Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
711 questions
I am unable to view service tags while adding a network rule in Azure Firewall.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 84%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Sayyad, Altamash Salim (Cognizant)
0
Reputation points
Title
Unable to View Service Tags When Adding a Network Rule in Azure Firewall
Details
I am unable to view service tags while adding a network rule in Azure Firewall.
I am selecting the Destination type as Service Tag, but I can only see Office 365 service tags and not others. Kindly help me understand what's missing.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 17%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor2025-01-09T06:06:50.1133333+00:00 Hi @Sayyad, Altamash Salim (Cognizant) ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
Could please the share the screenshot of the Network rule and servicetag in the firewall?
Which SKU are you using?
Thanks,
Rohith -
Sayyad, Altamash Salim (Cognizant) 0 Reputation points
2025-01-09T07:09:56.3+00:00 Screenshot attached, I am using Premium SKU.
-
Sayyad, Altamash Salim (Cognizant) 0 Reputation points
2025-01-09T07:10:09.19+00:00 -
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-10T07:53:09.8766667+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Greetings.
Did you select the Service Tag under the Destination Type? In my setup, I’m also using the Premium SKU for the firewall and can see all the Service Tags.
which region are you deployed the firewall?
Thanks,
Rohith
-
Sayyad, Altamash Salim (Cognizant) 0 Reputation points
2025-01-10T09:14:37.7833333+00:00 I am have below permissions assigned through a Custom PIM Role.
is anything missing in the role because of which it does not let me read service tags?
what would be least permission i should have in-order to view the service tags in my Firewall network rules?
"permissions": [ { "actions": [ "Microsoft.Network/azurefirewalls/*/read", "Microsoft.Network/azureFirewalls/applicationRuleCollections/read", "Microsoft.Network/azurefirewalls/providers/Microsoft.Insights/logDefinitions/read", "Microsoft.Network/azureFirewalls/natRuleCollections/read", "Microsoft.Network/azureFirewalls/networkRuleCollections/read", "Microsoft.Network/azurefirewalls/providers/Microsoft.Insights/metricDefinitions/read", "Microsoft.Network/azureFirewallFqdnTags/read", "Microsoft.Network/firewallPolicies/*/read", "Microsoft.Insights/*/read", "Microsoft.Network/azurefirewalls/write", "Microsoft.Network/azureFirewalls/applicationRuleCollections/write", "Microsoft.Network/azureFirewalls/natRuleCollections/write", "Microsoft.Network/azureFirewalls/networkRuleCollections/write", "Microsoft.Network/firewallPolicies/*/write", "Microsoft.Network/ipGroups/read", "Microsoft.Network/ipGroups/write", "Microsoft.Network/locations/serviceTagDetails/read", "Microsoft.Network/locations/serviceTags/read" -
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-15T01:21:47.33+00:00 Hi @Sayyad, Altamash Salim (Cognizant),
We are reaching out to the internal team to get more information related to your query and will get back to you as soon as we have an update.Thanks,
Rohith
-
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-15T07:59:56.5733333+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Good day!
please follow the troubleshooting steps below
- Could you please try in different browser.
- Try with different user account
- Change region
If not helps you use the PowerShell or cli
Refer this link: https://learn.microsoft.com/en-us/azure/firewall/service-tags
Thanks,
Rohith
-
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-16T01:07:00.6066667+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Greetings!
Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Regards,
Rohith.
-
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-17T01:51:58.1466667+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Greetings!
Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Regards,
Rohith.
-
Sayyad, Altamash Salim (Cognizant) 0 Reputation points
2025-01-20T11:50:32.2433333+00:00 Tried different browser, issue remains the same,
it works for different user with different role/permissions.
but it doesn't work for me with the current custom role.
-
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-22T10:25:47.07+00:00 Hi @Sayyad, Altamash Salim (Cognizant),
Could you please attempt this using either PowerShell or the CLI.
Refer this doc :https://learn.microsoft.com/en-us/azure/firewall/service-tags#configuration.
Hope this helps.
Please let us know if we can be of any further assistance here.
Thanks,
Rohith -
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-24T08:39:22.45+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Greetings!
Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Regards,
Rohith.
-
Rohith Vinnakota 2,180 Reputation points Microsoft Vendor
2025-01-27T11:24:13.02+00:00 Hi @Sayyad, Altamash Salim (Cognizant)
Greetings!
Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Regards,
Rohith.
Sign in to comment
Sign in to answer