AzRoleAdvertizer

last sync: 2024-Nov-25 18:54:42 UTC

Operator Nexus Compute Contributor Role (Preview)

Azure BuiltIn RBAC Role definition

Name

Operator Nexus Compute Contributor Role (Preview)

4aa368ec-fba9-4e93-81ed-396b3d461cc5

Description

(Preview) Manage and configure Azure Operator Nexus infrastructure resources. This role is in preview and subject to change.

CreatedOn

2024-07-10 15:34:35 UTC

UpdatedOn

2024-07-10 15:34:35 UTC

History

Date/Time (UTC ymd) (i)	Change	Change detail
2024-07-10 18:24:21	add: Role	4aa368ec-fba9-4e93-81ed-396b3d461cc5

Permissions summary

Effective control plane and data plane operations: 91 (unique operations)
•action: 27
•Delete: 7
•read: 50
•Write: 7

Actions: 91
Resolved control plane operations from Actions: 91
Effective control plane operations: 91
•action: 27
•Delete: 7
•read: 50
•Write: 7

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16081

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3303

Actions

Operation	Description
Microsoft.Authorization/classicAdministrators/operationstatuses/read	Gets the administrator opreation statuses of the subscription.
Microsoft.Authorization/classicAdministrators/read	Reads the administrators for the subscription.
Microsoft.Authorization/denyAssignments/read	Get information about a deny assignment.
Microsoft.Authorization/diagnosticSettings/read	Read the information about diagnostics settings
Microsoft.Authorization/diagnosticSettingsCategories/read	Get the information about diagnostic settings categories
Microsoft.Authorization/locks/read	Gets locks at the specified scope.
Microsoft.Authorization/operations/read	Gets the list of operations
Microsoft.Authorization/permissions/read	Lists all the permissions the caller has at a given scope.
Microsoft.Authorization/policyAssignments/privateLinkAssociations/read	Get information about private link association.
Microsoft.Authorization/policyAssignments/read	Get information about a policy assignment.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnectionProxies/read	Get information about private endpoint connection proxy.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnections/read	Get information about private endpoint connection.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/read	Get information about resource management private link.
Microsoft.Authorization/policyDefinitions/read	Get information about a policy definition.
Microsoft.Authorization/policyExemptions/read	Get information about a policy exemption.
Microsoft.Authorization/policySetDefinitions/read	Get information about a policy set definition.
Microsoft.Authorization/providerOperations/read	Get operations for all resource providers which can be used in role definitions.
Microsoft.Authorization/roleAssignments/read	Get information about a role assignment.
Microsoft.Authorization/roleAssignmentScheduleInstances/read	Gets the role assignment schedule instances at given scope.
Microsoft.Authorization/roleAssignmentScheduleRequests/read	Gets the role assignment schedule requests at given scope.
Microsoft.Authorization/roleAssignmentSchedules/read	Gets the role assignment schedules at given scope.
Microsoft.Authorization/roleDefinitions/read	Get information about a role definition.
Microsoft.Authorization/roleEligibilityScheduleInstances/read	Gets the role eligibility schedule instances at given scope.
Microsoft.Authorization/roleEligibilityScheduleRequests/read	Gets the role eligibility schedule requests at given scope.
Microsoft.Authorization/roleEligibilitySchedules/read	Gets the role eligibility schedules at given scope.
Microsoft.Authorization/roleManagementPolicies/read	Get Role management policies
Microsoft.Authorization/roleManagementPolicyAssignments/read	Get role management policy assignments
Microsoft.ExtendedLocation/customLocations/deploy/action	Deploy permissions to a Custom Location resource
Microsoft.ExtendedLocation/customLocations/read	Gets an Custom Location resource
Microsoft.HybridCompute/machines/extensions/read	Reads any Azure Arc extensions
Microsoft.HybridCompute/machines/read	Read any Azure Arc machines
Microsoft.Insights/alertRules/activated/action	Classic metric alert activated
Microsoft.Insights/alertRules/delete	Delete a classic metric alert
Microsoft.Insights/alertRules/incidents/read	Read a classic metric alert incident
Microsoft.Insights/alertRules/read	Read a classic metric alert
Microsoft.Insights/alertRules/resolved/action	Classic metric alert resolved
Microsoft.Insights/alertRules/throttled/action	Classic metric alert rule throttled
Microsoft.Insights/alertRules/write	Create or update a classic metric alert
Microsoft.Kubernetes/connectedClusters/read	Read connectedClusters
Microsoft.KubernetesConfiguration/extensions/read	Gets extension instance resource.
Microsoft.ManagedNetworkFabric/networkFabricControllers/join/action	Join action for Network Fabric Controller resource.
Microsoft.ManagedNetworkFabric/networkFabrics/join/action	Join action for Network Fabric resource.
Microsoft.ManagedNetworkFabric/networkRacks/join/action	Join action for Network Rack resource.
Microsoft.NetworkCloud/bareMetalMachines/cordon/action	Cordon the provided bare metal machine's Kubernetes node.
Microsoft.NetworkCloud/bareMetalMachines/delete	Delete the provided bare metal machine. All customer initiated requests will be rejected as the life cycle of this resource is managed by the system.
Microsoft.NetworkCloud/bareMetalMachines/powerOff/action	Power off the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/read	Get properties of the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/reimage/action	Reimage the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/replace/action	Replace the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/restart/action	Restart the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/runDataExtracts/action	Run one or more data extractions on the provided bare metal machine. The URL to storage account with the command execution results and the command exit code can be retrieved from the operation status API once available.
Microsoft.NetworkCloud/bareMetalMachines/runReadCommands/action	Run one or more read-only commands on the provided bare metal machine. The URL to storage account with the command execution results and the command exit code can be retrieved from the operation status API once available.
Microsoft.NetworkCloud/bareMetalMachines/start/action	Start the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/uncordon/action	Uncordon the provided bare metal machine's Kubernetes node.
Microsoft.NetworkCloud/bareMetalMachines/write	Patch properties of the provided bare metal machine, or update tags associated with the bare metal machine. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusterManagers/delete	Delete the provided cluster manager.
Microsoft.NetworkCloud/clusterManagers/read	Get the properties of the provided cluster manager.
Microsoft.NetworkCloud/clusterManagers/write	Patch properties of the provided cluster manager, or update the tags assigned to the cluster manager. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusters/bareMetalMachineKeySets/read	Get bare metal machine key set of the provided cluster.
Microsoft.NetworkCloud/clusters/bmcKeySets/read	Get baseboard management controller key set of the provided cluster.
Microsoft.NetworkCloud/clusters/continueUpdateVersion/action	Trigger the continuation of an update for a cluster with a matching update strategy that has paused after completing a segment of the update.
Microsoft.NetworkCloud/clusters/delete	Delete the provided cluster.
Microsoft.NetworkCloud/clusters/deploy/action	Deploy the cluster using the rack configuration provided during creation.
Microsoft.NetworkCloud/clusters/metricsConfigurations/delete	Delete the metrics configuration of the provided cluster.
Microsoft.NetworkCloud/clusters/metricsConfigurations/read	Get metrics configuration of the provided cluster.
Microsoft.NetworkCloud/clusters/metricsConfigurations/write	Patch properties of metrics configuration for the provided cluster, or update the tags associated with it. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusters/read	Get a list of clusters in the provided subscription.
Microsoft.NetworkCloud/clusters/scanRuntime/action	Triggers the execution of a runtime protection scan to detect and remediate detected issues, in accordance with the cluster configuration.
Microsoft.NetworkCloud/clusters/updateVersion/action	Update the version of the provided cluster to one of the available supported versions.
Microsoft.NetworkCloud/clusters/write	Patch the properties of the provided cluster, or update the tags associated with the cluster. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/locations/operationStatuses/read	read_operationStatuses
Microsoft.NetworkCloud/operations/read	read_operations
Microsoft.NetworkCloud/racks/delete	Delete the provided rack. All customer initiated requests will be rejected as the life cycle of this resource is managed by the system.
Microsoft.NetworkCloud/racks/join/action	Join a Nexus rack.
Microsoft.NetworkCloud/racks/read	Get a list of racks in the provided subscription.
Microsoft.NetworkCloud/racks/write	Patch properties of the provided rack, or update the tags associated with the rack. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/rackSkus/read	Get the properties of the provided rack SKU.
Microsoft.NetworkCloud/register/action	Register the subscription for Microsoft.NetworkCloud
Microsoft.NetworkCloud/registeredSubscriptions/read	read_registeredSubscriptions
Microsoft.NetworkCloud/storageAppliances/read	Get properties of the provided storage appliance.
Microsoft.NetworkCloud/unregister/action	Unregister the subscription for Microsoft.NetworkCloud
Microsoft.Resources/deployments/cancel/action	Bricht die Bereitstellung ab.
Microsoft.Resources/deployments/delete	Loscht eine Bereitstellung.
Microsoft.Resources/deployments/exportTemplate/action	Hiermit wird eine Vorlage fur eine Bereitstellung exportiert.
Microsoft.Resources/deployments/operations/read	Ruft Bereitstellungsvorgange ab oder listet diese auf.
Microsoft.Resources/deployments/operationstatuses/read	Ruft den Status des Bereitstellungsvorgangs ab oder zeigt ihn an.
Microsoft.Resources/deployments/read	Ruft Bereitstellungen ab oder listet diese auf.
Microsoft.Resources/deployments/validate/action	Uberpruft eine Bereitstellung.
Microsoft.Resources/deployments/whatIf/action	Hiermit werden Vorlagenbereitstellungsanderungen vorhergesagt.
Microsoft.Resources/deployments/write	Erstellt oder aktualisiert eine Bereitstellung.
Microsoft.Resources/subscriptions/resourceGroups/read	Ruft Ressourcengruppen ab oder listet diese auf.

NotActions

n/a

DataActions

n/a

NotDataActions

n/a

Used in
BuiltIn Policy

none

JSON

api-version=2023-07-01-preview

Condition

none