I'm getting confused about governance in Azure. I get that RBAC references users given the ability to create something, but how do sku's, policy definitions, and policy assignments fit into the puzzle? I've gone back through the 1st vid of Governance, but I'm not picking up the whole picture.
There is a box showing RBAC next to Policy Definitions next to a Policy Definition box all within a boundary. How do these things work together?