Hey Greg,
In the Select Members panel on the right, it'll show users and groups in
the list by default, but doesn't show applications. You may just need to
search for the application service principal by name.
I traced these steps in one of my subscriptions and it found the
application no worries - scroll down a bit to "Assign a role to the
application":
https://learn.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-principal-portal
cheers,
Tony
On 8/05/2023 14:50, Greg Keogh via ozdotnet wrote:
Folks, my Azure Portal pages have changed subtly sometime over recent
months and I can no longer find a way of assigning a role to an app.
It tooks hours to figure out how to do this a year ago and I wrote
down instructions for myself, but they don't apply any more due to UI
changes.
I have created an App in the AD blade and I have its name, Id and
secret. I want this app to have read access to my subscription so it
can enumerate accounts, containers, etc.
I go to the Subscriptions > IAM > Role Assignments. + Add Role
Assignment > select *Reader* > at this point I expect Select members
to offer me my app for the role, but it never appears in the list on
the right.
That's where I've been stuck for days now. I can't give my app the
Reader role to my subscription. Are there any Azure portal boffins who
know how to do this?
Thanks,
/Greg K/
