Prisma Cloud: Error Status=403 code="AuthorizationFailed" when onboarding Azure tenant

2245

Created On 06/10/22 20:53 PM - Last Modified 03/18/24 15:14 PM

Microsoft Azure

Public Cloud

Objective

To add the missing permissions required to the user adding the Azure tenant into Prisma Cloud.
This error occurs when running the terraform template in the Cloud Shell.

Please see error message below from the Bash Cloud Shell Terminal :
Screen Shot 2022-06-13 at 4.08.31 PM.png

Screen Shot 2022-06-13 at 4.08.31 PM.png

Environment

Prisma Cloud
Azure
Tenant level onboarding

Procedure

The User has to be either (owner/user access administrator) to onboard azure subscriptions/tenant.
‘Contributor’ IAM permissions will not work for onboarding."

The client with object id does not have authorization to perform action - step by step guide here.

Subscription/Tenant level > IAM (Identity Access Management) > Roles > Add Owner to User
Screen Shot 2022-06-13 at 4.27.05 PM.png

Screen Shot 2022-06-13 at 4.27.05 PM.png

Additional Information

To see our documentation on necessary permissions for onboarding Azure Tenant here.

Other users also viewed:

How to download GlobalProtect from the Customer Support Portal

Download and Install the GlobalProtect App for Windows

Resource List: GlobalProtect Configuring and Troubleshooting

PAN-OS Software Updates

Where to find the current preferred software versions? (PAN-OS, GlobalProtect, User-ID Agent, Plugins)