joelowrance/6- Secure your Azure resources with Azure role-based access contro.md

Last active April 1, 2021 23:02

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Select an option

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/joelowrance/6645b4f7365a905f7ace6a55f349bf51.js"></script>
Save joelowrance/6645b4f7365a905f7ace6a55f349bf51 to your computer and use it in GitHub Desktop.

Download ZIP

6- Secure your Azure resources with Azure role-based access contro

Raw

6- Secure your Azure resources with Azure role-based access contro.md

What is Azure RBAC?

Used with Azure AD to make it simple to carry out goals - when people leave, they should no longer have access and finding the balance between autonomy and central governance.

Azure subscriptions

Each subscription is associated with a single Azure AD. Can extend on-prem to cloud using Azure AD Connect.

What is Azure RBAC?

Role based access built on resource manager that lets you do fine grained management of resources.

What can I do with Azure RBAC?

Grant access to resources that you control. Ex, allow one person to manage VM's, and another to take care of networks.

Azure RBAC in the Azure portal

Access control (IAM) in most resources.

How does Azure RBAC work?

Security principal (who - user, group or application) Role definition (what actions) Scope (where) Role Assignment - binding a SP to role.

Azure RBAC is an allow model

Permissions are combined Computed by subtracting NotActions

Exercise - List access using Azure RBAC and the Azure portal

Didn't work./

Exercise - Grant access using Azure RBAC and the Azure portal

Didn't work

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment