I am setting a staging environment for my Continuous Deployment. I am using the Azure devops service for repositories and pipelines.
I need to add Azure Active Directory login to my Linux VMs. So far I followed this guide. It works on my machine, although when I try to run it on Azure devops I get the following error.
2019-04-08T14:54:33.7657868Z ERROR: The client '********-****-****-****-************' with object id '********-****-****-****-************' does not have authorization to perform action 'Microsoft.Authorization/roleAssignments/write' over scope '/subscriptions/***/resourceGroups/staging-rg/providers/Microsoft.Compute/virtualMachineScaleSets/webscaleset/providers/Microsoft.Authorization/roleAssignments/********-****-****-****-************'.
It seems that my azure devops service connection lack roleAssignment/write permission. I can not figure out how to add it