RBAC

Azure RBAC controls access to Azure RM resources.

Roles

Roles are assignable collections of permissions.

Default roles

All resources support the basic ARM permission model:

  • Reader allows read-only examination of a resource's properties.
  • Contributor allows reading and writing resource properties.
  • Owner allows full control.

Assignment

Roles can be assigned at the subscription, resource group and resource scopes, along with resource-specific or custom roles.


Backlinks