What I'm trying to do
Create and query ADF pipelines from a consumption-tier Logic App by using a User-assigned managed identity
What I've done
- Created logic app
- Created User-assigned managed identity
For the identity, I have assigned/verify these roles:
- Assigned Reader to the Subscription
The above was insufficient, so then I:
- Added the Identity to the ADF explicitly
- Assigned Owner to the Data Factory explicitly
- Assigned Contributor to the Data Factory explicitly
I continue to receive:
{
"error": {
"code": "AuthorizationFailed",
"message": "The client '<my-managedidentity-objectid-guid>' with object id '<my-managedidentity-objectid-guid>' does not have authorization to perform action 'Microsoft.DataFactory/factories/pipelines/CreateRun/action' over scope '/subscriptions/<my-subscription-guid>/resourcegroups/<my-resourcegroup>/providers/Microsoft.DataFactory/factories/<my-adf>/pipelines/<my-pipeline>' or the scope is invalid. If access was recently granted, please refresh your credentials."
}
}
Any advice is appreciated.