Azure:将角色添加到应用注册的 client_secret
[英]Azure : Add a role to a client_secret for an App Registrations
问题描述
I'm not comfortable with azure configuration.
我对 azure 配置不满意。
We have an app registration , that is configured with roles, group and users.我们有一个应用注册,它配置了角色、组和用户。
Everything is ok, but our security policy enforce MFA for connexion.一切正常,但我们的安全策略强制执行 MFA 以进行连接。 That's a trouble for our automated tests.这对我们的自动化测试来说是个麻烦。
Following that post we created a client secret Using App Registrations//Certficates & Secrets.在那篇文章之后,我们使用 App Registrations//Certficates & Secrets 创建了一个客户端密码。 Authentication is ok, and I can get a token when using postman but no role is assign.
身份验证正常,使用 postman 时可以获得令牌,但未分配任何角色。
The problem is that I can't figure how to add a role for that client secret !问题是我不知道如何为该客户端密码添加角色!
Can you help?你能帮我吗?
1 个解决方案
解决方案1
0 2021-05-02 09:43:04
You assign roles to users, groups, service principals, or managed identities at a particular scope.您将角色分配给特定 scope 中的用户、组、服务主体或托管标识。
To assign roles from the Azure portal:从 Azure 门户分配角色:
- Browse to Subscriptions blade.浏览到订阅刀片。
- Select your Subscription. Select 您的订阅。
- Go to Access control (IAM) . Go 到访问控制 (IAM) 。
- Select Add role assignments and select the Role you wish to assign. Select 添加角色分配和 select 您希望分配的角色。
- Search for your App Registration/Service Principal.搜索您的应用注册/服务主体。
- Save.节省。
Note that as a prerequisite to be able to assign Azure roles, you must have Microsoft.Authorization/roleAssignments/write permissions, such as User Access Administrator or Owner .请注意,作为能够分配 Azure 角色的先决条件,您必须具有Microsoft.Authorization/roleAssignments/write权限,例如User Access Administrator或Owner 。
Check Assign Azure roles using the Azure portal for more details. 使用 Azure 门户检查分配 Azure 角色以获取更多详细信息。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.