viancu
commented
1 year ago We were able to replicate the issue by removing the following roles: "Application Administrator" and "Global Administrator" (Directory Scope).
For the current set up, these roles are required, but if obtaining these permissions is not possible, a manual approach might have to be followed. The documentation also contains the manual steps here.
Hopefully this answers your question, but please let me know if I can provide further guidance.
Hi team,
I am Huy from ABeam, I am using terraform version. After run ./btpsa I got error as below
I also found in azure-ad-app/main.tf file these required roles
In Azure portal, I just guess that my account should be assign to MS Graph application and have above roles
I am not sure about it as my Azure account is managed by admin team and I need to request. Do you have any advise or sample for Azure portal set up (screenshot is ok) ?