Closed ishepherd closed 4 years ago
I don't believe the identity should be required. When I do the assignment interactively in Azure Portal, I am allowed to skip making an identity.
OK, I was just mistaken. Portal always creates an identity for my example. Similarly, the
-AssignIdentity -Location xxx
parameters to New-AzPolicyAssignment
, are just required when you use Modify
policies - even when you don't want to do a remediation task.
Weird design; it seems like it would fill our AAD full of spam 🤷♂️
Description
I get the following error from New-AzPolicyAssignment in Azure Cloud Shell,
I don't believe the identity should be required. When I do the assignment interactively in Azure Portal, I am allowed to skip making an identity.
The managed identity is only required if you want to run a Remediation task, which I do not.
Possibly related: https://github.com/Azure/azure-cli/issues/13150 - This person gets the same error, but in Azure CLI.
Steps to reproduce
Environment data
Module versions
Debug output
Error output