question

SMijnals-1335 avatar image
0 Votes"
SMijnals-1335 asked brtrach-MSFT answered

Minimal necessary Azure Roles

Terraform allows infrastructure to be expressed as code in a simple, human readable language called HCL (HashiCorp Configuration Language). It reads configuration files and provides an execution plan of changes, which can be reviewed for safety and then applied and provisioned.

Developers are building a pipeline with Terraform. Which means that a service account will run terraform and also a user will interact with Terraform for Azure Devops, specifically the Service Connections.

The service account and the user cannot Read or create Service Principals.

What are the Azure roles I should grant for both the Service account and the user so they can create Service Principals?

azure-webapps
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

brtrach-MSFT avatar image
0 Votes"
brtrach-MSFT answered

@SMijnals-1335 Since nobody from the community seems to have reached out, let's see if we can assist you.

For this, I would suggest looking into the application administrator role. More information on that can be found here.

I hope this helps answer your question. Please let me know if you have any further questions or concerns.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.