AzRoleAdvertizer

last sync: 2024-Nov-25 18:54:42 UTC

Azure Kubernetes Service Arc Contributor Role

Azure BuiltIn RBAC Role definition

NameAzure Kubernetes Service Arc Contributor Role
Id5d3f1697-4507-4d08-bb4a-477695db5f82
DescriptionGrants access to read and write Azure Kubernetes Services hybrid clusters
CreatedOn2024-03-07 00:25:44 UTC
UpdatedOn2024-04-16 15:22:50 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-04-17 17:45:34 change: Actions Actions: 'add Microsoft.AzureStackHCI/clusters/read'
2024-03-08 20:25:26 add: Role 5d3f1697-4507-4d08-bb4a-477695db5f82
Permissions summary Effective control plane and data plane operations: 25 (unique operations)
•action: 2
•delete: 6
•Read: 11
•write: 6

Actions: 25
Resolved control plane operations from Actions: 25
Effective control plane operations: 25
•action: 2
•delete: 6
•Read: 11
•write: 6

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16147

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3303
Actions
Operation Description
Microsoft.AzureStackHCI/clusters/readno description given
Microsoft.ExtendedLocation/customLocations/deploy/actionDeploy permissions to a Custom Location resource
Microsoft.ExtendedLocation/customLocations/readGets an Custom Location resource
Microsoft.HybridContainerService/kubernetesVersions/deleteDelete the kubernetes versions resource type
Microsoft.HybridContainerService/kubernetesVersions/readLists the supported kubernetes versions from the underlying custom location
Microsoft.HybridContainerService/kubernetesVersions/writePuts the kubernetes version resource type
Microsoft.HybridContainerService/Locations/operationStatuses/readread operationStatuses
Microsoft.HybridContainerService/Operations/readread Operations
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/deleteDeletes the agent pool in the Hybrid AKS provisioned cluster instance
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/readGets the agent pools in the Hybrid AKS provisioned cluster instance
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/writeUpdates the agent pool in the Hybrid AKS provisioned cluster instance
Microsoft.HybridContainerService/provisionedClusterInstances/deleteDeletes the Hybrid AKS provisioned cluster instance
Microsoft.HybridContainerService/provisionedClusterInstances/readGets the Hybrid AKS provisioned cluster instances associated with the connected cluster
Microsoft.HybridContainerService/provisionedClusterInstances/upgradeProfiles/readread upgradeProfiles
Microsoft.HybridContainerService/provisionedClusterInstances/writeCreates the Hybrid AKS provisioned cluster instance
Microsoft.HybridContainerService/skus/deleteDeletes the Vm Sku resource type
Microsoft.HybridContainerService/skus/readLists the supported VM SKUs from the underlying custom location
Microsoft.HybridContainerService/skus/writePuts the VM SKUs resource type
Microsoft.HybridContainerService/virtualNetworks/deleteDeletes the Hybrid AKS virtual network
Microsoft.HybridContainerService/virtualNetworks/readLists the Hybrid AKS virtual networks by subscription
Microsoft.HybridContainerService/virtualNetworks/writePatches the Hybrid AKS virtual network
Microsoft.Kubernetes/connectedClusters/DeleteDeletes connectedClusters
Microsoft.Kubernetes/connectedClusters/listClusterUserCredential/actionList clusterUser credential
Microsoft.Kubernetes/connectedClusters/ReadRead connectedClusters
Microsoft.Kubernetes/connectedClusters/WriteWrites connectedClusters
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none