What does this mean? As an administrator, you may need to lock a resource group, or resource to prevent other users from accidentally deleting or modifying critical resources. The Azure resource manager offers a mechanism with two levels (CanNotDelete or ReadOnly) to be able to make appropriate settings.
Let's take a look at this:
- In the portal, click on Resource groups:
- On the Resource groups blade, click the acdppbook name field:
- In the navigation section on the Resource groups dashboard, click on the Locks button:
- On the Locks blade, click on the Add button:
- Now type ppbookdemo in the Lock name textbox, select a Lock type, and click on OK:
- Your first lock is ready.
Attention!
We have put in our example Read-only as a Lock type on Resource groups. This lock is automatically inherited to all subordinate resources. This has the consequence, however, that the functionality of individual resource types is no longer guaranteed.
- For example, no keys can be retrieved for a Storage account (this is a read and write operation). The operation is, however, mandatory for access: