Open bhavith opened 3 years ago
Following, Having a similar issue, check #15535
You can't actually do this in the Azure Resource Manager though can you? We have given some service principals access but you had to actually provide a payload for a direct API call. I agree this would be awesome but I'm not sure it's even something that can be implemented in Terraform until Azure actually supports it.
EDIT: Just saw that comment above, went to the linked issue and turns out I had commented there as well 😃
Also just a second similar comment, the users and RBAC within an EA Billing Account, while exposed in the Azure Portal, is actually totally removed from a tenant as far as I know, and based on this just being a view of the same thing that was in the old EA Portal. The roles available there are "Enterprise Administrator" and "Enrolment Reader" iirc and I don't think it's an "azurerm" role assignment.
Community Note
Description
It is currently not possible to define billing accounts as scope in azure role assignments. It expects a management group id, subscription id or enrolment account.
New or Affected Resource(s)
Potential Terraform Configuration
Current Behaviour