120 votes11 comments · Azure Active Directory » Role-based Access Control · Flag idea as inappropriate… · Admin →
We recently added deny capability to Azure’s RBAC system, in the form of deny assignments that can be set by the system only. The first Azure feature to use deny is BluePrint. We intend to add a configurable deny capability in the future, but have not yet announced any details.
/Stuart and Balaji
Thank you for all the votes and feedback. We have started work on this and the capability will be supported soon. If you would like to get in touch with us to discuss your scenarios, please fill this form: https://aka.ms/ApplicationGatewayCohort
An error occurred while saving the comment
This is really something we'd like to see - we are using Kusto KQL to build a dashboard for Azure Backup status from Log Analytics data - but not able to report on backup consistency, as the status is not reported in the Logs.