After using the Azure portal to set up a PostgreSQL flexible server it failed during deployment, first showing status "Accepted" and then within a minute of working on deploying switching to status "Conflict" and returning this failure message:
{'code':'DeploymentFailed','message':'At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/arm-deployment-operations for usage details.','details':[{'code':'AadAuthEnableFailedDueToMissingGraphApiAccessPrincipal','message':'Expected Microsoft Graph API client application with ClientId = xyz is not found in the TenantId = xyz, or does not have required permissions.'}]}
The issue has persisted for several hours and across redeploy attempts (including starting from scratch from an incognito window); it looks like this is a recent issue and one that is also affecting others since there was a seemingly identical issue posted on stackoverflow yesterday that now has 29 views:
https://stackoverflow.com/questions/75301640/expected-microsoft-graph-api-client-application-with-clientid-does-not-have-re
A (redacted) version of the deployment.json is attached (deployment-redacted.json.txt) for further detail, and a few things of note that may or may not be relevant are:
- This was the first Azure deployment we attempted after just signing up for a trial from an existing Microsoft 365 subscription
- We selected both Azure AD and PostgreSQL access control
- We enabled geo-redundant backup
- We changed from the default _v4 VM to "Standard_D2ds_v5"
- The resource group and listed location are in "westus", but in the deployment json under "vnetData" for the "testVnet" it says location is "eastus2" (we didn't pick the vnet option so this could be a red herring)
How do I fix this so I can deploy the PosgreSQL flexible server on Azure?