.png)
Solution
Assign one of the following roles to the relevant tenant account in the subscription:
- Azure Resource Manager Owner
- Azure Resource Manager Contributor
- Storage Account Contributor
1291 - FSR to Azure error: Client does not have authorization to perform action Print
Modified on: Wed, 27 Aug, 2025 at 10:00 AM
Did you find it helpful? Yes No
Send feedbackSorry we couldn't be helpful. Help us improve this article with your feedback.
 1.png)
Symptom
When a user attempts Full System Recovery (FSR) of an account to Azure, the following error presents:
Error: The client "TenantAccount" with object id 'ID' does not have authorization to perform action 'Microsoft.Storage/storageAccounts/listKeys/action' over scope '/subscriptions/ID/resourceGroups/RSG-CORE-DR/providers/Microsoft.Storage/storageAccounts/redstorbackup' or the scope is invalid. If access was recently granted, please refresh your credentials.Cause
Only certain roles have rights to initiate FSR to Azure.