Azure AD for RBAC for non azure resources

%3CLINGO-SUB%20id%3D%22lingo-sub-2190029%22%20slang%3D%22en-US%22%3EAzure%20AD%20for%20RBAC%20for%20non%20azure%20resources%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2190029%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20Folks%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20am%20looking%20for%20a%20solution%20for%20leveraging%20Azure%20AD%20for%20setting%20up%20RBAC%20for%20resources%20running%20on-prem.%3C%2FP%3E%3CP%3ECan%20someone%20let%20me%20know%20how%20can%20I%20achieve%20this%20and%20what%20limitations%20are%20there%20in%20using%20AAD.%3C%2FP%3E%3CP%3ECheers%2C%3C%2FP%3E%3CP%3EKD%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2244979%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20AD%20for%20RBAC%20for%20non%20azure%20resources%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2244979%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F755547%22%20target%3D%22_blank%22%3E%40KapilDSingh%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAzure%20AD%20roles%20are%20used%20to%20manage%20access%20to%20Azure%20AD%20resources%2C%20whereas%20Azure%20roles%20are%20used%20to%20manage%20access%20to%20Azure%20resources.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20scope%20of%20Azure%20AD%20roles%20is%20at%20the%20tenant%20level%2C%20whereas%20the%20scope%20of%20Azure%20roles%20can%20be%20specified%20at%20multiple%20levels%20including%20management%20group%2C%20subscription%2C%20resource%20group%2C%20resource.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBut%20you%20can%20utilize%20Azure%20Arc%20to%20create%20hybrid%20environment.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAzure%20Arc%20enabled%20servers%20enables%20you%20to%20manage%20your%20Windows%20and%20Linux%20physical%20servers%20and%20virtual%20machines%20hosted%20%3CEM%3Eoutside%3C%2FEM%3E%20of%20Azure%2C%20on%20your%20corporate%20network%2C%20or%20other%20cloud%20provider.%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

Hello Folks,

 

I am looking for a solution for leveraging Azure AD for setting up RBAC for resources running on-prem.

Can someone let me know how can I achieve this and what limitations are there in using AAD.

Cheers,

KD

1 Reply

@KapilDSingh 

 

Azure AD roles are used to manage access to Azure AD resources, whereas Azure roles are used to manage access to Azure resources.

 

The scope of Azure AD roles is at the tenant level, whereas the scope of Azure roles can be specified at multiple levels including management group, subscription, resource group, resource.

 

But you can utilize Azure Arc to create hybrid environment.

 

Azure Arc enabled servers enables you to manage your Windows and Linux physical servers and virtual machines hosted outside of Azure, on your corporate network, or other cloud provider.