AzRoleAdvertizer

last sync: 2024-Nov-25 18:54:42 UTC

Azure Red Hat OpenShift Service Operator Role

Azure BuiltIn RBAC Role definition

NameAzure Red Hat OpenShift Service Operator Role
Id4436bae4-7702-4c84-919b-c4069ff25ee2
DescriptionThe ARO Operator is responsible for maintaining features, checks, and resources that are specific to an Azure Red Hat OpenShift cluster's continued functionality as a managed service. This includes, but is not limited to, machine management and health, network configuration, and monitoring.
CreatedOn2024-01-30 16:11:37 UTC
UpdatedOn2024-08-08 22:39:19 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-04-15 17:47:24 change: Actions Actions: 'add Microsoft.Network/virtualNetworks/subnets/read; add Microsoft.Network/virtualNetworks/subnets/write; add Microsoft.Network/natGateways/join/action; add Microsoft.Network/routeTables/join/action; add Microsoft.Network/networkSecurityGroups/join/action; add Microsoft.Storage/storageAccounts/listKeys/action; add Microsoft.Storage/storageAccounts/read'
2024-01-31 19:57:40 add: Role 4436bae4-7702-4c84-919b-c4069ff25ee2
Permissions summary Effective control plane and data plane operations: 7 (unique operations)
•action: 4
•read: 2
•write: 1

Actions: 7
Resolved control plane operations from Actions: 7
Effective control plane operations: 7
•action: 4
•read: 2
•write: 1

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16165

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3303
Actions
Operation Description
Microsoft.Network/natGateways/join/actionJoins a NAT Gateway
Microsoft.Network/networkSecurityGroups/join/actionJoins a network security group. Not Alertable.
Microsoft.Network/routeTables/join/actionJoins a route table. Not Alertable.
Microsoft.Network/virtualNetworks/subnets/readGets a virtual network subnet definition
Microsoft.Network/virtualNetworks/subnets/writeCreates a virtual network subnet or updates an existing virtual network subnet
Microsoft.Storage/storageAccounts/listKeys/actionReturns the access keys for the specified storage account.
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none