New Managed Instance Contributor role enhances security of Azure SQL Database Managed Instance
Updated: June 26, 2019
Azure SQL Database Managed Instance introduces new Azure RBAC role Managed Instance Contributor designed with a minimum set of managed instance and networking permissions required to provision and operate managed instance.
With introduction of this role we are allowing for Separation of Duties (SoD) between various enterprise roles operating your Azure resources. Introduction of the new role enhances security and enterprise compliance in operating managed instance, as only individuals authorized to manage Azure SQL Database managed instance assets can be granted RBAC permissions through the new role.
To authorize your employees with Managed Instance Contributor role, see Manage access to Azure resources using RBAC and the Azure portal.