Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
In this article, you learn core role-based access control (RBAC) concepts for Microsoft Foundry, including scopes, built-in roles, and common enterprise assignment patterns.
Tip
RBAC roles apply when you authenticate using Microsoft Entra ID. If you use key-based authentication instead, the key grants full access without role restrictions. Microsoft recommends using Entra ID authentication for improved security and granular access control.
For more information about authentication and authorization in Microsoft Foundry, see Authentication and Authorization.
Minimum role assignments to get started
For new users to Azure and Microsoft Foundry, start with these minimum assignments so both your user principal and project managed identity can access Foundry features.
You can verify current assignments by using Check access for a user to a single Azure resource.
Assign the Foundry User role on your Foundry resource to your user principal.
Important
The Foundry RBAC roles were recently renamed. Foundry User, Foundry Owner, Foundry Account Owner, and Foundry Project Manager were previously named Azure AI User, Azure AI Owner, Azure AI Account Owner, and Azure AI Project Manager. You might still see the previous names in some places while the rename rolls out. The role IDs and core permissions are unchanged by the rename.
Assign the Foundry User role on your Foundry resource to your project's managed identity.
If the user who created the project can assign roles (for example, by having the Azure Owner role at subscription or resource group scope), both assignments are added automatically.
Tip
If a user or service principal only needs to interact with agents (for example, calling the Responses API) without creating or modifying them, assign Foundry Agent Consumer instead of Foundry User. This role provides least-privilege access for agent consumers.
To assign these roles manually, use the following quick steps.
Assign a role to your user principal
In the Azure portal, open your Foundry resource and go to Access control (IAM). Create a role assignment for Foundry User, set Members to User, group, or service principal, select your user principal, and then select Review + assign.
Assign a role to your project's managed identity
In the Azure portal, open your Foundry project and go to Access control (IAM). Create a role assignment for Foundry User, set Members to Managed identity, select your project's managed identity, and then select Review + assign.
Terminology for role-based access control in Foundry
To understand role-based access control in Microsoft Foundry, consider two questions for your enterprise.
- What permissions do I want my team to have when building in Microsoft Foundry?
- At what scope do I want to assign permissions to my team?
To help answer these questions, here are descriptions of some terminology used throughout this article.
- Permissions: Allowed or denied actions that an identity can perform on a resource, such as reading, writing, deleting, or managing both control plane and data plane operations.
- Scope: The set of Azure resources to which a role assignment applies. Typical scopes include subscription, resource group, Foundry resource, or Foundry project.
- Role: A named collection of permissions that defines which actions can be performed on Azure resources at a given scope.
An identity gets a role with specific permissions at a selected scope based on your enterprise requirements.
In Microsoft Foundry, consider two scopes when completing role assignments.
- Foundry resource: The top-level scope that defines the administrative, security, and monitoring boundary for a Microsoft Foundry environment.
- Foundry project: A sub-scope within a Foundry resource used to organize work and enforce access control for Foundry APIs, tools, and developer workflows.
Built-in roles
A built-in role in Foundry is a role created by Microsoft that covers common access scenarios that you can assign to your team members. Key built-in roles used across Azure include Owner, Contributor, and Reader. These roles aren't specific to Foundry resource permissions.
For Foundry resources, use additional built-in roles to follow least-privilege access principles. The following table lists key built-in roles for Foundry and links to the exact role definitions in AI + Machine Learning built-in roles.
| Role | Description |
|---|---|
| Foundry Agent Consumer | Grants access to interact with agent endpoints in a Foundry project. Least-privilege access role for principals that only need to interact with agents. |
| Foundry User | Grants reader access to Foundry project, Foundry resource, and data actions for your Foundry project. If you can assign roles, this role is assigned to you automatically. Otherwise, your subscription Owner or a user with role assignment permissions grants it. Least-privilege access role for developers building and testing agents. |
| Foundry Project Manager | Lets you perform management actions on Foundry projects, build and develop with projects, and conditionally assign the Foundry User role to other user principals. |
| Foundry Account Owner | Grants full access to manage projects and resources, and lets you conditionally assign the Foundry User, ACR, and monitoring roles to other user principals. |
| Foundry Owner | Grants full access to manage projects and resources and build and develop with projects. Lets you conditionally assign the Foundry User, ACR, and monitoring roles. Highly privileged self-serve role designed for digital natives. |
Note
Don't assign built-in roles that start with Cognitive Services. These roles are designed for accessing AI Services resources directly and don't apply to Foundry scenarios. Similarly, don't use the Azure AI Developer role for Foundry work. Despite the name, this role is scoped to Azure Machine Learning workspaces and Foundry hubs, not to Foundry projects or Foundry hosted agents. For Foundry project access, use Foundry User or Foundry Owner instead.
Permissions for each built-in role
Use the following table to see the permissions allowed for each built-in role in Microsoft Foundry.
| Built-in role | Create Foundry projects | Create Foundry accounts | Build and develop in a project (data actions) | Complete role assignments | Reader access to projects and accounts | Manage models | Publish agents | Interact with agent endpoints |
|---|---|---|---|---|---|---|---|---|
| Foundry Agent Consumer | ✘ | ✘ | ✘ | ✘ | ✘ | ✘ | ✘ | ✔ |
| Foundry User | ✘ | ✘ | ✔ | ✘ | ✔ | ✘ | ✘ | ✔ |
| Foundry Project Manager | ✘ | ✘ | ✔ | ✔ (only assign Foundry User role) | ✔ | ✘ | ✔ | ✔ |
| Foundry Account Owner | ✔ | ✔ | ✘ | ✔ (assign Foundry User, ACR, and monitoring roles) | ✔ | ✔ | ✘ | ✘ |
| Foundry Owner | ✔ | ✔ | ✔ | ✔ (assign Foundry User, ACR, and monitoring roles) | ✔ | ✔ | ✔ | ✔ |
Important
The Foundry RBAC roles were recently renamed. Foundry User, Foundry Owner, Foundry Account Owner, and Foundry Project Manager were previously named Azure AI User, Azure AI Owner, Azure AI Account Owner, and Azure AI Project Manager. You might still see the previous names in some places while the rename rolls out. The role IDs and core permissions are unchanged by the rename.
Use the following table to see the permissions allowed for each key Azure built-in roles (Owner, Contributor, Reader).
| Built-in role | Create Foundry projects | Create Foundry accounts | Build and develop in a project (data actions) | Complete role assignments | Reader access to projects and accounts | Manage models | Publish agents | Interact with agent endpoints |
|---|---|---|---|---|---|---|---|---|
| Owner | ✔ | ✔ | ✘ | ✔ (assign any role to any user) | ✔ | ✔ | ✔ | ✘ |
| Contributor | ✔ | ✔ | ✘ | ✘ | ✔ | ✔ | ✘ | ✘ |
| Reader | ✘ | ✘ | ✘ | ✘ | ✔ | ✘ | ✘ | ✘ |
To publish agents, you need the Foundry Project Manager role (minimum) on the Foundry resource scope. For more information, see Agent applications in Microsoft Foundry.
Use these tabs to explore the differences between the built-in roles, assigned at the Foundry resource level (except for Owner, which is assigned at the subscription level)
Sample enterprise RBAC mappings for projects
Here's an example of how to implement role-based access control (RBAC) for an enterprise Foundry resource.
| Persona | Role and Scope | Purpose |
|---|---|---|
| IT admin | Owner on subscription scope | The IT admin ensures the Foundry resource meets enterprise standards. Assign managers the Foundry Account Owner role on the resource to let them create new Foundry accounts. Assign managers the Foundry Project Manager role on the resource to let them create projects within an account. |
| Managers | Foundry Account Owner on Foundry resource scope | Managers manage the Foundry resource, deploy models, audit compute resources, audit connections, and create shared connections. They can't build in projects, but they can assign the Foundry User role to themselves and others to start building. |
| Team lead or lead developer | Foundry Project Manager on Foundry resource scope | Lead developers create projects for their team and start building in those projects. After you create a project, project owners invite other members and assign the Foundry User role. |
| Team members or developers | Foundry User on Foundry project scope and Reader on the Foundry resource scope | Developers build agents in a project with pre-deployed Foundry models and pre-built connections. |
| Agent consumers or end users | Foundry Agent Consumer on Foundry project scope (or agent scope for per-agent control) | Users and service principals that only need to interact with agents through their endpoints. This role provides least-privilege access without granting broader development capabilities. |
Manage role assignments
To manage roles in Foundry, you must have permission to assign and remove roles in Azure. The Azure built-in Owner role includes that permission. You can assign roles through the Foundry portal (Admin page), Azure portal IAM, or Azure CLI. You can remove roles by using Azure portal IAM or Azure CLI.
In the Foundry portal, manage permissions by:
- Open the Admin page in Foundry, then select Operate > Admin.
- Select your project name.
- Select Add user to manage project access. This action is available only if you have role-assignment permissions.
- Apply the same flow for Foundry resource-level access.