DEV Community

Discussion on: Automate Azure Role Based Access Control (RBAC) using Github

Collapse
pwd9000 profile image
Marcel.L Author

Hi Clint,
To assign “Management Group Reader” permission to the AD App created, you would need to be at a minimum a “User Access Administrator” at the management group scope.

I can suggest that if you do not have the permission of “User access administrator” you could check with the tenant admin or team responsible for AAD and identities to assign the permission on your created app for you :)

So someone with the correct access could run the command in the tutorial on your behalf if you do not have the access to that.