add-credential azure fails when using the interactive auth type
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Juju |
Fix Released
|
High
|
Tim McNamara |
Bug Description
I am receiving the following error when running "juju add-credential azure". I have tried two different subscription ID's, both have the same issue.
Sign In
Sorry, but we’re having trouble signing you in.
We received a bad request.
Additional technical information:
Correlation ID: 9da27091-
Timestamp: 2017-04-06 16:01:06Z
AADSTS90093: Calling principal cannot consent due to lack of permissions.
To reproduce the problem:
➜ ~ juju add-credential azure
Enter credential name: test
A credential with that name already exists.
Replace the existing credential? (y/N): y
Auth Types
interactive*
service-
Select auth-type: interactive
Enter subscription-id: <removed>
Initiating interactive authentication.
To sign in, use a web browser to open the page https:/
-- Go to link
Enter the code that you received from the application on your device
Juju CLI Application publisher: Click cancel if you received this code from a different application
-- Click Continue
-- Enter credentials
Sorry, but we’re having trouble signing you in.
We received a bad request
Changed in juju: | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Andrew Wilkins (axwalk) |
Changed in juju: | |
milestone: | none → 2.2-beta3 |
Changed in juju: | |
status: | In Progress → Fix Committed |
Changed in juju: | |
status: | In Progress → Incomplete |
Changed in juju: | |
assignee: | Andrew Wilkins (axwalk) → nobody |
Changed in juju: | |
status: | In Progress → Fix Committed |
Changed in juju: | |
status: | Fix Committed → Triaged |
milestone: | 2.2-beta3 → none |
assignee: | Andrew Wilkins (axwalk) → nobody |
tags: | added: azure-provider credentials |
Changed in juju: | |
assignee: | nobody → Tim McNamara (tim-clicks) |
summary: |
- add-credential azure fails + add-credential azure fails when using the interactive auth type |
Tommy, can you please try again? The AAD application had an unnecessary permission which required admin consent. I've removed that, so you shouldn't get that error any more.