Azure Lighthouse
An Azure service that provides secure managed services and access control for partners and customers.
78 questions
1 answer
Unable to see Azure Policy non-compliance reason through Lighthouse
Hello, I am trying to check the reason for non-compliance for an Azure policy. When I do this using a Lighthouse-delegated account, it's not possible. The following error comes up: Encountered an error while authorizing the client [me] with…
asked 2022-12-07T15:35:42.093+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 8%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWR%3C/text%3E%3C/svg%3E)
Wojciech Różański
21
Reputation points
edited an answer 2023-01-24T05:58:55.9366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 41%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
AnuragSingh-MSFT
21,381
Reputation points
1 answer
Monitor Azure AD B2C through Azure LightHouse delegate subscription not listing
We are trying to set up an integration of Azure AD B2C (a separate directory without a subscription) with a Log Analytics Workspace in another directory with a billable subscription following this documentation as reference. Whenever running the ARM…
asked 2022-12-12T18:54:03.767+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 97%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Raphael ramos
41
Reputation points
answered 2022-12-16T04:36:14.08+00:00
Akshay-MSFT
17,871
Reputation points Microsoft Employee
1 answer
Does anyone knows the GA date for the Eligible authorizations feature of Azure Lighthouse?
One of my customers is asking the question as they are considering onboarding lighthouse, however, they need the Eligible authorizations feature to delegate tenant management through Azure policy. They are concerned about the feature has been in preview…
asked 2022-10-26T11:28:37.213+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 78%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEF%3C/text%3E%3C/svg%3E)
Emma Fang
21
Reputation points
answered 2022-11-30T06:31:02.897+00:00
tbgangav-MSFT
10,416
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Lighthouse delegated subscription's resource AKS cluster access
I have onboarded the customer account to Azure Lighthouse and accessed all the Azure services (e.g. AKS cluster) of the delegated subscription but unable to access the cluster resources. The problem is the AKS cluster has roles and role bindings for…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 34%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Manage Azure Virtual Desktop Users via Azure Lighthouse
It is basically possible to manage Azure Virtual Desktop of customer tenants via Azure Lighthouse. BUT what isn't working now is to show the users pane. So if our Helpdesk wants to logoff one User, they need either to search the user on each…
asked 2022-10-03T06:19:28.15+00:00
Nathanael Santschi
136
Reputation points
accepted 2022-10-04T14:51:48.233+00:00
Nathanael Santschi
136
Reputation points
1 answer
Azure Lighthouse - Resource Locks
Hi, as documented in the current limitations section of Lighthouse, it's currently not possible to work with resource locks: https://zcusa.951200.xyz/en-us/azure/lighthouse/concepts/cross-tenant-management-experience#current-limitations …
asked 2022-08-29T13:23:12.317+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 89%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
DaZzLa
61
Reputation points
answered 2022-08-29T16:07:26.227+00:00
Andrew Blumhardt
9,861
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Azure Lighthouse - Transparency of delegated AD group
Hi, i have a customer who want's to see which employees are part of the delegated Azure AD group in our management tenant. This is a requirement of the customer for compliance reasons. Is there any convinient way to achieve this? My…
asked 2022-08-29T09:33:56.793+00:00
DaZzLa
61
Reputation points
answered 2022-08-29T12:28:06.727+00:00
Andrew Blumhardt
9,861
Reputation points Microsoft Employee
2 answers
Azure Lighthouse & Partner Centre
Hi , Just looking for a sanity check here. I am trying to rollout lighthouse in my environment and I already have my customers in the Microsoft Partner Centre but I cannot see them listed in Azure Lighthouse, are they not integrated ? Thanks
asked 2022-06-28T13:28:54.35+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 37%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Alan Freeland
1
Reputation point
answered 2022-08-26T12:49:27.047+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 5%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Antonio Frascella
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Which roles do I need for Virtual Machine management (Lighthouse)?
Hello, I created a Lighthouse offer with Reader, Virtual Machine Contributor as well as other related Contributor roles and Delete Offer roles (see below). After onboarding, when I attempt to create new Virtual Machine via the Provider tennant, I…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 39%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
1 answer
Azure Lighthouse: Do we need to deploy our own Active directory, LogAnalytics and Sentinel to manage those from customer environment?
Hello We are deploying a new Azure instance to activate the Azure Lighthouse solution only. The purpose is to manage our customer's Sentinel, Defender and LogAnalytics solutions. My question is, once the Lighthouse configured, do we have to…
asked 2022-07-01T21:59:48.777+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 79%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
zied
1
Reputation point
answered 2022-07-07T12:47:34.673+00:00
Andrew Blumhardt
9,861
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Lighthouse with AAD Registered Application: AADSTS500113 No reply address
The Azure Lighthouse repo describes the ability to register the Managed Services resource provider in all the customer subscriptions from the partner environment. The Microsoft Lighthouse documentation points to this repo as one of the solutions for…
asked 2022-06-09T16:20:58.653+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 18%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
jberry
21
Reputation points
commented 2022-06-10T18:38:55.267+00:00
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA
27,461
Reputation points
2 answers
Support for Azure Lighthouse
Hi Will Azure Managed Grafana support Azure Lighthouse? Can I integrate customers I manage via Azure Lighthouse into Azure Managed Grafana? Thanks Stefan
asked 2022-04-20T18:54:11.247+00:00
Stefan Beckmann
1
Reputation point
commented 2022-05-09T15:17:12.527+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 43%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Monalla-MSFT
13,031
Reputation points
2 answers
One of the answers was accepted by the question author.
Azure CSP Management Tenant strategy
Hi, i'm working for a MSP who has two Microsoft Tenants, one company tenant (M365, own company Azure resources..) and one CSP tenant (used to manage customers). We are currently implementing Azure Lighthouse to manage our customers to get rid of…
asked 2022-05-04T09:44:59.96+00:00
DaZzLa
61
Reputation points
commented 2022-05-04T16:04:08.78+00:00
Stanislav Zhelyazkov
24,376
Reputation points MVP
3 answers
Azure Sentinel + LightHouse minimize costs
Hello, Currently I am using Lighthouse to integrate Tenant A with Tenant B. Tenant A has a log analytics workspace and a Microsoft Sentinel, and is being used has a central SIEM for all log sources. We have used Lighthouse to have access to the Tenant…
asked 2022-05-04T14:33:41.833+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 42%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Marco Pereira
1
Reputation point
answered 2022-05-04T15:48:36.743+00:00
Andrew Blumhardt
9,861
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
MSSP Sentinel
I have a customer Az tenant and want to offer MSSP service through lighthouse in our MSSP tenant. Question is , how does the connection works between customer tenant and our MSSP tenant. How is it accomplished ? Do we need to publish any URL? Should…
asked 2022-04-04T12:13:06.817+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 96%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Soumya Banerjee
126
Reputation points
commented 2022-04-08T12:19:23.73+00:00
Soumya Banerjee
126
Reputation points
0 answers
Export MS Support Request history
Hello There, We are Microsoft Partner and we are using lighthouse for onboarding customer. We raised MS support request for various customers using our CSP account. Now we need the history report which was raised in past. Can any one know how we can…
asked 2022-03-23T04:08:21.393+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 15%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
Deepchandra Vishwakarma
6
Reputation points
commented 2022-03-23T09:49:43.39+00:00
SadiqhAhmed-MSFT
45,591
Reputation points Microsoft Employee
4 answers
One user in org can see Customer relationship in Lighthouse, another can't?
Hi everyone, My organization is an MSSP and has a customer relationship with another tenant. We've used an ARM Template to create a service offering for our customer to upload to their Azure subscription. Another user and I in our org were…
asked 2022-02-18T04:53:34.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 49%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Garrett Miller
1
Reputation point
commented 2022-03-16T15:56:16.957+00:00
Monalla-MSFT
13,031
Reputation points
1 answer
Enable Log access from managing tenant
Hi, anyone of you tried to access LAW of customers from the managing tenant? Our managing tenant does not have a subscription itself, so we tried to add the service principals like described here: …
asked 2022-03-10T07:07:48.133+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 97%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBG%3C/text%3E%3C/svg%3E)
Benjamin Graus
11
Reputation points
commented 2022-03-15T15:36:17.433+00:00
Benjamin Graus
11
Reputation points
4 answers
Is Lighthouse usable between 4 tennants and 1 21vianet tennant
Dear Colleagues, has anyone any experience with lighthouse for 21vianet? thanks
asked 2020-10-29T09:55:49.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 28.999999999999996%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Michael Paul Thibodeaux
1
Reputation point
answered 2022-03-07T08:35:14.79+00:00
Richard Young, (hotmail)
1
Reputation point
1 answer
Azure Lighthouse
We Own two Different Tenants. Eg: Tenant A & Tenant B In Tenant A we are managing user accounts and mailboxes. In Tenant B we are deploying and managing our Cloud Application, Currently Tenant A Users are invited as Guest users in Tenant B,…
asked 2022-03-04T06:43:11.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 14.000000000000002%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBP%3C/text%3E%3C/svg%3E)
Balamuruga prasath M
1
Reputation point
answered 2022-03-04T07:44:32.147+00:00
Andrew Blumhardt
9,861
Reputation points Microsoft Employee