Stack Overflow
Stack Overflow

Questions tagged [azure-rbac]

Topics relating to Azure Role Base Access Control

264 questions
0
votes
1 answer

How to get the role definitions by Azure management API which can only be assigned at "Resource" scope?

How to get the role definitions by Azure management API which can only be assigned at "Resource" scope? When executing following query, all the role definitions are returned by the API: GET…
Amit Gupta
  • 23
  • 8
0
votes
1 answer

Cannot move subscription from child to parent management group

I am working on the AZ104 exercise Lab2 (link here) and I am at the Clean Up Resources Step 9 where it says to move the subscription under the 'az104-02-mg1' management group to its parent, the 'Tenant Root Group'. Here is what - if I am right? -…
punsoca
  • 459
  • 1
  • 7
  • 15
0
votes
1 answer

How do I properly set up endpoint authentication for Azure managed application notifications?

I am looking to create an Azure managed application, and I want a service to be able to consume the notifications sent to the "Notification Endpoint" HTTPS webhook. Currently, the documentation provides the following two steps to secure the webhook…
wahoowa
  • 358
  • 1
  • 10
0
votes
1 answer

Why can some users see in a Synapse Workspace see a Linked Azure Data Lake Gen 2 resource and others can't?

Recently, I created a second Linked Azure Data Lake Storage Gen2 within the Synapse Workspace using the Workspace's Managed Identity and adding it (together with the people that need to analyze it) as a Storage Blob Data Reader. I do not have access…
Michael B.
  • 11
  • 2
0
votes
1 answer

Custom roles for Azure components

I have a resource group contains Logic App, Function App, Machine learning workspace and Azure Storage. Clients have a set of users falls under dev and admin category. dev's should not have delete access and admin have all the access. Should I…
Rohi_Dev_1.0
  • 372
  • 1
  • 2
  • 19
0
votes
1 answer

Authorization views in webassembly blazor client app are not enforced

I have a client app developed in webassembly blazor and protected by Azure AD where its registered and 3 roles are defined and assigned to users. Once a user sign-in the user is being redirect to profile page where set of claims are displayed Claim…
ikenahim
  • 331
  • 1
  • 3
  • 15
0
votes
1 answer

Accessing managed secrets in Azure Key Vault with RBAC?

I have a Python script running on an Azure Virtual Machine which uploads a file into a file share in a storage account. The VM is given a user-assigned managed identity with the built-in 'Key Vault Secrets User' role. I followed this tutorial to…
piglet
  • 83
  • 1
  • 6
0
votes
1 answer

Azure : Add a role to a client_secret for an App Registrations

I'm not comfortable with azure configuration. We have an app registration, that is configured with roles, group and users. Everything is ok, but our security policy enforce MFA for connexion. That's a trouble for our automated tests. Following that…
Jérémie HATTAT
  • 41
  • 2
0
votes
2 answers

Custom Azure AD role for full access to Microsoft Cloud App Security

As per below link, we can assign Global Administrator or Security Administrator role in Azure AD to an user and that provides full access to Microsoft Cloud App Security…
Subhajit Dey
  • 3
  • 2
0
votes
1 answer

Azure Data Factory: Data Lake Access Permissions

When I am in the ADF 'author' view and try to create a trigger, after I select the subscription, storage account, it lists the files the trigger can see. At this point, is it using my credentials/permissions to list those files or ADF's…
Gadam
  • 2,674
  • 8
  • 37
  • 56
0
votes
1 answer

"Microsoft.Sql/servers/auditingSettings" asking for StorageBlobContributor access for non-vnet Storage Account

I am deploying SQL Server via ARM template. While setting Audit settings for this sql server with Storage Account, it is asking for permissions. As per the link we need the permissions, ONLY when the storage account is behind a Firewall. However, my…
Manjunath Rao
  • 1,397
  • 4
  • 26
  • 42
0
votes
1 answer

'Microsoft.Authorization/roleAssignments' scope to refer Storage Account from different resource group

I am Creating an Azure SQL Server using Azure ARM template. The 'auditingSettings' configuration requires permission from SQL Server's identity over Azure storage account (different resource group). I am using the below sample code to grant…
Manjunath Rao
  • 1,397
  • 4
  • 26
  • 42
0
votes
1 answer

Folder level access control inside containers in ADLS

I can see storage service level and container level access control but Is it possible to assign folder level access control for users and service principals?
user1324887
  • 632
  • 3
  • 11
  • 32
0
votes
0 answers

Azure Logic App - no permission to query subscriptions?

Afternoon all Trying to get a logic app to run a query on a log analytics workspace and email the results on a weekly basis. Created a service principal, and have given it Reader access at Subscriptions level and I'm allowed to create the…
lansalot
  • 11
  • 3
0
votes
1 answer

How to get permissions for data models in the azure analysis service servers for a particular user using REST api calls

I am trying to get permissions for data model created inside a azure analysis services servers. I am able to get the permissions for particular servers using Azure rest APIs (eg. GET of…
prasad v
  • 1
1 2 3
17 18