Through the Azure CLI I can grant RBAC on a service principal for creating subscriptions by using the enrollment accounts I found by using az billing enrollment-account list. This only requires the GUID enrollment account. I can then proceed to create subscriptions with that enrollment account by doing the following.
If I want to create Azure subscriptions with Terraform, I have to use an enrollment account name and billing account name, as stated here.
Is it a possibility to create a subscription with only an enrollment account GUID? I can’t seem to grant my service principal any RBAC role on the scope with the billing account and enrollment account needed to create subscriptions with Terraform.