![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 1%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAB%3C/text%3E%3C/svg%3E)
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
949 questions
hi there Amanda, wow, that's a messed up situation.....
for azure specifically, if u still have any access at all (even just developer level), u can try to reclaim admin rights. go to azure active directory roles and administrators in the portal. look for 'global administrator' role assignments. if u see that contractor there, u might be able to remove them if u have privilege management rights.
since he took the keys, u need to rotate ALL of them immediately. check azure key vault first, regenerate every single key, secret and certificate. yes, it's a pain, but better safe than sorry.
pls check if multi factor authentication was bypassed. turn it on for all admin accounts if it's off. this might help in other tools too.
would u like an general advice? if u use any other cloud services, do the same thing there. rotate keys, check admin lists, enable mfa everywhere. worth looking into setting up privileged identity management for the future so this doesn't happen again.
aha, and about azure support, since u have developer level, u can open a ticket in the portal. they might help escalate this. use the word 'security breach' in the ticket, it sometimes gets faster attention ;D
good luck! hope u kick that contractor out soon :))
Best regards,
Alex
and "yes" if you would follow me at Q&A - personaly thx.
P.S. If my answer help to you, please Accept my answer
PPS That is my Answer and not a Comment