Home
Blogs
Bookmarks
Forums
Hackathons
Search

Author

Write
Drafts

New
Bug0 - The AI-native e2e QA regression testing Bug0 Browsers - Cloud Chromium on demand, per-minute, live preview Passmark - The open-source AI framework for regression testing Changelog Brand @hashnode on X Hashnode on LinkedIn Code of Conduct Support - hello+support@hashnode.com
Sign in
Terms Privacy Sitemap
© 2026 LinearBytes Inc.

Search Hashnode

Search posts, tags, users, and pages

Comment by Bruce on "How to use Managed Identity to connect to Azure, Exchange, Graph, Intune,... in Azure Automation Runbook" | Hashnode

Discussion

Bruce

May 17, 2022

I could not find anything else out there on this use case!

But I have determined my runbook is getting stuck on:

$MSI = (Get-AzureADServicePrincipal -Filter "displayName eq '$automationAccountDisplayName'"

Pretty sure I got the $automationAccountDisplayName correct, so I am wondering what permissions I need to confirm exist, that perhaps you alluded to?

Ondrej Sebela

System Administrator that loves PowerShell

May 17, 2022

Thanks!

Not sure what you mean by "runbook is getting stuck". Granting the permissions is done outside the runbook, for example in PS console where you are connected to Azure as Global Admin.

Anyway to get all service principals, so you can easily search them you can use command: Get-AzureADServicePrincipal -All:$true | Out-GridView

Ondrej Sebela

Thanks, I confirmed the service principal name for the Azure Automation account using that command.

The runbook does not really get stuck.
What happens is that I run a test it edit mode.
It completes, but I can tell the whole script has not run
(as debug output statements are missing)

Connect-AzAccount -Identity
-> this works

$MSI = (Get-AzAzureADServicePrincipal -Filter "displayName eq '$automationAccountDisplayName'")
-> nothing is executed on or after this line

Bruce

May 17, 2022

Ondrej Sebela

System Administrator that loves PowerShell

Jun 23, 2022

Bruce

So you are talking about granting the permissions section. But these commands should be run in your interactive PowerShell console, not under the managed identity in Azure Automation. I've edited the post so hopefully, it will be more clear.