New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
azd pipeline config
login issues
#2640
Comments
Seems similar to issue azd auth login with scope does not work #2277 @weikanglim @vhvb1989 do we have any workaround for this? |
Hi @chuwik From the error message, specifically "Your sign-in was successful but your admin requires the device requesting access to be managed by Microsoft to access this resource" It looks like your sign-in was successful, but the device isn't trusted based on the configured policies on the Microsoft tenant. I would try that following:
|
Both options check out:
I'm running into login issues for azd provision too. Here's the chain of commands and errors I'm seeing: azd auth login -> successful azd provision -> ERROR: deployment failed: failing invoking action 'provision', error deploying infrastructure: starting deployment to subscription: login expired, run `azd auth login --scope https://management.core.windows.net//.default to log in azd auth login --scope https://management.core.windows.net//.default -> successful azd provision -> ERROR: deployment failed: failing invoking action 'provision', error deploying infrastructure: creating parameters file: fetching current principal id: getting tenant id for subscription . Error: failed to resolve user access to subscription with ID . If you recently gained access to this subscription, run I get stuck in this loop, but azd provision never succeeds. Note: I'm an owner of the subscription, see it in the portal, etc. I've obscured the sub-id in the messages above. |
If you run |
It does. I deleted ~/.azd and |
Clearing |
We were able to find a copy of an azd user's |
Output from
azd version
azd version 1.2.0 (commit 99ea757)
Describe the bug
azd pipeline config
is failing to create a service principal, asking me to reauthenticate withazd auth login --scope https://graph.microsoft.com/.default.
. This command never succeeds, after I login successfully from a domain managed PC it still shows an error saying that my device must be managed by Microsoft to access the resource.To Reproduce
azd auth login --use-device-code
azd pipeline config
azd auth login --scope https://graph.microsoft.com/.default.
Expected behavior
Login succeeds and azd can finish configuring the pipeline.
Environment
Information on your environment:
* Windows 11, Powershell 7.3.6
The text was updated successfully, but these errors were encountered: