In the previous chapter, we covered the fourth part of the Implement Workloads and Security objective by learning how to integrate our on-premises network with an Azure virtual network by configuring an Azure VPN Gateway, setting up a site-to-site VPN, and more. 

This chapter will cover the fifth part of the Implement Workloads and Security objective by covering role-based access control (RBAC). You'll learn how to configure access to Azure resources by assigning RBAC roles from the Azure portal. You'll also learn how to configure management access by assigning global administrators to your Azure subscription and other resources. Then, you'll learn how to create custom roles that you can apply when custom permissions are needed by your users. Finally, you will learn about Azure policies and how you can apply them to your Azure resources.

The following topics will be covered in this chapter:

• Understanding RBAC
• Configuring access to Azure resources by assigning roles
• Configuring management access to Azure
• Creating a custom role
• Azure Policy
• Implementing and assigning Azure policies