Share via

rolesanywhere support in Azure ?

Ekambaram V 30 Reputation points
2025-05-07T06:32:23.2633333+00:00

To set up the CI system using GitHub Actions, we need to access Azure resources through CLI commands. For this, in AWS, we used RolesAnywhere and configured it in our GitHub repository as per the instructions in this document:

https://medium.com/@rajdeep.617/aws-iam-roles-anywhere-bye-bye-iam-secrets-202a8b33ca55

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
979 questions
Accepted answer
  1. Navya 20,180 Reputation points Microsoft External Staff Moderator
    2025-05-07T11:23:41.1766667+00:00

    Hi @Ekambaram V

    Azure doesn’t have a direct equivalent to AWS IAM RolesAnywhere, but it supports a similar approach through:

    1.Workload Identity Federation with OpenID Connect (OIDC): This allows GitHub Actions to securely access Azure resources without storing long-lived credentials, similar to how RolesAnywhere works with short-term credentials.

    2.Azure Managed Identities: Azure Managed Identities provide an identity for services to authenticate with Azure resources securely. You can assign a managed identity to your GitHub Actions workflow to access Azure resources without storing credentials.

    For more information, please refer to: https://learn.microsoft.com/en-us/azure/developer/github/connect-from-azure

    Hope this helps! Let us know if you have any further questions.

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.