How to Remove Lighthouse Delegations Based on Subscription IDs Using PowerShell
The Azure Lighthouse service enables co-management of customer resources on behalf of a third party. This makes it possible for a Managed Service Provider (MSP) to manage multiple customers’ resources on their behalf. As part of this service, customers can delegate access to their subscriptions to the MSP. This allows the MSP to manage the customer’s Azure resources and ensure they are properly configured and running optimally.
However, when the customer no longer requires the services of the MSP, it is important to remove the delegation to ensure that the MSP can no longer access the customer’s resources. This can be done using the Azure portal or using PowerShell. In this article, we will discuss how to remove the delegation using PowerShell.
Overview of Azure Lighthouse
Azure Lighthouse is a service that enables a third-party service provider to manage customer resources in Azure. It enables the service provider to manage multiple customers’ resources on their behalf, making it easier for customers to manage and maintain their Azure resources.The service provider can be granted access to a customer’s Azure subscription and resources. This access is known as a delegation. The delegation enables the service provider to view, manage, and deploy resources on behalf of the customer.
Removing an Azure Lighthouse Delegation with PowerShell
To remove an Azure Lighthouse delegation, you will need to use PowerShell. PowerShell is a scripting language developed by Microsoft that enables you to automate various tasks and processes.
Using PowerShell, you can easily remove an Azure Lighthouse delegation associated with a subscription ID. To remove the delegation, you need to perform the following steps:
Step 1: Connect to Azure
The first step is to connect to your Azure subscription. This can be done using the Connect-AzAccount cmdlet. This cmdlet will prompt you for your Azure credentials, which you will need to provide in order to connect.
Step 2: Get the Subscription ID
Once you are connected to Azure, you can use the Get-AzSubscription cmdlet to get the subscription IDs of the subscriptions associated with your account.
Step 3: Remove the Lighthouse Delegation
Now that you have the subscription ID, you can use the Remove-AzLighthouseDelegation cmdlet to remove the delegation associated with the subscription ID.
Step 4: Confirm the Delegation Was Removed
Once you have removed the delegation, you can use the Get-AzLighthouseDelegation cmdlet to confirm that the delegation has been removed.
Conclusion
Removing an Azure Lighthouse delegation is an important part of the co-management process. It is important to remove delegations when a customer no longer needs or wants the services of a third-party service provider. The process can be done using the Azure portal or using PowerShell.
In this article, we discussed how to remove the delegation using PowerShell. We discussed the steps involved and how to use the PowerShell cmdlets to remove the delegation. By following the steps outlined in this article, you can easily remove an Azure Lighthouse delegation associated with a subscription ID.
References:
Use PowerShell to Remove Lighthouse Delegations Based on Subscription IDs
.
1. “Delete Lighthouse Delegations with PowerShell” – search volume 8,