How to Create a Incident managment and change management in Azure devops
Hi Team, I am looking to create an incident management and Change control process, can you please share some input. Regards, Krishna. This question is related to the following Learning Module
Cannot create a support ticket
I am the owner of a blob storage account. I keep getting billed for things that I completely do not understand and the support pages on Azure suck. When I try to create a support ticket, I keep getting bumped to support pages that do not answer my…
![](https://techprofile.blob.core.windows.net/images/as_Tu4nfLUeUI0EOf39xtg.png?8D9529)
How to access the Carbon Optimization Service as an admin?
Hello, With our admin account, it not possible to access the Carbon Optimization Service. But for the subscription selected, the account really has a role of Service Administrator, which should grant access to all the resources, right? It also doesnt…
![](https://techprofile.blob.core.windows.net/images/d2tvFBHkuECHIdJFwoOShw.png?8DB3F8)
What is the cause of the following error - "getting assigned identities for pod <namespace>/<pod_name> in CREATED state failed after 20 attempts, retry duration [5]s" , while connecting to IMDS endpoint from a pod in AKS.
I am trying to connect to Azure Key vault via user assigned managed identity from a pod of AKS. I have provided the necessary RBAC role to the identity. I have created Azure Identity and Azure Identity Binding. I have updated my deployment with…
Lighthouse
Hello All, I gave Contributor role (on a subscription) to users via Lighthouse to manage a customer. The users get access with no problem to the customer subscription, can start and stop VM, create a resource group, start and stop backup, etc. The…
access to azure storage from React App
Hello, We are running a REACT app on an APP service. The APP has a BACK END in TS and a front end in REACT. In our application our customers can create posts with images. These images must be saved in a blob container. I cannot find the best solution to…
Scoping Custom Role With microsoft.directory/auditLogs/allProperties/read Role Permission
Hi Community, Can you have a custom role with the microsoft.directory/auditLogs/allProperties/read role permission and use Admin Units to scope to devices only? Is this a scope'able permission? Kind Regards, Jamie
![](https://techprofile.blob.core.windows.net/images/h8y9Xcd7x0e8KDiXXSGMFQ.png?8D84A0)
Global reader unable to view any environment in admin.powerplatform.microsoft.com
We have PIM enabled and a user is enabled with Global reader access. User is able to access all other admin centers like exchange and can view the configuration but no configuration like environments, capacity is visible in powerplatform admin center. Is…
What Azure role assignments would i need to allow a dba permissions to manage Azure SQL resources including storage accounts?
I am looking at assigning role assignments to a DBA to manage Azure SQL resources from the Azure Portal including managing a specific storage account. Currently, the permissions are set as follows: Contributor Reader SQL Security Manager …
azure owner roles issue
Hi Team, accidentally i was deleted my owner role attached to the my subscription . and now i am unable to perform operations in my account. could you please help me on this issue
![](https://techprofile.blob.core.windows.net/images/nangnqqNAkuWTT7031X8vg.png?8DCA0F)
Azure Policy: check subscription role assignments
Hi everyone We have different types of users in our Azure AD. Only a certain subset of them are allowed to administer Azure resources. Those all start with "ACO" or "ACA". We now wish to create an Azure Policy that checks whether only…
Does such a user have access to adjacent sub-resources?
Hi, I have a question about user permissions Can someone please explain me to better understand user permissions: let's say under tenant root group, I create a user1 and management-group1. Under management group1, I create a subscription1 and user2.…
"Insufficient privileges to complete the operation" while using Graph API
The access token I get from the following curl request curl "$IDENTITY_ENDPOINT?resource=https://graph.microsoft.com&api-version=2017-09-01" -H secret:$IDENTITY_HEADER does not have the permission to list or create user. Request: GET…
How to protect sensitive data in Azure?
I would like to load sensitive data in an Azure Data Lake Storage Gen2. I need to make sure that this data can not be read by the global administrator or any other kind of super user. How can this be realized? I think role-based access control is not…
![](https://techprofile.blob.core.windows.net/images/Z1PCM1zxm0SLa41PVP7B7g.png?8DA865)
How to add new field to request member to input in Microsoft Azure Group
Hi, I have situation like this: I have a group of users, with owners and members. The owners can actually add new members (by typing new members' emails) to the group, to see different reports. However, for the new members, we only want them to see their…
![](https://techprofile.blob.core.windows.net/images/jldrhpxv0UWROR_19vDTnw.png?8DBB5F)
![](https://techprofile.blob.core.windows.net/images/UVyLn-Xlr0apNce5TRX1RA.png?8DBA3B)
Roles required to create Azure support ticket.
Me and my senior have access to same Azure subscription, when i try to create support ticket with the subscription, it is showing we have only basic plan enabled for our subscription so technical support is not enabled for this, but when my senior…
Could you explain how to configure the following virtual machine settings?
To address the tasks you've outlined, here's a structured approach: For restricting demoVM1's access to only Facebook and YouTube, implement URL filtering rules on the network device or use a firewall policy that only allows these URLs. To create a…
![](https://techprofile.blob.core.windows.net/images/Nd_pi7-IHkuDC3BVgl0RFQ.png?8D81F2)
How to Access APIM API from Azure Function with Managed Identity without OAuth authentication call
I have created a function app to call an API from APIM and I have added security of Auth 2.0 in the API settings. Also I have added Managed identity to the function app , and added that managed identity in APIM IAM to give API Management Service Reader…
What role will I have when I migrate a subscription to a new Tenant/Directory?
Hi All, Starting in September 2024 Classic Admins will be removed. I am wondering what is going to happen when I do a migration (directory change) of a subscription from one tenant to another. Usually the user who does the "Change Directory"…
![](https://techprofile.blob.core.windows.net/images/3b270b575c094eeca63e9bc66c861c5a.png)
Identity architecture: Conditional access with MFA
How to use a Conditional Access with multifactor authentication (MFA) in free trial version? Which license are required using Conditional Access? Which better I can use a conditional access under the following web address: - www.portel.azure.com …