AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Azure Resource Bridge Deployment Role

Azure BuiltIn RBAC Role definition

NameAzure Resource Bridge Deployment Role
Id7b1f81f9-4196-4058-8aae-762e593270df
DescriptionAzure Resource Bridge Deployment Role
CreatedOn2023-10-17 15:25:28 UTC
UpdatedOn2024-02-27 16:09:01 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-02-27 19:10:44 change: Actions Actions: 'add Microsoft.HybridContainerService/kubernetesVersions/read; add Microsoft.HybridContainerService/kubernetesVersions/write; add Microsoft.HybridContainerService/skus/read; add Microsoft.HybridContainerService/skus/write'
2024-02-16 19:45:19 change: Actions Actions: 'add Microsoft.Authorization/roleassignments/read'
2024-01-25 19:32:38 change: Actions Actions: 'add Microsoft.ResourceConnector/appliances/upgradeGraphs/read; add Microsoft.ResourceConnector/telemetryconfig/read'
2023-11-28 19:20:58 change: Actions Actions: 'add Microsoft.ResourceConnector/appliances/listKeys/action; add Microsoft.Resources/subscriptions/resourceGroups/read; add Microsoft.AzureStackHCI/StorageContainers/Write; add Microsoft.AzureStackHCI/StorageContainers/Read'
2023-11-01 19:03:09 change: Actions Actions: 'add Microsoft.AzureStackHCI/Register/Action; add Microsoft.HybridConnectivity/register/action; add Microsoft.Kubernetes/register/action; add Microsoft.GuestConfiguration/guestConfigurationAssignments/read; add Microsoft.HybridContainerService/register/action'
2023-10-17 16:35:42 add: Role 7b1f81f9-4196-4058-8aae-762e593270df
Permissions summary Effective control plane and data plane operations: 36 (unique operations)
•Action: 10
•delete: 3
•read: 17
•Write: 6

Actions: 36
Resolved control plane operations from Actions: 36
Effective control plane operations: 36
•Action: 10
•delete: 3
•read: 17
•Write: 6

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15759

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3259
Actions
Operation Description
Microsoft.Authorization/roleassignments/readGet information about a role assignment.
Microsoft.AzureStackHCI/Register/Actionno description given
Microsoft.AzureStackHCI/StorageContainers/ReadGets/Lists storage containers resource
Microsoft.AzureStackHCI/StorageContainers/WriteCreates/Updates storage containers resource
Microsoft.ExtendedLocation/customLocations/deleteDeletes Custom Location resource
Microsoft.ExtendedLocation/customLocations/deploy/actionDeploy permissions to a Custom Location resource
Microsoft.ExtendedLocation/customLocations/readGets an Custom Location resource
Microsoft.ExtendedLocation/customLocations/writeCreates or Updates Custom Location resource
Microsoft.ExtendedLocation/register/actionRegisters the subscription for Custom Location resource provider and enables the creation of Custom Location.
Microsoft.GuestConfiguration/guestConfigurationAssignments/readGet guest configuration assignment.
Microsoft.HybridConnectivity/register/actionRegister the subscription for Microsoft.HybridConnectivity
Microsoft.HybridContainerService/kubernetesVersions/readLists the supported kubernetes versions from the underlying custom location
Microsoft.HybridContainerService/kubernetesVersions/writePuts the kubernetes version resource type
Microsoft.HybridContainerService/register/actionRegister the subscription for Microsoft.HybridContainerService
Microsoft.HybridContainerService/skus/readLists the supported VM SKUs from the underlying custom location
Microsoft.HybridContainerService/skus/writePuts the VM SKUs resource type
Microsoft.Kubernetes/register/actionRegisters Subscription with Microsoft.Kubernetes resource provider
Microsoft.KubernetesConfiguration/extensions/deleteDeletes extension instance resource.
Microsoft.KubernetesConfiguration/extensions/operations/readGets Async Operation status.
Microsoft.KubernetesConfiguration/extensions/readGets extension instance resource.
Microsoft.KubernetesConfiguration/extensions/writeCreates or updates extension resource.
Microsoft.KubernetesConfiguration/namespaces/readGet Namespace Resource
Microsoft.KubernetesConfiguration/operations/readGets available operations of the Microsoft.KubernetesConfiguration resource provider.
Microsoft.KubernetesConfiguration/register/actionRegisters subscription to Microsoft.KubernetesConfiguration resource provider.
Microsoft.ResourceConnector/appliances/deleteDeletes Appliance resource
Microsoft.ResourceConnector/appliances/listClusterUserCredential/actionGet an appliance cluster user credential
Microsoft.ResourceConnector/appliances/listKeys/actionGet an appliance cluster customer user keys
Microsoft.ResourceConnector/appliances/readGets an Appliance resource
Microsoft.ResourceConnector/appliances/upgradeGraphs/readGets the upgrade graph of Appliance cluster
Microsoft.ResourceConnector/appliances/writeCreates or Updates Appliance resource
Microsoft.ResourceConnector/locations/operationresults/readGet result of Appliance operation
Microsoft.ResourceConnector/locations/operationsstatus/readGet result of Appliance operation
Microsoft.ResourceConnector/operations/readGets list of Available Operations for Appliances
Microsoft.ResourceConnector/register/actionRegisters the subscription for Appliances resource provider and enables the creation of Appliance.
Microsoft.ResourceConnector/telemetryconfig/readGet Appliances telemetry config utilized by Appliances CLI
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none