diff --git a/README.md b/README.md
index 4b6bd84..7eb2587 100644
--- a/README.md
+++ b/README.md
@@ -35,6 +35,7 @@ sys     0m2.015s
 | <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 5.14.0 |
 | <a name="requirement_http"></a> [http](#requirement\_http) | >= 2.1.0 |
 | <a name="requirement_kubernetes"></a> [kubernetes](#requirement\_kubernetes) | >= 2.23.0 |
+| <a name="requirement_null"></a> [null](#requirement\_null) | >= 1.0 |
 
 ## Providers
 
@@ -43,6 +44,7 @@ sys     0m2.015s
 | <a name="provider_aws"></a> [aws](#provider\_aws) | 5.83.1 |
 | <a name="provider_http"></a> [http](#provider\_http) | 3.4.5 |
 | <a name="provider_kubernetes"></a> [kubernetes](#provider\_kubernetes) | 2.35.1 |
+| <a name="provider_null"></a> [null](#provider\_null) | >= 1.0 |
 
 ## Modules
 
@@ -59,6 +61,7 @@ sys     0m2.015s
 | [kubernetes_storage_class.ebs_encrypted](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/storage_class) | resource |
 | [kubernetes_storage_class.efs_sc](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/storage_class) | resource |
 | [kubernetes_storage_class.gp3_encrypted](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/storage_class) | resource |
+| [null_resource.cluster_roles](https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource) | resource |
 | [aws_ebs_default_kms_key.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/ebs_default_kms_key) | data source |
 | [aws_kms_key.ebs_key](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/kms_key) | data source |
 | [http_http.cluster_roles](https://registry.terraform.io/providers/hashicorp/http/latest/docs/data-sources/http) | data source |
diff --git a/eks_console_access.tf b/eks_console_access.tf
index 60b208f..8b90588 100644
--- a/eks_console_access.tf
+++ b/eks_console_access.tf
@@ -33,35 +33,21 @@ data "http" "cluster_roles" {
   url      = each.value.url
 }
 
-# resource "null_resource" "cluster_roles" {
-#   for_each = local.cluster_roles_map
-#   triggers = {
-#     roles = join(",", [each.key, each.value.url])
-#   }
-#   provisioner "local-exec" {
-#     command = "echo '${data.http.cluster_roles[each.key].body}' > ${each.value.name}.yaml"
-#   }
-# }
+resource "null_resource" "cluster_roles" {
+  for_each = local.cluster_roles_map
+  triggers = {
+    roles = join(",", [each.key, each.value.url])
+  }
+  provisioner "local-exec" {
+    command = "echo '${data.http.cluster_roles[each.key].body}' > ${each.value.name}.yaml"
+  }
+}
 
 # # Apply the Kubernetes manifests to the cluster
-# resource "kubernetes_manifest" "deploy_cluster_roles" {
-#   # depends_on = [null_resource.cluster_roles]
-#   for_each = { for k, v in local.cluster_roles_map : k => v if v.enabled }
-#   manifest = [yamldecode(data.http.cluster_roles[each.key].body)]
-# }
-
 resource "kubernetes_manifest" "deploy_cluster_roles" {
-  for_each = {
-    for value in [
-      for yaml in split(
-        "\n---\n",
-        "${replace(yamldecode(data.http.cluster_roles[each.key].body), "/(?m)^---[[:blank:]]*(#.*)?$/", "---")}\n"
-      ) :
-      yamldecode(yaml)
-      if trimspace(replace(yaml, "/(?m)(^[[:blank:]]*(#.*)?$)+/", "")) != ""
-    ] : "${value["kind"]}--${value["metadata"]["name"]}" => value
-  }
-  manifest = each.value
+  # depends_on = [null_resource.cluster_roles]
+  for_each = { for k, v in local.cluster_roles_map : k => v if v.enabled }
+  manifest = [yamldecode("${each.value.name}.yaml")]
 }
 
 # resource "null_resource" "apply_cluster_roles" {
diff --git a/requirements.tf b/requirements.tf
index 912400a..293d403 100644
--- a/requirements.tf
+++ b/requirements.tf
@@ -14,5 +14,9 @@ terraform {
       source  = "hashicorp/kubernetes"
       version = ">= 2.23.0"
     }
+    null = {
+      source  = "hashicorp/null"
+      version = ">= 1.0"
+    }
   }
 }