diff --git a/internal/services/azurestackhci/registration.go b/internal/services/azurestackhci/registration.go
index bc417dbaf9e1..e5729468fe4d 100644
--- a/internal/services/azurestackhci/registration.go
+++ b/internal/services/azurestackhci/registration.go
@@ -51,6 +51,7 @@ func (r Registration) DataSources() []sdk.DataSource {
 
 func (r Registration) Resources() []sdk.Resource {
 	return []sdk.Resource{
+		StackHCIExtensionResource{},
 		StackHCIDeploymentSettingResource{},
 		StackHCILogicalNetworkResource{},
 		StackHCIStoragePathResource{},
diff --git a/internal/services/azurestackhci/stack_hci_extension_resource.go b/internal/services/azurestackhci/stack_hci_extension_resource.go
new file mode 100644
index 000000000000..312ac55e4b39
--- /dev/null
+++ b/internal/services/azurestackhci/stack_hci_extension_resource.go
@@ -0,0 +1,361 @@
+package azurestackhci
+
+import (
+	"context"
+	"fmt"
+	"time"
+
+	"github.com/hashicorp/go-azure-helpers/lang/pointer"
+	"github.com/hashicorp/go-azure-helpers/lang/response"
+	"github.com/hashicorp/go-azure-sdk/resource-manager/azurestackhci/2024-01-01/extensions"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/sdk"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/tf/pluginsdk"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/tf/validation"
+)
+
+var (
+	_ sdk.Resource           = StackHCIExtensionResource{}
+	_ sdk.ResourceWithUpdate = StackHCIExtensionResource{}
+)
+
+type StackHCIExtensionResource struct{}
+
+func (r StackHCIExtensionResource) ResourceType() string {
+	return "azurerm_stack_hci_extension"
+}
+
+func (r StackHCIExtensionResource) ModelObject() interface{} {
+	return &StackHCIExtensionResourceModel{}
+}
+
+func (r StackHCIExtensionResource) IDValidationFunc() pluginsdk.SchemaValidateFunc {
+	return extensions.ValidateExtensionID
+}
+
+type StackHCIExtensionResourceModel struct {
+	Name                           string `tfschema:"name"`
+	ArcSettingId                   string `tfschema:"arc_setting_id"`
+	AutoUpgradeMinorVersionEnabled bool   `tfschema:"auto_upgrade_minor_version_enabled"`
+	AutomaticUpgradeEnabled        bool   `tfschema:"automatic_upgrade_enabled"`
+	ProtectedSettings              string `tfschema:"protected_settings"`
+	Publisher                      string `tfschema:"publisher"`
+	Settings                       string `tfschema:"settings"`
+	Type                           string `tfschema:"type"`
+	TypeHandlerVersion             string `tfschema:"type_handler_version"`
+}
+
+func (r StackHCIExtensionResource) Arguments() map[string]*schema.Schema {
+	return map[string]*schema.Schema{
+		"name": {
+			Type:     pluginsdk.TypeString,
+			Required: true,
+			ForceNew: true,
+			ValidateFunc: validation.All(
+				validation.StringIsNotEmpty,
+				validation.StringDoesNotContainAny("/"),
+			),
+		},
+
+		"arc_setting_id": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: extensions.ValidateArcSettingID,
+		},
+
+		"publisher": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: validation.StringIsNotEmpty,
+		},
+
+		"type": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: validation.StringIsNotEmpty,
+		},
+
+		"auto_upgrade_minor_version_enabled": {
+			Type:     pluginsdk.TypeBool,
+			Optional: true,
+			Default:  true,
+			ForceNew: true,
+		},
+
+		"automatic_upgrade_enabled": {
+			Type:     pluginsdk.TypeBool,
+			Optional: true,
+			Default:  true,
+		},
+
+		"protected_settings": {
+			Type:             pluginsdk.TypeString,
+			Optional:         true,
+			Sensitive:        true,
+			ValidateFunc:     validation.StringIsJSON,
+			DiffSuppressFunc: pluginsdk.SuppressJsonDiff,
+		},
+
+		"settings": {
+			Type:             pluginsdk.TypeString,
+			Optional:         true,
+			ValidateFunc:     validation.StringIsJSON,
+			DiffSuppressFunc: pluginsdk.SuppressJsonDiff,
+		},
+
+		"type_handler_version": {
+			Type:         pluginsdk.TypeString,
+			Optional:     true,
+			ValidateFunc: validation.StringIsNotEmpty,
+		},
+	}
+}
+
+func (r StackHCIExtensionResource) Attributes() map[string]*schema.Schema {
+	return map[string]*schema.Schema{}
+}
+
+func (r StackHCIExtensionResource) CustomizeDiff() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 5 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			var config StackHCIExtensionResourceModel
+			if err := metadata.DecodeDiff(&config); err != nil {
+				return fmt.Errorf("decoding: %+v", err)
+			}
+
+			if config.AutomaticUpgradeEnabled && config.TypeHandlerVersion != "" {
+				return fmt.Errorf("`type_handler_version` cannot be set if `automatic_upgrade_enabled` is true")
+			}
+
+			return nil
+		},
+	}
+}
+
+func (r StackHCIExtensionResource) Create() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.AzureStackHCI.Extensions
+
+			var config StackHCIExtensionResourceModel
+			if err := metadata.Decode(&config); err != nil {
+				return err
+			}
+
+			arcSettingId, err := extensions.ParseArcSettingID(config.ArcSettingId)
+			if err != nil {
+				return err
+			}
+
+			id := extensions.NewExtensionID(arcSettingId.SubscriptionId, arcSettingId.ResourceGroupName, arcSettingId.ClusterName, arcSettingId.ArcSettingName, config.Name)
+
+			existing, err := client.Get(ctx, id)
+			if err != nil && !response.WasNotFound(existing.HttpResponse) {
+				return fmt.Errorf("checking for presence of existing %s: %+v", id, err)
+			}
+			if !response.WasNotFound(existing.HttpResponse) {
+				return metadata.ResourceRequiresImport(r.ResourceType(), id)
+			}
+
+			input := extensions.Extension{
+				Properties: &extensions.ExtensionProperties{
+					ExtensionParameters: &extensions.ExtensionParameters{
+						AutoUpgradeMinorVersion: pointer.To(config.AutoUpgradeMinorVersionEnabled),
+						EnableAutomaticUpgrade:  pointer.To(config.AutomaticUpgradeEnabled),
+						Publisher:               pointer.To(config.Publisher),
+						Type:                    pointer.To(config.Type),
+					},
+				},
+			}
+
+			if config.TypeHandlerVersion != "" {
+				input.Properties.ExtensionParameters.TypeHandlerVersion = pointer.To(config.TypeHandlerVersion)
+			}
+
+			if config.Settings != "" {
+				expandedSetting, err := pluginsdk.ExpandJsonFromString(config.Settings)
+				if err != nil {
+					return fmt.Errorf("expanding `setting`: %+v", err)
+				}
+
+				input.Properties.ExtensionParameters.Settings = pointer.To(interface{}(expandedSetting))
+			}
+
+			if config.ProtectedSettings != "" {
+				expandedSetting, err := pluginsdk.ExpandJsonFromString(config.ProtectedSettings)
+				if err != nil {
+					return fmt.Errorf("expanding `protected_settings`: %+v", err)
+				}
+
+				input.Properties.ExtensionParameters.ProtectedSettings = pointer.To(interface{}(expandedSetting))
+			}
+
+			if err := client.CreateThenPoll(ctx, id, input); err != nil {
+				return fmt.Errorf("creating %s: %+v", id, err)
+			}
+
+			metadata.SetID(id)
+			return nil
+		},
+	}
+}
+
+func (r StackHCIExtensionResource) Read() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 5 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.AzureStackHCI.Extensions
+
+			id, err := extensions.ParseExtensionID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			existing, err := client.Get(ctx, *id)
+			if err != nil {
+				if response.WasNotFound(existing.HttpResponse) {
+					return metadata.MarkAsGone(*id)
+				}
+				return fmt.Errorf("retrieving %s: %+v", *id, err)
+			}
+
+			// protected_settingss is not returned in the response, so we read it from the state
+			var extension, config StackHCIExtensionResourceModel
+
+			if err := metadata.Decode(&config); err != nil {
+				return err
+			}
+			extension.ProtectedSettings = config.ProtectedSettings
+
+			if model := existing.Model; model != nil {
+				extension.Name = id.ExtensionName
+				extension.ArcSettingId = extensions.NewArcSettingID(id.SubscriptionId, id.ResourceGroupName, id.ClusterName, id.ArcSettingName).ID()
+
+				if model.Properties != nil && model.Properties.ExtensionParameters != nil {
+					param := model.Properties.ExtensionParameters
+					extension.AutomaticUpgradeEnabled = pointer.From(param.EnableAutomaticUpgrade)
+					extension.AutoUpgradeMinorVersionEnabled = pointer.From(param.AutoUpgradeMinorVersion)
+					extension.Publisher = pointer.From(param.Publisher)
+					extension.Type = pointer.From(param.Type)
+					extension.TypeHandlerVersion = pointer.From(param.TypeHandlerVersion)
+
+					var setting string
+					if param.Settings != nil {
+						setting, err = pluginsdk.FlattenJsonToString((*param.Settings).(map[string]interface{}))
+						if err != nil {
+							return fmt.Errorf("flatenning `settings`: %+v", err)
+						}
+					}
+					extension.Settings = setting
+				}
+			}
+
+			metadata.SetID(id)
+
+			return metadata.Encode(&extension)
+		},
+	}
+}
+
+func (r StackHCIExtensionResource) Delete() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.AzureStackHCI.Extensions
+
+			id, err := extensions.ParseExtensionID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			if err := client.DeleteThenPoll(ctx, *id); err != nil {
+				return fmt.Errorf("deleting %s: %+v", id, err)
+			}
+
+			return nil
+		},
+	}
+}
+
+func (r StackHCIExtensionResource) Update() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.AzureStackHCI.Extensions
+
+			var config StackHCIExtensionResourceModel
+			if err := metadata.Decode(&config); err != nil {
+				return err
+			}
+
+			id, err := extensions.ParseExtensionID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			resp, err := client.Get(ctx, *id)
+			if err != nil {
+				return fmt.Errorf("retrieving %s: %+v", *id, err)
+			}
+
+			model := resp.Model
+
+			if model == nil || model.Properties == nil || model.Properties.ExtensionParameters == nil {
+				return fmt.Errorf("retrieving %s: `model` was nil", *id)
+			}
+
+			updateModel := extensions.ExtensionPatch{
+				Properties: &extensions.ExtensionPatchProperties{
+					ExtensionParameters: &extensions.ExtensionPatchParameters{},
+				},
+			}
+
+			if metadata.ResourceData.HasChange("automatic_upgrade_enabled") {
+				updateModel.Properties.ExtensionParameters.EnableAutomaticUpgrade = pointer.To(config.AutomaticUpgradeEnabled)
+			}
+
+			if metadata.ResourceData.HasChange("protected_settings") {
+				if config.ProtectedSettings != "" {
+					expandedSetting, err := pluginsdk.ExpandJsonFromString(config.ProtectedSettings)
+					if err != nil {
+						return fmt.Errorf("expanding `protected_settings`: %+v", err)
+					}
+
+					updateModel.Properties.ExtensionParameters.ProtectedSettings = pointer.To(interface{}(expandedSetting))
+				} else {
+					var emptyInterface interface{}
+					updateModel.Properties.ExtensionParameters.Settings = pointer.To(emptyInterface)
+				}
+			}
+
+			if metadata.ResourceData.HasChange("settings") {
+				if config.Settings != "" {
+					expandedSetting, err := pluginsdk.ExpandJsonFromString(config.Settings)
+					if err != nil {
+						return fmt.Errorf("expanding `setting`: %+v", err)
+					}
+
+					updateModel.Properties.ExtensionParameters.Settings = pointer.To(interface{}(expandedSetting))
+				} else {
+					var emptyInterface interface{}
+					updateModel.Properties.ExtensionParameters.Settings = pointer.To(emptyInterface)
+				}
+			}
+
+			if metadata.ResourceData.HasChange("type_handler_version") {
+				updateModel.Properties.ExtensionParameters.TypeHandlerVersion = pointer.To(config.TypeHandlerVersion)
+			}
+
+			if err := client.UpdateThenPoll(ctx, *id, updateModel); err != nil {
+				return fmt.Errorf("updating %s: %+v", id, err)
+			}
+
+			return nil
+		},
+	}
+}
diff --git a/internal/services/azurestackhci/stack_hci_extension_resource_test.go b/internal/services/azurestackhci/stack_hci_extension_resource_test.go
new file mode 100644
index 000000000000..bd96172530e0
--- /dev/null
+++ b/internal/services/azurestackhci/stack_hci_extension_resource_test.go
@@ -0,0 +1,207 @@
+package azurestackhci_test
+
+import (
+	"context"
+	"fmt"
+	"os"
+	"testing"
+
+	"github.com/hashicorp/go-azure-helpers/lang/pointer"
+	"github.com/hashicorp/go-azure-sdk/resource-manager/azurestackhci/2024-01-01/extensions"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/acceptance"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/acceptance/check"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/clients"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/tf/pluginsdk"
+)
+
+type StackHCIExtensionResource struct{}
+
+const arcSettingIdEnv = "ARM_TEST_STACK_HCI_ARC_SETTING_ID"
+
+func TestAccStackHCIExtension_basic(t *testing.T) {
+	arcSettingId := os.Getenv(arcSettingIdEnv)
+	if arcSettingId == "" {
+		t.Skipf("skipping since %q has not been set", arcSettingIdEnv)
+	}
+
+	data := acceptance.BuildTestData(t, "azurerm_stack_hci_extension", "test")
+	r := StackHCIExtensionResource{}
+
+	data.ResourceTest(t, r, []acceptance.TestStep{
+		{
+			Config: r.basic(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.ImportStep("protected_settings"),
+	})
+}
+
+func TestAccStackHCIExtension_complete(t *testing.T) {
+	arcSettingId := os.Getenv(arcSettingIdEnv)
+	if arcSettingId == "" {
+		t.Skipf("skipping since %q has not been set", arcSettingIdEnv)
+	}
+
+	data := acceptance.BuildTestData(t, "azurerm_stack_hci_extension", "test")
+	r := StackHCIExtensionResource{}
+
+	data.ResourceTest(t, r, []acceptance.TestStep{
+		{
+			Config: r.complete(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.ImportStep("protected_settings"),
+	})
+}
+
+func TestAccStackHCIExtension_update(t *testing.T) {
+	arcSettingId := os.Getenv(arcSettingIdEnv)
+	if arcSettingId == "" {
+		t.Skipf("skipping since %q has not been set", arcSettingIdEnv)
+	}
+
+	data := acceptance.BuildTestData(t, "azurerm_stack_hci_extension", "test")
+	r := StackHCIExtensionResource{}
+
+	data.ResourceTest(t, r, []acceptance.TestStep{
+		{
+			Config: r.basic(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.ImportStep("protected_settings"),
+		{
+			Config: r.complete(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.ImportStep("protected_settings"),
+		{
+			Config: r.basic(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.ImportStep("protected_settings"),
+	})
+}
+
+func TestAccStackHCIExtension_requiresImport(t *testing.T) {
+	arcSettingId := os.Getenv(arcSettingIdEnv)
+	if arcSettingId == "" {
+		t.Skipf("skipping since %q has not been set", arcSettingIdEnv)
+	}
+
+	data := acceptance.BuildTestData(t, "azurerm_stack_hci_extension", "test")
+	r := StackHCIExtensionResource{}
+
+	data.ResourceTest(t, r, []acceptance.TestStep{
+		{
+			Config: r.basic(data),
+			Check: acceptance.ComposeTestCheckFunc(
+				check.That(data.ResourceName).ExistsInAzure(r),
+			),
+		},
+		data.RequiresImportErrorStep(r.requiresImport),
+	})
+}
+
+func (r StackHCIExtensionResource) Exists(ctx context.Context, client *clients.Client, state *pluginsdk.InstanceState) (*bool, error) {
+	clusterClient := client.AzureStackHCI.Extensions
+	id, err := extensions.ParseExtensionID(state.ID)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := clusterClient.Get(ctx, *id)
+	if err != nil {
+		return nil, fmt.Errorf("retrieving %s: %+v", *id, err)
+	}
+
+	return pointer.To(resp.Model != nil), nil
+}
+
+func (r StackHCIExtensionResource) basic(data acceptance.TestData) string {
+	return fmt.Sprintf(`
+%s
+
+resource "azurerm_stack_hci_extension" "test" {
+  name           = "acctest-shce-%[2]s"
+  arc_setting_id = %[3]q
+  publisher      = "Microsoft.EnterpriseCloud.Monitoring"
+  type           = "MicrosoftMonitoringAgent"
+}
+`, r.template(data), data.RandomString, os.Getenv(arcSettingIdEnv))
+}
+
+func (r StackHCIExtensionResource) complete(data acceptance.TestData) string {
+	return fmt.Sprintf(`
+%s
+
+resource "azurerm_stack_hci_extension" "test" {
+  name                               = "acctest-shce-%[2]s"
+  arc_setting_id                     = %[3]q
+  publisher                          = "Microsoft.EnterpriseCloud.Monitoring"
+  type                               = "MicrosoftMonitoringAgent"
+  auto_upgrade_minor_version_enabled = true
+  automatic_upgrade_enabled          = false
+  type_handler_version               = "1.22.0"
+
+  protected_settings = <<PROTECTED_SETTINGS
+{
+	"workspaceKey": "${azurerm_log_analytics_workspace.test.primary_shared_key}"
+}
+PROTECTED_SETTINGS
+
+  settings = <<SETTINGS
+{
+	"workspaceId": "${azurerm_log_analytics_workspace.test.workspace_id}"
+}
+SETTINGS
+}
+`, r.template(data), data.RandomString, os.Getenv(arcSettingIdEnv))
+}
+
+func (r StackHCIExtensionResource) requiresImport(data acceptance.TestData) string {
+	config := r.basic(data)
+
+	return fmt.Sprintf(`
+%s
+
+resource "azurerm_stack_hci_extension" "import" {
+  name               = azurerm_stack_hci_extension.test.name
+  arc_setting_id     = azurerm_stack_hci_extension.test.arc_setting_id
+  publisher          = azurerm_stack_hci_extension.test.publisher
+  type               = azurerm_stack_hci_extension.test.type
+  protected_settings = azurerm_stack_hci_extension.test.protected_settings
+  settings           = azurerm_stack_hci_extension.test.settings
+}
+`, config)
+}
+
+func (r StackHCIExtensionResource) template(data acceptance.TestData) string {
+	return fmt.Sprintf(`
+provider "azurerm" {
+  features {}
+}
+
+resource "azurerm_resource_group" "test" {
+  name     = "acctestRG-hciext-%s"
+  location = "%s"
+}
+
+resource "azurerm_log_analytics_workspace" "test" {
+  name                = "acctesthci-law-%[1]s"
+  location            = azurerm_resource_group.test.location
+  resource_group_name = azurerm_resource_group.test.name
+  sku                 = "PerGB2018"
+  retention_in_days   = 30
+}
+`, data.RandomString, data.Locations.Primary)
+}
diff --git a/website/docs/r/stack_hci_extension.html.markdown b/website/docs/r/stack_hci_extension.html.markdown
new file mode 100644
index 000000000000..a4633dbead3c
--- /dev/null
+++ b/website/docs/r/stack_hci_extension.html.markdown
@@ -0,0 +1,77 @@
+---
+subcategory: "Azure Stack HCI"
+layout: "azurerm"
+page_title: "Azure Resource Manager: azurerm_stack_hci_extension"
+description: |-
+  Manages an Azure Stack HCI Extension.
+---
+
+# azurerm_stack_hci_extension
+
+Manages an Azure Stack HCI Extension.
+
+## Example Usage
+
+```hcl
+resource "azurerm_resource_group" "example" {
+  name     = "example-hci-ext"
+  location = "West Europe"
+}
+
+resource "azurerm_stack_hci_extension" "example" {
+  name                               = "AzureMonitorWindowsAgent"
+  arc_setting_id                     = "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/example-hci/providers/Microsoft.AzureStackHCI/clusters/hci-cl/arcSettings/default"
+  publisher                          = "Microsoft.Azure.Monitor"
+  type                               = "MicrosoftMonitoringAgent"
+  auto_upgrade_minor_version_enabled = true
+  automatic_upgrade_enabled          = true
+  type_handler_version               = "1.22.0"
+}
+```
+
+## Arguments Reference
+
+The following arguments are supported:
+
+* `name` - (Required) The name which should be used for this Azure Stack HCI Extension. Changing this forces a new resource to be created.
+
+* `arc_setting_id` - (Required) The ID of the Azure Stack HCI Cluster Arc Setting. Changing this forces a new resource to be created.
+
+* `publisher` - (Required) The name of the extension handler publisher, such as `Microsoft.Azure.Monitor`. Changing this forces a new resource to be created.
+
+* `type` - (Required) Specifies the type of the extension. For example `CustomScriptExtension` or `AzureMonitorLinuxAgent`. Changing this forces a new resource to be created.
+
+* `auto_upgrade_minor_version_enabled` - (Optional) Indicates whether the extension should use a newer minor version if one is available at deployment time. Once deployed, however, the extension will not upgrade minor versions unless redeployed, even with this property set to true. Changing this forces a new resource to be created. Possible values are `true` and `false`. Defaults to `true`.
+
+* `automatic_upgrade_enabled` - (Optional) Indicates whether the extension should be automatically upgraded by the platform if there is a newer version available. Possible values are `true` and `false`. Defaults to `true`.
+
+* `protected_settings` - (Optional) The json formatted protected settings for the extension.
+
+* `settings` - (Optional) The json formatted public settings for the extension.
+
+* `type_handler_version` - (Optional) Specifies the version of the script handler.
+
+-> **NOTE:** `type_handler_version` cannot be set when `automatic_upgrade_enabled` is set to `true`.
+
+## Attributes Reference
+
+In addition to the Arguments listed above - the following Attributes are exported:
+
+* `id` - The ID of the Azure Stack HCI Extension.
+
+## Timeouts
+
+The `timeouts` block allows you to specify [timeouts](https://www.terraform.io/language/resources/syntax#operation-timeouts) for certain actions:
+
+* `create` - (Defaults to 30 minutes) Used when creating the Azure Stack HCI Extension.
+* `read` - (Defaults to 5 minutes) Used when retrieving the Azure Stack HCI Extension.
+* `update` - (Defaults to 30 minutes) Used when updating the Azure Stack HCI Extension.
+* `delete` - (Defaults to 30 minutes) Used when deleting the Azure Stack HCI Extension.
+
+## Import
+
+Azure Stack HCI Extension can be imported using the `resource id`, e.g.
+
+```shell
+terraform import azurerm_stack_hci_extension.example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.AzureStackHCI/clusters/cluster1/arcSettings/default/extensions/extension1
+```