Configure RBAC access for VM Contributor

This “Configure RBAC Access for VM Contributor” IT Pro Challenge virtual lab will teach you how to control access rights for Azure virtual machines. You will use the Azure PowerShell and portal to create and manage access to a VM. After completing this challenge, you will have the skills necessary to manage VM roles across large IT environments.

45 minutes
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *

Already have an account? Sign In »


Azure is a public cloud computing platform. Azure can be used for many purposes, such as analytics, virtual computing, and networking. In particular, Azure provides a powerful tool for hosting virtual machines (VMs). It is, therefore, prudent for modern IT workers to be comfortable working with Azure.

One key use of the Azure platform is creating and hosting virtual machines (VMs). Azure VMs can be accessed remotely by many users, and these users will each have their permissions. As a systems administrator for a company that uses Azure to host VMs, you will need to know how to manage users’ access. It will be up to you to manage roles across large, complex IT environments.

One way of managing access is roll-based access control (RBAC). RBAC gives users access rights to Azure assets and defines what they can and cannot do with those assets. RBAC has many uses and is beneficial for a number of reasons, such as:

  • Gives employees rights to only the information they need.
  • Reduces network traffic by restricting unnecessary network access.
  • Decreases the risk of data breaches and leakage.

This hands-on lab will walk you through the process of configuring RBAC using the Azure PowerShell and portal.

Understand the scenario: You are a systems administrator for a company that uses Linux virtual machines in Azure. You need to configure roll-based access control (RBAC) for a VM for a remote contributor.

Understand the environment: You will be working on the Azure Cloud Platform. You will use the Azure PowerShell to create and manage a virtual machine.

Create an Azure VM:

To begin this challenge, you must first create a VM. You will log in to Azure using given credentials and then use the Azure PowerShell to create a new VM.

Add the virtual machine contributor role assignment to a user account:

You will next set up RBAC for a user for the VM you created. You will:

  • Use the Azure portal to view VM users.
  • Use the Azure portal to assign a user the role of Virtual Machine Contributor.

Verify VM contributor role permissions:

The last step of this lab is to verify the RBAC. You will:

  • Sign out of the Azure portal and sign in again as a different user.
  • Open the VM blade.
  • Verify that you can stop the VM.


In the modern IT environment, familiarity with the Azure platform will provide you with a competitive edge. Azure is quickly rising in popularity for many applications. Azure is ideal in many ways, as it lets companies move as much of their business to the cloud as their needs dictate.

Azure provides a secure platform for hosting shared VMs and providing remote access to these VMs. Each VM will come with its own users, and it is your job as a systems administrator to control each users’ permissions. Most VMs will have more than one contributor, and it will be your responsibility to create VMs and manage user access. In this virtual lab, you will gain real-world experience configuring users’ roles for Azure VMs.

In the “Configure RBAC Access for VM Contributor” virtual lab, you will accomplish the following:

  • Create a VM using the Azure PowerShell.
  • Use RBAC to assign the role of contributor to a user.
  • Verify that the user has contributor permissions.

Other Challenges in this series:

  • Guided Challenge - Configure a Linux VM using Bash