Not able to give owner access from classic service administrator role

134 views Asked by At

I am learning about Azure. I am using a personal account and want to give my Azure Entra ID, Owner access. My current role is the classic Service Administrator.

enter image description here

But while trying to add role assignments, I'm not able to see either Owner or Contributor in the options, though Reader is available. According to documentation

The Service Administrator and Co-Administrators are assigned the Owner role at the subscription scope

So what am I missing? Any help is appreciated

P.S. - I am trying to give access to Azure Entra ID because I am experimenting with the credential passthrough option in Azure Databricks. To enable that, Azure Entra ID account needs role based access separately and classic Service Administrator access is not enough.

1

There are 1 answers

2
Rukmini On BEST ANSWER

Note that: By default, the service administrator role is assigned to the user who is the account administrator.

  • The service administrator role has the owner level access at the subscription level.
  • Hence the owner has the access to assign roles to any users.
  • The service administrator has complete/full access to the Azure Portal.

I have Service Administrator role:

enter image description here

The owner and contributor roles will be present under the Privileged administrator roles:

Go to Subscriptions -> Select your subscription -> Access control (IAM) -> Add -> Add role assignment -> Click on Privileged administrator roles.

enter image description here

By having the Service Administrator role, I am able to assign owner and contributor role to the user:

enter image description here

Reference:

Azure roles, Microsoft Entra roles, and classic subscription administrator roles | Microsoft