Control access to resources
With Azure Resource Manager, you can control who in your organization can perform actions on the resources. You manage permissions by defining roles and adding users or groups to the roles. For critical resources, you can apply an explicit lock that prevents users from deleting or modifying the resource. Azure Resource Manager logs all user actions so you can audit those actions. For each action, the audit log contains information about the user, time, events, and status.