question

DanielSandoval-7935 avatar image
0 Votes"
DanielSandoval-7935 asked DanielSandoval-7935 commented

How do I get the Owner role back in my Azure subscription?

Accidentally I deleted my Owner role (and the only role I had) in my Azure subscription and now it seems that my account cannot be used as I cannot add roles, nor create resource groups and not even create a support request.

Edit:
After this, I created another user in Active Directory named Daniel (sample@dani) and assigned it the Global administrator role.

144227-image1.png

Then I logged into the portal with this new user (sample@dani) and navigated through Active Directory > Users > selected affected user > Assigned roles and there I assigned all existing roles, but I don't see any changes, and if I go to Azure role assignments the portal it doesn't show my subscription.

144283-image2.png

144255-image3.png

I'm not sure if I'm missing a step.


azure-rbac
image1.png (19.3 KiB)
image2.png (103.5 KiB)
image3.png (25.9 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AndreasBaumgarten avatar image
0 Votes"
AndreasBaumgarten answered DanielSandoval-7935 commented

Hi @DanielSandoval-7935 ,

you need a user with Global Administrator role to get back the owner role for your user.
Is there any other "Global Admin" available in your AAD?


(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

Regards
Andreas Baumgarten

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @AndreasBaumgarten,
Thank you for your answer.

Yes, I created a new user with the Global administrator role and tried to reassign the Owner role to my affected user but not sure if I'm missing a step (I edited the question to add more detail).

0 Votes 0 ·
JamesTran-MSFT avatar image
0 Votes"
JamesTran-MSFT answered DanielSandoval-7935 commented

@DanielSandoval-7935
Thank you for your post!

When assigning Azure RBAC roles to a user, you'll need to be signed into a user with Microsoft.Authorization/roleAssignments/write permissions, such as a User Access Administrator or Owner. However, since you accidentally removed your Owner RBAC role from your Azure subscription, you'll need another User admin or Owner within your Subscription to re-assign the role.

Find Subscription Admins:
143964-image.png
For more info - Azure RBAC - Assign Azure roles using the Azure portal


Additional Link:
Azure AD RBAC - Assign administrator and non-administrator roles to users with Azure Active Directory


If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.


Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.


image.png (85.7 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @JamesTran-MSFT,
Thank you for your answer.

Within my subscription I created a new user with the Global administrator role in Active Directory, and tried to reassign the Owner role to my affected user but not sure if I'm missing a step (I edited the question to add more details).

0 Votes 0 ·