Roles and permissions
Azure Advisor provides recommendations based on the usage and configuration of your Azure resources and subscriptions. Advisor uses the built-in roles provided by Azure role-based access control (Azure RBAC) to manage your access to recommendations and Advisor features.
Roles and their access
The following table defines the roles and the access they have within Advisor:
Role | View recommendations | Edit rules | Edit subscription configuration | Edit resource group configuration | Dismiss and postpone recommendations |
---|---|---|---|---|---|
Subscription Owner | X | X | X | X | X |
Subscription Contributor | X | X | X | X | X |
Subscription Reader | X | -- | -- | -- | -- |
Resource group Owner | X | -- | -- | X | X |
Resource group Contributor | X | -- | -- | X | X |
Resource group Reader | X | -- | -- | -- | -- |
Resource Owner | X | -- | -- | -- | X |
Resource Contributor | X | -- | -- | -- | X |
Resource Reader | X | -- | -- | -- | -- |
Note
Access to view recommendations is dependent on your access to the recommendation's impacted resource.
Permissions and unavailable actions
Lack of proper permissions can block your ability to perform actions in Advisor. Following are some common problems.
Unable to configure subscriptions or resource groups
When you attempt to configure subscriptions or resource groups in Advisor, you may see that the option to include or exclude is disabled. This status indicates that you do not have a sufficient level of permission for that resource group or subscription. To resolve this issue, learn how to grant a user access.
Unable to postpone or dismiss a recommendation
If you receive an error when trying to postpone or dismiss a recommendation, you might not have sufficient permissions. Dismissing a recommendation means you can't see it again unless manually reactivated, so you might potentially overlook important advice for optimizing Azure deployments. Therefore, it’s crucial that only users with sufficient permissions can dismiss recommendations. Make sure that you have at least contributor access to the impacted resource of the recommendation you're postponing or dismissing. To resolve this issue, learn how to grant a user access.
Next steps
This article gave an overview of how Advisor uses Azure RBAC to control user permissions and how to resolve common issues. To learn more about Advisor, see:
Tilbakemeldinger
https://aka.ms/ContentUserFeedback.
Kommer snart: Gjennom 2024 faser vi ut GitHub Issues som tilbakemeldingsmekanisme for innhold, og erstatter det med et nytt system for tilbakemeldinger. Hvis du vil ha mer informasjon, kan du se:Send inn og vis tilbakemelding for