Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
794 questions
0 answers
Not able to login even after assigning OWNER and Carbon optimization reader role
Not able to login even after assigning OWNER and Carbon optimization reader role
asked 2024-09-09T07:06:00.94+00:00
DILIP NATHANI
0
Reputation points
commented 2024-09-19T16:23:01.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 89%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHE%3C/text%3E%3C/svg%3E)
Harshitha Eligeti
75
Reputation points Microsoft Vendor
0 answers
Can't create AI Studio project deployment due to missing permissions
Hi, I'm trying out AI Studio but I have permission errors when trying to add a deployment. My user account has Azure AI Developer and Azure AI Administrator assigned. Thanks
asked 2024-09-18T16:31:36.1666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 77%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMI%3C/text%3E%3C/svg%3E)
md-infogr8
25
Reputation points
commented 2024-09-19T15:10:04.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 1%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYM%3C/text%3E%3C/svg%3E)
YutongTie-MSFT
50,866
Reputation points
1 answer
One of the answers was accepted by the question author.
Login as federated user via katalon studio
Hi, I have an inquiry if it is possible to perform federated user login via katalon studio? We are working on automating logging in as federated user in katalon studio but am encountering an error when logging in. This error does not happen when logging…
asked 2024-09-11T15:08:21.4833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 97%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPP%3C/text%3E%3C/svg%3E)
Philippe Purugganan
20
Reputation points
accepted 2024-09-19T14:38:09.0833333+00:00
Philippe Purugganan
20
Reputation points
1 answer
Why does "Key Vault Certificate User" role have permissions to read keys and secrets as well?
Key Vault Built-In Role Assignment "Key Vault Certificate User" has permissions to read keys and secrets as well. Note that the more privileged role "Key Vault Certificates Officer" on the other hand doesn't have permissions to read…
asked 2024-09-09T08:32:50.57+00:00
Karan Agarwal
0
Reputation points Microsoft Employee
commented 2024-09-19T13:29:58.0233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
9,640
Reputation points Microsoft Vendor
1 answer
Guest users granted contributor role do not receive automatically e-mail invitation
I am trying to understand if this a problem for other people or I am doing a mistake somewhere. When I was allocating contributor role from Azure Subscriptions - Access Control menu to guest users, it says clearly in the activity logs that the guest user…
asked 2024-09-18T09:07:57.6933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 83%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
devschool_mihaib
0
Reputation points
answered 2024-09-19T10:44:48.7833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 1%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Patchfox
3,831
Reputation points
2 answers
Is there a set of permissions for a role in Azure such that it allows for a user to list all blobs with their properties and folders in an Azure Storage Account, but they cannot open, download or write the content of the files?
We have a group of people that will be our first line of support for our product. Part of the troubleshooting steps is to be able to find a blob in a storage account, and validate properties of the blob (e.g. file size is not 0). However, that group…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 46%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
2 answers
What is equivalent of azure classic RBAC co-administrator role ?
What is equivalent of azure classic RBAC co-administrator role ?
asked 2024-09-16T11:10:22.4633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 43%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESY%3C/text%3E%3C/svg%3E)
Srinivas Yerubandi
0
Reputation points
answered 2024-09-18T06:41:50.0533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT
18,776
Reputation points Microsoft Employee
2 answers
User cannot create a VM with just the Virtual Machine Contributor role
Apologies if this has already been answered, but based on my testing, they also need a Storage Account Contributor Role, Network Contributor Role and the permission Microsoft.Compute/sshPublicKeys/write which does not seem to be in built in role, at…
asked 2024-09-10T15:16:08.73+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 2%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Noopur Pathak
0
Reputation points
answered 2024-09-17T18:25:36.74+00:00
Noopur Pathak
0
Reputation points
0 answers
I have a new connection is working as expected for the SSO but the Single logoff is causing it to loop back to sign on.
I have a new connection is working as expected for the SSO but the Single logoff is causing it to loop back to sign on. Any suggestions on how to stop that action.
asked 2024-09-17T17:22:45.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 94%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETN%3C/text%3E%3C/svg%3E)
Thomas, Nathan Bernard [External]
0
Reputation points
asked 2024-09-17T17:22:45.9466667+00:00
Thomas, Nathan Bernard [External]
0
Reputation points
1 answer
After creating Azure compute gallery and making it public unable to find images in it via it's Community gallery name
Hi, I have created Azure compute gallery with Community sharing type, via both Azure portal and Azure cli, by following official documentation, but was unable to list VM images that I have created in it from VM in azure community images both via image…
asked 2024-09-11T12:34:02.3166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 42%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Maksym Perehinets
0
Reputation points
edited the question 2024-09-17T17:11:13.2633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 76%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
VarunTha
7,810
Reputation points Microsoft Vendor
1 answer
Unable to implement Prerequisites to use PowerShell or Graph Explorer for Microsoft Entra roles
Hello everyone, I am trying to create a new test administrative unit inside entra id admin center per https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/admin-units-manage?tabs=ms-powershell Step one "Prerequisites to use…
asked 2024-09-04T19:13:07.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 49%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECP%3C/text%3E%3C/svg%3E)
Caby Pae
0
Reputation points
commented 2024-09-16T10:15:46.7733333+00:00
Harshitha Eligeti
75
Reputation points Microsoft Vendor
0 answers
Level 2 AD Group & SQL server Microsoft Entra admin group & usage of IS_MEMBER for Row Level Security
Currently we are running into an issue developing Row Level Security since the IS_MEMBER does not work for the Microsoft Entra Admin group setup for that SQL server.…
asked 2024-09-06T05:57:57.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 45%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Sandeep Kumar
0
Reputation points
commented 2024-09-13T21:12:54.3466667+00:00
James Hamil
24,481
Reputation points Microsoft Employee
0 answers
Unable to Update Azure Role for a Subscription although i have Owner and User Access Admin rights at that Subscription
Unable to Update Azure Role for a Subscription although i have Owner and User Access Admin rights at that Subscription, It gives error The requestor XXX does not have permissions for this request. Please use $filter=asTarget() to filter on the…
asked 2024-09-03T15:18:49.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 63%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Navneet Kapoor
0
Reputation points
commented 2024-09-13T11:29:13.1666667+00:00
Navya
9,640
Reputation points Microsoft Vendor
1 answer
Was there a reason Microsoft Azure removed the azure_superuser role from new instances of Azure Database for PostgreSQL? Was there an announcement about this?
Our application looks for the azure_superuser role's existence in an Azure Database for PostgreSQL flexible server. It appears, this role is no longer included in the list of roles and we're seeing a failure in our application as a result. In an…
asked 2024-08-08T18:45:42.2566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 31%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERL%3C/text%3E%3C/svg%3E)
Ron Lazar
5
Reputation points
commented 2024-09-13T11:13:09.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 50%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFP%3C/text%3E%3C/svg%3E)
Fiers, Peter
0
Reputation points
1 answer
How to link existing persinal e.mail address with corporate e-mail address
If have personal e-mail address and corporate e-mail address. In order to process with the trainings I need to link e-mail addresses. where and how to do that ?
asked 2024-09-11T08:01:29.4866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 40%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPS%3C/text%3E%3C/svg%3E)
pekka sääski
0
Reputation points
commented 2024-09-13T11:02:10.9266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 30%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Goutam Pratti
0
Reputation points Microsoft Vendor
0 answers
Key vault Certficate Secret imported on FrontDoor but cannot select the secret for BYOC for domain verification
Key vault Certificate Secret added to FrontDoor but when trying the domain verification, You are unable to select the secret from FrontDoor for BYOC. Gave the Managed Identity Azure FrontDoor Secrets reader on resource group, and Secrets Reader on the…
asked 2024-08-25T12:44:45.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 80%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGC%3C/text%3E%3C/svg%3E)
Garth Cornelis
0
Reputation points
commented 2024-09-12T21:26:54.53+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 27%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Raja Pothuraju
5,580
Reputation points Microsoft Vendor
1 answer
Using Git commands with Service Principal authentication.
I have been granted service principal access to my Azure DevOps repository. Below is the script I'm using: $resource="499b84ac-1321-427f-aa17-267ca6975798" $TenantId=" " $ClientId=" " $ClientSecret=" " $TokenUri =…
asked 2024-09-03T15:38:19.2033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 18%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Ahwan Mishra
140
Reputation points
commented 2024-09-12T17:23:24.45+00:00
Goutam Pratti
0
Reputation points Microsoft Vendor
2 answers
Will MFA be required on Break Glass accounts
We have setup Break Glass access in the event our main accounts are compromissed and we are locked out. Will the new MFA reuiements apply to thise accounts
asked 2024-09-03T17:29:03.2233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 27%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Terry Blake
0
Reputation points
commented 2024-09-12T05:25:54.1033333+00:00
Harshitha Eligeti
75
Reputation points Microsoft Vendor
1 answer
How to restore service administrator
Accidentally removed service administrator which was the sole access from visual studio subscription. is anyway to restore th service admistrator and replace it from the subscription owner?
asked 2024-09-05T21:47:33.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 95%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELL%3C/text%3E%3C/svg%3E)
Luke Lau (NZ)
0
Reputation points
commented 2024-09-12T05:20:02.16+00:00
Harshitha Eligeti
75
Reputation points Microsoft Vendor
1 answer
azure Storage Blob Data Contibuter role issue
Hi, I have a Blob storage name 'aisanomastorage' and a Translator service name TechOps-AI-Services-Translator-Service .To configure translation jobs i get the below error message though the role already exists. 'Your translator resource must have…
asked 2024-09-11T10:59:54.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 5%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESJ%3C/text%3E%3C/svg%3E)
Sri Jyothsna
0
Reputation points
commented 2024-09-11T12:22:22.22+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 6%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKD%3C/text%3E%3C/svg%3E)
Keshavulu Dasari
330
Reputation points Microsoft Vendor