This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 34%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
One of the developers reached out sending me the first error.I assigned him "App Developer" role but it generates a new error now,any advice will be helpful.
Hello, I think the answer maybe that you do not have enough permissions to do something that Microsoft could flag as "Harmfull"
You could try to d it with less permissions however.
Thanks Adrian,are you aware what permissions will be helpful?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 32%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
The user account under which the pipeline is trying to create your Azure App Service does not have sufficient privileges to do so. You need to work with your Azure infrastructure team to ensure that your "App Developer" AD role has permissions to the resource group(s) you're trying to manage and has permissions to create app services within the given resource groups. They can do this using inheritance. Note this has nothing to do with your Azure DevOps setup as Azure App Services (and other Azure services) use their own fine grained security polices that your Azure infrastructure team needs to properly set up.