Not able to see Owner Role in Resource Group for Role Assingment

Question

I want to give owner role to an AAD User Principal to a particular resource group and maybe to Azure Bastion.

But in both of these resources when i go to "Access Control" i don't see the Owner role in the RG anymore

All i see is only Reader in the Built-In Role, any idea why the owner role is not visible for adding role assignment, i already have few users and group in the Owner Role, but i cannot add anymore people further to that role

Answer 1

Hi @Pallab Chakraborty ,

In order to assign the role, your user account need to have the Owner or User Access Administrator role assigned at the subscription level. Please make sure that you have either the Owner or User Access Administrator role assigned to yourself at the subscription level.

https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-resource-roles-assign-roles

You also need to ensure that you have the right number of Azure AD Premium P2 licenses assigned to use PIM. https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/subscription-requirements

If you have the necessary licenses and permissions, please try refreshing the page or logging out and logging back in to the Azure portal. If the issue persists, you can try using Azure PowerShell or Azure CLI to assign the Owner role. You can use New-AzRoleAssignment to assign the role. For example,

New-AzRoleAssignment -ObjectId $groupId `
  -RoleDefinitionName "Owner" `
  -ResourceGroupName "rbac-tutorial-resource-group"

https://learn.microsoft.com/en-us/azure/role-based-access-control/role-assignments-powershell

Let me know if this helps and if you still run into this issue after trying these steps.

If the information helped you, please Accept the answer. This will help us as well as others in the community who may be researching similar issues.