Search
StarWind is a hyperconverged (HCI) vendor with focus on Enterprise ROBO, SMB & Edge

Create a Custom RBAC Role in Azure, From the Portal

  • June 18, 2020
  • 3 min read
Cloud and Virtualization Architect. Florent is specializing in public, hybrid, and private cloud technologies. He is a Microsoft MVP in Cloud and Datacenter Management and an MCSE in Private Cloud.
Cloud and Virtualization Architect. Florent is specializing in public, hybrid, and private cloud technologies. He is a Microsoft MVP in Cloud and Datacenter Management and an MCSE in Private Cloud.

4 years ago, I wrote an article about the creation of Azure RBAC custom roles, through PowerShell.

Now, Microsoft releases the possibility to create a custom role, directly from the portal.

To start, go to a resource or a subscription in Access Control (IAM) and go to the Roles tab. Click on Add > Add custom role:

Access Control (IAM)

Provide the name, description, and choose from where you want to start your template:

  • Clone a role
  • Start from scratch (that I will use)
  • Start from JSON

Clone a role

Now, you can add permissions:

Add permission

I’ll take Microsoft Compute for this example. When you chose it, you have two choices:

  • Actions: Choose permissions that you want to give, depending of the category
  • Data Actions: for others permissions

Microsoft Compute

You can add this custom role to other subscriptions/resource groups:

 Subscriptions/resource groups

In the JSON tab, you have the JSON, generated, and that you can reuse later:

JSON format

You can now click on Create to start the creation of the custom role and assign this role to subscription/resource groups.

Visual Studio Enterprise

You can now add users, inside this custom role:

Add users

If you are not familiar with JSON, this new interface will save you a lot of time, and the export/import function is very helpful to do a backup of your roles, or to import them in another subscription.

Hey! Found Florent’s article helpful? Looking to deploy a new, easy-to-manage, and cost-effective hyperconverged infrastructure?
Alex Bykovskyi
Alex Bykovskyi StarWind Virtual HCI Appliance Product Manager
Well, we can help you with this one! Building a new hyperconverged environment is a breeze with StarWind Virtual HCI Appliance (VHCA). It’s a complete hyperconverged infrastructure solution that combines hypervisor (vSphere, Hyper-V, Proxmox, or our custom version of KVM), software-defined storage (StarWind VSAN), and streamlined management tools. Interested in diving deeper into VHCA’s capabilities and features? Book your StarWind Virtual HCI Appliance demo today!