| title | include file |
|---|---|
| description | include file |
| author | rolyon |
| ms.service | role-based-access-control |
| ms.topic | include |
| ms.date | 01/08/2021 |
| ms.author | rolyon |
| ms.custom | include file |
It's a best practice to grant security principals the least privilege they need to perform their job. Avoid assigning broader roles at broader scopes even if it initially seems more convenient. By limiting roles and scopes, you limit what resources are at risk if the security principal is ever compromised.