Current Tenant 'xxxx' is not authorized to access linked subscription 'yyyy'

Nelson, Warren 0 Reputation points
2024-08-30T18:39:14.31+00:00

I am trying to connect Azure Front Door Origin to an external (Other Tenant) resource using Private Link Service. When I put the FDQN object into Origin configuration, it comes back with the following error:

The client has permission to perform action 'Microsoft.Network/privateLinkSerivce/read' on scope '/subscription/xxxxx....', however the current tenant 'xxxxx' is not authorized to access linked subscription 'yyyy'.

I have tried to connect to the Private Link Service on Subscription 'yyyy' using Private Endpoint from subscription 'xxxx' without an issue but when I try to do the same using the Azure Front Door Origin dialog (UI or CLI) I get the above mentioned error.

Any thoughts on what I am missing? This used to work, not sure if this is a setting issue on which subscription etc.

Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
668 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
502 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. KapilAnanth-MSFT 44,311 Reputation points Microsoft Employee
    2024-09-02T10:39:26.2666667+00:00

    @Nelson, Warren ,

    Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

    I understand that you are trying to create a AFD PLS across tenants.

    I tried to do a Lab and I was able to repo the same behavior.

    I shall reach out to the Product Team internally and get back to you shortly.

    Cheers,

    Kapil

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.