# Resource Locks

* Lock a subscription, resource group, or resource to prevent other users in your organization from accidentally deleting or modifying critical resources.<br>
* Set the lock level to **CanNotDelete** or **ReadOnly:**<br>
  * **CanNotDelete** - Authorized users can still read and modify a resource, but they can't delete the resource.<br>
  * **ReadOnly** - Authorized users can read a resource, but they can't delete or update the resource. Similar to the "Reader" role permissions.