Highest Voted 'azure-rbac' Questions

0

votes

1 answer

Is there way to restrict resource access by other 'Owners' in the same Azure Subscription?

There are a bunch of people in a Security Group and the Group itself is owner of the subscription. So all the members of the group will obviously have full access to all the resources under the subscription. Removing the people from the SG is a…

asked Nov 27 '19 at 21:31

Dhiraj

3,396
4
41
80

0

votes

1 answer

Azure Automation Privileges

I have two subscriptions. On one subscription I run logic apps and on the logic apps I have azure functions. The other subscription contain target resources for the automation via logic apps and azure functions. In order to run the Logic Apps and…

azure azure-functions azure-logic-apps azure-automation azure-rbac

asked Jul 19 '19 at 15:06

kay106

65
5

0

votes

2 answers

Azure Sentinel RBAC - Best Practice

We are in the process of implmenting Sentinel with several data sources, what is the best way to do the RBAC?

azure azure-security azure-rbac azure-sentinel

asked Jul 02 '19 at 10:43

kay106

65
5

0

votes

1 answer

App registrations, server and client, one for each cluster or reuse for all my clusters?

I'm creating a couple of Kubernetes clusters using Azure AKS. I'll create a cluster for each environment. Dev, test and prod. In the process I'm creating two ad apps. One for the server and one for the client. Should I create a pair for each…

azure azure-aks azure-rbac

asked Apr 18 '19 at 15:17

user672009

4,379
8
44
77

0

votes

1 answer

How to allow user to create and deploy container in Azure

I am trying to use RBAC to allow other developers to deploy containers in Azure without giving full admin rights. I tried adding as reader and contributor, didn't seem to work. Has anyone else implemented this/have any other ideas?

azure azure-active-directory azure-rbac

asked Apr 11 '19 at 20:47

cdr

1

0

votes

1 answer

What permissions are required to create Azure subscriptions and tenants?

According to this blog the Classic Account Admin can create Subscriptions. Is there anyone else who can create subscriptions as well? Can he delegate this administrative task through AAD roles? In the new RBAC approach do we still have a 'Classic'…

azure azure-active-directory azure-authentication azure-rbac

asked Mar 01 '19 at 07:02

Gadam

2,674
8
37
56

0

votes

2 answers

How to add permission to builtin role in storage account using Azure Python SDK?

I have a storage account and I want to give permission to one of my App Service in "Storage Account Key Operator Service Role". Similar to the below action in Azure portal.

python azure azure-blob-storage azure-rbac

asked Oct 12 '18 at 03:44

himanshu219

654
7
22

0

votes

2 answers

Retrieving the all the users information from Azure Subscription

I want to retrieve all the user information from Subscription. We can get all the user list from an Azure subscription using below article. https://learn.microsoft.com/en-us/rest/api/authorization/roleassignments/list But above URl retrieves list of…

azure azure-resource-manager azure-rbac

asked Aug 09 '18 at 09:11

Avinash

2,053
2
14
32

0

votes

1 answer

Granting READER role access to a Subscription in Azure works fine in Postman, but not via Angular. Why?

OK, I might be missing something simple here in Angular, but I could really use some help. I am trying to grant a Service Principal READER role to a Subscription programmatically. If I use PostMan, it works fine. However, when I send the same PUT…

azure typescript azure-active-directory azure-resource-manager azure-rbac

asked Jul 15 '18 at 21:36

Dana Epp

509
1
5
13

0

votes

1 answer

azure cannot "create Run as account"

Daniel explains it here how to start and stop a VM located on Azure. I cannot do this as I cannot find Create Azure Run As Account I believe my account is limited by the account owner. What do I Need to ask to get this permission? I have a…

azure azure-runbook azure-rbac

asked Jul 13 '18 at 13:54

juliand

23
5

0

votes

1 answer

Azure roleassignment list not fetching full list

I am using REST API to fetch all role assignments at subscription scope. I don't have the nextLink and still don't have full list of role assignments. I noticed this question has no replies either. So looking for any help with resolution on this. I…

azure azure-rbac

asked Jun 08 '18 at 19:11

arbit

1

0

votes

1 answer

What role is needed to view policy compliance in Azure?

I would like a user to have read only access to policy compliance if possible but I can't seem to figure out which permissions they need. I've looked over the policy permissions and they have read access on the policies but still are unable to read…

azure azure-active-directory azure-security azure-rbac

asked May 14 '18 at 21:05

user9360564

355
1
4
13

0

votes

1 answer

azure container with RBAC

I am trying to understand how can I run a python application inside azure container that can spin up various resources like VM, route-table inside resource group of Azure. http://azure-sdk-for-python.readthedocs.io/en/latest/ Looks like the…

azure azure-container-service azure-rbac

asked Mar 27 '18 at 17:54

explorer

737
1
8
23

0

votes

1 answer

Can you restrict users from using certain connectors in azure logic apps?

I've looked through all the permissions a user can have in regards to logic apps but I still have not be able to answer my question. Is it possible to restrict a user from using a certain connector in azure logic apps? For example, lets say I wanted…

azure permissions azure-logic-apps azure-security azure-rbac

asked Mar 20 '18 at 14:57

user9360564

355
1
4
13

0

votes

2 answers

Azure - My new azure account cannot access my resources

My azure admin e-mail account with godaddy, but for "reasons", this e-mail was deleted from godaddy server, with the problem solved, I was able to create a new account, with the same credentials that I had for azure admin, and it works, I can login…

azure azure-active-directory azure-rbac

asked Nov 29 '17 at 14:11

user2299254

13
2

Questions tagged [azure-rbac]