Check user permissions across all your Azure subscriptions

Let’s be honest.. Even though we have excellent tools to manage permissions for our Azure resources, sometimes we don’t know exactly what a given user or group has access to. There is however an easy way of checking this:

Go to Azure Active Directory –> Users & Groups –> Users –> Find the user (in this case an external consultant):

image

Select Azure Resources:

image

As you can see, this user has Owner access to one of my subscriptions. Better get that fixed! Smile 

If you click the role assignment, you get the option to delete it:

image

Quick and easy! And the same thing can be done for groups of users.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s