Hi All,
I deployed a Cisco Meraki VMX appliance on Azure, which created two resource groups.
The virtual machine has been created in a different group than the appliance. The issue is that the VM is unable to connect to the internet, and I am unable to assign a Network Security Group (NSG) to the VM as the appliance has a default deny rule in place.
Pls find the error
Failed to update network interface
Failed to update the network interface 'MerakiVPNNic'. Error: The client 'Email Id' with object id '02ebd171-28d0-41bc-abdf-1ad78f2aa335' has permission to perform action 'Microsoft.Network/networkInterfaces/write' on scope '/subscriptions/8614f0e9-4f5c-45e7-910d-c333db70e733/resourceGroups/mrg-cisco-meraki-vmx-20240408124729/providers/Microsoft.Network/networkInterfaces/MerakiVPNNic'; however, it does not have permission to perform action 'Microsoft.Network/networkSecurityGroups/join/action' on the '0' linked scope(s) '' or the linked scope(s) are invalid and is blocked by deny assignments on the '1' linked scope(s) '/subscriptions/8614f0e9-4f5c-45e7-910d-c333db70e733/resourceGroups/mrg-cisco-meraki-vmx-20240408124729/providers/Microsoft.Network/networkSecurityGroups/MerakiVPNNic-nsg'.
Failed to create a new network security group
Failed to create a new network security group 'MerakiVPNNic-nsg'. Error: The client 'Email Id' with object id '02ebd171-28d0-41bc-abdf-1ad78f2aa335' has permission to perform action 'Microsoft.Network/networkSecurityGroups/write' on scope '/subscriptions/8614f0e9-4f5c-45e7-910d-c333db70e733/resourceGroups/mrg-cisco-meraki-vmx-20240408124729/providers/Microsoft.Network/networkSecurityGroups/MerakiVPNNic-nsg'; however, the access is denied because of the deny assignment with name 'System deny assignment created by managed application /subscriptions/8614f0e9-4f5c-45e7-910d-c333db70e733/resourceGroups/CiscoMeraki-VPN/providers/Microsoft.Solutions/applications/MerakiVPN' and Id '2f62fb3724914da0a6b16eb45c191815' at scope '/subscriptions/8614f0e9-4f5c-45e7-910d-c333db70e733/resourceGroups/mrg-cisco-meraki-vmx-20240408124729'.
Pls note I am the owner of the both RG and the subscription
