Minimal necessary Azure Roles

Stanley R. Mijnals 21 Reputation points

Terraform allows infrastructure to be expressed as code in a simple, human readable language called HCL (HashiCorp Configuration Language). It reads configuration files and provides an execution plan of changes, which can be reviewed for safety and then applied and provisioned.

Developers are building a pipeline with Terraform. Which means that a service account will run terraform and also a user will interact with Terraform for Azure Devops, specifically the Service Connections.

The service account and the user cannot Read or create Service Principals.

What are the Azure roles I should grant for both the Service account and the user so they can create Service Principals?

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,858 questions
0 comments No comments
{count} votes

Accepted answer
  1. brtrach-MSFT 15,176 Reputation points Microsoft Employee

    @Anonymous Since nobody from the community seems to have reached out, let's see if we can assist you.

    For this, I would suggest looking into the application administrator role. More information on that can be found here.

    I hope this helps answer your question. Please let me know if you have any further questions or concerns.

    0 comments No comments

0 additional answers

Sort by: Most helpful