Missing Ensure Parameters for various resources #2718
Comments
andikrueger
added
Bug
|
It is correct that some resources do not have the Ensure parameter, especially when they can only be used once. For example: With AADTenantDetails, these settings have a certain default value and cannot be removed. They can only be changed to something else. Therefore the Ensure parameter does not make sense. To enforce that the resource can only be specified once, these resources are using the IsSingleInstance parameter. You are correct though that some are incorrectly using the Ensure parameter in the null return. Will check those and correct where required. |
|
There are some resources with single instance though, that have the ensure parameter with just one allowed value of „Present“. I like this use as this would be more consistent across the usage of DSC. It would also help to show which resources are non-changeable. |
|
I have been working on this and indeed notice there are several resources that only allow Ensure to have a value of Present. But at the same time, they set the value of Ensure to Absent themselves in the Get method. That doesn't make sense and can result in issues when exporting the Ensure=Absent which is not supported when importing again. We can either:
For example: $nullReturn = @{
IsSingleInstance = 'Yes'
}And then in the export: $Results = Get-TargetResource @Params
if ($Results -is [System.Collections.Hashtable] -and $Results.Count -gt 1)
{
$Results = Update-M365DSCExportAuthenticationResults -ConnectionMode $ConnectionMode `
-Results $Results
$currentDSCBlock = Get-M365DSCExportContentForResource -ResourceName $ResourceName `
-ConnectionMode $ConnectionMode `
-ModulePath $PSScriptRoot `
-Results $Results `
-Credential $Credential
$dscContent += $currentDSCBlock
Save-M365DSCPartialExport -Content $currentDSCBlock `
-FileName $Global:PartialExportFileName
Write-Host $Global:M365DSCEmojiGreenCheckMark
}
else
{
Write-Host $Global:M365DSCEmojiRedX
}
@NikCharlebois, what do you think? |
|
To me, resources that implement the IsSingleInstance should never be null, meaning they should always be exporter. These are normally tenant wide settings that have a default, but cannot be null. For example, the O365OrgSettings will always have values. |
|
This was one of my thoughts too. I did not look into the anatomy of each resources above. Usually every resource should have a default setting and therefor it should not be possible to have a null return. If there are resources like the O365OrgSetting which can only be set once without a way back, we need to figure out a way on how to represent the default return. There is no “parameter” is $null. This resource could only part of an export if it was set in the first place. Any other value is not possible - even though this would require a lot of knowledge of how this resource works internally. |
|
Agree with that. In this case the nullReturn value is mostly returned when something goes wrong, for example when the account does not have the correct permissions. Shall I create a PR with my suggestions, so you both can see if you agree with those changes or if we need to go into a different direction? |
|
@ykuijs I think this is probably the best option and the easiest for us to be able to review and provide feedback. Thanks |
|
@NikCharlebois @andikrueger I just created PR 2872 that implements suggestions for this issue. Please review it and let me know what you think. |
Some resources do not have an
Ensureparameter. Some of these resource can only be used once in a configuration.AADTenantDetails
EXOOrganizationConfig (creates wrong null return)
EXOTransportConfig (creates wrong null return)
PPTenantSettings
PPTenantIsolationSettings
SPOBrowserIdleSignout
SPOSiteAuditSettings
SPOTenantCDNPolicy
TeamsDialInConferencingTenantSettings
TeamsFederationConfiguration
TeamsGuestCallingConfiguration
TeamsGuestMeetingConfiguration
TeamsGuestMessagingConfiguration
TeamsMeetingBroadcastConfiguration
TeamsUpgradeConfiguration
TeamsUpgradePolicy
The text was updated successfully, but these errors were encountered: