No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Hello Team, I’m looking for the recommended way for azure authentication for GitHub action running pulumi , appreciate any input.

Assuming you’re using the <https://www.pulumi.com/registry/packages/azure-native/|Azure Native provider>, the authentication methods are listed <https://www.pulumi.com/registry/packages/azure-native/installation-configuration/|here>.

I recommend OIDC because you don’t need to maintain any secrets in GitHub. Once configured in Azure, you only need to set `useOidc`, `clientId`, and `tenantId`.

I second this. OIDC is the way to go. I would suggest creating an Entra ID app with federated credentials towards some environment in github that you use when deploying. Then you can setup your Azure native provider with `useOidc` or the environment variable `ARM_USE_OIDC`