Ferdi
Reputation: 560
Role-Base Access Control in Azure web and database
I want to assign some users of my Azure project Role-Based Access Control (RBAC) so that they can
- contribute to the website/webapp (like a website contributor) AND
- Can manage SQL databases, but not their security-related policies (like a SQL DB Contributor)
Does anyone know if there is a specific role which meets this demand or do I have to define a "Custom Roles in Azure RBAC".
Upvotes: 0
Views: 1036
Answers (1)
Dan Rediske
Reputation: 852
Unless you need permissions not included in either SQL DB Contributor and Website Contributor, those would seem to be sufficient. You should be able to assign both to the same user and have the functionality you described.
It also depends on your definition of "contribute to the website/webapp"; if you're talking management on the portal side, that role should be sufficient.
If you need to add other permissions on an ad-hoc basis, you can define your own role.
Upvotes: 1
Related Questions
- Azure RBAC Permission
- How to create custom RBAC/ABAC role in Azure?
- Azure RBAC Custom Roles
- Azure Access Control for Resource Groups
- Resource based authorization with Azure AD?
- Azure RBAC Permissions Tree?
- RBAC access in Azure Web App
- Role-based access control in Azure API App
- Security roles on master database in Azure SQL
- Role Base Access Control in asp.net application