How can I prevent external invited users (Guests) from RBAC assignments?

Fausto Pichardo 0 Reputation points
2023-04-11T22:36:09.5233333+00:00

I have a security need to govern role assignments. In my use case, I need to prevent RBAC assignments to guest/external users in my tenant. My initial thought is to use Azure Policy, but after countless hours of editing custom code and seeking Microsoft assistance, I am no closer to a workable solution. Thanks in advance

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
686 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
805 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Givary-MSFT 28,576 Reputation points Microsoft Employee
    2023-04-13T06:17:40.23+00:00

    @Fausto Pichardo Thank you for reaching out to us, As I understand you want to prevent guest accounts from showing up or list of guest accounts should not show up while performing RBAC, is my understanding is correct ? Also please me with the case number which you worked with us on this issue to understand what all steps have been taken.
    User's image

    User's image