Unable to renew Run as account certificate in automation account.

asked 2021-11-18T13:19:31.99+00:00
Shreyas Arani 251 Reputation points

Hi we have an azure automation account and today we got know our Run as account certificate has expired.

150655-image.png

we tried to renew self signed certificate by following this link https://learn.microsoft.com/en-us/azure/automation/manage-runas-account

But we are getting the below error

An error occurred while renewing the Azure Run As account certificate for Automation account 'android-automation' and Azure Active Directory(AAD) Application ID 'xxxxxxx'.  
Error details:  
{"odata.error":{"code":"Authorization_RequestDenied","message":{"lang":"en","value":"Insufficient privileges to complete the operation."},"requestId":xxxxxxx"}}.  
 Ask your Azure Active Directory Application owner or Azure Active Directory Global Administrator / Company Administrator to renew the Run As account certificate.  

Please help to resolve this issue

@SRIJIT-BOSE-MSFT any idea on this issue?

Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
1,104 questions
Azure Automation
Azure Automation
An Azure service that is used to automate, configure, and install updates across hybrid environments.
684 questions
No comments
{count} votes

1 answer

Sort by: Most helpful
  1. answered 2021-11-19T09:14:54.55+00:00
    KrishnaG-MSFT 7,966 Reputation points Microsoft Employee

    Hi @Shreyas Arani ,

    As the error states, its insufficient privileges or permissions issue. Before you try to renew Run As account, make sure you have required permissions as instructed in this Azure document i.e.,

    150985-image.png

    No comments