Eiffel 65
Reputation: 83
Implement RBAC for Azure Blob Storage using an account in different Tenant?
I'm setting up Role-based access control for our Blob storage in Azure.
Integration with AD is already available. However, I want to use a separate account's AD to access the blobs.Is it possible? and if so, how?
This is how it was set up so changes in architecture like remaking an AD or doing subscription changes can't be done.
Upvotes: 3
Views: 224
Answers (1)
juunas
Reputation: 58723
You can only assign Azure RBAC roles on users and apps in the Azure AD tenant connected to the subscription. If you want to give access to users in another tenant, you'll have to invite them as guests to the tenant connected to the subscription and then add roles to them.
Upvotes: 1
Related Questions
- How to authorize Azure B2C user to read blob storage
- Add RBAC role on a Azure blob storage container with Bicep
- Azure roles for Blob storage for specific set of permission
- Authenticate Azure Blob Storage Account in cloud using a runbook
- Azure identity access to blob storage
- Azure Storage blob container assign RBAC using ARM
- Give Access to storage account in azure
- Authorize a user for azure blob access
- can we provide access to blobs/containers/storage accounts using Azure active Directory?
- How to use RBAC in Azure for user in another tenant