Home Arrow Icon Knowledge base Arrow Icon Global Arrow Icon What are the prerequisites for setting up managed identity in Azure Logic Apps


What are the prerequisites for setting up managed identity in Azure Logic Apps


To set up managed identity in Azure Logic Apps, the following prerequisites are necessary:

1. Azure Account and Subscription: You need an Azure account and a subscription. If you don't have a subscription, you can sign up for a free Azure account[1][6].

2. Target Azure Resource: Identify the target Azure resource you want to access using managed identity. This could be Azure Storage, Azure Service Bus, or any other resource protected by Microsoft Entra ID[1][7].

3. Logic App Resource and Workflow: Ensure you have a logic app resource and a workflow where you want to use triggers or actions that support managed identities[1].

4. Role Assignment: On the target Azure resource, you must assign the necessary roles to the managed identity. This requires Microsoft Entra administrator permissions to assign roles to the identities in the corresponding Microsoft Entra tenant[1][7].

5. Subscription Alignment: Both the managed identity and the target Azure resource must be in the same Azure subscription[1].

6. Enable Managed Identity: For Consumption logic apps, you can enable either system-assigned or user-assigned identity but not both at the same time. For Standard logic apps, you can enable both types simultaneously, but only one can be used at a time[1].

7. User-Assigned Identity Creation: If using a user-assigned identity, you must create it as a separate Azure resource before adding it to your logic app[3].

Citations:
[1] https://learn.microsoft.com/en-us/azure/logic-apps/authenticate-with-managed-identity
[2] https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/overview
[3] https://www.red-gate.com/simple-talk/cloud/azure/how-to-use-managed-identities-in-your-azure-logic-apps/
[4] https://stackoverflow.com/questions/70123209/what-permissions-are-required-for-a-user-managed-identity-to-run-a-logic-app
[5] https://community.dynamics.com/blogs/post/?postid=5e75eb01-9dd6-4d2e-bad4-cea4562e351e
[6] https://docs.azure.cn/en-us/logic-apps/create-single-tenant-workflows-azure-portal
[7] https://www.middleway.eu/using-managed-identities-in-a-logic-app/
[8] https://www.youtube.com/watch?v=pirFQZsBZkw
[9] https://hybridbrothers.com/using-managed-identities-in-logic-app-http-triggers/
[10] https://docs.azure.cn/en-us/logic-apps/logic-apps-securing-a-logic-app