AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Key Vault Purge Operator

Azure BuiltIn RBAC Role definition

NameKey Vault Purge Operator
Ida68e7c17-0ab2-4c09-9a58-125dae29748c
DescriptionAllows permanent deletion of soft-deleted vaults.
CreatedOn2024-09-03 15:18:11 UTC
UpdatedOn2024-09-03 15:18:11 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-09-02 17:50:05 add: Role a68e7c17-0ab2-4c09-9a58-125dae29748c
Permissions summary Effective control plane and data plane operations: 49 (unique operations)
•: 1
•Action: 8
•Delete: 2
•read: 36
•Write: 2

Actions: 8
Resolved control plane operations from Actions: 49
Effective control plane operations: 49
•: 1
•Action: 8
•Delete: 2
•read: 36
•Write: 2

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15746

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3259
Actions
Operation Description
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.Insights/alertRules/*wildcarded / no description
Microsoft.KeyVault/deletedVaults/readView the properties of soft deleted key vaults
Microsoft.KeyVault/locations/deletedVaults/purge/actionPurge a soft deleted key vault
Microsoft.KeyVault/locations/deletedVaults/readView the properties of a soft deleted key vault
Microsoft.KeyVault/locations/operationResults/readCheck the result of a long run operation
Microsoft.Resources/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none