Azure Lighthouse
An Azure service that provides secure managed services and access control for partners and customers.
66 questions
1 answer
Azure Lighthouse and CAF / ESLZ
Hi guys, i'm working for a MSP who is setting up customers based on the CAF/ Enterprise Scale Landing Zone concept. Therefore we are setting up some core subscriptions like a Management Sub, Connectivity Sub and so on. The workloads and services…
asked 2022-05-17T14:34:03.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 89%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
DaZzLa
61
Reputation points
edited the question 2023-04-19T18:01:00.1866667+00:00
tbgangav-MSFT
10,381
Reputation points
1 answer
Lighthouse - Cannot manage eligible roles in managing tenant
Hi, I am trying to get eligible authorizations working via Lighthouse, but in the managing (service provider) tenant I am finding that the "manage eligible roles" button is greyed out under my customers. I have not created a lighthouse offer…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 14.000000000000002%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Azure Lighhouse - cannot see role assignments
Hello, I am viewing a Customer's resources using an Azure Lighthouse account, which has the Reader role assigned on all Customer's subscriptions. I have noticed that I am unable to see any Role Assignments on those subscriptions, or any underlying…
asked 2023-02-08T13:16:28.2433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 70%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWR%3C/text%3E%3C/svg%3E)
Wojciech Rozanski
65
Reputation points
accepted 2023-03-06T08:10:35.2266667+00:00
Wojciech Rozanski
65
Reputation points
1 answer
One of the answers was accepted by the question author.
MSP Azure Lighthouse - cannot access Azure Policies deployed at Management Group Level
Hi, We're an MSP company that provides Azure services to other companies. We're using Azure Lighthouse to allow team members to access the client's Azure Subscriptions. Currently, we've ran into an issue that when Azure Policies are deployed at a…
asked 2023-02-17T20:44:53.3133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 48%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Joseph Attard
20
Reputation points
accepted 2023-03-03T16:23:04.1366667+00:00
Joseph Attard
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Documentation on Lighthouse implementation
Customer is looking for Documentation regarding onboarding on Lighthouse (primarily they are looking for details on how it looks, before they push for marketplace). How can we re-deploy the scripts in case of upgrade, can we implement using…
Azure Lighthouse
Azure Lighthouse
An Azure service that provides secure managed services and access control for partners and customers.
66 questions
Azure ISV (Independent Software Vendors) and Startups
Azure ISV (Independent Software Vendors) and Startups
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.ISV (Independent Software Vendors) and Startups: A Microsoft program that helps customers adopt Microsoft Cloud solutions and drive user adoption.
111 questions
asked 2022-08-23T07:49:46.727+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 60%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Dabhan-MSFT
21
Reputation points Microsoft Employee
edited the question 2023-03-02T09:28:16.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 41%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
AnuragSingh-MSFT
20,016
Reputation points
0 answers
Checking resource limits, quotas, and constraints using PowerShell
I am looking for a solution to check for resource limit quotas that have been reached in multiple subscriptions using Lighthouse. Has anyone found a way to accomplish this using PowerShell, Graph, or other methods? Essentially, I am looking for a way to…
asked 2023-01-24T15:23:04.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 41%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJC%3C/text%3E%3C/svg%3E)
Jason Crawford
0
Reputation points
edited the question 2023-02-09T03:39:35.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
28,061
Reputation points Microsoft Employee
0 answers
How can I provision an AKS cluster via Lighthouse?
I have a customer who has delegated access to me to one of their resource groups. The delegation grants me Contributor and User Access Admin roles. The User Admin Access role has a list of other roles that I can grant, but none of these roles are allowed…
asked 2021-02-12T03:28:17.793+00:00
Ben Burns
1
Reputation point
edited the question 2023-02-06T05:05:58.1233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 39%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SwathiDhanwada-MSFT
17,556
Reputation points
1 answer
Customers not showing in Azure Lighthouse.
I have onboarded several clients to Azure Lighthouse and when looking at the client tenancy I can see our organisation as a service provider and that we have delegate 'Microsoft Sentinel Reader' Access. However I cannot see the clients from our…
asked 2023-01-23T06:44:44.3766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 72%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERE%3C/text%3E%3C/svg%3E)
Raoul Edmonds
0
Reputation points
answered 2023-01-28T11:40:35.0533333+00:00
JimmySalian-2011
41,921
Reputation points
1 answer
Unable to see Azure Policy non-compliance reason through Lighthouse
Hello, I am trying to check the reason for non-compliance for an Azure policy. When I do this using a Lighthouse-delegated account, it's not possible. The following error comes up: Encountered an error while authorizing the client [me] with…
asked 2022-12-07T15:35:42.093+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 8%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWR%3C/text%3E%3C/svg%3E)
Wojciech Różański
21
Reputation points
edited an answer 2023-01-24T05:58:55.9366667+00:00
AnuragSingh-MSFT
20,016
Reputation points
1 answer
Monitor Azure AD B2C through Azure LightHouse delegate subscription not listing
We are trying to set up an integration of Azure AD B2C (a separate directory without a subscription) with a Log Analytics Workspace in another directory with a billable subscription following this documentation as reference. Whenever running the ARM…
asked 2022-12-12T18:54:03.767+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 97%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Raphael ramos
41
Reputation points
answered 2022-12-16T04:36:14.08+00:00
Akshay-MSFT
16,026
Reputation points Microsoft Employee
1 answer
Does anyone knows the GA date for the Eligible authorizations feature of Azure Lighthouse?
One of my customers is asking the question as they are considering onboarding lighthouse, however, they need the Eligible authorizations feature to delegate tenant management through Azure policy. They are concerned about the feature has been in preview…
asked 2022-10-26T11:28:37.213+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 78%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEF%3C/text%3E%3C/svg%3E)
Emma Fang
21
Reputation points
answered 2022-11-30T06:31:02.897+00:00
tbgangav-MSFT
10,381
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Lighthouse delegated subscription's resource AKS cluster access
I have onboarded the customer account to Azure Lighthouse and accessed all the Azure services (e.g. AKS cluster) of the delegated subscription but unable to access the cluster resources. The problem is the AKS cluster has roles and role bindings for…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 34%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Manage Azure Virtual Desktop Users via Azure Lighthouse
It is basically possible to manage Azure Virtual Desktop of customer tenants via Azure Lighthouse. BUT what isn't working now is to show the users pane. So if our Helpdesk wants to logoff one User, they need either to search the user on each…
asked 2022-10-03T06:19:28.15+00:00
Nathanael Santschi
126
Reputation points
accepted 2022-10-04T14:51:48.233+00:00
Nathanael Santschi
126
Reputation points
1 answer
Azure Lighthouse - Resource Locks
Hi, as documented in the current limitations section of Lighthouse, it's currently not possible to work with resource locks: https://learn.microsoft.com/en-us/azure/lighthouse/concepts/cross-tenant-management-experience#current-limitations …
asked 2022-08-29T13:23:12.317+00:00
DaZzLa
61
Reputation points
answered 2022-08-29T16:07:26.227+00:00
Andrew Blumhardt
9,496
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Azure Lighthouse - Transparency of delegated AD group
Hi, i have a customer who want's to see which employees are part of the delegated Azure AD group in our management tenant. This is a requirement of the customer for compliance reasons. Is there any convinient way to achieve this? My…
asked 2022-08-29T09:33:56.793+00:00
DaZzLa
61
Reputation points
answered 2022-08-29T12:28:06.727+00:00
Andrew Blumhardt
9,496
Reputation points Microsoft Employee
2 answers
Azure Lighthouse & Partner Centre
Hi , Just looking for a sanity check here. I am trying to rollout lighthouse in my environment and I already have my customers in the Microsoft Partner Centre but I cannot see them listed in Azure Lighthouse, are they not integrated ? Thanks
asked 2022-06-28T13:28:54.35+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 37%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Alan Freeland
1
Reputation point
answered 2022-08-26T12:49:27.047+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 5%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Antonio Frascella
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Which roles do I need for Virtual Machine management (Lighthouse)?
Hello, I created a Lighthouse offer with Reader, Virtual Machine Contributor as well as other related Contributor roles and Delete Offer roles (see below). After onboarding, when I attempt to create new Virtual Machine via the Provider tennant, I…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 39%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
1 answer
Azure Lighthouse: Do we need to deploy our own Active directory, LogAnalytics and Sentinel to manage those from customer environment?
Hello We are deploying a new Azure instance to activate the Azure Lighthouse solution only. The purpose is to manage our customer's Sentinel, Defender and LogAnalytics solutions. My question is, once the Lighthouse configured, do we have to…
asked 2022-07-01T21:59:48.777+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 79%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
zied
1
Reputation point
answered 2022-07-07T12:47:34.673+00:00
Andrew Blumhardt
9,496
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Lighthouse with AAD Registered Application: AADSTS500113 No reply address
The Azure Lighthouse repo describes the ability to register the Managed Services resource provider in all the customer subscriptions from the partner environment. The Microsoft Lighthouse documentation points to this repo as one of the solutions for…
asked 2022-06-09T16:20:58.653+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 18%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
jberry
21
Reputation points
commented 2022-06-10T18:38:55.267+00:00
Alfredo Revilla - Senior Freelance SWE, SWA, IAM
27,096
Reputation points
2 answers
Support for Azure Lighthouse
Hi Will Azure Managed Grafana support Azure Lighthouse? Can I integrate customers I manage via Azure Lighthouse into Azure Managed Grafana? Thanks Stefan
asked 2022-04-20T18:54:11.247+00:00
Stefan Beckmann
1
Reputation point
commented 2022-05-09T15:17:12.527+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 43%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Monalla-MSFT
11,641
Reputation points