I need to make VM with very limited access to few people. However, I have 8 members as Contributors in the azure portal so they have access to VM now. How can I arrange IAM so only a limited people will have access to VM. I tried to search on Community question couldn't find it. Any help will be appreciated.
Hi If the access is limited to this VM you can assign them at the resource level one of the following roles - Virtual Machine Administrator Login : View Virtual Machines in the portal and login as administrator - Virtual Machine User Login : View Virtual Machines in the portal and login as a regular user. Ideally you would use a group to assign roles or PIM if you have Azure AD Premium P2 Licenses. Consider using custom roles if the builtin ones are not relevant.