![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 28.000000000000004%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Azure IoT Operations
Azure IoT Operations is a set of modular services enabled by Azure Arc.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
Hello Abby Greentree,
Welcome to Microsoft Q&A and Thank you for reaching out,
What’s actually happening
The “Artifact Pull Secrets” authentication option referenced in the tutorial is outdated and no longer available in the latest version of Azure IoT Operations.
In current AIO environments, the supported authentication methods for Registry Endpoints are:
- System Assigned Managed Identity
- User Assigned Managed Identity
- Anonymous
This is why you’re only seeing these three options “Artifact Pull Secrets” has been removed/deprecated and is not exposed in the UI anymore.
Why you’re seeing this mismatch
- Documentation is outdated
- The tutorial reflects an older or transitional version of the product
- Azure IoT Operations has since evolved, but the documentation hasn’t fully caught up
- Shift to Managed Identity–based authentication
- Azure has standardized on:
- System/User Assigned Managed Identity
- Secret-based approaches like Artifact Pull Secrets are no longer the recommended or supported pattern in most scenarios
- Previous prerequisites no longer apply
Earlier, “Artifact Pull Secrets” depended on:
- Kubernetes secrets configuration
- Registry setups without managed identity support
These are no longer required in the current model, as Managed Identity replaces this flow
- Registry compatibility
- “Artifact Pull Secrets” was mainly used when registries didn’t support managed identity
- With services like Azure Container Registry (ACR), Managed Identity + AcrPull role is now the standard approach
What you should do now
Use Managed Identity
Choose System Assigned Managed Identity or User Assigned Managed Identity
Assign the required role on your registry AcrPull
This is the supported, secure, and future-proof method
About other options
Anonymous → only for public registries
When to take further action
- If your scenario strictly requires secret-based authentication (rare now), or
- If you believe your environment should still support it
You can raise a support request but in most cases, this behavior is by design in the latest AIO version
Artifact Pull Secrets is no longer supported / removed
The tutorial is outdated
Managed Identity is now the standard and recommended approach
Your current UI (showing only MI + Anonymous) is expected behavior
The “Artifact Pull Secrets” option mentioned in the tutorial is no longer available in the current version of Azure IoT Operations. The service has moved to Managed Identity–based authentication, and the supported options today are System Assigned Managed Identity, User Assigned Managed Identity, and Anonymous.
Because of this change, you won’t see “Artifact Pull Secrets” in the UI. We recommend using Managed Identity and assigning the appropriate permissions (such as AcrPull on your container registry) for secure access.
The discrepancy you’re seeing is due to the tutorial being outdated and not yet aligned with the latest service updates.
Please refer this
I Hope this helps. Do let me know if you have any further queries.
If this answers your query, please do click Accept Answer and Yes for was this answer helpful.
Thank you!
