diff --git a/cloudtrail/cloudtrail.tf b/cloudtrail/cloudtrail.tf
index a0a051a..69703a4 100644
--- a/cloudtrail/cloudtrail.tf
+++ b/cloudtrail/cloudtrail.tf
@@ -26,8 +26,8 @@ resource "aws_iam_role" "cloudtrail" {
   force_detach_policies = false
   max_session_duration  = 3600
   # add deny billing
-  attached_policies = [aws_iam_policy.cloudtrail_policy.arn]
-  path              = "/"
+  managed_policy_arns = [aws_iam_policy.cloudtrail_policy.arn]
+  path                = "/"
 
   tags = merge(
     local.base_tags,