This article provides access control requirements for deploying NSX Advanced Load Balancer solution in Microsoft Azure.

Azure Role-Based Access Control (RBAC) provides granular access to its resources. This enables configuring various users with IAM roles.

By default, Microsoft Azure has various built-in roles which define the level of access to the resources associated with it. For instance, the reader role has read-only access, where as, the owner role provides complete access.

In addition to built-in roles, Azure allows creating custom roles. Along with access permissions, custom role provides finer control over specific resources. The NSX Advanced Load Balancer solution interacts with a multitude of objects in the user’s Azure subscription. This article provides guidelines on the permissions required for various objects to maximize security posture.