Access control for our data platform

Sharma, Rahul 80 Reputation points

Hi TEam,

This question in not from Azure but for Azure. My customer is looking for some solution a centralize place from which we can provide access to multiple azure services like datalake, Synapse sql pool, Analysis services.

Please suggest if you know any service from Azure or outside Azure to use for user approval and granting access on the azure services.


Rahul Sharma

Microsoft Identity Manager
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
656 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,602 questions
{count} votes

Accepted answer
  1. Carlos Solís Salazar 17,786 Reputation points MVP

    Four your requirement there are some option in azure:

    1. Azure Active Directory (Azure AD)
    2. Azure Role-Based Access Control (RBAC)
    3. Azure Policy
    4. Azure Lighthouse

    To implement a suitable solution, it's important to understand your client's specific requirements, including the level of control and granularity they need in access management. Azure AD along with RBAC is often a good starting point for most access management needs.

    If this information was helpful and you need more details or additional assistance, please feel free to ask. Your satisfaction is important, so if you find the response meets your expectations, I invite you to accept it.

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. James Hamil 23,136 Reputation points Microsoft Employee

    Hi @Sharma, Rahul , yes, Azure provides a solution for centralized access management to multiple Azure services. Azure Active Directory (Azure AD) is a cloud-based identity and access management service that helps you manage access to your applications and services. You can use Azure AD to manage access to Azure services like Data Lake, Synapse SQL Pool, and Analysis Services.

    Azure AD provides features like Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Conditional Access to help you secure access to your applications and services. You can also use Azure AD to manage access to your on-premises applications and services.

    To manage access to Azure services, you can use Azure AD's role-based access control (RBAC) feature. RBAC allows you to grant permissions to users, groups, and applications at a granular level. You can assign built-in roles like Owner, Contributor, and Reader, or create custom roles to meet your specific needs.

    To get started with Azure AD, you can create an Azure AD tenant and add users and groups to it. You can then assign roles to these users and groups to manage access to your Azure services. You can also integrate Azure AD with your on-premises Active Directory to synchronize user accounts and passwords.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,


    0 comments No comments