Azure active directory Azure IoTHub访问遥测和心跳数据的最低特权角色
我们面临着一个挑战,开发团队需要访问Azure IoTHub,该IoTHub允许他们读取遥测和心跳数据。但是,授予读卡器访问权限并不提供此功能,授予参与者访问权限是高度特权的。因此,有必要确定访问此信息的最低特权角色。任何帮助都会有帮助。谢谢大家! IoTHub没有内置的RBAC角色,您可以选择创建一个 格式类似于,更改Azure active directory Azure IoTHub访问遥测和心跳数据的最低特权角色,azure-active-directory,azure-iot-hub,azureportal,Azure Active Directory,Azure Iot Hub,Azureportal,我们面临着一个挑战,开发团队需要访问Azure IoTHub,该IoTHub允许他们读取遥测和心跳数据。但是,授予读卡器访问权限并不提供此功能,授予参与者访问权限是高度特权的。因此,有必要确定访问此信息的最低特权角色。任何帮助都会有帮助。谢谢大家! IoTHub没有内置的RBAC角色,您可以选择创建一个 格式类似于,更改名称,Id,操作,等等。对于操作,只需参考此,操作包括在内,您可以根据需要使用它们 样本: { "Name": "IotHub Operator", "Id": "<
名称Id操作操作{
"Name": "IotHub Operator",
"Id": "<Your-Guid>",
"IsCustom": true,
"Description": "Can do operations on IotHub",
"Actions": [
"Microsoft.Devices/iotHubs/Read",
"Microsoft.Devices/iotHubs/*/Read",
"Microsoft.Devices/iotHubs/listkeys/Action"
],
"NotActions": [],
"DataActions": [],
"NotDataActions": [],
"AssignableScopes": [
"/subscriptions/{subscriptionId}"
]
}
{
“名称”:“IotHub运营商”,
“Id”:“,
“IsCustom”:没错,
“说明”:“可以在IotHub上进行操作”,
“行动”:[
“Microsoft.Devices/iotHubs/Read”,
“Microsoft.Devices/iotHubs/*/Read”,
“Microsoft.Devices/iotHubs/listkeys/Action”
],
“注释”:[],
“数据操作”:[],
“NotDataActions”:[],
“可分配范围”:[
“/subscriptions/{subscriptionId}”
]
}
名称Id操作操作{
"Name": "IotHub Operator",
"Id": "<Your-Guid>",
"IsCustom": true,
"Description": "Can do operations on IotHub",
"Actions": [
"Microsoft.Devices/iotHubs/Read",
"Microsoft.Devices/iotHubs/*/Read",
"Microsoft.Devices/iotHubs/listkeys/Action"
],
"NotActions": [],
"DataActions": [],
"NotDataActions": [],
"AssignableScopes": [
"/subscriptions/{subscriptionId}"
]
}
{
“名称”:“IotHub运营商”,
“Id”:“,
“IsCustom”:没错,
“说明”:“可以在IotHub上进行操作”,
“行动”:[
“Microsoft.Devices/iotHubs/Read”,
“Microsoft.Devices/iotHubs/*/Read”,
“Microsoft.Devices/iotHubs/listkeys/Action”
],
“注释”:[],
“数据操作”:[],
“NotDataActions”:[],
“可分配范围”:[
“/subscriptions/{subscriptionId}”
]
}