Managed Identity assignment limit #16562
mptherefore
started this conversation in
Authoring Help
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Bicep version
Bicep CLI version 0.33.13 (48521b9)
Describe the bug
There is a problem that as soon as you have more than 150 user assigned identities you cannot assign them to a VM or VMSS anymore using bicep. You receive the following error:
'Failed to perform resource identity operation. Status: 'BadRequest'. Response: '{"error":{"code":"BadRequest","message":"User Assigned Identities Number '151' Assign exceed limit '150' in one request."}}'.'.
To Reproduce
Steps to reproduce the behavior:
Additional context
We are using a very similar scenario like described in this article:
https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-custom-security-attributes-example
To achieve this we are using one user assigned managed identities per customer which has the custom security attribute set.
In our case we have a few additional user assigned identities that are needed e.g. for KeyVault extension to download a certificate and another one for Azure Monitoring Agent extension. Those obviously have to be assigned when creating the VM/VMSS.
How can we achieve this?
Beta Was this translation helpful? Give feedback.
All reactions