Values of identifierUris property must use a verified domain - documentation needs an update

kikofarad · March 31, 2022, 3:18pm

Dear Team ,

I believe the documentation needs to be updated in the below link at the section of “Create a Service Principal”

Link : Build Infrastructure - Terraform Azure Example

where the problem is that command when I run
az ad sp create-for-rbac --role="Contributor" --scopes="/subscriptions/<SUBSCRIPTION_ID>"

it gives that error message :

and it needs to be updated to :

az ad sp create-for-rbac -n "api://putyourappname" --role="Contributor" --scopes="/subscriptions/<SUBSCRIPTION_ID>"

as after I did research to solve it I found this link where Microsoft did a breaking change since Oct 2021 and here is the link :

AppId Uri in single tenant applications will require use of default scheme or verified domains

profnandaa · December 16, 2022, 1:08pm

This could probably be due to an outdated version of az installed. I had a similar issue with az on Ubuntu, noticed I’d installed an old version (2.0.xx). Everything worked okay after updating.

Topic		Replies	Views
How to mimic az ad sp create-for-rbac in terraform? Azure	0	1410	February 7, 2022
Problems managing subscriptions with aliases Azure	2	3300	July 3, 2022
Creating an Azure subscription and deploying to it in same stream using SP Azure	0	283	May 3, 2023
Terraform provider registration failure (Azure) Azure	3	8824	June 15, 2023
Creating new Subscriptions through Terraform Azure	3	7028	February 16, 2022

Values of identifierUris property must use a verified domain - documentation needs an update

Related topics