You are viewing a free preview of this lesson.
Subscribe to unlock all 10 lessons in this course and every other course on LearningBro.
Azure Role-Based Access Control (RBAC) is the authorisation system that governs who can do what with Azure resources. It allows you to assign fine-grained permissions to users, groups, and service principals at various scopes within your Azure environment.
Without a structured authorisation system, managing access to cloud resources quickly becomes chaotic:
RBAC solves these problems by combining roles (what you can do), security principals (who you are), and scopes (where you can do it).
A security principal is the entity requesting access. It can be:
| Principal | Description |
|---|---|
| User | An individual with an account in Entra ID |
| Group | A set of users; all members inherit the assignment |
| Service principal | An identity used by an application or service |
| Managed identity | A special service principal managed automatically by Azure |
Subscribe to continue reading
Get full access to this lesson and all 10 lessons in this course.