| Summary: | explicit required permissions for the Azure provider user | ||
|---|---|---|---|
| Product: | Red Hat CloudForms Management Engine | Reporter: | Colin Arnott <carnott> |
| Component: | Documentation | Assignee: | Red Hat CloudForms Documentation <cloudforms-docs> |
| Status: | CLOSED WONTFIX | QA Contact: | Red Hat CloudForms Documentation <cloudforms-docs> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 5.6.0 | CC: | adahms, benglish, gblomqui, hhudgeon, jhardy, mfeifer, obarenbo |
| Target Milestone: | GA | ||
| Target Release: | 5.7.0 | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | doc | ||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2018-04-04 04:41:28 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
|
Description
Colin Arnott
2016-09-08 12:40:55 UTC
You need to add the Active Directory app as a "Contributor" to each resource group, or the entire subscription. While other roles may work, I haven't tested them. I know reader doesn't work, I suspect owner may. USER ROLE ACCESS CFME Contributor Inherited Hi Daniel, Jeff, Thank you for the information! Moving back to the default assignee for now, and we will be in touch again as we work on this one. Kind regards, Andrew Thank you for raising this bug. After further discussion with the program team, we have been given the advice not to document specific permissions for service accounts at this time based on the following article - http://cloudformsblog.redhat.com/2017/08/16/security-management-operations/ As such, I will be closing this bug for now, but we can re-investigate this request again in the future if required. |