diff --git a/.github/workflows/iac.yml b/.github/workflows/iac.yml
index e6e227e2..ae6648ed 100644
--- a/.github/workflows/iac.yml
+++ b/.github/workflows/iac.yml
@@ -87,6 +87,9 @@ on:
       KNOWN_HOSTS:
         required: false
         description: SSH known hosts
+      PAT_GIT:
+        required: false
+        description: A PAT token to clone the repository
 
 jobs:
   terragrunt:
@@ -173,16 +176,29 @@ jobs:
           VAULT_TOKEN: ${{ secrets.VAULT_TOKEN }}
 
       - uses: opentofu/setup-opentofu@v1
-
-      - name: run terragrunt
-        uses: autero1/action-terragrunt@v1.3.2
+      - name: Plan
+        uses: gruntwork-io/terragrunt-action@v2
         with:
-          terragrunt_version: ${{ inputs.tg_version }}
+          tf_version: 1.5.7
+          tg_version: 0.53.2
+          tg_dir: ${{ inputs.WORKING_DIR }}
+          tg_command: 'plan'
+        env:
+          # configure git to use custom token to clone repository.
+          INPUT_PRE_EXEC_1: |
+            git config --global url."https://user:${{secrets.PAT_GIT}}@github.com".insteadOf "https://github.com"
+          # print git configuration
+          INPUT_PRE_EXEC_2: |
+            git config --global --list
+      # - name: run terragrunt
+      #   uses: autero1/action-terragrunt@v1.3.2
+      #   with:
+      #     terragrunt_version: ${{ inputs.tg_version }}
 
-      - name: Terragrunt init
-        id: init
-        working-directory: ${{ inputs.WORKING_DIR }}
-        run: terragrunt run-all init --terragrunt-non-interactive
+      # - name: Terragrunt init
+      #   id: init
+      #   working-directory: ${{ inputs.WORKING_DIR }}
+      #   run: terragrunt run-all init --terragrunt-non-interactive
       
       - name: Terragrunt validate
         id: validate