Azure interactive credentials not working
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Juju |
Fix Released
|
High
|
Ian Booth |
Bug Description
$ juju add-credential --verbose --debug azure
Enter credential name: alex
Select region [any region, credential is not region specific]: eastus
Select auth type [interactive]:
Enter subscription-id: xxxxx
Initiating interactive authentication.
To sign in, use a web browser to open the page https:/
ERROR finalizing credential: creating service principal password: creating service principal password: Authorization_
11:17:31 DEBUG cmd supercommand.go:549 error stack:
Authorization_
github.
github.
github.
github.
github.
github.
Juju interactive credentials in fact is using Juju app with ID 60a04dc9-
My theory is Juju is trying to create SP for this app 'Juju' with something like
az ad sp create --id $appid.
but our accounts (I have checked with 3 people in FE organization and we all have the same issue) doesn't have this permission.
Same as customer accounts, I believe, won't have this permission.
Changed in juju: | |
milestone: | none → 3.6-beta3 |
assignee: | nobody → Ian Booth (wallyworld) |
status: | Confirmed → In Progress |
Changed in juju: | |
status: | Fix Committed → Fix Released |
Is it possible to get a temporary account so we can diagnose the issue and determine what needs to be fixed? None of the accounts we are using have the issue and unless we can reproduce, it's hard to know exactly what to fix and if any fix we come up with will work.