No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Welp, sure enough... as long as I specify anything for the ARM_SUBSCRIPTION_ID (e.g., gibberish), it works.

try using a pulumi AzureNative <https://www.pulumi.com/registry/packages/azure-native/api-docs/provider/|Provider> resource … store those values (for example) in your <https://www.pulumi.com/docs/intro/concepts/secrets/#secrets|configuration with the --secret flag>

pulumi runs self contained in this case and should act the same locally and in CI runner. this way you wont have to add those environment variables to your CLI manually each time you open a new terminal too

Thanks Patrick... will def check this out!

service principals will need to still be added to the subscription with minimum contributor role

otherwise how would they write to ARM :sweat_smile: