I m running az role assignment list -g from Azure Devops on Microsofts Hosted Agent
I dont see principalName parameter in result. But same command when I run on my local in VsCode I see principalName. I checked az cli versions both MS agent and on my local, they are same 2.5.1
Wondering what I m missing....
below is what i get in Azure Devops after running the above command
{
"canDelegate": xxx,
"id": xxx,
"name": xxx,
"principalId": xxx,
"principalType": xxx,
"resourceGroup": xxx,
"roleDefinitionId": xxx,
"scope": xxx,
"type": "Microsoft.Authorization/roleAssignments"
}
Microsoft helped to resolve this issue. Your Service Principal needs Directory Read access on App Permissions. This would solve the problem.