827 questions with Azure Role-based access control tags

Sort by: Updated
0 answers

Prevent users from creating azure subscriptions in tenant

Hi Team, Is there any option to prevent the users from creating azure subscriptions in tenant. Only Global admin should have access for creating subscription and other users should not have option to create subscription in tenant level

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-11-04T14:30:32.7666667+00:00
Naveen Rayudu (MINDTREE LIMITED) 0 Reputation points Microsoft Vendor
commented 2024-11-05T09:01:35.21+00:00
Goutam Pratti 265 Reputation points Microsoft Vendor
2 answers

Assign an Azure role for access to blob data

https://learn.microsoft.com/zh-tw/azure/role-based-access-control/conditions-prerequisites Sorry, I Can't find "Blob path"

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-11-05T05:36:26.84+00:00
溫梓渝-統智科技 0 Reputation points
edited a comment 2024-11-05T07:55:21.8833333+00:00
溫梓渝-統智科技 0 Reputation points
1 answer

Getting 403 error in Terraform while assigning RBAC in Azure

I have correct access (Owner) and able to assign RBAC through portal but not Terraform. │ Error: authorization.RoleAssignmentsClient#Create: Failure responding to request: StatusCode=403 -- Original Error: autorest/azure: Service returned an error.…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-10-24T14:47:37.2933333+00:00
Harshit Z Kothari 0 Reputation points
edited an answer 2024-11-05T06:28:19.2233333+00:00
Raja Pothuraju 7,365 Reputation points Microsoft Vendor
1 answer

Unable to Assign Global Admin Roles in Microsoft 365 due to GDAP Issues

None of our users in MS365 admin center has global admin rights. We do not have the rights to assign global admin rights to ourselves in MS Admin Center Our MS365 provider cannot help us since there is no active GDAP. Our MS365 provider has tried…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,089 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-10-29T05:39:18.4066667+00:00
TrygveSanda-9535 0 Reputation points
edited an answer 2024-11-05T06:17:29.3233333+00:00
Bhasker Donthu 460 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Connect to CloudShell

Hi, I have granted one of my users access to Azure Kubernetes Service. The user wants to connect to Azure Cloud Shell from the Azure portal but is unable to do so, as connecting to Azure Cloud Shell requires a storage account, and the user does not have…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,143 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,579 questions
asked 2024-11-01T12:05:31.2566667+00:00
Roger Roger 6,346 Reputation points
accepted 2024-11-04T16:05:15.73+00:00
Roger Roger 6,346 Reputation points
1 answer

How to have more control on my users having access to client's tenant?

Hi, I am facing a scenario where a org needs to give his consultants (part time employees) a domain email address using which they get invited to a separate Azure tenant from client and do their tasks there. The thing is, in this scenario org have no…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,894 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,061 questions
asked 2024-10-31T05:19:33.8733333+00:00
Najam ul Saqib 320 Reputation points
commented 2024-11-04T03:07:00.07+00:00
Sina Salam 11,916 Reputation points
1 answer One of the answers was accepted by the question author.

Restore the owner for my free subscription

Hi everyone, Accidentally I deleted the owner role of my free subscription. Is there any way to restore my permissions? The option for cancelling and reactivating the subscription is not on the table, as I don't have permissions. Could anyone pls…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-11-02T18:10:04.0133333+00:00
Harris Lazaridis 25 Reputation points
accepted 2024-11-02T22:34:37.8666667+00:00
Harris Lazaridis 25 Reputation points
3 answers

azure owner roles issue

Hi Team, accidentally i was deleted my owner role attached to the my subscription . and now i am unable to perform operations in my account. could you please help me on this issue

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-07-12T04:48:21.28+00:00
Narasimharao 0 Reputation points
answered 2024-11-02T19:43:26.75+00:00
Harris Lazaridis 25 Reputation points
2 answers

not able to change access configuration policy

CODE InsufficientPermissions MESSAGE RAW ERROR Caller is not allowed to change permission model. For more information on how to change the permissions model follow this link: https://go.microsoft.com/fwlink/?linkid=2155160. Details:…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,311 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2023-10-19T05:18:01.9833333+00:00
himani ghildiyal 10 Reputation points
commented 2024-11-01T13:28:32.89+00:00
Sergei Wallgren 0 Reputation points
1 answer

Need no authentication but only authorization from spring boot 3 to access roles for API exposed

We want to just authorization using spring boot 3 for the APIs exposed for the ROLE that is there in the token issued from another cli client by executing command = az account get-access-token. We need sample piece of code of spring 3 application that…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Azure Spring Apps
Azure Spring Apps
An Azure platform as a service for running Spring Boot applications at cloud scale. Previously known as Azure Spring Cloud.
126 questions
asked 2024-10-25T15:04:25.7633333+00:00
Nimbolkar, Santosh 0 Reputation points
commented 2024-10-31T18:31:52.4633333+00:00
James Hamil 25,006 Reputation points Microsoft Employee
1 answer

Received error - "AADSTS399266: Blob grant token received with wrong issuer type."

I am trying to use the code from this microsoft learn page - https://learn.microsoft.com/en-us/samples/azure-samples/ms-identity-ciam-javascript-tutorial/ms-identity-ciam-javascript-tutorial-0-call-api-vanillajs/ and configure the Ids. When trying to…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,908 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,061 questions
asked 2024-09-05T20:42:40.4133333+00:00
Narisetti, Bernard 0 Reputation points
commented 2024-10-31T02:46:14.0766667+00:00
James Hamil 25,006 Reputation points Microsoft Employee
1 answer

Level 2 AD Group & SQL server Microsoft Entra admin group & usage of IS_MEMBER for Row Level Security

Currently we are running into an issue developing Row Level Security since the IS_MEMBER does not work for the Microsoft Entra Admin group setup for that SQL server.…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,061 questions
asked 2024-09-06T05:57:57.62+00:00
Sandeep Kumar 0 Reputation points
commented 2024-10-31T02:46:05.7833333+00:00
James Hamil 25,006 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Blob/storage container security role needed to "add" a blob/container

Hello, I'm looking to determine what the minimum security Roles I would need to assign to a user that will allow them to create and manage Azure storage containers and Azure Blobs in the azure portal. thanks, RT

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,216 questions
Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,918 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,186 questions
asked 2024-10-29T18:11:15.1766667+00:00
Richard Taylor 20 Reputation points
commented 2024-10-31T02:37:23.2233333+00:00
Xenia-MSFT 2,520 Reputation points Microsoft Vendor
1 answer

How to allow users from a different tenant access our storage, servers, etc

Is it possible to allow the users from a different Azure tenant access to Windows VMs, file shares, storage, etc, in our tenant without having to have them set up accounts, invites, etc? In other words, seamlessly?

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2023-06-16T23:56:56.13+00:00
MartinKulp-8809 6 Reputation points
commented 2024-10-30T10:29:23.44+00:00
Najam ul Saqib 320 Reputation points
1 answer One of the answers was accepted by the question author.

PIM - Group Admin Role Assignment is not working as intended

Currently, if you use the PIM Assignment group to gain access to the Groups Administrator role, you're unable to validate any dynamically assigned rules using the built-in validation tool. However, if you assign the Group Administrator role directly (not…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Microsoft Intune Grouping
Microsoft Intune Grouping
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Grouping: The arrangement or formation of people or things in a group or groups.
58 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,061 questions
asked 2024-10-22T09:08:13.5366667+00:00
Vamsi Krishna Bungatavula 20 Reputation points
edited the question 2024-10-30T05:33:35.7633333+00:00
Xenia-MSFT 2,520 Reputation points Microsoft Vendor
1 answer

not able to create a unity catalog

i want to create a unity catalog in azure databricks. manage account console is not accessible on azure databricks once i launch a workspace despite the "globle administrative role access" and premium subscription of azure…

Azure Databricks
Azure Databricks
An Apache Spark-based analytics platform optimized for Azure.
2,212 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Azure Data Catalog
Azure Data Catalog
An Azure service that serves as a system of registration and system of discovery for enterprise data assets.
103 questions
asked 2024-10-25T03:37:10.3533333+00:00
Giridhar Chandankhede 0 Reputation points
commented 2024-10-29T17:54:01.66+00:00
Chandra Boorla 2,605 Reputation points Microsoft Vendor
0 answers

How to access Azure without an existing external user?

I can no longer use the Azure account. Reason: The only external user has been converted to an internal user. It is no longer possible to log in without an external user. Deleting the account is also not possible. There is no support for this…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-10-23T20:31:46.18+00:00
ber999 6 Reputation points
commented 2024-10-29T05:01:58.15+00:00
BANDELA Siri Chandana 160 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Azure Key Vault RBAC permissions required for APIM to retreive a cert?

Hi I have a Azure API manager setup and want to add a custom domain. We have deployed Azure Key Vault and uploaded a certificate. We have deployed Key Vault with the recommended "role-based access control" We have given the APIM managed…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,311 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-02-18T20:52:19+00:00
SKT 146 Reputation points
commented 2024-10-28T18:46:55.2066667+00:00
NNPP 20 Reputation points
1 answer One of the answers was accepted by the question author.

Users are not able to see some resources in a resource group where they have respective contributor access.

I created a resource group and added some resources in that. There I added my team through security group which has respective contributor roles for those resources. Some of these resources including blob storage is not visible to the team. To…

Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,918 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
381 questions
asked 2024-08-29T11:24:41.9633333+00:00
Pankaj Dua 20 Reputation points
commented 2024-10-28T09:50:24.8966667+00:00
Pankaj Dua 20 Reputation points
0 answers

How to delete resource when the access is denied because of the deny assignment

Hi, I want to delete a Resource group that I have owner role, but the error said that: "Failed to delete resource group ticketx88: The client '[email protected]' with object id '67991a01-1405-424f-ab7a-e596f262c6ca' has permission to perform…

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
827 questions
asked 2024-10-24T12:43:37.3833333+00:00
Đoàn Thị Khánh Linh 0 Reputation points
edited a comment 2024-10-25T12:57:11.3433333+00:00
Đoàn Thị Khánh Linh 0 Reputation points