![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 38%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
456 questions
Privileged Administrator Roles are high-level roles that provide users with elevated permissions to manage resources across the Azure environment. These roles have more access and control than typical user roles, which makes them essential for managing critical aspects of your environment. Examples of Privileged Administrator Roles include Global Administrator, Security Administrator, and User Access Administrator.
Job Function Roles, on the other hand, are roles specifically designed to provide users with permissions to perform particular job functions or tasks within the Azure environment. These roles are more focused on specific responsibilities and have a narrower scope of access compared to Privileged Administrator Roles. Examples of Job Function Roles include Network Contributor, Storage Account Contributor, and Virtual Machine Contributor.
The reason why only Owner, Contributor, and User Access Administrator assignment types are displayed as "Privileged" in your Azure AD PIM might be due to your organization's specific configurations. These roles are considered privileged because they grant elevated permissions that allow users to manage resources at a higher level.