What does subscription scope mean?

Michael Stoler 290 Reputation points


I created an Azure Storage Account.

  1. I noticed in the Access List, Role Assignments my scope is set to Subscription. What does this indicate?
  2. When granting access on Azure Synapse as a linked service, I can use the Authentication Key "Account key" and the Account Selection method as "From Subscription". What is this doing? How does access from Azure Subscritption work?

Thank You,


Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,758 questions
{count} votes

Accepted answer
  1. KarishmaTiwari-MSFT 18,637 Reputation points Microsoft Employee

    @Michael Stoler Thanks for posting your query on Microsoft Q&A.

    1. The scope of a role assignment determines the extent of its reach. In your case, the scope is set to Subscription. This means that the role assignment applies to all resources within the subscription.
    2. The Account Selection Method determines how the linked service will be authenticated. When you select From Subscription, the linked service will authenticate using the credentials of your Azure subscription <sup>1</sup>.

    Additional Reading:


    Assign an Azure role for access to blob data



    Let me know in the comments if you have further questions. Comment is the fastest way to reach the experts for any questions or help you need.

    Please don’t forget to Accept Answer and hit Yes for "was this answer helpful" wherever the information provided helps you, this can be beneficial to other community members for remediation for similar issues.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful