My Azure account is under company's AD, and once i tried to create an App using Azure Devops, when trying to create New Service connection, this error pops up,

What permission do my account needs to perform this action ?

Thanks in advance.

CodePudding user response：

You need the "Creator" permission:

Members of this role can create the service connection in the project. Contributors are added as members by default

Please find more information in the Microsoft documentation User permissions

Microsoft documentation for Manage service connections

CodePudding user response：

The problem lies in not having privileges to create app registrations in the Azure Active Directory tenant. There are several roles that have permission for this operation. According to the docs it also depends on whether non-admin users can create app registrations.

Some Built-in roles that can be used are Application Administrator

Users in this role can create and manage all aspects of enterprise applications, application registrations, and application proxy settings. Note that users assigned to this role are not added as owners when creating new application registrations or enterprise applications.

or Application Developer

Users in this role can create application registrations when the "Users can register applications" setting is set to No. This role also grants permission to consent on one's own behalf when the "Users can consent to apps accessing company data on their behalf" setting is set to No. Users assigned to this role are added as owners when creating new application registrations.