Azure role_based_access_control Mappings

Access management for cloud resources is a critical function for any organization that is using the cloud. Azure role-based access control (Azure RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
role_based_access_control Role Based Access Control protect minimal T1087 Account Discovery
role_based_access_control Role Based Access Control protect partial T1087.004 Cloud Account
role_based_access_control Role Based Access Control protect minimal T1078 Valid Accounts
role_based_access_control Role Based Access Control protect partial T1078.004 Cloud Accounts
role_based_access_control Role Based Access Control protect minimal T1136 Create Account
role_based_access_control Role Based Access Control protect partial T1136.003 Cloud Account
role_based_access_control Role Based Access Control protect partial T1098 Account Manipulation
role_based_access_control Role Based Access Control protect partial T1098.001 Additional Cloud Credentials
role_based_access_control Role Based Access Control protect partial T1098.003 Add Office 365 Global Administrator Role
role_based_access_control Role Based Access Control protect partial T1578 Modify Cloud Compute Infrastructure
role_based_access_control Role Based Access Control protect partial T1578.001 Create Snapshot
role_based_access_control Role Based Access Control protect partial T1578.002 Create Cloud Instance
role_based_access_control Role Based Access Control protect partial T1578.003 Delete Cloud Instance
role_based_access_control Role Based Access Control protect partial T1578.004 Revert Cloud Instance
role_based_access_control Role Based Access Control protect partial T1580 Cloud Infrastructure Discovery
role_based_access_control Role Based Access Control protect partial T1538 Cloud Service Dashboard
role_based_access_control Role Based Access Control protect partial T1530 Data from Cloud Storage Object
role_based_access_control Role Based Access Control protect partial T1528 Steal Application Access Token