Creating Service Account Automatically

In this article

    [This step applies only if you have selected the Create service account automatically option at the Select Service Account Type step of the wizard]

    When you choose to create a service account automatically, Veeam Backup for Microsoft Azure creates a new Azure AD application in your Microsoft Azure Active Directory. To create the Azure AD application, Veeam Backup for Microsoft Azure uses the Microsoft Azure Cross-platform Command Line Interface (Azure CLI). To authenticate to the Azure CLI, you must provide a single-use verification code.

    Important

    • The Microsoft Azure account that you use to access the Azure CLI must have the Microsoft.Authorization/*/Write permissions assigned in the subscription associated with the backup appliance. For more information on managing role permissions and security in Microsoft Azure, see Microsoft Docs.
    • If you have disabled the Users can register applications option in the Microsoft Azure portal, make sure that the newly created Azure AD application has the Application Developer, Application Administrator or Global Administrator role assigned. For more information on role permissions in Azure Active Directory, see Microsoft Docs.

    At the Logon to Azure step of the wizard, do the following:

    1. Click Copy code to clipboard.
    1. Click https://microsoft.com/devicelogin.
    2. On the Microsoft Azure device authentication page, do the following:
    1. Paste the code that you have copied and click Next.
    2. Select an account that will be used to access the Azure CLI. The account must be assigned either the User Access Administrator or the Owner role.

    Important

    Using a personal Microsoft account is not recommended — use a work account instead.

    1. Back to the Add Azure Account wizard, check whether any errors occurred during the authentication process and click Next.

    Creating Account Automatically