简体繁体中英

Azure RBAC and Azure IAM

原文 2018-03-29 09:36:10 7 1 azure/ azure-active-directory/ azure-powershell/ azure-resource-group/ azure-rbac

A user should be able to read a resource group. Not allowing the user to create/delete a resource group.
i. I have created a custom role using json script with the following permissions:
```
 Actions: Microsoft.Resources/subscriptions/resourceGroups/read NotActions: Microsoft.Resources/subscriptions/resourceGroups/write, Microsoft.Resources/subscriptions/resourceGroups/delete 
```
ii. Added it using PowerShell cmdlet New-AzureRMRoleDefinition. But when I assigned this custom role to a user in IAM, user is still able to create/delete a resource group.

Note: I have used RBAC and IAM services of Azure

1 answers

Go to resource group blade >> IAM >> Add (at the top of the blade).

Select contributor. Select User. you are done.

Azure RBAC Permission

Azure RBAC Custom Roles

Azure RBAC Permissions Tree?

Enabling RBAC on Kubernetes on Azure

azure container with RBAC

Azure Sentinel RBAC permissions

Azure RBAC scope to namespaces

Multiple wildcards in Azure RBAC

RBAC For phoenix API on Microsoft Azure

Azure RBAC showing a filtered list

暂无

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure RBAC Permission Azure RBAC Custom Roles Azure RBAC Permissions Tree? Enabling RBAC on Kubernetes on Azure azure container with RBAC Azure Sentinel RBAC permissions Azure RBAC scope to namespaces Multiple wildcards in Azure RBAC RBAC For phoenix API on Microsoft Azure Azure RBAC showing a filtered list

Related Tags

粤ICP备18138465号 © 2020-2024 STACKOOM.COM