Solution
Assign the relevant tenant account one of the following roles in the subscription:
- Azure Resource Manager Owner role
- Azure Resource Manager Contributor role
- Storage Account Contributor role
1291 - FSR to Azure error: "[Client] does not have authorization to perform action"
Symptom
11:12:16: ERROR - Error: The client “TenantAccount here” with object id 'a2623cfc-f750-4908-bbd3-72c8f0fb252a' does not have authorization to perform action 'Microsoft.Storage/storageAccounts/listKeys/action' over scope '/subscriptions/815438fa-5187-4afa-bec4-25c326bbbc2f/resourceGroups/RSG-CORE-DR/providers/Microsoft.Storage/storageAccounts/redstorbackup' or the scope is invalid. If access was recently granted, please refresh your credentials
Cause
Only certain roles have rights to initiate FSR to Azure.