Create a User-Managed Identity

The flow below provides a step-by-step guide to create a user-managed identity and assign the required built-in Azure role of Network Contributor.

In order to create a managed identity and assign the Vnet to it, you will need Role-Based Access Control Administrator (Preview) or User Access Admin roles. The user managed identity should be specifically on the scope of the Vnet that you will be using for the Lightbits storage cluster. For advanced users, you can create your own role with the Microsoft.Network/virtualNetworks/join/action permission:

  1. Log in to the Azure portal.
  2. Go to Managed Identities.
  3. Click Create.
  1. Fill out the Resource Group, Region, and Name for the User Managed Identity.
  2. Click Review and Create.
  3. Click Create.
  4. Wait for the deployment to finish successfully.
  5. Click Go to Resource.
  6. Go to Virtual Networks.
  7. Click the Vnet that you will be using for the storage cluster.
  8. Click Access control (IAM).
  1. Click Add (Add Role Assignment).
  2. Filter for the Network Contributor role and select the entry.
  1. Click Next.
  2. Click Managed identity.
  3. Click Select Members.
  4. Select the User Managed Identity you created in the previous step.
  1. Click Select.
  2. Click Review.
  1. Click Review and Assign.
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Lightbits Cluster Software Deployment

© 2025 Lightbits Labs™

On This Page
Create a User-Managed Identity