# Managed Identity Setup Managed Identity (MI) in Azure allows DuploCloud to authenticate securely to Azure services without managing credentials. DuploCloud requires the VM where it is installed to have owner access to the Azure subscription to launch and manage Azure resources effectively. To enable this, configure a MI in Azure for DuploCloud. ## Step 1: Create a Managed Identity in Azure 1. Log in to the Azure Portal. 2. Navigate to **Managed Identities**. 3. Click on **+** **Add** to create a new managed identity. 4. Fill the fields:


Name	Enter a meaningful name for the managed identity (e.g., `duplo-master-managed-identity`).
Subscription	Select the subscription where the identity will be created.
Resource Group	Choose an existing resource group or create a new one.
Region	Select the appropriate region for the managed identity

5. Click **Create** and wait for the deployment to complete.

## Step 2: Assign the Managed Identity to Duplo-Master VM 1. Go to **Virtual Machines** in the Azure portal and select the VM where DuploCloud is installed. 2. Under the **Security** section, select **Identity**.

Assigning managed identity to the Duplo-Master VM

3. Select the **User assigned** tab and click **+** **Add**. 4. Select the managed identity created in Step 1, and click **Add**. ## Step 3: Assign Owner Role to the Managed Identity 1. Go to **Subscriptions** in the Azure portal, and select the subscription where resources will be launched by DuploCloud. 2. Under **Access Control (IAM)**, click **+ Add** -> **Add role assignment**.

3. Select the **Privileged administrator roles** tab 4. Select **Owner** in the **Role** list box. 5. In the **Assign access to** field, choose **Managed identity**. 6. Search for and select the managed identity created in Step 1. 7. Click **Save** to complete the role assignment. ## Step 4: Assign Owner Role to the DuploCloud VM 1. Go to **Subscriptions** in the Azure portal. 2. Select the subscription where resources will be launched by DuploCloud. 3. Under **Access Control (IAM)**, click **+ Add** -> **Add role assignment**.

4. Select the **Privileged administrator roles** tab 5. Select **Owner** in the **Role** list box. 6. In the **Assign access to** field, choose **Managed Identity**. 7. Search for and select the DuploCloud VM. 8. Click **Save** to apply the changes. ## Additional Notes * Ensure that both the managed identity and the VM are in the same subscription where resources will be launched. * Verify the assignments under **Access Control (IAM)** for both the managed identity and the VM to ensure correct configurations. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.duplocloud.com/docs/automation-platform/overview-2/prerequisites/managed-identity-setup.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.