Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
0 answers
To remove access of re-enabling cancelled subscriptions by subscription owners
Problem Statement Once any subscription goes into disabled state upon cancellation, as per our organization hierarchy setup, we would programmatically move that subscription to decommissioned Management Group where subscription owner won't have…
Azure Role-based access control
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 53%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
2 answers
users associated with resource group
hi, i am trying to build a data set which represents which user has access to which RG at given moment. basically i am trying to capture Resource Group >> Access control (IAM) >> Role assignments using Azure API. my idea is…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,255 questions
asked 2022-07-01T12:55:10.877+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 70%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Prasad, Rakesh
221
Reputation points
commented 2022-07-07T22:09:41.047+00:00
JamesTran-MSFT
36,911
Reputation points Microsoft Employee
Moderator
1 answer
Limited power User Admin for adding/removing users from a single user group?
Hi there, Is it possible to give a user a limited variation of the Security Admin role for a single user group in Azure AD? i.e. we have a vendor we want to mange adding/removing users from a single group in Azure AD and no other privileges. …
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-07-01T14:39:19.27+00:00
David Broggy
6,376
Reputation points MVP
Volunteer Moderator
answered 2022-07-07T02:26:23.413+00:00
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA
27,526
Reputation points
Moderator
1 answer
One of the answers was accepted by the question author.
Synapse Roles with only required permissions
All the available Synapse RBAC roles have DELETE and CREATE permissions for Database and Lake DB. I want to restrict the permissions to the users ability to create or delete. Can the available roles be customised to use only below permissions or a custom…
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
5,385 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-07-04T12:01:38.207+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 81%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Kumar, Senthil
156
Reputation points
accepted 2022-07-06T03:10:28.163+00:00
Kumar, Senthil
156
Reputation points
1 answer
Error loading AD Assigned Roles
Across multiple subscriptions I am getting the following error: We weren’t able to load information about your access to the directory. Try again later. Is there an known issue that is affecting this? It seems similar to this issue:…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,255 questions
asked 2022-07-05T16:29:39.45+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 74%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Felipe Schmitt
1
Reputation point
answered 2022-07-05T21:15:50.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
37,206
Reputation points Microsoft Employee
Moderator
1 answer
One of the answers was accepted by the question author.
Custom Role in Azure Synapse
Can i create a Custom role or edit existing role in Azure Synapse, where i can provide only SELECT query access using Built-in serverless Pool and Pipelines access should be restricted Ideally i'm looking for a role who can only read SQL…
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
5,385 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-06-29T18:41:46.123+00:00
Kumar, Senthil
156
Reputation points
commented 2022-07-05T02:03:36+00:00
Kumar, Senthil
156
Reputation points
1 answer
need to implement admin access on linux sql vms excluding other vms in the subscription
Hi Team I want to apply RBAC role on subscription level that should provide admin access only on linux sql vms under the subscription excluding other linux and windows vms on the same subscription. For windows vms we can restrict access using gro …
SQL Server on Azure Virtual Machines
SQL Server on Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
412 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-06-07T06:23:37.77+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 19%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
arun kumar
71
Reputation points
commented 2022-07-01T23:44:13.757+00:00
JamesTran-MSFT
36,911
Reputation points Microsoft Employee
Moderator
1 answer
One of the answers was accepted by the question author.
Permissions on Subscription vs Permissions on resource group.
I have requirement to provide resources to a Team where they want to work independently. My single requirement for me is that all traffic going outside to internet should be managed by me via firewall, they should not have firewall access and rest they…
Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
3,648 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
97 questions
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,255 questions
asked 2022-06-23T09:54:14.143+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 95%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVK%3C/text%3E%3C/svg%3E)
Vijay Kumar
166
Reputation points
commented 2022-07-01T08:19:53.303+00:00
Vijay Kumar
166
Reputation points
0 answers
How to create custom role in Azure Data Lake Analytics (ADLA) only for monitoring scenarios
From official doc about role-based access control in ADLA, the Data Lake Analytics Developer role could: Submit jobs. Monitor job status and the progress of jobs submitted by any user. See the U-SQL scripts from jobs submitted by any…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Azure Data Lake Analytics
Azure Data Lake Analytics
An Azure on-demand analytics job service.
113 questions
asked 2022-06-29T09:02:01.017+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 66%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWW%3C/text%3E%3C/svg%3E)
Weiyi Wang
1
Reputation point
commented 2022-06-30T12:28:21.86+00:00
Weiyi Wang
1
Reputation point
3 answers
One of the answers was accepted by the question author.
Azure VM status permissions
Hi All i have a resource groups lets say resourcegroup1 it has Azure Virtual Desktops in it and my requirement is to know what is the status of the Virtual Machine(Azure virtual desktop VMs) in this resource group i.e it is running or stopped state…
Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
9,087 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,853 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,255 questions
asked 2022-06-21T18:40:25.397+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 7.000000000000001%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Glenn Maxwell
12,876
Reputation points
accepted 2022-06-22T21:21:42.587+00:00
Glenn Maxwell
12,876
Reputation points
1 answer
One of the answers was accepted by the question author.
I have a query that what permission is required to have access to the Fix button in the Microsoft Defender for Cloud.
Currently, I have a role of Security Admin on a particular subscription. In Microsoft Defender for Cloud, I need to apply one recommendation through Quick fix functionality. However, the quick button is not enabled. My ask here is that what level of…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2022-06-20T07:05:22.61+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 96%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
Divyang Baria
21
Reputation points
commented 2022-06-20T08:27:41.043+00:00
Divyang Baria
21
Reputation points
1 answer
One of the answers was accepted by the question author.
azure RBAC
hi team, can anyone advise what is the priority when it comes to RBAC in the azure AD hierarchy? suppose i have on the tenant management group a user who is assigned a reader role, however i assigned also the owner role for the same user on the…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,255 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 26%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
access Azure function using RBACv without function key
Hi, I am trying to access a azure function(server less) from app service without using function key and using RBAC. While calling function, it is showing unauthorize access. But when i am trying to access a function in Durable function without function…
Azure Functions
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
5,953 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2021-08-12T06:55:04.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 67%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mohit Khas
21
Reputation points
answered 2022-05-25T20:33:26.253+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 86%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPA%3C/text%3E%3C/svg%3E)
Prasun Aggarwal
1
Reputation point Microsoft Employee
0 answers
How to Grant Service Principal read/write access To Azure SQL Relational Table
Can someone help me modify CDennig's bicep code that grants a Kubernetes pod service principal access to Cosmos DocumentDB to grant the service principal of an azure app service web app (instead of a Kubernetes pod service principal) and to…
Azure SQL Database
Azure SQL Database
An Azure relational database service.
6,363 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-05-16T00:48:55.22+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 23%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESH%3C/text%3E%3C/svg%3E)
Siegfried Heintze
1,906
Reputation points
commented 2022-05-19T15:33:47.053+00:00
Oury Ba-MSFT
21,016
Reputation points Microsoft Employee
Moderator
2 answers
One of the answers was accepted by the question author.
Can M365 groups be used for Azure portal administration like assigning RBAC roles like key vault, storage key contributor or any privileged role like owner, contributor instead of azure Security groups. What is the security risk
I believe that M365 user groups should be limited to M365 services and not be used for any azure portal access except for applications like power BI application which needs a license. M365 user\email accounts are vulnerable to phishing attacks and any…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
0 answers
Prajakta PalCan you help me how to create role in azure and after integration that role should reflect in the key cloak ( role mapping for the user between Azure and key cloak)
we have done key cloak and azure integration now we need help to map the role of all user in key cloak to Azure . Can you help me how to create role in azure and after integration that role should reflect in the key cloak ( role mapping for the user…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-05-10T07:20:34.213+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 8%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Prajakta Rajendra Palaskar
1
Reputation point
commented 2022-05-11T12:24:32.41+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 57.00000000000001%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Shashi Shailaj
7,631
Reputation points Microsoft Employee
Moderator
1 answer
One of the answers was accepted by the question author.
APIM access to storage account with ACL
I have few APIM proxies which inserts incoming payloads into different ADLS Gen2 folders. i.e. /api/v1/customer will store payload into "mycontainer/customers" folder at ADLS Gen2 /api/v1/product will store payload into…
Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,465 questions
Azure Data Lake Storage
Azure Data Lake Storage
An Azure service that provides an enterprise-wide hyper-scale repository for big data analytic workloads and is integrated with Azure Blob Storage.
1,563 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-05-06T03:51:13.513+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 30%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVT%3C/text%3E%3C/svg%3E)
Vikas Tiwari
771
Reputation points
commented 2022-05-09T13:33:31.127+00:00
Vikas Tiwari
771
Reputation points
1 answer
One of the answers was accepted by the question author.
SQL in Azure VM, What are minimal access rights to make "SQL Server configuration" in Azure portal workable ?
What are minimal access rights to make "SQL Server configuration" in Azure portal workable ? VM contributor together with SQL* roles are not sufficient , It hangs in loading. For owner it works of course.
SQL Server on Azure Virtual Machines
SQL Server on Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
412 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-04-29T06:20:59.997+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 60%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Martinek, Jiri
41
Reputation points
accepted 2022-05-07T13:45:24.57+00:00
Martinek, Jiri
41
Reputation points
0 answers
Permissions to perform /register/action operations on the resource provider
I am trying to register a resource provider with the following document, but it is failing. As you can see in the image, I get an error message that I do not have permission to /register/action operation. My account was created by an…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 48%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
0 answers
What level of access is required to support all PaaS Services in Azure ?
Level of Access -> RBAC roles and at which level of resource hierarchy Scope Deploy & configure and decommission PaaS Services Backup and restore services, configurations, data (databases & storage) Monitor services and configure…
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
985 questions
asked 2022-04-01T12:00:38.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
commented 2022-04-21T08:25:47.273+00:00
Anonymous