Welcome to Azure - Log analytics workspace

jpcapone 1,301 Reputation points
2022-05-10T00:31:06.203+00:00

When I attempt to create a log analytics workspace I am presented with Welcome to Azure Don't have a subscription window. I am assuming this is happening because the GA account I am using does not have permissions at the subscription level. I am working as a consultant for a client that is not associated with my MPN site. So how are we supposed to assist clients in situations such as these?

Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
2,740 questions
0 comments No comments
{count} vote

Accepted answer
  1. SwathiDhanwada-MSFT 17,136 Reputation points
    2022-05-16T11:17:33.48+00:00

    @jpcapone Permission to data in a Log Analytics workspace is defined by the access control mode, which is a setting on each workspace. Users can either be given explicit access to the workspace using a built-in or custom role, or you can allow access to data collected for Azure resources to users with access to those resources.

    See Manage access to log data and workspaces in Azure Monitor for details on the different permission options and on configuring permissions.

    Below are the minimum permissions you would require to create log analytics workspace.

    • Microsoft.Resources/subscriptions/resourceGroups/deployments/* - Create and manage resource group deployments
    • Microsoft.OperationalInsights/workspaces/* - To read and write log analyticsworkspaces
    • Microsoft.Resources/subscriptions/resourceGroups/* - To read and write resource groups
    1 person found this answer helpful.
    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Magnus Oxenwaldt 166 Reputation points
    2022-05-10T05:01:30.28+00:00

    Hi
    You need an account within the tenant and this account need the appropriate subscription permissions.

    Alternatively if you are working in specific resource groups you could have permission only to those.

    Mox

    1 person found this answer helpful.