![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 0%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOE%3C/text%3E%3C/svg%3E)
Hello Prakash
Thank you for the feedback. The key limitation here is the scope context.
Even though the assigned permissions are valid for managing reservation resources, Azure Reservations are billing-scoped, not management group-scoped. This means:
Assigning permissions at the Root Management Group level won’t grant access to reservation orders.
You must ensure that the role (Billing Reader or a custom role with the proper permissions) is explicitly assigned at the billing account or billing profile level in the Azure portal.
1. Go to the Azure portal → Search for “Cost Management + Billing”
2. In the Billing scopes, select the Billing account.
3. Under Access control (IAM), ensure you have:
- Billing Reader, or
- A custom role with all required Microsoft.Capacity/* permissions
- Assigned at the billing account level.
Please go through https://learn.microsoft.com/en-us/azure/cost-management-billing/reservations/manage-reserved-vm-instance
Do remember to mark as “Accepted Answer” and consider giving it an upvote. This helps others in the community as well.