Azure Pipelines Configuration Error: Failed to set Azure Permission

Santiago 45 Reputation points
2023-03-06T10:18:04.68+00:00

Hello, I am setting up an Azure Pipeline to build and push a docker container to ACR, however, I am getting the following issue:

Failed to set Azure permission 'RoleAssignmentId: axxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx' for the service principal '6xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx5' on subscription ID '9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx2': error code: BadRequest, inner error code: RoleAssignmentUpdateNotPermitted, inner error message Tenant ID, application ID, principal ID, and scope are not allowed to be updated. Ensure that the user has 'Owner' or 'User Access Administrator' permissions on the Subscription.

I am the owner of Azure AD. It also seems that an ACR IAM Role Assignment is created when I attempt this. I don't know how to go about this so any help is appreciated. Thanks in advance.

Azure Container Registry
Azure Container Registry
An Azure service that provides a registry of Docker and Open Container Initiative images.
455 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,694 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Tobi Olajumoke 0 Reputation points
    2023-03-15T13:04:02.68+00:00

    Been on this issue for the past 24hr, what I did to resolve mine finally, after signing out of my azure devops organization, I went to the portal and restarted by creating a new resource group, an app service plan, a container registry and a container web app then back to the azure DevOps pipeline and it built

    0 comments No comments

  2. MUNGARA SAI CHARAN 0 Reputation points
    2023-03-15T19:53:39.98+00:00

    try this : delete all the app registrations. clean every thing create kubernetes once with 1.23 versions dont try for 1.24 versions. it is working . because kubernets 1.24 s( CURRENT VERSION ) are unable to produce secret keys . just give a try it will work.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.