![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
830 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Anonymous ,
Thanks for reaching out.
I understand that you are looking for all roles which are required to access PaaS services to be included in single RBAC role.
Unfortunately, Azure RBAC does not provide any built-in or custom role having all PaaS related operations in single RBAC role.
However, RBAC provides several built-in roles to perform operation based on resource providers. eg. Microsoft.Storage resource provider provides Microsoft.Storage/storageAccounts/delete operation to delete Storage Account and Azure provides you the flexibility to combine several these operations by Azure RBAC to provide granular access control to resources based on your requirement.
I would recommend you to identity all the permissions you need to access PaaS resources and create your own custom role based on the needs.
Hope this will help.
Thanks,
Shweta
--------------------------------------------
Please remember to "Accept Answer" if answer helped you.