If Terraform is supposed to deploy whole infrastructure from nothing to everything then where is that Terraform template suppose to run? Due to security reasons we don't want to run the terraform apply outside of our own infrastructure but we…
As part of a managed service, we register an application in our customers tenant that uses the Graph API. How can we manage the necessary subscription in such a way that the customer has as little contact with it as…
How can I have conditional parameter value in Azure Workbook? I want to have one parameter called environment. It has some text values. E.g. it has two values test and production. Also, I want to have two other parameters: subscription…
Microsoft states that Microsoft.Authorization/roleDefinitions/read permission is needed to read RBAC role definition. It is mentioned here https://learn.microsoft.com/en-us/rest/api/authorization/role-definitions/list?tabs=HTTP However I have Azure application which has assigned empty role (having 0 permissions) and still can read role definitions. How is that possible?…
What needs to be changed in the arm template below in order for it to add subscription owner role to the given principal id? The problem we are getting is that the following arm template and invocation command are assigning…
I am trying to list all the Azure subscriptions under a specific management group by using Azure Python SDK. But I couldn't find any function which retrieves them. Do you have any idea?