Review the permissions required to deploy resources and the permissions granted during the terraform process.
The following permissions are required to be able to successfully deploy Trend Vision One cloud
security resources to your subscription.
-
For Microsoft Entra ID users, your sign in must have the following roles:
-
Application Administrator
-
Privileged Role Administrator
-
-
For Microsoft Azure users, your sign in must have the following or higher role on the subscription you are connecting:
-
User Access Administrator
-
The terraform process assigns certain permissions to itself to establish the connection
with Cloud Accounts and Trend Vision One cloud security services. These permissions include
enabling the Cloud Accounts app and security services to obtain temporary credentials
and
perform tasks within your Azure cloud environment.