Azure interactive login asking for AzureAD permissions?

[Alejandro Villarreal]

I'm trying to test an image build with Azure and interactive login. I get to the screen to enter the device code, select the account to use, but then I get this message:

I'm not sure what kind of permissions this is talking about. Feels like AzureAD permissions, but I don't see why it would need those at all (since I'm trying to use interactive login, not a service principal, so there's no need to create one).

Of note, my account has Owner role on the Azure subscription I'm trying to use, so this is not about missing RBAC permissions.

I can't find any documentation saying that Packer would need permissions at the AzureAD level, or registers itself as an app there... is that what it's trying to do? And if so, what for?

For completeness, this is how my console looks when I get to this point (and eventually just cancels due to timeout):

[Alejandro Villarreal]

Hmm I don't know why the images disappeared from the original post, here's another attempt:

[Alejandro Villarreal]

Ugh, annoying. The message reads "Need admin approval. Packer for Azure needs permission to access resources in your organization that only an admin can grant. Please ask an admin to grant permission to this app before you can use it."

And the console has nothing out of the ordinary.