diff --git a/eks_console_access.tf b/eks_console_access.tf
index a92ef6c..1af7b77 100644
--- a/eks_console_access.tf
+++ b/eks_console_access.tf
@@ -30,7 +30,7 @@ locals {
 
 # Fetch the YAML files from the specified URLs
 data "http" "cluster_roles" {
-  for_each = local.cluster_roles_map
+  for_each = { for cr in local.cluster_roles : cr.name => cr if cr.enabled }
   url      = each.value.url
 }
 
@@ -46,10 +46,11 @@ data "http" "cluster_roles" {
 
 # # Apply the Kubernetes manifests to the cluster
 resource "kubernetes_manifest" "deploy_cluster_roles" {
-  for_each = { for manifest in provider::kubernetes::manifest_decode_multi(data.http.cluster_roles[each.key].body) : "${lower(manifest.kind)}-${manifest.metadata.name}-${manifest.metadata.namespace}" => manifest }
+  for_each = { for doc in local.cluster_roles_map : provider::kubernetes::manifest_decode_multi(doc) => manifest }
   manifest = each.value
-  # manifest = [split("---\n", data.http.cluster_roles[each.key].body)]
 }
+# for_each = { for manifest in provider::kubernetes::manifest_decode_multi(data.http.cluster_roles[].body) : "${lower(manifest.kind)}-${manifest.metadata.name}-${manifest.metadata.namespace}" => manifest }
+# manifest = [split("---\n", data.http.cluster_roles[each.key].body)]
 
 # resource "null_resource" "apply_cluster_roles" {
 #   for_each = { for k, v in local.cluster_roles_map : k => v if v.enabled }