AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Enclave Owner Role

Azure BuiltIn RBAC Role definition

Name

Enclave Owner Role

3d5f3eff-eb94-473d-91e3-7aac74d6c0bb

Description

Enclave Owner Role to access the resources of Microsoft.Mission stored with RPSAAS.

CreatedOn

2023-12-06 16:25:52 UTC

UpdatedOn

2024-09-17 15:06:28 UTC

History

Date/Time (UTC ymd) (i)	Change	Change detail
2024-09-17 17:51:02	change: Actions	Actions: 'add Microsoft.Mission/approvals/read; add Microsoft.Mission/approvals/write; add Microsoft.Mission/approvals/delete'
2024-03-26 18:41:13	change: Actions	Actions: 'add Microsoft.Authorization/*/read; add Microsoft.Insights/alertRules/read; add Microsoft.Resources/deployments/read; add Microsoft.Resources/deployments/write; add Microsoft.Resources/subscriptions/read; add Microsoft.Resources/subscriptions/resourceGroups/read; add Microsoft.Resources/subscriptions/resourcegroups/deployments/read; add Microsoft.Resources/subscriptions/operationresults/read; add Microsoft.ResourceHealth/availabilityStatuses/read; add Microsoft.Features/providers/features/read; add Microsoft.Features/features/read; add Microsoft.Mission/communities/communityEndpoints/read; add Microsoft.Mission/communities/transitHubs/read; add Microsoft.Mission/enclaveConnections/read; add Microsoft.Mission/enclaveConnections/write; add Microsoft.Mission/enclaveConnections/delete; add Microsoft.Mission/virtualEnclaves/enclaveEndpoints/read; add Microsoft.Mission/virtualEnclaves/enclaveEndpoints/write; add Microsoft.Mission/virtualEnclaves/enclaveEndpoints/delete'
2023-12-06 18:52:54	add: Role	3d5f3eff-eb94-473d-91e3-7aac74d6c0bb

Permissions summary

Effective control plane and data plane operations: 64 (unique operations)
•delete: 7
•read: 48
•write: 9

Actions: 38
Resolved control plane operations from Actions: 64
Effective control plane operations: 64
•delete: 7
•read: 48
•write: 9

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15731

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3259

Actions

Operation	Description
Microsoft.Authorization/*/read	wildcarded / no description
Microsoft.Features/features/read	Gets the features of a subscription.
Microsoft.Features/providers/features/read	Gets the feature of a subscription in a given resource provider.
Microsoft.Insights/alertRules/read	Read a classic metric alert
Microsoft.Mission/approvals/delete	Delete a ApprovalResource
Microsoft.Mission/approvals/read	Get a ApprovalResource
Microsoft.Mission/approvals/write	Update a ApprovalResource
Microsoft.Mission/catalogs/delete	no description given
Microsoft.Mission/catalogs/read	no description given
Microsoft.Mission/catalogs/write	no description given
Microsoft.Mission/communities/communityEndpoints/read	Get a CommunityEndpointResource
Microsoft.Mission/communities/read	Get a CommunityResource
Microsoft.Mission/communities/transitHubs/read	Get a TransitHubResource
Microsoft.Mission/enclaveConnections/delete	Delete a EnclaveConnectionResource
Microsoft.Mission/enclaveConnections/read	Get a EnclaveConnectionResource
Microsoft.Mission/enclaveConnections/write	Update a EnclaveConnectionResource
Microsoft.Mission/internalConnections/delete	Delete a InternalConnection
Microsoft.Mission/internalConnections/read	Get a InternalConnection
Microsoft.Mission/internalConnections/write	Update a InternalConnection
Microsoft.Mission/Locations/OperationStatuses/read	read OperationStatuses
Microsoft.Mission/Locations/OperationStatuses/write	write OperationStatuses
Microsoft.Mission/Operations/read	read Operations
Microsoft.Mission/virtualEnclaves/delete	Delete a EnclaveResource
Microsoft.Mission/virtualEnclaves/enclaveEndpoints/delete	Delete a EnclaveEndpointResource
Microsoft.Mission/virtualEnclaves/enclaveEndpoints/read	Get a EnclaveEndpointResource
Microsoft.Mission/virtualEnclaves/enclaveEndpoints/write	Update a EnclaveEndpointResource
Microsoft.Mission/virtualEnclaves/read	Get a EnclaveResource
Microsoft.Mission/virtualEnclaves/workloads/delete	Delete a WorkloadResource
Microsoft.Mission/virtualEnclaves/workloads/read	Get a WorkloadResource
Microsoft.Mission/virtualEnclaves/workloads/write	Update a WorkloadResource
Microsoft.Mission/virtualEnclaves/write	Update a EnclaveResource
Microsoft.ResourceHealth/availabilityStatuses/read	Gets the availability statuses for all resources in the specified scope
Microsoft.Resources/deployments/read	Gets or lists deployments.
Microsoft.Resources/deployments/write	Creates or updates an deployment.
Microsoft.Resources/subscriptions/operationresults/read	Get the subscription operation results.
Microsoft.Resources/subscriptions/read	Gets the list of subscriptions.
Microsoft.Resources/subscriptions/resourcegroups/deployments/read	Gets or lists deployments.
Microsoft.Resources/subscriptions/resourceGroups/read	Gets or lists resource groups.

NotActions

n/a

DataActions

n/a

NotDataActions

n/a

Used in
BuiltIn Policy

none

JSON

api-version=2023-07-01-preview

Condition

none