allow granular access control to manage NSG rules.
Because only a single NSG is allowed per resource (subnet or NIC) it would be nice to subdivide the rules into groups and allow different teams to manage the different groupings, all within the same NSG. This could allow a central team to implement some rules and an application team to implement some rules. For example, let us define groups by priority-range and then allow different access privileges to different groups. Team 1 can manage group 1 and 4 and team 2 can manage group 2. [Manage = add, modify, delete]
Thanks Craig for the feedback, we are evaluating options to implement this capability on NSG, multiple roles with write permissions on the same resource it’s an interesting requirement we are looking to implement.