AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Azure Center for SAP solutions administrator

Azure BuiltIn RBAC Role definition

NameAzure Center for SAP solutions administrator
Id7b0c7e81-271f-4c71-90bf-e30bdfdbc2f7
DescriptionThis role provides read and write access to all capabilities of Azure Center for SAP solutions.
CreatedOn2022-10-04 19:16:18 UTC
UpdatedOn2023-06-22 15:42:45 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2023-06-22 17:48:48 change: Actions Actions: 'add Microsoft.Workloads/connectors/*/read; add Microsoft.Workloads/connectors/*/write; add Microsoft.Workloads/connectors/*/delete'
2023-06-06 18:29:25 change: Actions Actions: 'add Microsoft.Advisor/configurations/read; add Microsoft.Advisor/recommendations/read'
2023-02-06 18:40:05 change: Actions, DataActions Actions: 'remove Microsoft.Workloads/sapVirtualInstances/write; remove Microsoft.Workloads/sapVirtualInstances/delete; remove Microsoft.Workloads/Locations/OperationStatuses/read; remove Microsoft.Workloads/sapVirtualInstances/start/action; remove Microsoft.Workloads/sapVirtualInstances/stop/action; add Microsoft.Workloads/sapVirtualInstances/*/write; add Microsoft.Workloads/sapVirtualInstances/*/delete; add Microsoft.Workloads/Locations/*/read; add Microsoft.Workloads/sapVirtualInstances/*/start/action; add Microsoft.Workloads/sapVirtualInstances/*/stop/action; add Microsoft.Network/networkSecurityGroups/join/action; add Microsoft.Network/routeTables/join/action; add Microsoft.Compute/virtualMachines/read; add Microsoft.Compute/availabilitySets/read; add Microsoft.Compute/sshPublicKeys/read; add Microsoft.Compute/sshPublicKeys/write; add Microsoft.Compute/sshPublicKeys/*/generateKeyPair/action; add Microsoft.Compute/virtualMachines/extensions/read; add Microsoft.Compute/virtualMachines/extensions/delete; add Microsoft.Compute/disks/read',
DataActions: 'add Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read'
2023-01-18 18:07:15 change: Actions Actions: 'add Microsoft.Insights/metrics/read; add Microsoft.Insights/metricDefinitions/read; add Microsoft.Resources/subscriptions/resourceGroups/write; add Microsoft.Network/virtualNetworks/read; add Microsoft.Network/virtualNetworks/providers/Microsoft.Insights/metricDefinitions/read; add Microsoft.Network/virtualNetworks/subnets/read; add Microsoft.Network/virtualNetworks/subnets/write; add Microsoft.Network/virtualNetworks/subnets/virtualMachines/read; add Microsoft.Network/networkInterfaces/read; add Microsoft.Network/networkInterfaces/ipconfigurations/read; add Microsoft.Network/networkInterfaces/loadBalancers/read; add Microsoft.Network/networkInterfaces/providers/Microsoft.Insights/metricDefinitions/read; add Microsoft.Network/loadBalancers/read; add Microsoft.Network/loadBalancers/backendAddressPools/read; add Microsoft.Network/loadBalancers/frontendIPConfigurations/read; add Microsoft.Network/loadBalancers/loadBalancingRules/read; add Microsoft.Network/loadBalancers/inboundNatRules/read; add Microsoft.Network/loadBalancers/providers/Microsoft.Insights/logDefinitions/read; add Microsoft.Network/loadBalancers/networkInterfaces/read; add Microsoft.Network/loadBalancers/outboundRules/read; add Microsoft.Network/loadBalancers/virtualMachines/read; add Microsoft.Network/loadBalancers/providers/Microsoft.Insights/metricDefinitions/read; add Microsoft.Network/privateEndpoints/read; add Microsoft.Storage/storageAccounts/read; add Microsoft.Storage/storageAccounts/blobServices/read; add Microsoft.Storage/storageAccounts/blobServices/containers/read; add Microsoft.Storage/storageAccounts/fileServices/read; add Microsoft.Storage/storageAccounts/fileServices/shares/read'
2022-11-14 17:43:02 add: Role 7b0c7e81-271f-4c71-90bf-e30bdfdbc2f7
Permissions summary Effective control plane and data plane operations: 117 (unique operations)
•: 1
•Action: 19
•delete: 8
•read: 78
•write: 11

Actions: 57
Resolved control plane operations from Actions: 116
Effective control plane operations: 116
•: 1
•Action: 19
•delete: 8
•read: 77
•write: 11

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15679

DataActions: 1
Resolved data plane operations: 1
Effective data plane operations: 1
•read: 1

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3258
Actions
Operation Description
Microsoft.Advisor/configurations/readGet configurations
Microsoft.Advisor/recommendations/readReads recommendations
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.Compute/availabilitySets/readGet the properties of an availability set
Microsoft.Compute/disks/readGet the properties of a Disk
Microsoft.Compute/sshPublicKeys/*/generateKeyPair/actionwildcarded / no description
Microsoft.Compute/sshPublicKeys/readGet the properties of an SSH public key
Microsoft.Compute/sshPublicKeys/writeCreates a new SSH public key or updates an existing SSH public key
Microsoft.Compute/virtualMachines/extensions/deleteDeletes the virtual machine extension
Microsoft.Compute/virtualMachines/extensions/readGet the properties of a virtual machine extension
Microsoft.Compute/virtualMachines/readGet the properties of a virtual machine
Microsoft.Insights/alertRules/*wildcarded / no description
Microsoft.Insights/metricDefinitions/readRead metric definitions
Microsoft.Insights/metrics/readRead metrics
Microsoft.Network/loadBalancers/backendAddressPools/readGets a load balancer backend address pool definition
Microsoft.Network/loadBalancers/frontendIPConfigurations/readGets a load balancer frontend IP configuration definition
Microsoft.Network/loadBalancers/inboundNatRules/readGets a load balancer inbound nat rule definition
Microsoft.Network/loadBalancers/loadBalancingRules/readGets a load balancer load balancing rule definition
Microsoft.Network/loadBalancers/networkInterfaces/readGets references to all the network interfaces under a load balancer
Microsoft.Network/loadBalancers/outboundRules/readGets a load balancer outbound rule definition
Microsoft.Network/loadBalancers/providers/Microsoft.Insights/logDefinitions/readno description given
Microsoft.Network/loadBalancers/providers/Microsoft.Insights/metricDefinitions/readno description given
Microsoft.Network/loadBalancers/readGets a load balancer definition
Microsoft.Network/loadBalancers/virtualMachines/readGets references to all the virtual machines under a load balancer
Microsoft.Network/networkInterfaces/ipconfigurations/readGets a network interface ip configuration definition.
Microsoft.Network/networkInterfaces/loadBalancers/readGets all the load balancers that the network interface is part of
Microsoft.Network/networkInterfaces/providers/Microsoft.Insights/metricDefinitions/readno description given
Microsoft.Network/networkInterfaces/readGets a network interface definition.
Microsoft.Network/networkSecurityGroups/join/actionJoins a network security group. Not Alertable.
Microsoft.Network/privateEndpoints/readGets an private endpoint resource.
Microsoft.Network/routeTables/join/actionJoins a route table. Not Alertable.
Microsoft.Network/virtualNetworks/providers/Microsoft.Insights/metricDefinitions/readno description given
Microsoft.Network/virtualNetworks/readGet the virtual network definition
Microsoft.Network/virtualNetworks/subnets/readGets a virtual network subnet definition
Microsoft.Network/virtualNetworks/subnets/virtualMachines/readGets references to all the virtual machines in a virtual network subnet
Microsoft.Network/virtualNetworks/subnets/writeCreates a virtual network subnet or updates an existing virtual network subnet
Microsoft.ResourceHealth/availabilityStatuses/readGets the availability statuses for all resources in the specified scope
Microsoft.Resources/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/readGets the list of subscriptions.
Microsoft.Resources/subscriptions/resourcegroups/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
Microsoft.Resources/subscriptions/resourceGroups/writeCreates or updates a resource group.
Microsoft.Storage/storageAccounts/blobServices/containers/readReturns list of containers
Microsoft.Storage/storageAccounts/blobServices/readReturns blob service properties or statistics
Microsoft.Storage/storageAccounts/fileServices/readGet file service properties
Microsoft.Storage/storageAccounts/fileServices/shares/readList file shares
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
Microsoft.Workloads/connectors/*/deletewildcarded / no description
Microsoft.Workloads/connectors/*/readwildcarded / no description
Microsoft.Workloads/connectors/*/writewildcarded / no description
Microsoft.Workloads/Locations/*/actionwildcarded / no description
Microsoft.Workloads/Locations/*/readwildcarded / no description
Microsoft.Workloads/sapVirtualInstances/*/deletewildcarded / no description
Microsoft.Workloads/sapvirtualInstances/*/readwildcarded / no description
Microsoft.Workloads/sapVirtualInstances/*/start/actionwildcarded / no description
Microsoft.Workloads/sapVirtualInstances/*/stop/actionwildcarded / no description
Microsoft.Workloads/sapVirtualInstances/*/writewildcarded / no description
NotActions n/a
DataActions
Operation Description
Microsoft.Storage/storageAccounts/blobServices/containers/blobs/readReturns a blob or a list of blobs
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none