From b8ccb5548a1da99d7a79c7e54bd10504f2feea73 Mon Sep 17 00:00:00 2001
From: Nicholas Karsky <nick.karsky@microsoft.com>
Date: Thu, 14 Jan 2021 16:39:20 -0500
Subject: [PATCH] Added service principal error section

---
 docs/faq.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/faq.md b/docs/faq.md
index 106753144..3fa7d8b3e 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -27,6 +27,10 @@ When you are deploying via terraform, once you pick a name for the terraform scr
 
 This is likely an issue with the `Application.ReadWrite.OwnedBy` permissions that is required by the service principal `osdu-mvp-[your unique here]-terraform`. Please verify that the service principal has been granted the permission and that the permission has recieved admin consent.
 
+## My Service Principal is running into permission errors
+
+This is most likely a problem with the permission of the service principal that is running the deployment. The service principal that is running the deployment must have permissions to to create other service principals. If it doesn't have this permission, it might be a limitation of your AAD tenant configuration. Please discuss with your AAD tenant provider to see if permission can be granted.
+
 
 # Infrastructure Provisioning Questions
 
-- 
GitLab