I am trying to create a release pipeline to deploy function app & app service.
Everything is fine in the build stage.

However, when I try to deploy my code. Error occurs.

After some googling, I think it has something to do with my permission.

To prove it, repeat all the steps above in my personal account. And the deployment is successful.

The only difference is that I have to authorize for "service connection"

I found that I create an "Azure resource manager" with "service principal" (the same thing "app registrations" ???)

And it links to an "app registration" I just created, which has very high permission (maybe I misunderstood?)

Finally, here is my question:
If I try to achieve this with my workplace account, should I create an "app registrations" with the same high permission?
(In general, the service admin will not allow me to do so since "administrator permission" sounds risky)
Correct me if my understanding is wrong.
Any suggestion is appreciated.