从 portal.azure.com 阻止用户
[英]Block user from portal.azure.com
问题描述
My company is using Azure Active Directory.
我的公司正在使用 Azure Active Directory。 We are able to login into the Azure portal using AAD.我们可以使用 AAD 登录到 Azure 门户。
However, we only want a handful of employees to be able to login into the portal.但是,我们只希望少数员工能够登录门户。 All other employees should be kept out.所有其他员工都应该被拒之门外。
How do I accomplish this?我该如何实现?
3 个解决方案
解决方案1
1 2018-10-05 18:44:15
You cant do that if they are part of the AAD, you can however grant them no permissions, so they wont be able to see any resources or do anything on the portal如果他们是 AAD 的一部分,您就不能这样做,但是您可以不授予他们任何权限,因此他们将无法在门户上查看任何资源或执行任何操作
And you really dont have to do anything to acomplish that.而且你真的不需要做任何事情来实现这一点。 Those are default permissions.这些是默认权限。
To check users permissions go to the portal and navigate to Azure AD blade.要检查用户权限,请转到门户并导航到 Azure AD 刀片。
Portal => AzureAd => Users => pick user => click Azure Resources on the left门户 => AzureAd => 用户 => 选择用户 => 单击左侧的 Azure 资源
解决方案2
1 2020-12-29 15:56:21
Apply the Restrict access to Azure AD administration portal setting, which will block all access unless a user has Directory Reader or higher permissions in Azure AD应用Restrict access to Azure AD administration portal设置,这将阻止所有访问,除非用户在 Azure AD 中具有Directory Reader或更高权限
https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/users-default-permissions https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/users-default-permissions
As a Global admin:作为全球管理员:
- Azure Active Directory Azure 活动目录
- User Settings用户设置
- Restrict access to Azure AD administration portal -> yes限制访问 Azure AD 管理门户 -> 是
解决方案3
-1 2018-10-08 01:36:02
Or you can just block sign in for the user in the user profile.或者,您可以在用户个人资料中阻止用户登录。 By this, the blocked users will be denied to log in the portal.这样,被阻止的用户将被拒绝登录门户。
Note: This operation requires the global admin.注意:此操作需要全局管理员。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.