Adding identity to group after creation

[Olli64]

Greetings!

I have a script that creates identities and assigns them to a AD Group that is also created in the same script.

If I create Identity and try to add it to the group with az ad group member add; it throws an error: Resource '<guidhere>' does not exist or one of its queried reference-property objects are not present.

I know that if I wait for atleast 30 seconds and add then, it succeeds.

How can I know when I am able to add the identity to the group?

I tried to make while loop to check that identity exists but it throws the same error because it exists as soon as it is created...

steps to reproduce (Powershell): az ad group create --display-name "testgroup" --mail-nickname "testgroup" $identity = az identity create -g "someresourcegroup" -n "testidentity" | ConvertFrom-JSON az ad group member add --group "testgroup" --member-id $identity.principalId

I've made an "hack" to sleep for 30 seconds after creating the identity and it works that way, but would be awesome to actually know when you can add it to the group.

---

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: c659a298-8897-6d50-c1d9-c14a3b0e6364
• Version Independent ID: 2d2bec5b-ef92-f65f-bfd0-ccdabda52a41
• Content: az ad group member
• Content Source: src/azure-cli/azure/cli/command_modules/role/_help.py
• Service: active-directory
• GitHub Login: @rloutlaw
• Microsoft Alias: routlaw

[yonzhan]

@arrownj please take a look

[arrownj]

Hi @vladimirjoanovic @rthorn17 , could you please also help check this problem? Is there any async tasks in the service side which leads this problem ? Thanks ahead.

[rthorn17]

@arrownj Do we know what API's are being called by PowerShell? Are these ARM API's or AAD Graph API's?