Omsagent managed identity conflicts with other identities

[smartaquarius10]

Team,

Currently we are using aad pod identity but we thought to delete it and start using managed identities directly to interact with key vault. We have provided our own kubelet identity to AKS and given access to this identity on key vault. After this we can easily get the secrets using this code

var azureServiceTokenProvider = new AzureServiceTokenProvider();
            var kv = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
            var kvsecret=await kv.GetSecretAsync("https://mykv.vault.azure.net/", "mysecret");
            return kvsecret.Value.ToString();

The moment we enable omsagent, C# throws an exception that multiple userassigned managed identities are available.

How to resolve this. Is there anyway to choose a different resource group for oms agent managed identity.

[microsoft-github-policy-service]

This issue has been automatically marked as stale because it has not had any activity for 30 days. It will be closed if no further activity occurs within 7 days of this comment. @miwithro