How to use Managed Identity to authenticate calls to Azure REST API using Azure SDK

547 Views Asked by morten At 18 September 2023 at 14:22

I've got a .NET 6 web API that is deployed as a web app in Azure. This API has a service that calls the Azure REST API to get a list of resources in our Azure. I'm using the Azure SDK with the following line to create the client:

var client = new ArmClient(new DefaultAzureCredential());

This is working fine in my local development environment (using my active directory account with high access levels), but when I deploy to Azure and a User Assigned Managed Identity is used, the only resource that is returned is the managed identity itself.

How do I configure the Managed Identity to be able to see all Azure resources?

Thanks.

I've tried giving the Managed Identity Reader permissions on the subscription level.

Original Q&A

There are 1 best solutions below

Scott Addie On 22 September 2023 at 21:24 BEST ANSWER

Under the hood, DefaultAzureCredential will attempt to use ManagedIdentityCredential when running in Azure. ManagedIdentityCredential will use a system-assigned managed identity by default. You can configure the credential type to use the user-assigned managed identity as follows:

var client = new ArmClient(new DefaultAzureCredential(
    new DefaultAzureCredentialOptions
    {
        ManagedIdentityClientId = userAssignedClientId
    }));

How to use Managed Identity to authenticate calls to Azure REST API using Azure SDK

There are 1 best solutions below

Related Questions in C#

Related Questions in .NET

Related Questions in AZURE

Related Questions in AZURE-MANAGED-IDENTITY

Related Questions in AZURE-SDK-.NET

Trending Questions

Popular # Hahtags

Popular Questions