nolwww
Reputation: 1745
Assign role to user using Service principal
I have created some resources in Azure using Terraform and a Service principal:
- A resource group
- A virtual network
- A virtual machine
Now, I need to create a virtual Gateway from this resource group and virtual network, but using a personal Azure account in the same Organization.
How can I add my user email as a Administrator to this resource group, from Terraform, using the Service Principal credentials?
Upvotes: 0
Views: 673
Answers (1)
Andriy Bilous
Reputation: 2522
You can use Terraform resource azurerm_role_assignment to add Owner permissions for your user to this resource group.
Example:
resource "azurerm_resource_group" "this" {
name = "example"
location = "West Europe"
}
resource "azurerm_role_assignment" "this" {
scope = azurerm_resource_group.this.id
role_definition_name = "Owner"
principal_id = "<Your user object id>"
}
Upvotes: 1
Related Questions
- Principals of type Application cannot validly be used in role assignments
- Assigning Azure service roles as a Service Principal
- How to assign Global Administrator role to a Service Principal in Azure?
- Getting Insufficient privileges to complete the operation error while creating service principal from terraform
- Using Terraform to create a service account with IAM roles
- Create Role assignment dynamically in Terraform from input
- give access to service principal which is in another azure tenant
- Assign a managed identity access to an application role using Terraform
- How to create service principal in azure using azuread_application in terraform, Error Insufficient privileges to complete the operation
- Role Assignment in Azure with Terraform