Adding Westcoast Cloud Delegated Permissions to Azure Subscriptions (foreign principal)
This needs to be run by a Global Admin and Owner of the Azure Subscription.
Replace variables with Customer Azure Tenant ID and Customer Azure Subscription ID as stated.
Connect-AzAccount -Tenant <Customer Azure Tenant ID>
Set-AzContext -SubscriptionId <Customer Azure subscription ID>
For our UK customers, please run the below:
New-AzRoleAssignment -ObjectId a7499ccd-fcc2-4bc0-b398-19e99c3627c3 -RoleDefinitionName "Owner" -Scope "/subscriptions/<Customer Azure Subscription ID>" -ObjectType "ForeignGroup"
For our Ireland/ EU customers, please run the below:
New-AzRoleAssignment -ObjectId 91696235-099b-45aa-8379-d99f6ae357d7 -RoleDefinitionName "Owner" -Scope "/subscriptions/<Customer Azure Subscription ID>" -ObjectType "ForeignGroup"
Note: You can replace the Owner RoleDefinitionName with any Azure RBAC role as listed in the following document - Azure built-in roles - Azure RBAC | Microsoft Learn. To provide Westcoast Cloud Support with minimum rights, you can use the 'Support request contributor' role.
If you require further help, please email support@westcoastcloud.co.uk