azure-rbac
by @microsoft/github-copilot-for-azure · 163 stars · 103.0K installs/wk · Rank #15
Identifies and generates Azure RBAC roles, CLI commands, and Bicep snippets for secure identity access management.
Install
npx skills add https://github.com/microsoft/github-copilot-for-azure --skill azure-rbacSummary
- Identifies built-in roles matching desired permissions using Azure documentation, or generates custom role definitions when no built-in role fits
- Produces Azure CLI commands and Bicep code snippets for role assignments to identities, managed identities, and service principals
- Documents prerequisites for granting roles, including required permissions and recommended least-privilege role options (User Access Administrator, Owner, or custom roles with Microsoft.Authorization/roleAssignments/write)
- Supports common scenarios: least-privilege access, blob storage roles, managed identity permissions, and custom role creation