I'm exploring options for securing some Azure resources within a subscription from tampering, even by subscription owners. The intent is to standardize our subscriptions which are used by other teams for their engineering. We've considered giving teams custom RBAC roles…
We'd like to give support personnel Read Only access to Azure Data Factories so they can troubleshoot issues. Following this guide I was able to create a custom role that mostly does the trick but on further review I can…
I have an Azure Service Bus topic. Messages send to the topic contain application properties. I want to set permissions on the topic based on values of one or more application properties, i.e. only when identity A sends a message…