Azure ABAC

AZURE GOVERNANCE

Part of azure governance
Attribute based access control

Why?

RBAC may not be granular enough or we start to hit [[202404061249 Azure RBAC#Limits]]
Adds conditions to roles assignments based on attributes of resources and principal accessing

Where

Currently restricted to roles that have blob storage or queue storage data actions.

How to assign conditions

On user level, we could create and add custom attributes for users in “Entra ID”
In the role (in-built or custom) you can add a condition

references:

Subscribe to NordLetter

A weekly newsletter on living in Finland.

← Back to Til

UPDATED April 6, 2024 at 10:23

Thoughts? Email sajal@sajalchoudhary.net

1 Backlink

Azure Master

TIL