![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 28.000000000000004%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Azure IoT Operations
Azure IoT Operations is a set of modular services enabled by Azure Arc.
Abby Greentree hi again )))) looks like it is ur day today )
the Artifact Pull Secrets option was available in earlier guidance, but in current versions the portal only exposes Anonymous, System assigned managed identity, and user assigned managed identity for registry endpoints. Artifact Pull Secrets are now handled at the Kubernetes level rather than directly in the AIO registry endpoint ui. In other words, AIO assumes either managed identity based access to ACR or anonymous access. If u want to use imagePullSecrets, u must create the Kubernetes secret manually in the target namespace and reference it in ur workload or connector deployment spec, not via the registry endpoint blade. So the fix is not a permission issue. Either switch to managed identity for ACR access, which is the recommended approach, or create a kubernetes.io/dockerconfigjson secret in the cluster and reference it in ur connector deployment yaml. The portal will not show Artifact Pull Secrets unless u are on a specific preview version that still exposes that path.
If u need to confirm, check the AIO extension version on the cluster and compare it with the doc version. The docs sometimes reflects preview features that are no longer surfaced in the GA portal UI.
rgds,
Alex