Home > Software engineering >  Where can I find the role definition name for azure role assignment
Where can I find the role definition name for azure role assignment

Time:12-04

I need to add azure keyvault read access right to the azure app service

resource "azurerm_role_assignment" "this" {
  scope              = data.azurerm_key_vault.this.id
  principal_id       = azurerm_linux_web_app.this.identity.0.principal_id
  role_definition_name = "Reader" # Seems not correct 
}

Where can I find the correct role_definition_name for different resource type for Terraform? I think the role name is different between and Azure Container Registry and Azure Keyvault?

I found the role-based access control roleon this page But can I directly use these role names? for example

 role_definition_name = "Key Vault Secrets User"

CodePudding user response:

You van have a look at the Azure build in RBAC roles

It would come down to:

resource "azurerm_role_assignment" "this" {
  scope                = data.azurerm_key_vault.this.id
  role_definition_name = "Key Vault Secrets User"
  principal_id         = azurerm_linux_web_app.this.identity.0.principal_id
}

Page link:https//www.codepudding.com/Softwareengineering/631553.html

Prev:How to chech if the string characters have equal duplicates
Next:Perform a function after passing validation
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding