Unable to initiate "replication" of VM. Issue with Account.

Raghu Muthappa 1 Reputation point

I am using Azure Default Migration Tool, Appliance is setup on On-Prem side, I am able to discover, create group, create assessment. When I try to replicate VM I am getting error as below

The user (xxxx) doesn't have permissions to perform role assignments in the resource group (xxxx). When replication is set up for the first time, the user performing the action should have sufficent permissions to create storage accounts in the resource group (xxxx) and to perform role assignments on the created storage accounts.

But I am able to create Storage Account. I have "Contributor" Role. This is happening only when I try to perform "Replicate" VMs option.

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,548 questions
Azure Migrate
Azure Migrate
A central hub of Azure cloud migration services and tools to discover, assess, and migrate workloads to the cloud.
754 questions
{count} votes

1 answer

Sort by: Most helpful
  1. SadiqhAhmed-MSFT 41,141 Reputation points Microsoft Employee

    To use Azure Migrate, there are some permissions that are required to manage Vaults and resources.
    See the instructions to check the permissions of your account to the Key Vault using the following PowerShell script:

    $userPrincipalId = $(Get-AzureRmADUser -UserPrincipalName "loggedin_user").Id

    Set-AzureRmKeyVaultAccessPolicy -VaultName "replace_with_key_vault_name" -ObjectId $userPrincipalId -PermissionsToStorage get, list, delete, set, update, regeneratekey, getsas, listsas, deletesas, setsas, recover, backup, restore, purge

    Reference: https://learn.microsoft.com/en-us/azure/migrate/tutorial-prepare-vmware


    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.