Unable to modify acces policies for key vault

Anonymous
2023-07-31T10:00:23.8633333+00:00

Hello,

I have a similar issue as this question:

https://learn.microsoft.com/en-us/answers/questions/1327736/unable-to-add-principal-in-access-policy-in-keyvau

When I go to access policies for the key vault, create, and enter Get, List and such for secrets, then the next page it says add principal. Whenever I type just one letter it immediately complains about Graph API access. And using the "Select a principal" does not find anything. I am a member of the same group as my colleague and it works for him. In Chrome the whole page is blank, but the error happens in Firefox and Opera. I have a video recording of this, let me me know how to attach it.

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,055 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Andriy Bilous 10,731 Reputation points MVP
    2023-07-31T13:57:38.5833333+00:00

    Hello @Fredrik Olofsson

    It seems you are getting an error "Unable to access the Microsoft Graph API - Insufficient privileges to complete the operation."

    User's image

    You need Azure AD access to have possibility to list Azure AD objects(Users, Groups, SPs, etc)
    Screenshot of the assigned roles page with the assignment types highlighted.

    https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/users-assign-role-azure-portal