This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 46%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Trying to set up Verified ID. I assigned RBAC
Key Vault Contributor
Waited 5 minutes and still getting the error below.
Caller is not authorized to perform action on resource. If role assignments, deny assignments or role definitions were changed recently, please observe propagation time. Caller: name=Verifiable Credentials Service Admin;appid={id};oid={id};iss=https://sts.windows.net/{id}/ Action: 'Microsoft.KeyVault/vaults/keys/create/action' Resource: '/subscriptions/{id}/resourcegroups/did-rg/providers/microsoft.keyvault/vaults/did-kv/keys/vcsigningkey-{id}' Assignment: (not found) DenyAssignmentId: null DecisionReason: null Vault: {name;location={location}
Error code: errorCreatingDecentralizedIdentity
Searched and found: https://stackoverflow.com/questions/78045479/caller-is-not-authorized-to-perform-action-on-resource-even-though-i-have-owner
Solution was the Admin role. I tested as owner and couldn't create (correct), added admin and could :(
This question is related to the following Learning Module
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 76%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Hi John Burke,
Thank you for reaching out to us on Microsoft Q&A forum.
We are looking into the issue and will get back to you soon.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 3%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMG%3C/text%3E%3C/svg%3E)
Hi John Burke,
Welcome to the Microsoft Q&A forum.
Based on your question we understand that you are unable to create a Key Vault and Configure organization settings in Verified ID.
Here are some steps you can take to troubleshoot and resolve the issue:
Additionally, please refer the mentioned link: Provide access to Key Vault keys
Kindly follow the remaining steps as guided in the learn path to complete the exercise.
If the information is helpful, please accept the answer by clicking the "Upvote" and "Accept Answer" on the post. If you are still facing any issue, please let us know in the comments we will be glad to help you.
Thank you.
I specified in the question that I already had assigned the KV Admin Role and it is still receiving the error. Also, the link provided does not specify which role is needed, not to mention least privilege for this. I would think that Admin is over privileged.
Hi John Burke,
We apologize for the inconvenience caused to you.
Kindly try the following steps to perform the activity:
Kindly follow the remaining steps as guided in the learn path to complete the exercise.
If the information is helpful, please accept the answer by clicking the "Upvote" and "Accept Answer" on the post. If you are still facing any issue, please let us know in the comments. We are glad to help you.
Thank you.