Stack Overflow
Stack Overflow

Questions tagged [azure-management-groups]

27 questions
3
votes
0 answers

Dynamically get all subscription ids under a given management group during ARM template deployment

I would like to know during the template deployment all subscriptions that are under a specific Management Group. I couldn't find any ARM template function that could get such info. Is there a way to get this information?
daniel
  • 174
  • 2
  • 10
2
votes
0 answers

Moving Azure Subscription to New Mgmt Group

We're looking at moving an Azure subscription under a new management group, I just wanted see if there any implications to the workloads running on the subsciption? The subscription is already under a management group, however we are moving it ot a…
Norrin Rad
  • 881
  • 2
  • 18
  • 42
1
vote
1 answer

Azure Management group does not have any valid subscriptions

In an attempt to view the cost analysis at the Management group level, I am receiving the following error message: Management group LandingZone does not have any valid subscriptions. (Request ID: 3867f325-14c1-4181-bc25-0299516c0b25) It has the…
One Developer
  • 99
  • 5
  • 43
  • 103
1
vote
1 answer

Resource [parameters('mgName')] Location must be an expression or 'global'

I am experimenting with Azure Management Groups Arm template. As you can see in this link, I have this Arm template: { "$schema": "https://schema.management.azure.com/schemas/2019-08-01/managementGroupDeploymentTemplate.json#", "contentVersion":…
Maytham Fahmi
  • 31,138
  • 14
  • 118
  • 137
1
vote
2 answers

How to define and assign an Azure Policy on a Management Group Scope using Terraform?

I want to assign one of the built-in policies of Azure to a management group using Terraform. The problem I'm facing is, while assigning policies with Terraform can be fairly easily done by setting the scope properly to the subscription id or…
Swarnabja Bhaumik
  • 127
  • 8
1
vote
1 answer

Force all Azure access through Management Groups

We are looking to force all Azure access assignments to go through our management groups instead of at the subscription level. Basically we don't want access to be able to be assigned per subscription and want to block that capability. This way we…
Dylan James
  • 11
  • 1
0
votes
0 answers

Azure Management Group - Cannot add subscription if Owner via Security Group

I'm building an Azure Management Group structure where I'm having issues with the add subscription option to a sub-management group where the option is grayed out when Owner role is assigned via and AAD Security group. So in short, does Azure…
Adam
  • 1
  • 3
0
votes
1 answer

Microsoft Cloud Adoption Framework with Terraform - correct RBAC setup

We are trying to implement the CAF, using the CAF Terraform module provided by Microsoft. My issue is, what kind of RBAC roles, should developers of the code have. As it is now, I have a managed identity, and when I run the terraform code, there are…
themathmagician
  • 467
  • 5
  • 16
0
votes
0 answers

How to extract first level (right under tenant level) management groups on Azure (Resource graph explorer)?

I am currently trying to write queries using Azure Resource graph explorer. I would like to display the compliance and non compliance of resources by management groups. On the tenant, the architecture is similar to the one below. Hierarchy Azure…
LiliCloud
  • 1
  • 1
0
votes
1 answer

Can't create Azure Management Group using bicep

I'm trying to create Management Groups using the Azure Landing Zones bicep template as follows: az deployment tenant create --location westeurope --template-file managementGroups.bicep However, I'm getting the following error: The client 'xxx'…
filip
  • 1,444
  • 1
  • 20
  • 40
0
votes
1 answer

Couldn't create subscription. Your account has reached its subscription limit. To create more subscriptions, contact Azure support

I am trying to create azure subscription from api. After making api request, I got this error saying: "(NotAllowed) Couldn't create subscription. Your account has reached its subscription limit. To create more subscriptions, contact Azure support.…
Nomi
  • 185
  • 2
  • 13
0
votes
2 answers

Azure Rest API : "Management group XYZ does not have any valid subscriptions"

I received error message: { "error": { "code": "BadRequest", "message": "Management group XYZ does not have any valid subscriptions. (Request ID: c6a2b5dc-f198-5365-804e-04240727f3a8)" } } (postman) when I'm trying to get…
Kacper Gostek
  • 1
  • 1
0
votes
2 answers

in Azure, how to list all the subscriptions under a management group by using Python SDK?

I am trying to list all the Azure subscriptions under a specific management group by using Azure Python SDK. But I couldn't find any function which retrieves them. Do you have any idea?
MoonHorse
  • 1,966
  • 2
  • 24
  • 46
0
votes
1 answer

Unable to find a management group - terraform

Any advice on additional troubleshooting steps for the below error? Error: Management Group "00000000-0000-0000-0000-000000000000" was not found with data.azurerm_management_group.current on main.tf line 40, in data "azurerm_management_group"…
jmhpecds
  • 1
  • 4
0
votes
1 answer

403 Error: Create & Assign Azure Policy Definition at Management Group Level using Terraform

provider "azurerm" { features {} } data "azurerm_management_group" "management_group" { display_name = var.management_group_display_name } resource "azurerm_policy_definition" "deployment_policy_definition" { name =…
Surajit Barman
  • 19
  • 4
1
2