What is an Azure Resource Lock?

  • Designed to prevent accidental deletion and/or modification
  • Used in conjunction with RBAC
  • Two types of locks
    • Read-only (ReadOnly) – only read actions are allowed
    • Delete (CanNotDelete) – all actions except delete are allowed
  • Scopes are hierarchical (inherited)
    • Subscriptions > Resource Groups > Resources
  • Management Groups can’t be locked
  • Only Owner and User Access Administrator roles can manage locks (built-in roles)
◀ Previous Episode Next Episode ▶

Adam Marczak

Programmer, architect, trainer, blogger, evangelist are just a few of my titles. What I really am, is a passionate technology enthusiast. I take great pleasure in learning new technologies and finding ways in which this can aid people every day. My latest passion is running an Azure 4 Everyone YouTube channel, where I show that Azure really is for everyone!

Did you enjoy the article?

Share it!

More tagged posts