This message was deleted.

Hi SamO, let me test this on my end: Do which Identity you are adding the role?

We assign the ACR Pull role to the managed identity of the AKS cluster.