Hi, even my case is strange, I have User Access Administrator role (this is my pay-as-you-go personal account) and I get permission denied on creating resource groups in the subscription.
I can create resources inside it also through CLI I can create resource groups as well.
Everything was fine until this morning I found my subscription role was automatically modified from 'owner' to 'user access administrator (specified access).
Thanks&Regards
Naseer Khan