Skill

azure-role-selector

Guide users to the correct Azure RBAC role for their identity and permissions requirements, following least-privilege principles. Use when a user asks which role to assign, needs help finding a built-in role, wants to create a custom role, or needs to understand Azure role assignments and permissions.

From azure

Install

Run in your terminal

npx claudepluginhub atc-net/atc-agentic-toolkit

Tool Access

This skill uses the workspace's default tool permissions.

Skill Content

Azure Role Selector

Help users find and assign the correct Azure RBAC role with least-privilege access.

Workflow

Gather requirements — Ask what permissions the identity needs and on which resource scope (management group, subscription, resource group, or resource)
Search built-in roles — Use Azure MCP/documentation to find built-in roles matching the required permissions
Evaluate fit — Compare the role's permissions against what the user needs. Prefer the most restrictive role that covers all requirements
Custom role if needed — If no built-in role matches, use Azure MCP/extension_cli_generate to create a custom role definition with only the required permissions
Generate assignment — Use Azure MCP/extension_cli_generate to produce the CLI commands for the role assignment, and Azure MCP/bicepschema + Azure MCP/get_bestpractices to provide a Bicep snippet

Key Principles

Least privilege — Always recommend the most restrictive role that satisfies the requirements
Prefer built-in roles — Only suggest custom roles when no built-in role is a good fit
Scope matters — Assign at the narrowest scope possible (resource > resource group > subscription > management group)
Avoid Owner/Contributor unless explicitly justified — suggest more specific roles first

Common Role Categories

Category	Example Roles	When to suggest
Read-only	Reader, various *Reader roles	View access only
Data plane	Storage Blob Data Contributor, Key Vault Secrets User	Access to data within a resource
Operator	VM Contributor, Network Contributor	Manage specific resource types
Security	Security Reader, Security Admin	Security-related tasks
Monitoring	Monitoring Reader, Log Analytics Reader	Observability tasks

Tools

Azure MCP/documentation — Search for role definitions and permissions
Azure MCP/bicepschema — Generate Bicep code for role assignments
Azure MCP/extension_cli_generate — Generate CLI commands or custom role definitions
Azure MCP/get_bestpractices — Get RBAC best practices

Similar Skills

context7-mcp

This skill should be used when the user asks about libraries, frameworks, API references, or needs code examples. Activates for setup questions, code generation involving libraries, or mentions of specific frameworks like React, Vue, Next.js, Prisma, Supabase, etc.

50.4k

ui-ux-pro-max

UI/UX design intelligence for web and mobile. Includes 50+ styles, 161 color palettes, 57 font pairings, 161 product types, 99 UX guidelines, and 25 chart types across 10 stacks (React, Next.js, Vue, Svelte, SwiftUI, React Native, Flutter, Tailwind, shadcn/ui, and HTML/CSS). Actions: plan, build, create, design, implement, review, fix, improve, optimize, enhance, refactor, and check UI/UX code. Projects: website, landing page, dashboard, admin panel, e-commerce, SaaS, portfolio, blog, and mobile app. Elements: button, modal, navbar, sidebar, card, table, form, and chart. Styles: glassmorphism, claymorphism, minimalism, brutalism, neumorphism, bento grid, dark mode, responsive, skeuomorphism, and flat design. Topics: color systems, accessibility, animation, layout, typography, font pairing, spacing, interaction states, shadow, and gradient. Integrations: shadcn/ui MCP for component search and examples.

49.4k

employment-contract-templates

Create employment contracts, offer letters, and HR policy documents following legal best practices. Use when drafting employment agreements, creating HR policies, or standardizing employment documentation.

32.2k

Stats

Parent Repo Stars0

Parent Repo Forks1

Last CommitMar 9, 2026

Actions

View Source View Plugin View on GitHub View README