-
Notifications
You must be signed in to change notification settings - Fork 297
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
InsufficientPrivilegesForManagedServiceResource #39
Comments
Can you point me to the template you are deploying? |
Thanks for a quick reply @krnese This is the template I'm using: |
And you are:
|
I'm deploying it in the customer tenant using New-AzDeployment. I'm the GA in the customer tenant and owner on the subscription in the customer tenant. I created a TemplateParameterFile by including my Principal ID and Reader Role Def ID in the authorizations section of the file. |
Are you deploying it as a guest account, or a user belonging to the customer AAD? |
I followed the Powershell steps mentioned in this document I'm a user in customer AAD and I have owner permission at the subscription |
Thanks. Can you please open a support ticket so we can investigate further? |
I experienced exactly the same issue. i was connected with azure ad only (connect-azureAD). Good Luck! |
Let me try that |
Did it work? |
Sorry for reopening this, but I'm facing the same issue. I want to onboard user into my tenant. The user that executes the template, has a custom role, and he is not an Owner. The custom role has such permissions:
I tried to deploy the template but I'm getting |
I get "InsufficientPrivilegesForManagedServiceResource" error when I run the template. Is linking partner ID a mandatory step? Can I deploy the template without a partner ID?
The text was updated successfully, but these errors were encountered: