This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 43%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDE%3C/text%3E%3C/svg%3E)
Hi,
I'm trying to deploy to AKS using azure pipeline but I get the below error message:
Failed to set Azure permission 'RoleAssignmentId: 'xxx' for the service principal 'xxx' on subscription ID 'xxx': error code: BadRequest, inner error code: RoleAssignmentUpdateNotPermitted, inner error message Tenant ID, application ID, principal ID, and scope are not allowed to be updated. Ensure that the user has 'Owner' or 'User Access Administrator' permissions on the Subscription.
I have owner role on the subscription. The app registration I use as a service connection also has owner role on the subscription.
I also noticed that the service principal stated In the error message is different from the service principal for the app registration i created. It seems Azure pipeline is creating another SP and I'm not sure why it's doing that and not using the already created one.
Please assist.
Thanks
As the error message says 'RoleAssignmentUpdateNotPermitted' there could be chances that the role assignment exists from a previous failed deployment. You can check this in Subscription role assignments area. I suggest you delete the entire resource group if possible, which will delete the Role Assignments too.
--please don't forget to upvote and Accept as answer if the reply is helpful--
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 41%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEA%3C/text%3E%3C/svg%3E)
Didn't work^^. This is frustrating. Any clear fix?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 97%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
I am seeing the same problem and attempted the solution presented. It also did not work for me. I am now seeing this issue in two separate Azure DevOps environments.
It appears another report of this problem is present from 3/6/23: https://learn.microsoft.com/en-us/answers/questions/1186805/azure-pipelines-configuration-error-failed-to-set