New Managed Instance Contributor role enhances security of Azure SQL Database Managed Instance
Published date: 26 June, 2019
Azure SQL Database Managed Instance introduces new Azure RBAC role Managed Instance Contributor designed with a minimum set of managed instance and networking permissions required to provision and operate managed instance.
With introduction of this role we are allowing for Separation of Duties (SoD) between various enterprise roles operating your Azure resources. Introduction of the new role enhances security and enterprise compliance in operating managed instance, as only individuals authorised to manage Azure SQL Database managed instance assets can be granted RBAC permissions through the new role.
To authorise your employees with Managed Instance Contributor role, see Manage access to Azure resources using RBAC and the Azure portal.