AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Operator Nexus Compute Contributor Role (Preview)

Azure BuiltIn RBAC Role definition

NameOperator Nexus Compute Contributor Role (Preview)
Id4aa368ec-fba9-4e93-81ed-396b3d461cc5
Description(Preview) Manage and configure Azure Operator Nexus infrastructure resources. This role is in preview and subject to change.
CreatedOn2024-07-11 15:42:35 UTC
UpdatedOn2024-07-11 15:42:35 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-07-10 18:24:21 add: Role 4aa368ec-fba9-4e93-81ed-396b3d461cc5
Permissions summary Effective control plane and data plane operations: 91 (unique operations)
•action: 27
•Delete: 7
•read: 50
•Write: 7

Actions: 91
Resolved control plane operations from Actions: 91
Effective control plane operations: 91
•action: 27
•Delete: 7
•read: 50
•Write: 7

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15704

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3259
Actions
Operation Description
Microsoft.Authorization/classicAdministrators/operationstatuses/readGets the administrator opreation statuses of the subscription.
Microsoft.Authorization/classicAdministrators/readReads the administrators for the subscription.
Microsoft.Authorization/denyAssignments/readGet information about a deny assignment.
Microsoft.Authorization/diagnosticSettings/readRead the information about diagnostics settings
Microsoft.Authorization/diagnosticSettingsCategories/readGet the information about diagnostic settings categories
Microsoft.Authorization/locks/readGets locks at the specified scope.
Microsoft.Authorization/operations/readGets the list of operations
Microsoft.Authorization/permissions/readLists all the permissions the caller has at a given scope.
Microsoft.Authorization/policyAssignments/privateLinkAssociations/readGet information about private link association.
Microsoft.Authorization/policyAssignments/readGet information about a policy assignment.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnectionProxies/readGet information about private endpoint connection proxy.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnections/readGet information about private endpoint connection.
Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/readGet information about resource management private link.
Microsoft.Authorization/policyDefinitions/readGet information about a policy definition.
Microsoft.Authorization/policyExemptions/readGet information about a policy exemption.
Microsoft.Authorization/policySetDefinitions/readGet information about a policy set definition.
Microsoft.Authorization/providerOperations/readGet operations for all resource providers which can be used in role definitions.
Microsoft.Authorization/roleAssignments/readGet information about a role assignment.
Microsoft.Authorization/roleAssignmentScheduleInstances/readGets the role assignment schedule instances at given scope.
Microsoft.Authorization/roleAssignmentScheduleRequests/readGets the role assignment schedule requests at given scope.
Microsoft.Authorization/roleAssignmentSchedules/readGets the role assignment schedules at given scope.
Microsoft.Authorization/roleDefinitions/readGet information about a role definition.
Microsoft.Authorization/roleEligibilityScheduleInstances/readGets the role eligibility schedule instances at given scope.
Microsoft.Authorization/roleEligibilityScheduleRequests/readGets the role eligibility schedule requests at given scope.
Microsoft.Authorization/roleEligibilitySchedules/readGets the role eligibility schedules at given scope.
Microsoft.Authorization/roleManagementPolicies/readGet Role management policies
Microsoft.Authorization/roleManagementPolicyAssignments/readGet role management policy assignments
Microsoft.ExtendedLocation/customLocations/deploy/actionDeploy permissions to a Custom Location resource
Microsoft.ExtendedLocation/customLocations/readGets an Custom Location resource
Microsoft.HybridCompute/machines/extensions/readReads any Azure Arc extensions
Microsoft.HybridCompute/machines/readRead any Azure Arc machines
Microsoft.Insights/alertRules/activated/actionClassic metric alert activated
Microsoft.Insights/alertRules/deleteDelete a classic metric alert
Microsoft.Insights/alertRules/incidents/readRead a classic metric alert incident
Microsoft.Insights/alertRules/readRead a classic metric alert
Microsoft.Insights/alertRules/resolved/actionClassic metric alert resolved
Microsoft.Insights/alertRules/throttled/actionClassic metric alert rule throttled
Microsoft.Insights/alertRules/writeCreate or update a classic metric alert
Microsoft.Kubernetes/connectedClusters/readRead connectedClusters
Microsoft.KubernetesConfiguration/extensions/readGets extension instance resource.
Microsoft.ManagedNetworkFabric/networkFabricControllers/join/actionJoin action for Network Fabric Controller resource.
Microsoft.ManagedNetworkFabric/networkFabrics/join/actionJoin action for Network Fabric resource.
Microsoft.ManagedNetworkFabric/networkRacks/join/actionJoin action for Network Rack resource.
Microsoft.NetworkCloud/bareMetalMachines/cordon/actionCordon the provided bare metal machine's Kubernetes node.
Microsoft.NetworkCloud/bareMetalMachines/deleteDelete the provided bare metal machine. All customer initiated requests will be rejected as the life cycle of this resource is managed by the system.
Microsoft.NetworkCloud/bareMetalMachines/powerOff/actionPower off the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/readGet properties of the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/reimage/actionReimage the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/replace/actionReplace the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/restart/actionRestart the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/runDataExtracts/actionRun one or more data extractions on the provided bare metal machine. The URL to storage account with the command execution results and the command exit code can be retrieved from the operation status API once available.
Microsoft.NetworkCloud/bareMetalMachines/runReadCommands/actionRun one or more read-only commands on the provided bare metal machine. The URL to storage account with the command execution results and the command exit code can be retrieved from the operation status API once available.
Microsoft.NetworkCloud/bareMetalMachines/start/actionStart the provided bare metal machine.
Microsoft.NetworkCloud/bareMetalMachines/uncordon/actionUncordon the provided bare metal machine's Kubernetes node.
Microsoft.NetworkCloud/bareMetalMachines/writePatch properties of the provided bare metal machine, or update tags associated with the bare metal machine. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusterManagers/deleteDelete the provided cluster manager.
Microsoft.NetworkCloud/clusterManagers/readGet the properties of the provided cluster manager.
Microsoft.NetworkCloud/clusterManagers/writePatch properties of the provided cluster manager, or update the tags assigned to the cluster manager. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusters/bareMetalMachineKeySets/readGet bare metal machine key set of the provided cluster.
Microsoft.NetworkCloud/clusters/bmcKeySets/readGet baseboard management controller key set of the provided cluster.
Microsoft.NetworkCloud/clusters/continueUpdateVersion/actionTrigger the continuation of an update for a cluster with a matching update strategy that has paused after completing a segment of the update.
Microsoft.NetworkCloud/clusters/deleteDelete the provided cluster.
Microsoft.NetworkCloud/clusters/deploy/actionDeploy the cluster using the rack configuration provided during creation.
Microsoft.NetworkCloud/clusters/metricsConfigurations/deleteDelete the metrics configuration of the provided cluster.
Microsoft.NetworkCloud/clusters/metricsConfigurations/readGet metrics configuration of the provided cluster.
Microsoft.NetworkCloud/clusters/metricsConfigurations/writePatch properties of metrics configuration for the provided cluster, or update the tags associated with it. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/clusters/readGet a list of clusters in the provided subscription.
Microsoft.NetworkCloud/clusters/scanRuntime/actionTriggers the execution of a runtime protection scan to detect and remediate detected issues, in accordance with the cluster configuration.
Microsoft.NetworkCloud/clusters/updateVersion/actionUpdate the version of the provided cluster to one of the available supported versions.
Microsoft.NetworkCloud/clusters/writePatch the properties of the provided cluster, or update the tags associated with the cluster. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/locations/operationStatuses/readread_operationStatuses
Microsoft.NetworkCloud/operations/readread_operations
Microsoft.NetworkCloud/racks/deleteDelete the provided rack. All customer initiated requests will be rejected as the life cycle of this resource is managed by the system.
Microsoft.NetworkCloud/racks/join/actionJoin a Nexus rack.
Microsoft.NetworkCloud/racks/readGet a list of racks in the provided subscription.
Microsoft.NetworkCloud/racks/writePatch properties of the provided rack, or update the tags associated with the rack. Properties and tag updates can be done independently.
Microsoft.NetworkCloud/rackSkus/readGet the properties of the provided rack SKU.
Microsoft.NetworkCloud/register/actionRegister the subscription for Microsoft.NetworkCloud
Microsoft.NetworkCloud/registeredSubscriptions/readread_registeredSubscriptions
Microsoft.NetworkCloud/storageAppliances/readGet properties of the provided storage appliance.
Microsoft.NetworkCloud/unregister/actionUnregister the subscription for Microsoft.NetworkCloud
Microsoft.Resources/deployments/cancel/actionCancels a deployment.
Microsoft.Resources/deployments/deleteDeletes a deployment.
Microsoft.Resources/deployments/exportTemplate/actionExport template for a deployment
Microsoft.Resources/deployments/operations/readGets or lists deployment operations.
Microsoft.Resources/deployments/operationstatuses/readGets or lists deployment operation statuses.
Microsoft.Resources/deployments/readGets or lists deployments.
Microsoft.Resources/deployments/validate/actionValidates an deployment.
Microsoft.Resources/deployments/whatIf/actionPredicts template deployment changes.
Microsoft.Resources/deployments/writeCreates or updates an deployment.
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none