-
Notifications
You must be signed in to change notification settings - Fork 146
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add initial workspace creator as workspace enterprise app owner #2627
Conversation
/test |
🤖 pr-bot 🤖 🏃 Running tests: https://github.com/microsoft/AzureTRE/actions/runs/3098465186 (with refid (in response to this comment from @marrobi) |
Pull request was converted to draft
It seems this need an additional permissions to be able to add this user. It worked in my environment, but failed for a customer. I have the some additional permissions - |
|
User also needs to have "Directory Reader" role in AD. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Approved, but you have a typo
/test |
🤖 pr-bot 🤖 🏃 Running tests: https://github.com/microsoft/AzureTRE/actions/runs/3150965693 (with refid (in response to this comment from @marrobi) |
/test-force-approve passed https://github.com/microsoft/AzureTRE/actions/runs/3150965693 |
🤖 pr-bot 🤖 ✅ Marking tests as complete (for commit 58e10e4) (in response to this comment from @marrobi) |
Resolves #2625
How is this addressed
Directory.Read.All
permissions inmake auth
Breaking change.
The Application Admin account needs to be granted
Directory.Read.All
permissions: