In the AUTHENTICATION AND LOCK LEVEL section, you need to define who has access to your resources, as well as what the users deploying your managed application can view in their portal. The first Lock Level parameter is used to define the access level of users deploying your managed application. There are two options from which you can choose:
- Read Only
- None
There is no option to grant more rights than Read Only to users deploying your managed application, as the definition of an Azure managed application is that the publisher maintains the application. If you plan to grant your users a higher access level, you should consider an Azure Marketplace offer.
The table beneath the Lock Level parameter defines the roles and members, which have more access to your managed application:
You can define all preconfigured roles available in Azure and give access to users, as well as groups...