Hello,
I am having an issue deploying my custom Sentinel template in which I can't get validated because I don't have the write permissions for 'microsoft.aadiam/diagnosticSettings/write' at scope '/providers/microsoft.aadiam/diagnosticSettings/SECURITY-Monitoring-aadDiagnosticSetttings'
'SECURITY-Monitoring' is my resource group name and workspace name and that's the scope it's in.
I have given myself the roles that should give me write access to finish deploying and registered the appropriate resource providers and still can't get to verify my deployment.
I've attached screenshots showing my resources and roles I assigned to myself. All assigned roles were assigned to my one and only subscription.
I am not sure what to do and only now speculate that since I am using a school account to do this and on their directory, I am limited on the privilege I can assign myself but I feel like it shouldn't conflict since it's my own subscription on that account and I am the owner of it.
Hope to hear back from anyone who has any ideas or has had this issue in the past.
Thank you!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 14.000000000000002%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAY%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
