Manually enable the Gateway's System Assigned Identity & required Roles

This article offers clear instructions on how to check the status of the Gateway's system assigned identity, outline the steps to activate it if it is currently inactive, and detail the process for assigning the required roles to the system assigned

In this article:

• Check if a VM's System Assigned Identity is Enabled
• Enable System Assigned Identity
• Assign the Owner Role to the Gateway VM's Identity on a Resource Group
• Assign the Network Contributor Role to the Gateway VM's Identity on a VNet

Check if a VM's System Assigned Identity is Enabled

1. Go to Azure Portal → Virtual Machines
2. Select your VM.
3. In the left menu, click Identity under Settings.
4. Under the System assigned tab, check if Status is set to On

Return to top

1. Go to Azure Portal → Virtual Machines
2. Select your VM.
3. In the left menu, click Identity under Settings.
4. Toggle Status to On.
5. Click Save.

Return to top

Assign the Owner Role to the Gateway VM's Identity on a Resource Group

1. Go to Resource Groups → Select the Rimo3 resource group.
2. Click Access control (IAM) → Add role assignment.
3. Choose:
   1. Role: Owner
   2. Principal: Select the Gateway VM (it will appear as a managed identity).
4. Click Next →  Review + assign.

Return to top

Assign the Network Contributor Role to the Gateway VM's Identity on a VNet

1. Go to Virtual Networks → Select the Virtual Network (VNet) that the Gateway is linked to.
2. Click Access control (IAM) → Add role assignment.
3. Choose:
   1. Role: Network Contributor
   2. Principal: Select the Gateway VM (it will appear as a managed identity).
4. Click Next → Review + assign.

Return to top