Assign System Managed Id to Azure Perform Apps with PowerShell


Managing identities within the cloud is essential for guaranteeing safe entry to assets. Azure supplies a strong answer with Managed Identities, which might be assigned to Azure providers like Perform Apps, eliminating the necessity for managing credentials manually. By utilizing PowerShell, you’ll be able to automate the task of System Managed Identities to your Azure Perform Apps, streamlining the method and enhancing safety. This weblog will information you thru the steps to assign a System Managed Id to an Azure Perform App utilizing a PowerShell script.

Use Circumstances

  1. Safe Useful resource Entry: Grant your Perform App safe entry to Azure assets like Key Vault, Storage Accounts, and extra with out dealing with credentials.
  2. Automated Id Administration: Combine this script into CI/CD pipelines for automated id administration throughout deployments.
  3. Atmosphere-Particular Configurations: Assign identities to Perform Apps in several environments (growth, staging, manufacturing) to keep up constant safety practices.
  4. Compliance and Safety: Guarantee compliance with safety insurance policies by utilizing managed identities for all Perform App deployments.

Present Approaches

Usually, assigning a System Managed Id to an Azure Perform App is finished manually via the Azure portal. This includes navigating to the Perform App, enabling the Managed Id, after which configuring the required permissions. Whereas this strategy works, it isn’t scalable for a number of Perform Apps or environments. Automating this course of utilizing PowerShell ensures consistency, saves time, and reduces the chance of human error.

Step 1. Put together Your Atmosphere

Guarantee you will have the Azure CLI put in and you’re authenticated to your Azure subscription. You may obtain and set up the Azure CLI from right here.

Login utilizing the beneath command in PowerShell.

az login

Step 2. Execute the PowerShell Script

Run the beneath Script by passing the parameters Useful resource Group Identify, Perform App Identify, Subscription Id.

Perform Assign-SystemManagedIdentityFunctionApp {
    #Parameters - FunctionAppName, ResourceGroupName, SubscriptionId, Slot
    param (
      #FunctionApp Identify
      [Parameter(Mandatory = $true)]
      #ResourceGroup Identify
      [Parameter(Mandatory = $true)]
      #Subscription Id
      [Parameter(Mandatory = $true)]
      [Parameter(Mandatory = $false)]
    Write-Host "##[debug] -----Beginning Assign-SystemManagedIdentityFunctionApp-----" -ForegroundColor Cyan
    Write-Host "##[command] Parameters" -ForegroundColor Yellow
    # Get the command title
    $CommandName = $PSCmdlet.MyInvocation.InvocationName;
    # Get the listing of parameters for the command
    $ParameterList = (Get-Command -Identify $CommandName).Parameters;
    # Seize every parameter worth, utilizing Get-Variable
    foreach ($Parameter in $ParameterList) {
      Get-Variable -Identify $Parameter.Values.Identify -ErrorAction SilentlyContinue;
      #Get-Variable -Identify $ParameterList;
    #Set Subscription
    Write-Host "Setting Subscription"
    az account set -s $SubscriptionId
    strive {
        Write-Host "Assigning System Managed Id for functionapp:$FunctionAppName in $Slot Slot"
        az webapp id assign -g $ResourceGroupName -n $FunctionAppName
      Write-Host "##[debug] -----Accomplished Assign-SystemManagedIdentityFunctionApp-----" -ForegroundColor Cyan
    catch [Exception] {
      write-host $_.Exception.Message
      Write-Host "`nError in Line: " $_.InvocationInfo.Line
      Write-Host "`nError in Line Quantity: "$_.InvocationInfo.ScriptLineNumber
      Write-Host "`nError Merchandise Identify: "$_.Exception.ItemName
      throw $_.Exception.Message

  Assign-SystemManagedIdentityFunctionApp -FunctionAppName "samplefunc-rg" -ResourceGroupName "sample-rg"  -SubscriptionId "6ba2dfac-9ebd" 

This may output.

Step 3. Validate in Azure Portal

  • Validate whether or not Id is assigned to Perform App or not in Azure Portal
  • Navigate to Perform App -> Left Menu -> Id
    Left menu


Automating the task of System Managed Identities to Azure Perform Apps utilizing PowerShell enhances safety and effectivity in managing entry to Azure assets. This methodology ensures that identities are persistently utilized throughout totally different environments and reduces the chance related to handbook processes. By integrating this script into your deployment pipelines, you’ll be able to streamline your workflows and concentrate on creating sturdy, safe purposes.

Know extra about our firm at Skrots. Know extra about our providers at Skrots Providers, Additionally checkout all different blogs at Weblog at Skrots

Show More

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button