AzRoleAdvertizer

last sync: 2024-Nov-25 18:54:42 UTC

Azure Kubernetes Fleet Manager RBAC Cluster Reader

Azure BuiltIn RBAC Role definition

NameAzure Kubernetes Fleet Manager RBAC Cluster Reader
Idbd80684d-2f5f-4130-892a-0955546282de
DescriptionGrants read-only access to most Kubernetes cluster-scoped resources in the fleet-managed hub cluster.
CreatedOn2024-10-21 15:04:47 UTC
UpdatedOn2024-10-21 15:04:47 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-10-21 17:52:38 add: Role bd80684d-2f5f-4130-892a-0955546282de
Permissions summary Effective control plane and data plane operations: 37 (unique operations)
•action: 1
•read: 36

Actions: 2
Resolved control plane operations from Actions: 2
Effective control plane operations: 2
•action: 1
•read: 1

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16170

DataActions: 35
Resolved data plane operations: 35
Effective data plane operations: 35
•read: 35

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3268
Actions
Operation Description
Microsoft.ContainerService/fleets/listCredentials/actionList fleet credentials
Microsoft.ContainerService/fleets/readGet fleet
NotActions n/a
DataActions
Operation Description
Microsoft.ContainerService/fleets/apiextensions.k8s.io/customresourcedefinitions/readReads customresourcedefinitions
Microsoft.ContainerService/fleets/apps/controllerrevisions/readReads controllerrevisions
Microsoft.ContainerService/fleets/apps/daemonsets/readReads daemonsets
Microsoft.ContainerService/fleets/apps/deployments/readReads deployments
Microsoft.ContainerService/fleets/apps/statefulsets/readReads statefulsets
Microsoft.ContainerService/fleets/autoscaling/horizontalpodautoscalers/readReads horizontalpodautoscalers
Microsoft.ContainerService/fleets/batch/cronjobs/readReads cronjobs
Microsoft.ContainerService/fleets/batch/jobs/readReads jobs
Microsoft.ContainerService/fleets/cluster.kubernetes-fleet.io/memberclusters/readRead fleet membercluster resource
Microsoft.ContainerService/fleets/configmaps/readReads configmaps
Microsoft.ContainerService/fleets/endpoints/readReads endpoints
Microsoft.ContainerService/fleets/events.k8s.io/events/readReads events
Microsoft.ContainerService/fleets/events/readReads events
Microsoft.ContainerService/fleets/extensions/daemonsets/readReads daemonsets
Microsoft.ContainerService/fleets/extensions/deployments/readReads deployments
Microsoft.ContainerService/fleets/extensions/ingresses/readReads ingresses
Microsoft.ContainerService/fleets/extensions/networkpolicies/readReads networkpolicies
Microsoft.ContainerService/fleets/limitranges/readReads limitranges
Microsoft.ContainerService/fleets/namespaces/readReads namespaces
Microsoft.ContainerService/fleets/networking.k8s.io/ingresses/readReads ingresses
Microsoft.ContainerService/fleets/networking.k8s.io/networkpolicies/readReads networkpolicies
Microsoft.ContainerService/fleets/nodes/readReads nodes
Microsoft.ContainerService/fleets/persistentvolumeclaims/readReads persistentvolumeclaims
Microsoft.ContainerService/fleets/persistentvolumes/readReads persistentvolumes
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterresourcebindings/readRead fleet clusterresourcebinding resource
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterresourceoverrides/readRead fleet clusterresourceoverride resource
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterresourceoverridesnapshots/readRead fleet clusterresourceoverridesnapshot resource
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterresourceplacements/readRead fleet clusterresourceplacement resource
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterresourcesnapshots/readRead fleet clusterresourcesnapshot resource
Microsoft.ContainerService/fleets/placement.kubernetes-fleet.io/clusterschedulingpolicysnapshots/readRead fleet clusterschedulingpolicysnapshot resource
Microsoft.ContainerService/fleets/policy/poddisruptionbudgets/readReads poddisruptionbudgets
Microsoft.ContainerService/fleets/replicationcontrollers/readReads replicationcontrollers
Microsoft.ContainerService/fleets/resourcequotas/readReads resourcequotas
Microsoft.ContainerService/fleets/serviceaccounts/readReads serviceaccounts
Microsoft.ContainerService/fleets/services/readReads services
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none