Skip to content

Commit

Permalink
Update README.md (Azure#1012)
Browse files Browse the repository at this point in the history 
Co-authored-by: Jason Masten <[email protected]>
  • Loading branch information
@jamasten
Mike Dzikowski and jamasten authored May 1, 2024
1 parent 1291b0b commit 58d83fa
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions src/bicep/add-ons/imaging/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,11 @@ Register-AzProviderFeature -FeatureName "EncryptionAtHost" -ProviderNamespace "M

Ensure the principal deploying the solution has "Owner" and "Key Vault Administrator" roles assigned on the target Azure subscription. This solution deploys role assignments at various scopes and a key vault with a key and secrets to enhance security. A custom role may be used to reduce the scope of permisions required if your organization wants to use something other than the built in roles.

If granular permissions are required the following built-in roles may be assigned to the account running the imaging solution:

Example:
![image](https://github.com/Azure/missionlz/assets/34066455/a1f54dad-e7c3-4f14-a6d5-4211773fc0a6)

[Creating a custom role](https://learn.microsoft.com/en-us/azure/role-based-access-control/custom-roles)

### Software
Expand Down

0 comments on commit 58d83fa

Please sign in to comment.