Updated with rebranding changes.

Author: LouisBerner

azure-local/manage/assign-vm-rbac-roles.md

@@ -1,18 +1,18 @@
 ---
-title: Use builtin RBAC roles for Arc VM management on Azure Local
-description: Learn how to use RBAC builtin roles for Arc VM management on Azure Local.
+title: Use builtin RBAC roles for Azure Local VM management
+description: Learn how to use RBAC builtin roles for Azure Local VM management.
 author: alkohli
 ms.author: alkohli
 ms.topic: how-to
 ms.service: azure-local
-ms.date: 11/15/2024
+ms.date: 03/17/2025
 ---
 
-# Use Role-based Access Control to manage Azure Local virtual machines 
+# Use Role-based Access Control for Azure Local virtual machine management 
 
 [!INCLUDE [hci-applies-to-23h2](../includes/hci-applies-to-23h2.md)]
 
-This article describes how to use the Role-based Access Control (RBAC) to control access to Arc virtual machines (VMs) running on Azure Local.
+This article describes how to use the Role-based Access Control (RBAC) to control access to Azure Local virtual machines (VMs).
 
 You can use the builtin RBAC roles to control access to VMs and VM resources such as virtual disks, network interfaces, VM images, logical networks and storage paths. You can assign these roles to users, groups, service principals and managed identities.
 
@@ -26,14 +26,12 @@ To control access to VMs and VM resources on Azure Local, you can use the follow
 
 Here's a table that describes the VM actions granted by each role for the VMs and the various VM resources. The VM resources are referred to resources required to create a VM and include virtual disks, network interfaces, VM images, logical networks, and storage paths:
 
-
 | Builtin role | VMs | VM resources |
 |--|--|--|
 | Azure Stack HCI Administrator | Create, list, delete VMs<br><br> Start, stop, restart VMs | Create, list, delete all VM resources including logical networks, VM images, and storage paths |
 | Azure Stack HCI VM Contributor | Create, list, delete VMs<br><br> Start, stop, restart VMs | Create, list, delete all VM resources except logical networks, VM images, and storage paths |
 | Azure Stack HCI VM Reader | List all VMs | List all VM resources |
 
- 
 ## Prerequisites
 
 Before you begin, make sure to complete the following prerequisites:
@@ -44,18 +42,17 @@ Before you begin, make sure to complete the following prerequisites:
 
 ## Assign RBAC roles to users
 
-You can assign RBAC roles to user via the Azure portal. Follow these steps to assign RBAC roles to users:
+You can assign RBAC roles to users via the Azure portal. Follow these steps to assign RBAC roles to users:
 
 1. In the Azure portal, search for the scope to grant access to, for example, search for subscriptions, resource groups, or a specific resource. In this example, we use the subscription in which your Azure Local is deployed.
 
-
-1. Go to your subscription and then go to **Access control (IAM) > Role assignments**. From the top command bar, select **+ Add** and then select **Add role assignment**.
+1. Go to your subscription and then go to **Access control (IAM)** > **Role assignments**. From the top command bar, select **+ Add** and then select **Add role assignment**.
 
     If you don't have permissions to assign roles, the **Add role assignment** option is disabled.
 
     :::image type="content" source="./media/assign-vm-rbac-roles/add-role-assignment-1.png" alt-text="Screenshot showing RBAC role assignment in Azure portal for your Azure Local." lightbox="./media/assign-vm-rbac-roles/add-role-assignment-1.png":::
 
-1. On the **Role** tab, select an RBAC role to assign and choose from one of the following builtin roles:
+1. On the **Role** tab, select an RBAC role to assign and select one of the following builtin roles:
 
     - **Azure Stack HCI Administrator**
     - **Azure Stack HCI VM Contributor**
@@ -71,7 +68,7 @@ You can assign RBAC roles to user via the Azure portal. Follow these steps to as
 
     :::image type="content" source="./media/assign-vm-rbac-roles/add-role-assignment-4.png" alt-text="Screenshot showing Review + assign tab during role assignment in Azure portal for your Azure Local instance." lightbox="./media/assign-vm-rbac-roles/add-role-assignment-4.png":::
 
-1. Verify the role assignment. Go to **Access control (IAM) > Check access > View my access**. You should see the role assignment.
+1. Verify the role assignment. Go to **Access control (IAM)** > **Check access** > **View my access**. You should see the role assignment.
 
     :::image type="content" source="./media/assign-vm-rbac-roles/add-role-assignment-5.png" alt-text="Screenshot showing newly assigned role in Azure portal for your Azure Local instance." lightbox="./media/assign-vm-rbac-roles/add-role-assignment-5.png":::