DEMO: Add an RBAC Owner
Start course

As an IT professional tasked with managing resources in Azure, it’s important to understand key administrative roles and permissions within a subscription and within a resource group. It’s also important to know how to leverage Role Based Access Control (RBAC) for managing such administrative roles and permissions.

In the first part of this course, you will learn about Azure subscriptions.  You will learn about key roles within a subscription, including contributor, owner, reader, and user access administrator. You’ll also learn how to manage these roles by using RBAC. We’ll also cover subscription policies and the role they play in the management of an Azure subscription.

In the second part of the course, we’ll talk about resource groups in Azure.  We’ll touch on what they do and how they are managed. You will learn how to secure resources within a resource group via resource policies and resource locks.  You’ll also learn about resource tagging and how it can be used to manage and group Azure resources.

Rounding out this course, we’ll cover the process of moving resources from one resource group to another, as well as the deletion of resource groups altogether.

Learning Objectives

Azure Subscriptions

  • Understand the owner role
  • Understand the subscription administrator Role
  • How to manage roles and permissions with RBAC
  • Understand subscription policies

Resource Groups

  • Understanding the purpose of resource groups
  • How to leverage resource group policies
  • How to use resource locks to protect resources
  • How to leverage resource tags  
  • Moving resources between resource groups
  • Removing resource groups

Intended Audience

  • IT professionals interested in becoming Azure cloud architects
  • IT professionals preparing for Microsoft’s Azure certification exams


  • General knowledge of IT infrastructure
  • General knowledge of the Azure environment

Hello, and welcome back. what I'm going to do here in this demonstration and admittedly, it is a, a brief demonstration but I wanted to just make sure that I showed you how you can use our back to add an owner to a resource or to a subscription.

So what we're going to do here is add a second owner to the Azurelabs subscription here in my Azure environment. On the screen here, I'm logged in as the administrator for my red widget corporation a fictitious organization here, I guess it you will.

Now to add an owner to my subscription, I simply select my Azurelabs subscription here from my Microsoft Azure homepage here and then from Azure labs here see this access control here, or I am entry. What we do here is we go into access control. And from here, we can look at the existing role assignments for this specific subscription, and we can see we have administrator here as owner.

Now, if I want to add an owner to this subscription what I can do is click the add button here up in the top menu pane here. And we can add a role assignment, we can add a co administrator, or we can add a custom role.

What we're going to do here is Add role assignment and then from here, we'll select Owner. And then what we'll do is we'll make Joe Kinish an owner of this subscription. And now we can see that under the owner role assignment here for the Azure subscription, we have Joe Kinish listed and we can do the same thing for a complete resource group.

If we go back home here and we go into our Azurelabs resource group here we can see the focus is at the resource group level. And again, we use the access control entry here, or I am we can look at the existing role assignments and we can see Joe Kinish is already an owner at the resource group level because it's inherited from the subscription. But if I wanted to add a user as an owner specifically at this level directly on the resource group we do the same thing, we click Add we'd Add role assignment, select Owner. And then what we could do is we could make, say Lester Murphy an owner here and there you have it. And that's pretty much it. That's how you add an owner at both the subscription level and at the resource group level.

About the Author
Learning Paths

Tom is a 25+ year veteran of the IT industry, having worked in environments as large as 40k seats and as small as 50 seats. Throughout the course of a long an interesting career, he has built an in-depth skillset that spans numerous IT disciplines. Tom has designed and architected small, large, and global IT solutions.

In addition to the Cloud Platform and Infrastructure MCSE certification, Tom also carries several other Microsoft certifications. His ability to see things from a strategic perspective allows Tom to architect solutions that closely align with business needs.

In his spare time, Tom enjoys camping, fishing, and playing poker.