This message was deleted.
# azure
s
This message was deleted.
b
how are you authing to azure?
c
I'm logged in via the AZ cli, but the variables mentioned above are set to the service principal I created
b
specifically:
Copy code
az keyvault set-policy --name pulumi --object-id $YOUR_OBJECT_ID --key-permissions decrypt get create delete list update import backup restore recover encrypt
c
It uses RBAC authentication...
do I need to switch to using policies instead?
b
well that’s how I’ve had it working before, but likely your RBAC is not correct:
ForbiddenByRbac
- is pretty clear
c
it sure is 🙂
I'll give it a try
thank you 💐 switching to policy-based worked like a charm!
🎉 1