Share via

Unable to add azure role assignment to resources

James Thorniley 21 Reputation points
2022-05-20T11:57:15.183+00:00

Hi,

When I try to assign IAM role assignments to a resource the menu option says "disabled" (see screenshot):

204020-image.png

When I click on "view my access" I can see I appear to have "Contributor" role:

204085-image.png

My question is:

  • What access role would I need in order to be able to assign role access?
  • What access role would I need to be able to change other user's ability to assign role access?
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
978 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator
    2022-05-20T13:06:20.71+00:00

    Hi @James Thorniley ,

    Thanks for reaching out.

    I understand you are trying to assign Azure roles but add role assignment option will be disabled for you.

    In order to assign roles to users, you must have Microsoft.Authorization/roleAssignments/write permissions such as:

    User Access Administrator which allows you to manage user access to Azure resources or

    Owner role will allow you full access to manage all resources, including the ability to assign roles in Azure RBAC.

    Hope this will help.

    Thanks,
    Shweta

    ----------------------------------------------

    Please remember to "Accept Answer" if answer helped you.

    1 person found this answer helpful.

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

    Comments have been turned off. Learn more

  2. Tim Morley 0 Reputation points
    2024-08-15T19:53:51.1766667+00:00
    1. Go to Azure Portal
    2. Navigate to Entra ID (Azure AD)
      • From the left-hand menu, select "Entra ID" (formerly known as Azure Active Directory).
    3. Go to Properties
      • In the Entra ID (Azure AD) overview, scroll down in the left-hand menu and click on "Properties".
    4. Enable the Toggle
      • In the Properties blade, look for the "Access management for Azure resources" toggle.
      • Turn it On: Switch the toggle to "On" to enable access management for Azure resources.
    5. Save Changes
      • After enabling the toggle, make sure to click "Save" to apply the changes.

    Once this toggle is enabled, you'll be able to manage permissions across Azure resources, and the "Add role assignment" feature should now be accessible where you need it.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.