Azure Bicep deployment fails on Keyvault Resource

Question

Running Bicep deployment and it fails on Keyvault resource creation.

correlation id: a5bdef5e-469a-4072-bf41-b9812fb6dcd8

I have bicep configured to create an access policy in keyvault for app services resource using managed identity object. You can review config on public repo. I have owner RBAC role on the subscription

Bicep CLI version 0.14.46 (ef2ceb1a0e)

error message:

{
  "code": "DeploymentFailed",
  "message": "At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/arm-deployment-operations for usage details.",
  "details": [
    {
      "code": "BadRequest",
      "message": "An invalid value was provided for 'accessPolicies[0].Permissions.secrets'."
    }
  ]
}

Answer 1

Hi,

In your templates you have secret permissions 'update'. Such permission does not exist. Available values are:
'all'
'backup'
'delete'
'get'
'list'
'purge'
'recover'
'restore'
'set'

Source.

You should replace 'update' with 'set'.

The information from the deployment clearly says that one of your values for secret permissions is not correct.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Answer 2

Good catch! My apologies. Thank you.