IAM access to azure VM

%3CLINGO-SUB%20id%3D%22lingo-sub-2597323%22%20slang%3D%22en-US%22%3EIAM%20access%20to%20azure%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2597323%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Folks%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20need%20to%20make%20VM%20with%20very%20limited%20access%20to%20few%20people.%20However%2C%20I%20have%208%20members%20as%20Contributors%20in%20the%20azure%20portal%20so%20they%20have%20access%20to%20VM%20now.%20How%20can%20I%20arrange%20IAM%20so%20only%20a%20limited%20people%20will%20have%20access%20to%20VM.%20I%20tried%20to%20search%20on%20Community%20question%20couldn't%20find%20it.%20Any%20help%20will%20be%20appreciated.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2606894%22%20slang%3D%22en-US%22%3ERe%3A%20IAM%20access%20to%20azure%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2606894%22%20slang%3D%22en-US%22%3EHi%3CBR%20%2F%3EIf%20the%20access%20is%20limited%20to%20this%20VM%20you%20can%20assign%20them%20at%20the%20resource%20level%20one%20of%20the%20following%20roles%3CBR%20%2F%3E-%20Virtual%20Machine%20Administrator%20Login%20%3A%20View%20Virtual%20Machines%20in%20the%20portal%20and%20login%20as%20administrator%3CBR%20%2F%3E-%20Virtual%20Machine%20User%20Login%20%3A%20View%20Virtual%20Machines%20in%20the%20portal%20and%20login%20as%20a%20regular%20user.%3CBR%20%2F%3EIdeally%20you%20would%20use%20a%20group%20to%20assign%20roles%20or%20PIM%20if%20you%20have%20Azure%20AD%20Premium%20P2%20Licenses.%3CBR%20%2F%3EConsider%20using%20custom%20roles%20if%20the%20builtin%20ones%20are%20not%20relevant.%3C%2FLINGO-BODY%3E
New Contributor

Hi Folks,

 

I need to make VM with very limited access to few people. However, I have 8 members as Contributors in the azure portal so they have access to VM now. How can I arrange IAM so only a limited people will have access to VM. I tried to search on Community question couldn't find it. Any help will be appreciated.

1 Reply
Hi
If the access is limited to this VM you can assign them at the resource level one of the following roles
- Virtual Machine Administrator Login : View Virtual Machines in the portal and login as administrator
- Virtual Machine User Login : View Virtual Machines in the portal and login as a regular user.
Ideally you would use a group to assign roles or PIM if you have Azure AD Premium P2 Licenses.
Consider using custom roles if the builtin ones are not relevant.