Reputation: 185
How to get Azure Active Directory user details from pipeline?
I have a requirement to create a key vault in Azure using a power shell. This PS script runs from the pipeline.
$UserObjectId = (Get-AzureRmADUser -SearchString xxxxxxxxxx).Id
I used the above command to get user id but I got the error as
"Insufficient privileges to complete this operation". Do I need to give any permission to the user from which the pipeline executing?
Upvotes: 1
Views: 1528
Answers (1)
Reputation: 5296
Yes absolutely , you have to provide permission to the user under you pipeline is running. User should be having Directory.RaadAll, Read All User basic profile permission to read thorugh their profile.
But Ideally you should be running your Azure Devops pipeline using Service Principal and you should provide the permission to your application.
You can refer this link for creating app identity(Service Principal)
Then you can login to the Azure portal and browse through the application and provide the permission under Windows Azure Directory like below:
:
Check this for further reference:
Hope it helps.
Upvotes: 1
Related Questions
- Get user ID in Azure Pipelines
- Retrieve Azure DevOps pipeline variable using PowerShell variable
- Get Azure Principal ID for AzDO
- Run Azure devops pipeline as a azure AD user user
- Get-AzADUser returns empty on Azure Devops MS hosted agent
- Powershell: How do I get the name from Azure Active Directory user (Get-AzADUser)
- How do I know what user my ADO pipeline is using?
- Getting particular user details from AzureAD using Powershell cmdlets in C#
- How to get an Azure Active Directory username in Windows Powershell?
- Access PowerShell pipeline properties