Why do I need to wait at least an hour before my locally run application can access PIM protected Azure resources?
I have a .NET 8 Blazor Server application that accesses an Azure App Configuration, which references some secrets in Azure Keyvault. Both the App Configuration and the Keyvault are protected by PIM. When I activate the relevant roles and run my application locally, my application is still denied access.
If I wait for at least an hour, the issue disappears. We're working on this application with 2 engineers. I use Rider, but my colleague uses Visual Studio. He has the same problem but found out logging out and back in in Visual Studio resolves the issue.
It seems the cache of a token or credentials doesn't get properly invalidated when necessary, but I have no clue how to research this further.
According to Azure RBAC propagation latency:
Since Azure Resource Manager sometimes caches configurations and data to improve performance, it can sometimes take up to 30 minutes for changes to take effect when you assign roles or remove role assignments.
Using Azure CLI, you can force a refresh of your role assignment changes by signing out and signing in.
See also Troubleshoot Azure RBAC.
- Pandas dropping first group of values
- Which is the best way to suppress "unused variable" warning
- How to open phone number in phone application on Android from webview?
- Difference between WHITELIST and ALLOWLIST
- python regex to match multiple words in a line without going to the next line
- How to use the apply function to return a list to new column in Pandas
- Determine qualifying value from one array and access related values from other arrays with the same index
- CodeIgniter - database result array but only one row
- ASP.NET Core Web API : route by query parameter
- Prime factorization using list comprehension in Python
- Getting rows from a database query into an array in CodeIgniter
- Connection reset by <ip address> port 22 while getting files from a remote machine through a bridge machine via ssh, doing this operation in loop
- next/image does not load images from external URL after deployment
- Rubocop for tabs
- UnicodeEncodeError on API-call (json)
- Exporting data from Azure DocumentDB
- get IP address of all active network interfaces
- add webview with AndroidView in compose, come blank screen
- Create list of factorials using list comprehension
- How can I overload a method with @QueryParam in Jersey/Spring?
- Increment the 4-digit, 0-padded substring at the end of a string
- How to return the sum of the two previous numbers?
- VSCode ipynb notebook showing the plots several times over
- How to parse a dynamic image path in Rails 8 inside Stimulus controller (Popshaft Asset Pipeline)?
- Is it possible to use raw SQL within a Spring Repository
- 68000 Assembly - Finding the Minimum in an Array
- Getting type of a property of a TypeScript class using keyof operator
- How to avoid from richTextBox to being flickering?
- Is TControlList::Invalidate() thread safe?
- ESLint error when trying to lint Angular templates