AzRoleAdvertizer

last sync: 2024-Sep-19 17:51:49 UTC

Azure Connected Machine Resource Manager

Azure BuiltIn RBAC Role definition

NameAzure Connected Machine Resource Manager
Idf5819b54-e033-4d82-ac66-4fec3cbf3f4c
DescriptionCustom Role for AzureStackHCI RP to manage hybrid compute machines and hybrid connectivity endpoints in a resource group
CreatedOn2022-11-15 18:14:23 UTC
UpdatedOn2024-08-27 15:13:33 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-08-26 18:18:02 change: Actions Actions: 'add Microsoft.Attestation/attestationProviders/write; add Microsoft.Attestation/attestationProviders/read; add Microsoft.Attestation/attestationProviders/delete; add Microsoft.Attestation/attestationProviders/attestation/read; add Microsoft.Attestation/attestationProviders/attestation/write; add Microsoft.Attestation/attestationProviders/attestation/delete'
2024-08-08 18:19:52 change: Actions Actions: 'add Microsoft.ExtendedLocation/customLocations/read'
2024-06-11 18:18:33 change: Actions Actions: 'add Microsoft.EdgeMarketplace/locations/operationStatuses/read; add Microsoft.EdgeMarketPlace/offers/getAccessToken/action; add Microsoft.EdgeMarketPlace/offers/generateAccessToken/action; add Microsoft.EdgeMarketplace/publishers/read; add Microsoft.EdgeMarketplace/offers/read'
2024-06-04 18:17:09 change: Actions Actions: 'add Microsoft.Authorization/*/read; add Microsoft.Resources/subscriptions/resourceGroups/read'
2024-01-08 19:16:18 change: Actions Actions: 'add Microsoft.HybridCompute/machines/licenseProfiles/read; add Microsoft.HybridCompute/machines/licenseProfiles/write; add Microsoft.HybridCompute/machines/licenseProfiles/delete; add Microsoft.GuestConfiguration/guestConfigurationAssignments/read; add Microsoft.GuestConfiguration/guestConfigurationAssignments/*/read; add Microsoft.GuestConfiguration/guestConfigurationAssignments/write'
2023-05-12 17:41:49 change: Actions Actions: 'add Microsoft.HybridConnectivity/endpoints/serviceConfigurations/read; add Microsoft.HybridConnectivity/endpoints/serviceConfigurations/write'
2022-11-16 17:42:38 change: Actions Actions: 'add Microsoft.HybridCompute/machines/read; add Microsoft.HybridCompute/machines/write; add Microsoft.HybridCompute/machines/delete; add Microsoft.HybridCompute/machines/extensions/read; add Microsoft.HybridCompute/machines/extensions/write; add Microsoft.HybridCompute/machines/extensions/delete; add Microsoft.HybridCompute/*/read; add Microsoft.HybridCompute/machines/UpgradeExtensions/action'
2022-11-15 17:42:13 add: Role f5819b54-e033-4d82-ac66-4fec3cbf3f4c
Permissions summary Effective control plane and data plane operations: 79 (unique operations)
•action: 3
•delete: 5
•read: 63
•write: 8

Actions: 32
Resolved control plane operations from Actions: 79
Effective control plane operations: 79
•action: 3
•delete: 5
•read: 63
•write: 8

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15716

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3259
Actions
Operation Description
Microsoft.Attestation/attestationProviders/attestation/deleteRemoves attestation service.
Microsoft.Attestation/attestationProviders/attestation/readGets the attestation service status.
Microsoft.Attestation/attestationProviders/attestation/writeAdds attestation service.
Microsoft.Attestation/attestationProviders/deleteRemoves attestation service.
Microsoft.Attestation/attestationProviders/readGets the attestation service status.
Microsoft.Attestation/attestationProviders/writeAdds attestation service.
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.EdgeMarketplace/locations/operationStatuses/readread operationStatuses
Microsoft.EdgeMarketPlace/offers/generateAccessToken/actionA long-running resource action.
Microsoft.EdgeMarketPlace/offers/getAccessToken/actionget access token.
Microsoft.EdgeMarketplace/offers/readGet a Offer
Microsoft.EdgeMarketplace/publishers/readGet a Publisher
Microsoft.ExtendedLocation/customLocations/readGets an Custom Location resource
Microsoft.GuestConfiguration/guestConfigurationAssignments/*/readwildcarded / no description
Microsoft.GuestConfiguration/guestConfigurationAssignments/readGet guest configuration assignment.
Microsoft.GuestConfiguration/guestConfigurationAssignments/writeCreate new guest configuration assignment.
Microsoft.HybridCompute/*/readwildcarded / no description
Microsoft.HybridCompute/machines/deleteDeletes an Azure Arc machines
Microsoft.HybridCompute/machines/extensions/deleteDeletes an Azure Arc extensions
Microsoft.HybridCompute/machines/extensions/readReads any Azure Arc extensions
Microsoft.HybridCompute/machines/extensions/writeInstalls or Updates an Azure Arc extensions
Microsoft.HybridCompute/machines/licenseProfiles/deleteDeletes an Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/licenseProfiles/readReads any Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/licenseProfiles/writeInstalls or Updates an Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/readRead any Azure Arc machines
Microsoft.HybridCompute/machines/UpgradeExtensions/actionUpgrades Extensions on Azure Arc machines
Microsoft.HybridCompute/machines/writeWrites an Azure Arc machines
Microsoft.HybridConnectivity/endpoints/readGet or list of endpoints to the target resource.
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/readGet or list of serviceConfigurations to the endpoints resource.
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/writeCreate or update the serviceConfigurations to the endpoints resource.
Microsoft.HybridConnectivity/endpoints/writeCreate or update the endpoint to the target resource.
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none