How can I give a service principal access to create resource groups in Azure?

Question

I am trying to create a service principal a.k.a. app registrations in Azure that has the required permissions to create and delete resource groups (and proceed to manage the resources of those resource groups after).

When I create a service principal, it only has access to the content of resource group that itself belongs to.

Here is a screenshot of my attempt so far. This is under App registrations:

Shui shengbao · Accepted Answer · 2017-08-18T01:54:25.133

2

If my understanding is right, you need give your service principle Contributor role.

Note: Contributor can create and manage all types of Azure resources but can’t grant access to others.

You could do it on Azure Portal. <your subscription>--><Access Control>--><Add>.

More information about this please refer to this official document.

edited Aug 18 '17 at 01:54

answered Aug 18 '17 at 01:40

Shui shengbao

462
3
8

How can I give a service principal access to create resource groups in Azure?

1 Answers1