Skip to main content

History

History of RBAC changes

The Osservante RBAC Extension for Azure DevOps Pipelines enables centralised management of Azure resource groups and RBAC in code.

One git repository and one pipeline can be used to manage the creation and securing of resource groups across your entire Azure tenant.

The inbuilt features of Git and Azure DevOps can then be used for auditing Azure Role Based Access.

Pull requests

Each change is applied via a Pull Request. Azure devops maintains a history of Pull Requests and they can be drilled into for further details.

Listing

Audit RBAC using Pull Requests

Details

Audit RBAC using Pull Request details

Git history and blame

Git history and blame can be used to see when RBAC was changed and it can easily link back to the Pull Request.

History

Audit Azure RBAC using Git history

Blame

Audit RBAC using Git blame