Can't add a Service Principal to a self-hosted agent pool
I'm trying to add a new windows self-hosted build agent following this guide: https://learn.microsoft.com/en-us/azure/devops/pipelines/agents/service-principal-agent-registration?view=azure-devops
When I attempt to add a service principal account, already created as a basic user at the organization level, to my build agent pool in my project the service principal does not appear in the list of accounts. I typed the name of the service principal in the "add user" pop-up. It said "No identities found". I expected it to show the service principal since I followed the instrucitons here: https://learn.microsoft.com/en-us/azure/devops/integrate/get-started/authentication/service-principal-managed-identity?view=azure-devops#2-add-and-manage-service-principals-in-an-azure-devops-organization
How can I give the service principal the administrator permission on the pool?
I can reproduce the same when adding SP to agent pool even all permission is correct.
It could be a regression as it worked before. It's recommended to track on the existing community link.
As a workaround, you can create a user group, add the SP as a member of the group. On organization setting -> agent pool -> add the group as administrator role(if you add from project level, it won't work).
If the group is not added, permission limited for SP:
If the group is added, with SP, it works.
- Azure Devops - Get Org ID
- Is there a short 7-digit version of $(SourceVersion) in Azure Devops?
- No template with an identifier of 'xamarinandroid' could be found
- Nuget restore fails on Azure Devops with message "unable to load the service index for source"
- Why does VS Code give linting errors for a valid Azure Pipelines YAML file?
- Azure Python Functions requirements.txt ignored when deployed from DevOps
- No pool was specified, although a pool is specified in the Azure pipeline
- How to set the iteration field automatically to latest iteration?
- Pass parameter to a different-project pipeline via REST api using System.AccessToken
- Azure DevOps share wiki as dedicated webpages
- Azure Devops: dotnet publish can't find the package because it's searching in the wrong source
- roleAssignment with current user id
- Can I use MSI Token for Azure DevOps REST APIs?
- Azure Deploy Code To Service Using ARM Template From VSTS Git Code
- AzureDevOps RestAPI does not return groups that are a member of a certain group
- Benefits of using Fabric-ADO Pipeline over Inbuilt MS Fabric Deployment pipeline
- Dependencies azure devops yaml
- Assigning tags to APIs in Azure APIM via Devops Pipeline
- Pull bicep modules from ACR to consume using AzurePowershell@5 task in Azure pipeline
- Azure DevOps pipeline trigger not working
- MS Fabric project Deployment using Azure Pipelines
- Azure self hosted agent failing to pick up jobs
- How to parameterize azure agent.name in azure pipeline?
- Getting "Unable to complete authentication for user due to looping logins" while making an api call through postman to azure
- Service Connection permissions error when trying to access Azure Key vault secrets from within an Azure DevOps pipeline with the task AzureKeyVault@2
- Download a Zip File from Azure DevOps Git Repo Using Azure DevOps SDK
- Use variables in Approval and Check Azure Devps Pipeline
- Is it possible to create a pull request for an azure dev ops repo in vs code?
- Azure devops pipeline stages template nesting
- How to pass specific values for Get-AzSubscription