Azure Functions
An Azure service that provides an event-driven serverless compute platform.
4,542 questions
Azure Functions can't load the proper managed identity to receive message from Service Bus
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 49%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYD%3C/text%3E%3C/svg%3E)
Yifan Du
15
Reputation points Microsoft Employee
I made the change based on this instruction to use managed identity to receive message from service bus https://learn.microsoft.com/en-us/azure/azure-functions/functions-identity-based-connections-tutorial-2, but seeing errors of "Unable to load the proper Managed Identity."
Here is what I did for the configuration:
- Added ServiceBusConnection__fullyQualifiedNamespace and was able to see it in the error log.
- Assigned managed identity (Azure Function) role of Azure Service Bus Data Receiver in Service Bus namespace.
- In the function trigger in code, added [ServiceBusTrigger("mytopic", "mysub", Connection = "ServiceBusConnection")
The error is
mytopic/Subscriptions/mysub-xxx: ReceiveBatchAsync Exception: Azure.Identity.AuthenticationFailedException: ManagedIdentityCredential authentication failed: Service request failed. Status: 400 (Bad Request)
Content: {"statusCode":400,"message":"Unable to load the proper Managed Identity.","correlationId":"xxx..."}
at Azure.Identity.ManagedIdentitySource.HandleResponseAsync(Boolean async, TokenRequestContext context, HttpMessage message, CancellationToken cancellationToken) at Azure.Identity.ManagedIdentitySource.AuthenticateAsync(Boolean async, TokenRequestContext context, CancellationToken cancellationToken) at Azure.Identity.ManagedIdentityClient.AuthenticateCoreAsync(Boolean async, TokenRequestContext context, CancellationToken cancellationToken) at Azure.Identity.ManagedIdentityClient.AppTokenProviderImpl(AppTokenProviderParameters parameters) at Microsoft.Identity.Client.Internal.Requests.ClientCredentialRequest.SendTokenRequestToAppTokenProviderAsync(ILoggerAdapter logger, CancellationToken cancellationToken) at Microsoft.Identity.Client.Internal.Requests.ClientCredentialRequest.GetAccessTokenAsync(CancellationToken cancellationToken, ILoggerAdapter logger) at Microsoft.Identity.Client.Internal.Requests.ClientCredentialRequest.ExecuteAsync(CancellationToken cancellationToken) at Microsoft.Identity.Client.Internal.Requests.RequestBase.<>c__DisplayClass11_1.<