nvoke-AzACRTokenGenerator: System-Assigned Identity Tokens Are Not Usable Outside ACR Task

[agroyz]

During testing, I found that token extraction via ACR Tasks works for both system-assigned and user-assigned managed identities. However, while tokens from user-assigned identities can be used externally (e.g., to perform control plane operations), tokens from system-assigned identities—even with Owner permissions—only work within the ACR task’s container environment. Is this expected behavior?

[kfosaaen]

That's not expected behavior. I can run a test in my environment to see if that's the case on my end.

Is it possible that you ran into CAPs for Workload Identities?

[agroyz]

I don't think it's a conditional access policy, because in the IMDS case, both system and user tokens work anywhere once stolen; I tested this.