| title | include file |
|---|---|
| description | include file |
| author | jenniferf-skc |
| ms.service | role-based-access-control |
| ms.topic | include |
| ms.date | 08/01/2025 |
| ms.author | jfields |
| ms.custom | include file |
When you assign roles, you must specify a scope. A Scope is the set of resources the access applies to. In Azure, you can specify a scope at four levels from broad to narrow: management group, subscription, resource group, and resource.