03.13 RDBMS Linux on x86_64 64bit
-      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 PL03
+      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 Patch Level x (e.g. 03)
       - '51050708_1' # SAP ERP 6.0 EHP8 Installation Export 1/4, Self-extract RAR EXE
       - '51050708_2'
       - '51050708_3'
@@ -204,7 +204,7 @@ sap_swpm_templates_install_dictionary:
       - 'igshelper_17-10010245.sar'
       - 'SYBCTRL_1110-80002616.SAR'
       - '51056224_1' # SAP ASE 16.0.03.13 RDBMS Linux on x86_64 64bit
-      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 PL03
+      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 Patch Level x (e.g. 03)
       - '51053216_1' # IDES SAP ERP 6.0 EHP8 - INSTALL. EXP. (1/2) 1/22
       - '51053216_2'
       - '51053216_3'
 
@@ -133,7 +133,7 @@ sap_swpm_templates_install_dictionary:
       - 'igshelper_17-10010245.sar'
       - 'SYBCTRL_1110-80002616.SAR'
       - '51056224_1' # SAP ASE 16.0.03.13 RDBMS Linux on x86_64 64bit
-      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 PL03
+      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 Patch Level x (e.g. 03)
       - '51051806_1' # NetWeaver AS ABAP 7.52 Innovation Pkg - Installation Exp 1/2, RAR
       - '51051806_2' # NetWeaver AS ABAP 7.52 Innovation Pkg - Installation Exp 2/2, RAR
 
@@ -185,7 +185,7 @@ sap_swpm_templates_install_dictionary:
       - 'igshelper_17-10010245.sar'
       - 'SYBCTRL_1110-80002616.SAR'
       - '51056224_1' # SAP ASE 16.0.03.13 RDBMS Linux on x86_64 64bit
-      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 PL03
+      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 Patch Level x (e.g. 03)
       - '51050829_3' # SAP Netweaver 7.5 Installation Export, ZIP
 #      - '51050829_4' # NW 7.5 Language 1/2
 #      - '51050829_5' # NW 7.5 Language 2/2
 
@@ -134,8 +134,8 @@ sap_swpm_templates_install_dictionary:
       - 'SAPHOSTAGENT56_56-80004822.SAR' # SAP Host Agent 7.22
       - 'SAPJVM8_90-80000202.SAR' # SAP JVM 8.1
       - '51055106' # SAP Netweaver 7.5 SP22 Java, ZIP. Contains JAVA_EXPORT (SAP:JEXPORT:750:SP22:*:*), JAVA_EXPORT_JDMP (SAP:JDMP:750:SP22:*:SW-LABEL), JAVA_J2EE_OSINDEP (SAP:J2EE-CD:750:J2EE-CD:j2ee-cd:*), JAVA_J2EE_OSINDEP_J2EE_INST (SAP:J2EE-INST:750:SP22:*:*), JAVA_J2EE_OSINDEP_UT (SAP:UT:750:SP22:*:*)
-      - '51056021_1' # SAP ASE 16.0.04.03 HF1 RDBMS Linux on x86_64 64bit
-      - 'ASEBC16004P_2-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 PL02
+      - '51056224_1' # SAP ASE 16.0.03.13 RDBMS Linux on x86_64 64bit
+      - 'ASEBC16004P_3-20012477.SAR' # SAP ASE 16.0 FOR BUS. SUITE DBCLIENT SP04 Patch Level x (e.g. 03)
 
     softwarecenter_search_list_ppc64le:
       - 'SAPCAR_1115-70006238.EXE'
 
@@ -105,12 +105,13 @@ resource "aws_security_group_rule" "vpc_sg_rule_tcp_egress_saphana_index_mdc_1"
 
 
 # SAP HANA for SOAP over HTTP for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
+# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
 resource "aws_security_group_rule" "vpc_sg_rule_tcp_ingress_saphana_startsrv_http_soap" {
   count = local.network_rules_sap_hana_boolean ? 1 : 0
   security_group_id = var.module_var_host_security_group_id
   type              = "ingress"
   from_port         = tonumber("5${var.module_var_sap_hana_instance_no}13")
-  to_port           = tonumber("5${var.module_var_sap_hana_instance_no}13")
+  to_port           = tonumber("5${var.module_var_sap_hana_instance_no}14")
   protocol          = "tcp"
   cidr_blocks  = ["${local.target_subnet_ip_range}"]
 }
@@ -119,27 +120,6 @@ resource "aws_security_group_rule" "vpc_sg_rule_tcp_egress_saphana_startsrv_http
   security_group_id = var.module_var_host_security_group_id
   type              = "egress"
   from_port         = tonumber("5${var.module_var_sap_hana_instance_no}13")
-  to_port           = tonumber("5${var.module_var_sap_hana_instance_no}13")
-  protocol          = "tcp"
-  cidr_blocks  = ["${local.target_subnet_ip_range}"]
-}
-
-
-# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
-resource "aws_security_group_rule" "vpc_sg_rule_tcp_ingress_saphana_startsrv_https_soap" {
-  count = local.network_rules_sap_hana_boolean ? 1 : 0
-  security_group_id = var.module_var_host_security_group_id
-  type              = "ingress"
-  from_port         = tonumber("5${var.module_var_sap_hana_instance_no}14")
-  to_port           = tonumber("5${var.module_var_sap_hana_instance_no}14")
-  protocol          = "tcp"
-  cidr_blocks  = ["${local.target_subnet_ip_range}"]
-}
-resource "aws_security_group_rule" "vpc_sg_rule_tcp_egress_saphana_startsrv_https_soap" {
-  count = local.network_rules_sap_hana_boolean ? 1 : 0
-  security_group_id = var.module_var_host_security_group_id
-  type              = "egress"
-  from_port         = tonumber("5${var.module_var_sap_hana_instance_no}14")
   to_port           = tonumber("5${var.module_var_sap_hana_instance_no}14")
   protocol          = "tcp"
   cidr_blocks  = ["${local.target_subnet_ip_range}"]
 
@@ -167,14 +167,15 @@ resource "google_compute_firewall" "vpc_fw_rule_tcp_egress_saphana_index_mdc_1"
 
 
 # SAP HANA for SOAP over HTTP for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
+# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
 resource "google_compute_firewall" "vpc_fw_rule_tcp_ingress_saphana_startsrv_http_soap" {
   count   = local.network_rules_sap_hana_boolean ? 1 : 0
   name    = "${var.module_var_resource_prefix}-vpc-fw-ingress-saphana-startsrv-http"
   network = local.target_vpc_name
 
   allow {
     protocol = "tcp"
-    ports    = [tonumber("5${var.module_var_sap_hana_instance_no}13")]
+    ports    = ["5${var.module_var_sap_hana_instance_no}13-5${var.module_var_sap_hana_instance_no}14"]
   }
 
   direction  = "INGRESS"
@@ -188,38 +189,7 @@ resource "google_compute_firewall" "vpc_fw_rule_tcp_egress_saphana_startsrv_http
 
   allow {
     protocol = "tcp"
-    ports    = [tonumber("5${var.module_var_sap_hana_instance_no}13")]
-  }
-
-  direction  = "EGRESS"
-  destination_ranges = ["${local.target_vpc_subnet_range}"]
-#  source_ranges      = 
-}
-
-
-# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
-resource "google_compute_firewall" "vpc_fw_rule_tcp_ingress_saphana_startsrv_https_soap" {
-  count   = local.network_rules_sap_hana_boolean ? 1 : 0
-  name    = "${var.module_var_resource_prefix}-vpc-fw-ingress-saphana-startsrv-https"
-  network = local.target_vpc_name
-
-  allow {
-    protocol = "tcp"
-    ports    = [tonumber("5${var.module_var_sap_hana_instance_no}14")]
-  }
-
-  direction  = "INGRESS"
-#  destination_ranges = 
-  source_ranges      = ["${local.target_vpc_subnet_range}"]
-}
-resource "google_compute_firewall" "vpc_fw_rule_tcp_egress_saphana_startsrv_https_soap" {
-  count   = local.network_rules_sap_hana_boolean ? 1 : 0
-  name    = "${var.module_var_resource_prefix}-vpc-fw-egress-saphana-startsrv-https"
-  network = local.target_vpc_name
-
-  allow {
-    protocol = "tcp"
-    ports    = [tonumber("5${var.module_var_sap_hana_instance_no}14")]
+    ports    = ["5${var.module_var_sap_hana_instance_no}13-5${var.module_var_sap_hana_instance_no}14"]
   }
 
   direction  = "EGRESS"
 
@@ -49,7 +49,10 @@ resource "ibm_is_floating_ip" "bastion_floating_ip" {
 
 resource "null_resource" "bastion_ssh_configure" {
 
-  depends_on = [ibm_is_instance.bastion_host]
+  depends_on = [
+    ibm_is_instance.bastion_host,
+    ibm_is_floating_ip.bastion_floating_ip
+    ]
 
   # Virtual Server Private Key apply file permissions
   provisioner "remote-exec" {
 
@@ -123,6 +123,7 @@ resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_outbound_saphana_index_md
 
 
 # SAP HANA for SOAP over HTTP for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
+# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
 resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_inbound_saphana_startsrv_http_soap" {
   count = local.network_rules_sap_hana_boolean ? 1 : 0
   depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_inbound_saphana_index_mdc_1]
@@ -131,42 +132,17 @@ resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_inbound_saphana_startsrv_
   remote     = local.target_vpc_subnet_range
   tcp {
     port_min = tonumber("5${var.module_var_sap_hana_instance_no}13")
-    port_max = tonumber("5${var.module_var_sap_hana_instance_no}13")
-  }
-}
-resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_outbound_saphana_startsrv_http_soap" {
-  count = local.network_rules_sap_hana_boolean ? 1 : 0
-  depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_inbound_saphana_index_mdc_1]
-  group      = var.module_var_host_security_group_id
-  direction  = "outbound"
-  remote     = local.target_vpc_subnet_range
-  tcp {
-    port_min = tonumber("5${var.module_var_sap_hana_instance_no}13")
-    port_max = tonumber("5${var.module_var_sap_hana_instance_no}13")
-  }
-}
-
-
-# SAP HANA for SOAP over HTTPS (Secure) for SAP Instance Agent (SAPStartSrv, i.e. host:port/SAPControl?wsdl), access from within the same Subnet
-resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_inbound_saphana_startsrv_https_soap" {
-  count = local.network_rules_sap_hana_boolean ? 1 : 0
-  depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_inbound_saphana_startsrv_http_soap]
-  group      = var.module_var_host_security_group_id
-  direction  = "inbound"
-  remote     = local.target_vpc_subnet_range
-  tcp {
-    port_min = tonumber("5${var.module_var_sap_hana_instance_no}14")
     port_max = tonumber("5${var.module_var_sap_hana_instance_no}14")
   }
 }
-resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_outbound_saphana_startsrv_https_soap" {
+resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_outbound_saphana_startsrv_http_soap" {
   count = local.network_rules_sap_hana_boolean ? 1 : 0
   depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_inbound_saphana_startsrv_http_soap]
   group      = var.module_var_host_security_group_id
   direction  = "outbound"
   remote     = local.target_vpc_subnet_range
   tcp {
-    port_min = tonumber("5${var.module_var_sap_hana_instance_no}14")
+    port_min = tonumber("5${var.module_var_sap_hana_instance_no}13")
     port_max = tonumber("5${var.module_var_sap_hana_instance_no}14")
   }
 }
@@ -178,7 +154,7 @@ resource "ibm_is_security_group_rule" "vpc_sg_rule_tcp_outbound_saphana_startsrv
 ## More details in README
 resource "ibm_is_security_group_rule" "vpc_sg_rule_sap_inbound_saphana_hsr1" {
   count = local.network_rules_sap_hana_boolean ? 1 : 0
-  depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_inbound_saphana_startsrv_https_soap]
+  depends_on = [ibm_is_security_group_rule.vpc_sg_rule_tcp_outbound_saphana_startsrv_http_soap]
   group      = var.module_var_host_security_group_id
   direction  = "inbound"
   remote     = local.target_vpc_subnet_range
 
@@ -82,7 +82,7 @@ EOF
     # Checking Host Key is false when not using bastion_host_key
     type         = "ssh"
     user         = "root"
-    host         = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ipv4_address
+    host         = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ip[0].address
     private_key  = var.module_var_host_private_ssh_key
     bastion_host = var.module_var_bastion_floating_ip
     #bastion_host_key = 
@@ -116,7 +116,7 @@ resource "null_resource" "dns_resolv_update" {
     # Checking Host Key is false when not using bastion_host_key
     type                = "ssh"
     user                = "root"
-    host                = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ipv4_address
+    host                = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ip[0].address
     private_key         = var.module_var_host_private_ssh_key
     bastion_host        = var.module_var_bastion_floating_ip
     bastion_port        = var.module_var_bastion_ssh_port
 
@@ -15,7 +15,7 @@ resource "null_resource" "execute_os_scripts" {
     # Checking Host Key is false when not using bastion_host_key
     type                = "ssh"
     user                = "root"
-    host                = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ipv4_address
+    host                = ibm_is_instance.virtual_server.primary_network_interface[0].primary_ip[0].address
     private_key         = var.module_var_host_private_ssh_key
     bastion_host        = var.module_var_bastion_floating_ip
     bastion_port        = var.module_var_bastion_ssh_port
@@ -47,7 +47,7 @@ resource "null_resource" "execute_os_scripts" {
 
   # Copy logs back to the Terraform origin/local host
   #provisioner "local-exec" {
-  #  command = "scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o ProxyCommand='ssh -W %h:%p bastionuser@${var.module_var_bastion_floating_ip} -p ${var.module_var_bastion_ssh_port} -i ${path.root}/ssh/bastion_rsa -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null' -i ${path.root}/ssh/hosts_rsa root@${ibm_is_instance.virtual_server.primary_network_interface[0].primary_ipv4_address}:/tmp/terraform_shell_logs_*.zip ${path.root}"
+  #  command = "scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o ProxyCommand='ssh -W %h:%p bastionuser@${var.module_var_bastion_floating_ip} -p ${var.module_var_bastion_ssh_port} -i ${path.root}/ssh/bastion_rsa -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null' -i ${path.root}/ssh/hosts_rsa root@${ibm_is_instance.virtual_server.primary_network_interface[0].primary_ip[0].address}:/tmp/terraform_shell_logs_*.zip ${path.root}"
   #}
 
 }