Steven Scott

My feedback

  1. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Key Vault  ·  Flag idea as inappropriate…  ·  Admin →
    Steven Scott shared this idea  · 
  2. 189 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    34 comments  ·  Azure Management Groups » New Feature Request  ·  Flag idea as inappropriate…  ·  Admin →

    Hi Everyone,
    I apologize about the delay but Custom RBAC Support is now available in Production. You are able to to create role definitions at the MG scope and assign them to inherited MGs and Subs.

    There is a bug that is in the portal where the new custom role is not showing when you are trying to do a role assignment on an inherited child MG/Sub. This should be resolved soon and PowerShell, CLI, and API are all working. I will not do any announcements yet on the availability of the feature until the portal bug is fixed. Once that is fixed we will do blog announcements and I will mark the feature complete here.

    Steven Scott commented  · 

    When attempting to add the assignable scope for the Root Mgt group to a custom role, I receive an error that the Role's ID is not found.

    Set-AzRoleDefinition : Cannot find role definition with id 'XXXXXXXX-b864-4ee0-acf3-02f576432070'.

    I've tried setting it at each Mgt Group nested under the root but the same error is returned. Any suggestions?

  3. 59 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Steven Scott commented  · 

    Any update here? I am automating our subscription creation process and need to have this capability.

  4. 2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  (General Feedback) » Other  ·  Flag idea as inappropriate…  ·  Admin →
    Steven Scott shared this idea  · 
  5. 44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  (General Feedback) » Other  ·  Flag idea as inappropriate…  ·  Admin →
    Steven Scott shared this idea  · 
  6. 17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  (General Feedback) » Offers  ·  Flag idea as inappropriate…  ·  Admin →
    Steven Scott commented  · 

    I agree with this, my idea is slightly different and should be easier for the PG to implement.

    Instead of a service tag for each PaaS Service by Region, I propose a Tag named "Fabric" or "AzureFabric" creating one for each region that contains the PaaS IP prefixes.

    ie "AzureFabric.EastUS"

  7. 30 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Azure portal » Other  ·  Flag idea as inappropriate…  ·  Admin →
    Steven Scott shared this idea  · 

Feedback and Knowledge Base