[Azure RBAC] 요약
개요
- Security Principal 에 role 을 assign 할 수 있다
- Security Principal 은 4개가 있다
- User
- Group
- Service Principal
- Managed Identity
- 그룹은 role 이 전이가 가능
- Scope 가 있음
어떻게 할당?
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#general
할당하기 위한 Role
Owner or User Access Administrator 필요
To assign Azure roles, you must have:
Microsoft.Authorization/roleAssignments/write permissions, such as Role Based Access Control Administrator or User Access Administrator
