Skip to content

Managed identities

This article explains how to create a user-assigned managed identity. Creating a managed identity is a prerequisite and must be completed before a CDC agent is deployed in Azure.

There are two types of managed identities:

  • System-assigned managed identities.
  • User-assigned managed identities. This is preferred for the CDC agent deployment process.


  • If you don't already have an Azure account, create on via the Azure portal before continuing.
  • An existing Azure virtual machine (VM). If you don't already have a virtual machine, you can build one using the guidance at Create virtual machine.

Create a managed identity

To create and configure a managed identity in Azure:

  1. Sign in to the Azure portal.
  2. In the search field, enter Managed Identities. Under Services, click Managed Identities.
  3. Select the first option for managed identities. Once you are on the Managed Identities page, click the Create button from the top navigation.

    Create Managed Identity

  4. On the Create User Assigned Managed Identity page, select the subscription, the resource group, and the location. Finally, give the managed identity a name.

  5. Click Review + create.
  6. After validation has passed, click Create to provision the managed identity.

Assign identities to a virtual machine

To assign a user-assigned identity to a virtual machine, your account needs the Virtual Machine Contributor and Managed Identity Operator role assignments.

  1. Log in to the Azure portal to connect to your virtual machine.
  2. Navigate to the desired virtual machine, and click IdentityUser assigned+Add.
  3. Click the user-assigned identity you want to add to the virtual machine, then click Add.

Next: Blob storage.