Reputation: 1
Managed Identity Azure Role Assignment for Streaming Job
I have an event hub EH1 in "Sub1" and Streaming Job ASA1 in "Sub2". EH1 is the streaming input to ASA1. For added security, I am planning to use Managed Identity to access event hub from an Streaming Analytics job. https://learn.microsoft.com/en-us/azure/stream-analytics/event-hubs-managed-identity
For doing this, an "Event Hub Data Receiver" role has to be assigned to job in event hub. Now since streaming job is in another subscription, I am not able to lookup the job while adding the role.
How can this solution proceed? how can streaming job in Sub2 be visible in Sub1?
Appreciate your responses.
Upvotes: 0
Views: 435
Answers (1)
Reputation: 58743
The resources being in different subscriptions should not matter. I've tested this recently and I can definitely see the Managed Identity from another subscription.
What actually matters is the Azure AD tenant linked to the subscriptions. Managed Identities only work within one tenant, so both subscriptions must be linked to the same Azure AD tenant.
If they are using the same tenant, it could also be that your user does not have rights to list service principals from the Azure AD tenant.
Upvotes: 1
Related Questions
- Azure Event Hub - Stream Analytics architecture
- How to provision Azure Stream Analytics Job in one go?
- Set up and run analytics jobs using the Azure Stream Analytics API for .NET
- Azure Streaming Analytics job not connecting to Event Hub input
- Azure Stream Analytics Output to Data Lake Storage Gen2 with System-Assigned Managed Identity
- Stream Analytics Job deployed as Azure Resource Manager (ARM) template
- Azure Streaming Analytics Jobs scaling SU
- azure eventhub event persistence when read by streaming analytics job
- Authorization failure when creating a Stream Analytics job
- Azure EventProcessorHost and Worker role