az webapp identity
Manage web app's managed identity.
Name | Description | Type | Status |
---|---|---|---|
az webapp identity assign |
Assign managed identity to the web app. |
Core | GA |
az webapp identity remove |
Disable web app's managed identity. |
Core | GA |
az webapp identity show |
Display web app's managed identity. |
Core | GA |
Assign managed identity to the web app.
az webapp identity assign [--identities]
[--ids]
[--name]
[--resource-group]
[--role]
[--scope]
[--slot]
[--subscription]
assign local identity and assign a reader role to the current resource group.
az webapp identity assign -g MyResourceGroup -n MyUniqueApp --role reader --scope /subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/MyResourceGroup
enable identity for the web app.
az webapp identity assign -g MyResourceGroup -n MyUniqueApp
assign local identity and a user assigned identity to a webapp.
az webapp identity assign -g MyResourceGroup -n MyUniqueApp --identities [system] myAssignedId
Space-separated identities to assign. Use '[system]' to refer to the system assigned identity. Default: '[system]'.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the web app. If left unspecified, a name will be randomly generated. You can configure the default using az configure --defaults web=<name>
.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Role name or id the managed identity will be assigned.
The scope the managed identity has access to.
The name of the slot. Default to the productions slot if not specified.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
Disable web app's managed identity.
az webapp identity remove [--identities]
[--ids]
[--name]
[--resource-group]
[--slot]
[--subscription]
Disable web app's system managed identity
az webapp identity remove --name MyWebApp --resource-group MyResourceGroup
Disable web app's system managed identity and a user managed identity
az webapp identity remove --name MyWebApp --resource-group MyResourceGroup --identities [system] myAssignedId
Space-separated identities to assign. Use '[system]' to refer to the system assigned identity. Default: '[system]'.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the web app. If left unspecified, a name will be randomly generated. You can configure the default using az configure --defaults web=<name>
.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
The name of the slot. Default to the productions slot if not specified.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
Display web app's managed identity.
az webapp identity show [--ids]
[--name]
[--resource-group]
[--slot]
[--subscription]
display webapp's managed identity (autogenerated)
az webapp identity show --name MyWebapp --resource-group MyResourceGroup
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the web app. If left unspecified, a name will be randomly generated. You can configure the default using az configure --defaults web=<name>
.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
The name of the slot. Default to the productions slot if not specified.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
Azure CLI feedback
Azure CLI is an open source project. Select a link to provide feedback: