How do I implement role-based access control (RBAC) in Azure?

Anonymous
2023-07-04T15:19:00.7866667+00:00

i want to know how to implement a role based access control in azure

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
967 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,930 questions
Microsoft Security Microsoft Entra Microsoft Entra ID
0 comments No comments
{count} votes

Accepted answer
  1. Luke Murray 11,436 Reputation points MVP Volunteer Moderator
    2023-07-04T19:51:28.6633333+00:00

    First step will be understanding the roles, and what role is important for one purpose.

    Then reviewing the IAM of the REsources/Management Group/Subscriptions you are trying to manage.

    I would create a few AAD groups, for Owner, Contributor, User Access, and any other roles, then assign the role to that group, and remove everyone who is directly assigned to those relevant groups.

    That way you can easily control who does and doesn't have access.

    You can build custom roles, which can reduce the amount of power people have and the resources they see, if the built-in roles don't work, and do the same thing.

    The trick is knowing who needs access to Azure resources, when they need access.

    And don't forget to include PIM, Privilaged Identity Management will allow you to approve access to some higher roles like Contributor, but allow users to have access to other roles like Reader, or Resource Group Contributor when they need it.

    2 people found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.