Ingebouwde Azure-rollenAzure built-in roles
Toegangs beheer op basis van rollen (Azure RBAC) van Azure heeft verschillende ingebouwde rollen van Azure die u kunt toewijzen aan gebruikers, groepen, service-principals en beheerde identiteiten.Azure role-based access control (Azure RBAC) has several Azure built-in roles that you can assign to users, groups, service principals, and managed identities. Roltoewijzingen zijn de manier waarop u de toegang tot Azure-resources beheert.Role assignments are the way you control access to Azure resources. Als de ingebouwde rollen niet voldoen aan de specifieke behoeften van uw organisatie, kunt u uw eigen aangepaste Azure-rollen maken.If the built-in roles don't meet the specific needs of your organization, you can create your own Azure custom roles.
Dit artikel bevat een overzicht van de ingebouwde rollen van Azure, die altijd in ontwikkeling zijn.This article lists the Azure built-in roles, which are always evolving. Gebruik de lijst met Get-AzRoleDefinition of AZ Role definitionom de nieuwste rollen op te halen.To get the latest roles, use Get-AzRoleDefinition or az role definition list. Als u op zoek bent naar beheerders rollen voor Azure Active Directory (Azure AD), raadpleegt u machtigingen voor beheerdersrol in azure Active Directory.If you are looking for administrator roles for Azure Active Directory (Azure AD), see Administrator role permissions in Azure Active Directory.
De volgende tabel bevat een korte beschrijving en de unieke ID van elke ingebouwde rol.The following table provides a brief description and the unique ID of each built-in role. Klik op de naam van de rol om de lijst met Actions
,, NotActions
DataActions
en NotDataActions
voor elke rol weer te geven.Click the role name to see the list of Actions
, NotActions
, DataActions
, and NotDataActions
for each role. Zie begrippen van Azure-functies begrijpenvoor informatie over wat deze acties betekenen en hoe deze van toepassing zijn op het beheer-en gegevens abonnement.For information about what these actions mean and how they apply to the management and data planes, see Understand Azure role definitions.
AllesAll
Ingebouwde rolBuilt-in role | BeschrijvingDescription | IdID |
---|---|---|
AlgemeenGeneral | ||
InzenderContributor | Verleent volledige toegang om alle resources te beheren, maar biedt geen ondersteuning voor het toewijzen van rollen in azure RBAC, het beheren van toewijzingen in azure-blauw drukken of het delen van afbeeldings galerieën.Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC, manage assignments in Azure Blueprints, or share image galleries. | b24988ac-6180-42a0-ab88-20f7382dd24cb24988ac-6180-42a0-ab88-20f7382dd24c |
EigenaarOwner | Hiermee wordt volledige toegang verleend voor het beheren van alle resources, inclusief de mogelijkheid om rollen toe te wijzen in azure RBAC.Grants full access to manage all resources, including the ability to assign roles in Azure RBAC. | 8e3af657-a8ff-443c-a75c-2fe8c4bcb6358e3af657-a8ff-443c-a75c-2fe8c4bcb635 |
LezerReader | Bekijk alle resources, maar u kunt geen wijzigingen aanbrengen.View all resources, but does not allow you to make any changes. | acdd72a7-3385-48ef-bd42-f606fba81ae7acdd72a7-3385-48ef-bd42-f606fba81ae7 |
Beheerder van gebruikerstoegangUser Access Administrator | Hiermee beheert u de gebruikers toegang tot Azure-resources.Lets you manage user access to Azure resources. | 18d7d88d-d35e-4fb5-a5c3-7773c20a72d918d7d88d-d35e-4fb5-a5c3-7773c20a72d9 |
ComputeCompute | ||
Inzender voor klassieke virtuele machinesClassic Virtual Machine Contributor | Hiermee beheert u klassieke virtuele machines, maar kunt u niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to. | d73bb868-a0df-4d4d-bd69-98a00b01fccbd73bb868-a0df-4d4d-bd69-98a00b01fccb |
Aanmelding voor de beheerder van de virtuele machineVirtual Machine Administrator Login | Virtual Machines in de portal weer geven en u aanmelden als beheerderView Virtual Machines in the portal and login as administrator | 1c0163c0-47e6-4577-8991-ea5c82e286e41c0163c0-47e6-4577-8991-ea5c82e286e4 |
Inzender voor virtuele machinesVirtual Machine Contributor | Met kunt u virtuele machines beheren, maar niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to. | 9980e02c-c2be-4d73-94e8-173b1dc7cf3c9980e02c-c2be-4d73-94e8-173b1dc7cf3c |
Gebruikers aanmelding voor de virtuele machineVirtual Machine User Login | Bekijk Virtual Machines in de portal en meld u aan als een gewone gebruiker.View Virtual Machines in the portal and login as a regular user. | fb879df8-f326-4884-b1cf-06f3ad86be52fb879df8-f326-4884-b1cf-06f3ad86be52 |
NetwerkenNetworking | ||
Inzender voor CDN-eind puntenCDN Endpoint Contributor | Kan CDN-eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN endpoints, but can't grant access to other users. | 426e0c7f-0c7e-4658-b36f-ff54d6c29b45426e0c7f-0c7e-4658-b36f-ff54d6c29b45 |
CDN-eindpunt lezerCDN Endpoint Reader | Kan CDN-eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN endpoints, but can't make changes. | 871e35f6-b5c1-49cc-a043-bde969a0f2cd871e35f6-b5c1-49cc-a043-bde969a0f2cd |
Inzender voor CDN-profielCDN Profile Contributor | Kan CDN-profielen en de bijbehorende eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN profiles and their endpoints, but can't grant access to other users. | ec156ff8-a8d1-4d15-830c-5b80698ca432ec156ff8-a8d1-4d15-830c-5b80698ca432 |
CDN-profiel lezerCDN Profile Reader | Kan CDN-profielen en de bijbehorende eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN profiles and their endpoints, but can't make changes. | 8f96442b-4075-438f-813d-ad51ab4019af8f96442b-4075-438f-813d-ad51ab4019af |
Inzender voor klassieke netwerkenClassic Network Contributor | Hiermee beheert u klassieke netwerken, maar hebt u geen toegang tot de netwerk bestanden.Lets you manage classic networks, but not access to them. | b34d265f-36f7-4a0d-a4d4-e158ca92e90fb34d265f-36f7-4a0d-a4d4-e158ca92e90f |
Inzender DNS-zoneDNS Zone Contributor | Met kunt u DNS-zones en-record sets beheren in Azure DNS, maar kunt u niet bepalen wie toegang heeft tot de groepen.Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them. | befefa01-2a29-4197-83a8-272ff33ce314befefa01-2a29-4197-83a8-272ff33ce314 |
Inzender voor netwerkenNetwork Contributor | Hiermee kunt u netwerken beheren, maar niet de toegang tot de netwerk bestanden.Lets you manage networks, but not access to them. | 4d97b98b-1d4f-4787-a291-c67834d212e74d97b98b-1d4f-4787-a291-c67834d212e7 |
Inzender voor Privé-DNS-zonePrivate DNS Zone Contributor | Hiermee kunt u privé-DNS-zone bronnen beheren, maar niet de virtuele netwerken waaraan ze zijn gekoppeld.Lets you manage private DNS zone resources, but not the virtual networks they are linked to. | b12aa53e-6015-4669-85d0-8515ebb3ae7fb12aa53e-6015-4669-85d0-8515ebb3ae7f |
Inzender Traffic ManagerTraffic Manager Contributor | Hiermee beheert u Traffic Manager profielen, maar kunt u niet bepalen wie er toegang tot heeft.Lets you manage Traffic Manager profiles, but does not let you control who has access to them. | a4b10055-b0c7-44c2-b00f-c7b5b3550cf7a4b10055-b0c7-44c2-b00f-c7b5b3550cf7 |
StorageStorage | ||
AVERE-bijdragerAvere Contributor | Kan een avere vFXT-cluster maken en beheren.Can create and manage an Avere vFXT cluster. | 4f8fab4f-1852-4a58-a46a-8eaf358af14a4f8fab4f-1852-4a58-a46a-8eaf358af14a |
AVERE-operatorAvere Operator | Wordt gebruikt door het avere vFXT-cluster voor het beheren van het clusterUsed by the Avere vFXT cluster to manage the cluster | c025889f-8102-4ebf-b32c-fc0c6f0c6bd9c025889f-8102-4ebf-b32c-fc0c6f0c6bd9 |
Back-upinzenderBackup Contributor | Hiermee kunt u de back-upservice beheren, maar geen kluizen maken en anderen toegang verlenenLets you manage backup service, but can't create vaults and give access to others | 5e467623-bb1f-42f4-a55d-6e525e11384b5e467623-bb1f-42f4-a55d-6e525e11384b |
Back-upoperatorBackup Operator | Hiermee kunt u back-upservices beheren, behalve het verwijderen van back-ups, het maken van een kluis en het verlenen van toegangLets you manage backup services, except removal of backup, vault creation and giving access to others | 00c29273-979b-4161-815c-10b084fb932400c29273-979b-4161-815c-10b084fb9324 |
Back-uplezerBackup Reader | Kan back-upservices weer geven, maar kan geen wijzigingen aanbrengenCan view backup services, but can't make changes | a795c7a0-d4a2-40c1-ae25-d81f01202912a795c7a0-d4a2-40c1-ae25-d81f01202912 |
Inzender voor klassieke opslag accountsClassic Storage Account Contributor | Hiermee kunt u klassieke opslag accounts beheren, maar niet de toegang tot de account.Lets you manage classic storage accounts, but not access to them. | 86e8f5dc-a6e9-4c67-9d15-de283e8eac2586e8f5dc-a6e9-4c67-9d15-de283e8eac25 |
Service functie voor de sleutel operator voor klassieke opslag accountsClassic Storage Account Key Operator Service Role | De sleutel operators voor klassieke opslag accounts zijn toegestaan om sleutels weer te geven en opnieuw te genereren voor klassieke opslag.Classic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts | 985d6b00-f706-48f5-a6fe-d0ca12fb668d985d6b00-f706-48f5-a6fe-d0ca12fb668d |
Inzender Data BoxData Box Contributor | Hiermee kunt u alles beheren onder Data Box Service, behalve dat anderen toegang verlenen.Lets you manage everything under Data Box Service except giving access to others. | add466c9-e687-43fc-8d98-dfcf8d720be5add466c9-e687-43fc-8d98-dfcf8d720be5 |
Data Box lezerData Box Reader | Met kunt u de Data Box-Service beheren, met uitzonde ring van order gegevens maken of bewerken en anderen toegang verlenen.Lets you manage Data Box Service except creating order or editing order details and giving access to others. | 028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027 |
Data Lake Analytics-ontwikkelaarData Lake Analytics Developer | Hiermee kunt u uw eigen taken verzenden, bewaken en beheren, maar geen Data Lake Analytics accounts maken of verwijderen.Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts. | 47b7735b-770E-4598-A7DA-8b91488b4c8847b7735b-770e-4598-a7da-8b91488b4c88 |
Lezer en gegevens toegangReader and Data Access | Hiermee kunt u alles weer geven, maar kunt u geen opslag account of opgenomen resource verwijderen of maken.Lets you view everything but will not let you delete or create a storage account or contained resource. Ook wordt lees-/schrijftoegang tot alle gegevens in een opslag account toegestaan via toegang tot de sleutel van het opslag account.It will also allow read/write access to all data contained in a storage account via access to storage account keys. | c12c1c16-33a1-487b-954d-41c89c60f349c12c1c16-33a1-487b-954d-41c89c60f349 |
Inzender voor opslagaccountsStorage Account Contributor | Hiermee staat u het beheer van opslag accounts toe.Permits management of storage accounts. Biedt toegang tot de account sleutel, die kan worden gebruikt om toegang te krijgen tot gegevens via een gedeelde sleutel autorisatie.Provides access to the account key, which can be used to access data via Shared Key authorization. | 17d1049b-9a84-46fb-8f53-869881c3d3ab17d1049b-9a84-46fb-8f53-869881c3d3ab |
Functie Service-sleutel operator van opslag accountStorage Account Key Operator Service Role | Kan de toegangs sleutels voor het opslag account weer geven en opnieuw genereren.Permits listing and regenerating storage account access keys. | 81a9662b-bebf-436f-a333-f67b29880f1281a9662b-bebf-436f-a333-f67b29880f12 |
Inzender voor Storage Blob-gegevensStorage Blob Data Contributor | Azure Storage containers en blobs lezen, schrijven en verwijderen.Read, write, and delete Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | ba92f5b4-2d11-453d-a403-e96b0029c9feba92f5b4-2d11-453d-a403-e96b0029c9fe |
Eigenaar van opslagblobgegevensStorage Blob Data Owner | Biedt volledige toegang tot Azure Storage BLOB-containers en-gegevens, met inbegrip van het toewijzen van POSIX-toegangs beheer.Provides full access to Azure Storage blob containers and data, including assigning POSIX access control. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | b7e6dc6d-f1e8-4753-8033-0f276bb0955bb7e6dc6d-f1e8-4753-8033-0f276bb0955b |
Lezer voor opslagblobgegevensStorage Blob Data Reader | Azure Storage containers en blobs lezen en weer geven.Read and list Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 2a2b9908-6ea1-4ae2-8e65-a410df84e7d12a2b9908-6ea1-4ae2-8e65-a410df84e7d1 |
Delegering van opslag-BLOBStorage Blob Delegator | Een sleutel voor gebruikers overdracht ophalen, die vervolgens kan worden gebruikt om een gedeelde toegangs handtekening te maken voor een container of BLOB die is ondertekend met Azure AD-referenties.Get a user delegation key, which can then be used to create a shared access signature for a container or blob that is signed with Azure AD credentials. Zie een gebruiker delegering Sa's makenvoor meer informatie.For more information, see Create a user delegation SAS. | db58b8e5-c6ad-4a2a-8342-4190687cbf4adb58b8e5-c6ad-4a2a-8342-4190687cbf4a |
Inzender voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Contributor | Hiermee wordt lees-, schrijf-en verwijder toegang voor bestanden/mappen in azure-bestands shares toegestaan.Allows for read, write, and delete access on files/directories in Azure file shares. Deze rol heeft geen ingebouwd equivalent op Windows-bestands servers.This role has no built-in equivalent on Windows file servers. | 0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb |
Inzender met verhoogde bevoegdheden voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Elevated Contributor | Hiermee kunt u Acl's voor lezen, schrijven, verwijderen en wijzigen van bestanden/mappen in azure-bestands shares.Allows for read, write, delete, and modify ACLs on files/directories in Azure file shares. Deze rol is gelijk aan een ACL van de bestands share die moet worden gewijzigd op Windows-bestands servers.This role is equivalent to a file share ACL of change on Windows file servers. | a7264617-510b-434b-a828-9731dc254ea7a7264617-510b-434b-a828-9731dc254ea7 |
Lezer voor opslagbestandgegevens via SMB-shareStorage File Data SMB Share Reader | Hiermee staat u lees toegang toe voor bestanden/mappen in azure-bestands shares.Allows for read access on files/directories in Azure file shares. Deze rol is gelijk aan een ACL voor bestands shares van lezen op Windows-bestands servers.This role is equivalent to a file share ACL of read on Windows file servers. | aba4ae5f-2193-4029-9191-0cb91df5e314aba4ae5f-2193-4029-9191-0cb91df5e314 |
Inzender voor opslag wachtrij gegevensStorage Queue Data Contributor | Lees-, schrijf-en verwijder Azure Storage-wacht rijen en-wachtrij berichten.Read, write, and delete Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 974c5e8b-45b9-4653-ba55-5f855dd0fb88974c5e8b-45b9-4653-ba55-5f855dd0fb88 |
Processor voor gegevens berichten van de opslag wachtrijStorage Queue Data Message Processor | Een bericht uit een Azure Storage wachtrij bekijken, ophalen en verwijderen.Peek, retrieve, and delete a message from an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 8a0f0c08-91a1-4084-bc3d-661d67233fed8a0f0c08-91a1-4084-bc3d-661d67233fed |
Afzender gegevens bericht van opslag wachtrijStorage Queue Data Message Sender | Berichten toevoegen aan een Azure Storage wachtrij.Add messages to an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | c6a89b2d-59bc-44d0-9896-0f6e12d7b80ac6a89b2d-59bc-44d0-9896-0f6e12d7b80a |
Gegevens lezer van de opslag wachtrijStorage Queue Data Reader | Azure Storage-wacht rijen en-wachtrij berichten lezen en weer geven.Read and list Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 19e7f393-937e-4f77-808e-94535e29792519e7f393-937e-4f77-808e-94535e297925 |
WebWeb | ||
Inzender voor Azure Maps gegevensAzure Maps Data Contributor | Hiermee wordt toegang verleend tot lees-, schrijf-en verwijder toegang om gerelateerde gegevens vanuit een Azure Maps-account toe te wijzen.Grants access to read, write, and delete access to map related data from an Azure maps account. | 8f5e0ce6-4f7b-4dcf-bddf-e6f48634a2048f5e0ce6-4f7b-4dcf-bddf-e6f48634a204 |
Gegevens lezer Azure MapsAzure Maps Data Reader | Hiermee wordt toegang verleend om gerelateerde gegevens te lezen vanuit een Azure Maps-account.Grants access to read map related data from an Azure maps account. | 423170ca-a8f6-4b0f-8487-9e4eb8f49bfa423170ca-a8f6-4b0f-8487-9e4eb8f49bfa |
Inzender Search ServiceSearch Service Contributor | Hiermee kunt u zoek services beheren, maar niet de toegang tot ze.Lets you manage Search services, but not access to them. | 7ca78c08-252a-4471-8644-bb5ff32d4ba07ca78c08-252a-4471-8644-bb5ff32d4ba0 |
Signaal/AccessKey-lezerSignalR AccessKey Reader | Toegangs sleutels voor de seingevings service lezenRead SignalR Service Access Keys | 04165923-9d83-45d5-8227-78b77b0a687e04165923-9d83-45d5-8227-78b77b0a687e |
Seingevings app-server (preview-versie)SignalR App Server (Preview) | Hiermee wordt uw app server-toegangs signaal service met AAD-verificatie opties.Lets your app server access SignalR Service with AAD auth options. | 420fcaa2-552c-430f-98ca-3264be4806c7420fcaa2-552c-430f-98ca-3264be4806c7 |
Inzender bijdragerSignalR Contributor | Signalerings service resources maken, lezen, bijwerken en verwijderenCreate, Read, Update, and Delete SignalR service resources | 8cf5e20a-e4b2-4e9d-b3a1-5ceb692c27618cf5e20a-e4b2-4e9d-b3a1-5ceb692c2761 |
Inzender server zonder signaal (preview-versie)SignalR Serverless Contributor (Preview) | Hiermee kan uw app Access-service in de serverloze modus met AAD-verificatie opties.Lets your app access service in serverless mode with AAD auth options. | fd53cd77-2268-407a-8f46-7e7863d0f521fd53cd77-2268-407a-8f46-7e7863d0f521 |
Eigenaar van de seingevings service (preview-versie)SignalR Service Owner (Preview) | Volledige toegang tot REST Api's van de Azure signalerings serviceFull access to Azure SignalR Service REST APIs | 7e4f1700-ea5a-4f59-8f37-079cfe29dce37e4f1700-ea5a-4f59-8f37-079cfe29dce3 |
Signaal-service lezer (preview-versie)SignalR Service Reader (Preview) | Alleen-lezen toegang tot REST Api's van de Azure signalerings serviceRead-only access to Azure SignalR Service REST APIs | ddde6b66-c0df-4114-a159-3618637b3035ddde6b66-c0df-4114-a159-3618637b3035 |
Inzender voor webabonnementenWeb Plan Contributor | Hiermee kunt u de Webabonnementen voor websites beheren, maar niet de toegang tot de abonnementen.Lets you manage the web plans for websites, but not access to them. | 2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b |
Website bijdragerWebsite Contributor | Hiermee kunt u websites beheren (niet Webabonnementen), maar niet de toegang tot de sites.Lets you manage websites (not web plans), but not access to them. | de139f84-1756-47ae-9be6-808fbbe84772de139f84-1756-47ae-9be6-808fbbe84772 |
ContainersContainers | ||
AcrDeleteAcrDelete | ACR verwijderenacr delete | c2f4ef07-c644-48eb-af81-4b1b4947fb11c2f4ef07-c644-48eb-af81-4b1b4947fb11 |
AcrImageSignerAcrImageSigner | ACR-installatie kopie ondertekenaaracr image signer | 6cef56e8-d556-48e5-a04f-b8e64114680f6cef56e8-d556-48e5-a04f-b8e64114680f |
AcrPullAcrPull | ACR pullacr pull | 7f951dda-4ed3-4680-a7ca-43fe172d538d7f951dda-4ed3-4680-a7ca-43fe172d538d |
AcrPushAcrPush | ACR-pushacr push | 8311e382-0749-4cb8-b61a-304f252e45ec8311e382-0749-4cb8-b61a-304f252e45ec |
AcrQuarantineReaderAcrQuarantineReader | ACR quarantaine gegevens lezeracr quarantine data reader | cdda3590-29a3-44f6-95f2-9f980659eb04cdda3590-29a3-44f6-95f2-9f980659eb04 |
AcrQuarantineWriterAcrQuarantineWriter | ACR quarantaine gegevens schrijveracr quarantine data writer | c8d4ff99-41c3-41a8-9f60-21dfdad59608c8d4ff99-41c3-41a8-9f60-21dfdad59608 |
Rol van Cluster beheerder voor Azure Kubernetes-serviceAzure Kubernetes Service Cluster Admin Role | Lijst met actie voor cluster beheer referenties.List cluster admin credential action. | 0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be80ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8 |
Gebruikersrol Azure Kubernetes service-clusterAzure Kubernetes Service Cluster User Role | Geef een lijst actie voor de gebruikers referenties van het cluster op.List cluster user credential action. | 4abbcc35-e782-43d8-92c5-2d3f1bd2253f4abbcc35-e782-43d8-92c5-2d3f1bd2253f |
Rol van de Azure Kubernetes service-bijdragerAzure Kubernetes Service Contributor Role | Hiermee wordt toegang verleend voor het lezen en schrijven van Azure Kubernetes Service-clustersGrants access to read and write Azure Kubernetes Service clusters | ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8 |
RBAC-beheerder voor Azure Kubernetes serviceAzure Kubernetes Service RBAC Admin | Hiermee kunt u alle resources beheren onder cluster/naam ruimte, behalve voor het bijwerken of verwijderen van resource quota's en naam ruimten.Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces. | 3498e952-d568-435e-9b2c-8d77e338d7f73498e952-d568-435e-9b2c-8d77e338d7f7 |
De Azure Kubernetes service RBAC-cluster beheerderAzure Kubernetes Service RBAC Cluster Admin | Hiermee kunt u alle resources in het cluster beheren.Lets you manage all resources in the cluster. | b1ff04bb-8a4e-4dc4-8eb5-8693973ce19bb1ff04bb-8a4e-4dc4-8eb5-8693973ce19b |
RBAC-lezer van de Azure Kubernetes serviceAzure Kubernetes Service RBAC Reader | Hiermee staat u alleen-lezen toegang toe om de meeste objecten in een naam ruimte weer te geven.Allows read-only access to see most objects in a namespace. Het is niet toegestaan om weergave rollen of functie bindingen te bekijken.It does not allow viewing roles or role bindings. Deze rol staat geen weergave geheimen toe, omdat het lezen van de inhoud van geheimen toegang biedt tot ServiceAccount-referenties in de naam ruimte, waardoor API-toegang zou worden toegestaan als ServiceAccount in de naam ruimte (een vorm van bevoegdheden escalation).This role does not allow viewing Secrets, since reading the contents of Secrets enables access to ServiceAccount credentials in the namespace, which would allow API access as any ServiceAccount in the namespace (a form of privilege escalation). Als deze rol op het cluster bereik wordt toegepast, krijgt u toegang tot alle naam ruimten.Applying this role at cluster scope will give access across all namespaces. | 7f6c6a51-bcf8-42ba-9220-52d62157d7db7f6c6a51-bcf8-42ba-9220-52d62157d7db |
RBAC-schrijver van Azure Kubernetes serviceAzure Kubernetes Service RBAC Writer | Hiermee wordt lees-/schrijftoegang tot de meeste objecten in een naam ruimte toegestaan. Deze rol staat het weer geven of wijzigen van rollen of rollen bindingen niet toe.Allows read/write access to most objects in a namespace.This role does not allow viewing or modifying roles or role bindings. Met deze rol kunt u echter wel toegang krijgen tot geheimen en een ServiceAccount uitvoeren in de naam ruimte, zodat het kan worden gebruikt om de API-toegangs niveaus van een wille keurige ServiceAccount in de naam ruimte te verkrijgen.However, this role allows accessing Secrets and running Pods as any ServiceAccount in the namespace, so it can be used to gain the API access levels of any ServiceAccount in the namespace. Als deze rol op het cluster bereik wordt toegepast, krijgt u toegang tot alle naam ruimten.Applying this role at cluster scope will give access across all namespaces. | a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eba7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb |
DatabasesDatabases | ||
Rol van Cosmos DB-account lezerCosmos DB Account Reader Role | Kan gegevens van Azure Cosmos DB-account lezen.Can read Azure Cosmos DB account data. Zie DocumentDB account Inzender voor het beheren van Azure Cosmos DB accounts.See DocumentDB Account Contributor for managing Azure Cosmos DB accounts. | fbdf93bf-df7d-467e-a4d2-9458aa1360c8fbdf93bf-df7d-467e-a4d2-9458aa1360c8 |
Cosmos DB-operatorCosmos DB Operator | Hiermee kunt u Azure Cosmos DB accounts beheren, maar geen toegang tot gegevens.Lets you manage Azure Cosmos DB accounts, but not access data in them. Hiermee voor komt u toegang tot account sleutels en verbindings reeksen.Prevents access to account keys and connection strings. | 230815da-be43-4aae-9cb4-875f7bd000aa230815da-be43-4aae-9cb4-875f7bd000aa |
CosmosBackupOperatorCosmosBackupOperator | Kan een terugzet aanvraag indienen voor een Cosmos DB-Data Base of een container voor een accountCan submit restore request for a Cosmos DB database or a container for an account | db7b14f2-5adf-42da-9f96-f2ee17bab5cbdb7b14f2-5adf-42da-9f96-f2ee17bab5cb |
CosmosRestoreOperatorCosmosRestoreOperator | Kan de actie voor het herstellen van Cosmos DB database account met doorlopende back-upmodus uitvoerenCan perform restore action for Cosmos DB database account with continuous backup mode | 5432c526-bc82-444a-b7ba-57c5b0b5b34f5432c526-bc82-444a-b7ba-57c5b0b5b34f |
Inzender voor DocumentDB-accountsDocumentDB Account Contributor | Kan Azure Cosmos DB accounts beheren.Can manage Azure Cosmos DB accounts. Azure Cosmos DB is voorheen bekend als DocumentDB.Azure Cosmos DB is formerly known as DocumentDB. | 5bd9cd88-fe45-4216-938b-f97437e154505bd9cd88-fe45-4216-938b-f97437e15450 |
Inzender Redis CacheRedis Cache Contributor | Hiermee kunt u redis-caches beheren, maar niet de toegang tot deze bestanden.Lets you manage Redis caches, but not access to them. | e0f68234-74aa-48ed-b826-c38b57376e17e0f68234-74aa-48ed-b826-c38b57376e17 |
Inzender voor SQL-data baseSQL DB Contributor | Hiermee kunt u SQL-data bases beheren, maar niet de toegang tot ze.Lets you manage SQL databases, but not access to them. U kunt ook hun beveiligings beleid of de bovenliggende SQL-servers niet beheren.Also, you can't manage their security-related policies or their parent SQL servers. | 9b7fa17d-e63e-47b0-bb0a-15c516ac86ec9b7fa17d-e63e-47b0-bb0a-15c516ac86ec |
Inzender voor SQL Managed instanceSQL Managed Instance Contributor | Hiermee beheert u beheerde SQL-instanties en de vereiste netwerk configuratie, maar kunt u geen toegang verlenen aan anderen.Lets you manage SQL Managed Instances and required network configuration, but can't give access to others. | 4939a1f6-9ae0-4e48-a1e0-f2cbe897382d4939a1f6-9ae0-4e48-a1e0-f2cbe897382d |
SQL-beveiligingsbeheerderSQL Security Manager | Hiermee kunt u het beveiligings beleid van SQL-servers en-data bases beheren, maar niet de toegang tot de services.Lets you manage the security-related policies of SQL servers and databases, but not access to them. | 056cd41c-7e88-42e1-933e-88ba6a50c9c3056cd41c-7e88-42e1-933e-88ba6a50c9c3 |
Inzender SQL ServerSQL Server Contributor | Hiermee kunt u SQL-servers en-data bases beheren, maar niet de toegang tot ze en niet het beveiligings beleid.Lets you manage SQL servers and databases, but not access to them, and not their security-related policies. | 6d8ee4ec-f05a-4a1d-8b00-a9b17e38b4376d8ee4ec-f05a-4a1d-8b00-a9b17e38b437 |
AnalyseAnalytics | ||
Eigenaar van Azure Event Hubs-gegevensAzure Event Hubs Data Owner | Hiermee krijgt u volledige toegang tot Azure Event Hubs-resources.Allows for full access to Azure Event Hubs resources. | f526a384-b230-433a-b45c-95f59c4a2decf526a384-b230-433a-b45c-95f59c4a2dec |
Gegevens ontvanger van Azure Event HubsAzure Event Hubs Data Receiver | Hiermee krijgt u toegang tot Azure Event Hubs-resources.Allows receive access to Azure Event Hubs resources. | a638d3c7-ab3a-418d-83e6-5f17a39d4fdea638d3c7-ab3a-418d-83e6-5f17a39d4fde |
Afzender van Azure Event Hubs gegevensAzure Event Hubs Data Sender | Hiermee wordt toegang tot Azure Event Hubs-resources verzonden.Allows send access to Azure Event Hubs resources. | 2b629674-e913-4c01-ae53-ef4638d8f9752b629674-e913-4c01-ae53-ef4638d8f975 |
Inzender Data FactoryData Factory Contributor | Het maken en beheren van gegevens fabrieken, evenals onderliggende resources.Create and manage data factories, as well as child resources within them. | 673868aa-7521-48a0-acc6-0f60742d39f5673868aa-7521-48a0-acc6-0f60742d39f5 |
Gegevens opschonerData Purger | Kan Analytics-gegevens verwijderenCan purge analytics data | 150f5e0c-0603-4f03-8c7f-cf70034c4e90150f5e0c-0603-4f03-8c7f-cf70034c4e90 |
HDInsight-cluster operatorHDInsight Cluster Operator | Hiermee kunt u HDInsight-cluster configuraties lezen en wijzigen.Lets you read and modify HDInsight cluster configurations. | 61ed4efc-fab3-44fd-b111-e24485cc132a61ed4efc-fab3-44fd-b111-e24485cc132a |
Inzender voor HDInsight Domain ServicesHDInsight Domain Services Contributor | Kan gerelateerde bewerkingen die betrekking hebben op domein services lezen, maken, wijzigen en verwijderen die nodig zijn voor HDInsight-Enterprise Security PackageCan Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package | 8d8d5a11-05d3-4bda-a417-a08778121c7c8d8d5a11-05d3-4bda-a417-a08778121c7c |
Inzender van Log AnalyticsLog Analytics Contributor | Log Analytics Inzender kan alle bewakings gegevens lezen en controle-instellingen bewerken.Log Analytics Contributor can read all monitoring data and edit monitoring settings. Het bewerken van bewakings instellingen omvat het toevoegen van de VM-extensie aan Vm's; lezen van opslag account sleutels om het verzamelen van logboeken van Azure Storage te kunnen configureren. Automation-accounts maken en configureren; oplossingen toevoegen; en het configureren van Azure Diagnostics voor alle Azure-resources.Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources. | 92aaf0da-9dab-42b6-94a3-d43ce8d1629392aaf0da-9dab-42b6-94a3-d43ce8d16293 |
Lezer van Log AnalyticsLog Analytics Reader | Log Analytics Reader kan alle bewakings gegevens weer geven en doorzoeken en controle-instellingen weer geven, inclusief het weer geven van de configuratie van Azure Diagnostics op alle Azure-resources.Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources. | 73c42c96-874c-492b-b04d-ab87d138a89373c42c96-874c-492b-b04d-ab87d138a893 |
Controle sfeer liggen data curatorPurview Data Curator | Met de micro soft. controle sfeer liggen data curator kunnen catalogus gegevensobjecten worden gemaakt, gelezen, gewijzigd en verwijderd en worden relaties tussen objecten tot stand gebracht.The Microsoft.Purview data curator can create, read, modify and delete catalog data objects and establish relationships between objects. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change. | 8a3c2885-9b38-4fd2-9d99-91af537c13478a3c2885-9b38-4fd2-9d99-91af537c1347 |
Gegevens lezer controle sfeer liggenPurview Data Reader | De gegevens lezer van micro soft. controle sfeer liggen kan catalogus gegevensobjecten lezen.The Microsoft.Purview data reader can read catalog data objects. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change. | ff100721-1b9d-43d8-af52-42b69c1272dbff100721-1b9d-43d8-af52-42b69c1272db |
Controle sfeer liggen-gegevens bron beheerderPurview Data Source Administrator | De gegevens bron beheerder van micro soft. controle sfeer liggen kan gegevens bronnen en gegevens scans beheren.The Microsoft.Purview data source administrator can manage data sources and data scans. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change. | 200bba9e-f0c8-430f-892b-6f0794863803200bba9e-f0c8-430f-892b-6f0794863803 |
Inzender van schemaregisters (preview)Schema Registry Contributor (Preview) | Schemaregistergroepen en schema's lezen, schrijven en verwijderen.Read, write, and delete Schema Registry groups and schemas. | 5dffeca3-4936-4216-b2bc-10343a5abb255dffeca3-4936-4216-b2bc-10343a5abb25 |
Lezer van schemaregisters (preview)Schema Registry Reader (Preview) | Schemaregistergroepen en schema's lezen en weergeven.Read and list Schema Registry groups and schemas. | 2c56ea50-c6b3-40a6-83c0-9d98858bc7d22c56ea50-c6b3-40a6-83c0-9d98858bc7d2 |
BlockchainBlockchain | ||
Toegang tot Block Chain-leden knooppunt (preview-versie)Blockchain Member Node Access (Preview) | Hiermee wordt toegang tot Block Chain-leden knooppunten toegestaanAllows for access to Blockchain Member nodes | 31a002a1-acaf-453e-8a5b-297c9ca1ea2431a002a1-acaf-453e-8a5b-297c9ca1ea24 |
AI en machine learningAI + machine learning | ||
Inzender Cognitive ServicesCognitive Services Contributor | Hiermee kunt u sleutels van Cognitive Services maken, lezen, bijwerken, verwijderen en beheren.Lets you create, read, update, delete and manage keys of Cognitive Services. | 25fbc0a9-bd7c-42a3-aa1a-3b75d497ee6825fbc0a9-bd7c-42a3-aa1a-3b75d497ee68 |
Cognitive Services Custom Vision InzenderCognitive Services Custom Vision Contributor | Volledige toegang tot het project, inclusief de mogelijkheid om projecten weer te geven, te maken, te bewerken of te verwijderen.Full access to the project, including the ability to view, create, edit, or delete projects. | c1ff6cc2-C111-46fe-8896-e0ef812ad9f3c1ff6cc2-c111-46fe-8896-e0ef812ad9f3 |
Implementatie van Cognitive Services Custom VisionCognitive Services Custom Vision Deployment | Modellen publiceren, publicatie ongedaan maken of exporteren.Publish, unpublish or export models. Implementatie kan het project weer geven, maar kan het niet bijwerken.Deployment can view the project but can't update. | 5c4089e1-6d96-4d2f-b296-c1bc7137275f5c4089e1-6d96-4d2f-b296-c1bc7137275f |
Cognitive Services Custom Vision LabelerCognitive Services Custom Vision Labeler | Bekijk, trainings afbeeldingen bewerken en de afbeeldings Tags maken, toevoegen, verwijderen of verwijderen.View, edit training images and create, add, remove, or delete the image tags. Labelers kunnen het project weer geven, maar kunnen andere niet bijwerken dan trainingen en tags.Labelers can view the project but can't update anything other than training images and tags. | 88424f51-ebe7-446f-bc41-7fa16989e96c88424f51-ebe7-446f-bc41-7fa16989e96c |
Custom Vision lezer Cognitive ServicesCognitive Services Custom Vision Reader | Alleen-lezen acties in het project.Read-only actions in the project. Lezers kunnen het project niet maken of bijwerken.Readers can't create or update the project. | 93586559-c37d-4a6b-ba08-b9f0940c2d7393586559-c37d-4a6b-ba08-b9f0940c2d73 |
Cognitive Services Custom Vision trainerCognitive Services Custom Vision Trainer | Bekijk, bewerk projecten en train de modellen, inclusief de mogelijkheid om de modellen te publiceren, de publicatie ervan ongedaan te maken en te exporteren.View, edit projects and train the models, including the ability to publish, unpublish, export the models. Trainers kunnen het project niet maken of verwijderen.Trainers can't create or delete the project. | 0a5ae4ab-0d65-4eeb-be61-29fc9b54394b0a5ae4ab-0d65-4eeb-be61-29fc9b54394b |
Cognitive Services gegevens lezer (preview-versie)Cognitive Services Data Reader (Preview) | Hiermee kunt u Cognitive Services gegevens lezen.Lets you read Cognitive Services data. | b59867f0-fa02-499b-be73-45a86b5b3e1cb59867f0-fa02-499b-be73-45a86b5b3e1c |
Cognitive Services metrics Advisor-beheerderCognitive Services Metrics Advisor Administrator | Volledige toegang tot het project, met inbegrip van de configuratie van het systeem niveau.Full access to the project, including the system level configuration. | cb43c632-a144-4ec5-977c-e80c4affc34acb43c632-a144-4ec5-977c-e80c4affc34a |
Cognitive Services QnA Maker editorCognitive Services QnA Maker Editor | U kunt een KB maken, bewerken, importeren en exporteren.Let's you create, edit, import and export a KB. U kunt geen KB publiceren of verwijderen.You cannot publish or delete a KB. | f4cc2bf9-21be-47a1-bdf1-5c5804381025f4cc2bf9-21be-47a1-bdf1-5c5804381025 |
QnA Maker lezer Cognitive ServicesCognitive Services QnA Maker Reader | Laten we alleen een KB lezen en testen.Let's you read and test a KB only. | 466ccd10-b268-4a11-b098-b4849f024126466ccd10-b268-4a11-b098-b4849f024126 |
Cognitive Services gebruikerCognitive Services User | Hiermee kunt u de sleutels van Cognitive Services lezen en weer geven.Lets you read and list keys of Cognitive Services. | a97b65f3-24c7-4388-baec-2e87135dc908a97b65f3-24c7-4388-baec-2e87135dc908 |
Gemengde realiteitMixed reality | ||
Externe rendering-beheerderRemote Rendering Administrator | Biedt gebruikers de mogelijkheid om de mogelijkheden voor het omzetten van sessies, rendering en diagnose te beheren voor externe rendering in azureProvides user with conversion, manage session, rendering and diagnostics capabilities for Azure Remote Rendering | 3df8b902-2a6f-47c7-8cc5-360e9b272a7e3df8b902-2a6f-47c7-8cc5-360e9b272a7e |
Client voor externe RenderingRemote Rendering Client | Biedt gebruikers de mogelijkheid om sessie, rendering en diagnose te beheren voor de externe rendering van Azure.Provides user with manage session, rendering and diagnostics capabilities for Azure Remote Rendering. | d39065c4-c120-43c9-ab0a-63eed9795f0ad39065c4-c120-43c9-ab0a-63eed9795f0a |
Inzender voor ruimtelijke ankersSpatial Anchors Account Contributor | Hiermee kunt u ruimtelijke ankers in uw account beheren, maar niet verwijderenLets you manage spatial anchors in your account, but not delete them | 8bbe83f1-e2a6-4df7-8cb4-4e04d4e5c8278bbe83f1-e2a6-4df7-8cb4-4e04d4e5c827 |
Eigenaar van ruimtelijk ankersSpatial Anchors Account Owner | Hiermee kunt u ruimtelijke ankers in uw account beheren, met inbegrip van het verwijderen ervanLets you manage spatial anchors in your account, including deleting them | 70bbe301-9835-447d-afdd-19eb3167307c70bbe301-9835-447d-afdd-19eb3167307c |
Lezer van ruimtelijk ankers-accountSpatial Anchors Account Reader | Hiermee kunt u eigenschappen van ruimtelijke ankers in uw account zoeken en lezenLets you locate and read properties of spatial anchors in your account | 5d51204f-eb77-4b1c-b86a-2ec626c494135d51204f-eb77-4b1c-b86a-2ec626c49413 |
IntegratieIntegration | ||
Inzender van API Management-serviceAPI Management Service Contributor | Kan de service en de Api's beherenCan manage service and the APIs | 312a565d-c81f-4fd8-895a-4e21e48d571c312a565d-c81f-4fd8-895a-4e21e48d571c |
Functie API Management service operatorAPI Management Service Operator Role | Kan de service beheren, maar niet de Api'sCan manage service but not the APIs | e022efe7-f5ba-4159-bbe4-b44f577e9b61e022efe7-f5ba-4159-bbe4-b44f577e9b61 |
API Management functie Service lezerAPI Management Service Reader Role | Alleen-lezen toegang tot de service en Api'sRead-only access to service and APIs | 71522526-b88f-4d52-b57f-d31fc3546d0d71522526-b88f-4d52-b57f-d31fc3546d0d |
Eigenaar van app-configuratie gegevensApp Configuration Data Owner | Hiermee krijgt u volledige toegang tot de app-configuratie gegevens.Allows full access to App Configuration data. | 5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b |
Gegevens lezer app-configuratieApp Configuration Data Reader | Hiermee staat u lees toegang toe voor app-configuratie gegevens.Allows read access to App Configuration data. | 516239f1-63e1-4d78-a4de-a74fb236a071516239f1-63e1-4d78-a4de-a74fb236a071 |
Gegevens eigenaar Azure Service BusAzure Service Bus Data Owner | Hiermee krijgt u volledige toegang tot Azure Service Bus-resources.Allows for full access to Azure Service Bus resources. | 090c5cfd-751d-490a-894a-3ce6f1109419090c5cfd-751d-490a-894a-3ce6f1109419 |
Gegevens ontvanger Azure Service BusAzure Service Bus Data Receiver | Hiermee krijgt u toegang tot Azure Service Bus-resources.Allows for receive access to Azure Service Bus resources. | 4f6d3b9b-027b-4f4c-9142-0e5a2a2247e04f6d3b9b-027b-4f4c-9142-0e5a2a2247e0 |
Afzender van Azure Service Bus gegevensAzure Service Bus Data Sender | Hiermee kunt u toegang tot Azure Service Bus resources verzenden.Allows for send access to Azure Service Bus resources. | 69a216fc-b8fb-44d8-bc22-1f3c2cd27a3969a216fc-b8fb-44d8-bc22-1f3c2cd27a39 |
Registratie-eigenaar Azure StackAzure Stack Registration Owner | Hiermee kunt u Azure Stack registraties beheren.Lets you manage Azure Stack registrations. | 6f12a6df-dd06-4f3e-bcb1-ce8be600526a6f12a6df-dd06-4f3e-bcb1-ce8be600526a |
EventGrid EventSubscription-bijdragerEventGrid EventSubscription Contributor | Hiermee kunt u bewerkingen voor EventGrid-gebeurtenis abonnementen beheren.Lets you manage EventGrid event subscription operations. | 428e0ff0-5e57-4d9c-a221-2c70d0e0a443428e0ff0-5e57-4d9c-a221-2c70d0e0a443 |
EventGrid EventSubscription-lezerEventGrid EventSubscription Reader | Hiermee kunt u EventGrid-gebeurtenis abonnementen lezen.Lets you read EventGrid event subscriptions. | 2414bbcf-6497-4faf-8c65-0454607484052414bbcf-6497-4faf-8c65-045460748405 |
Inzender voor FHIR-gegevensFHIR Data Contributor | Rol maakt gebruiker of Principal volledige toegang tot FHIR-gegevensRole allows user or principal full access to FHIR Data | 5a1fc7df-4bf1-4951-a576-89034ee01acd5a1fc7df-4bf1-4951-a576-89034ee01acd |
FHIR-gegevens exporteurFHIR Data Exporter | Rol staat gebruiker of Principal toe om FHIR-gegevens te lezen en exporterenRole allows user or principal to read and export FHIR Data | 3db33094-8700-4567-8da5-1501d4e7e8433db33094-8700-4567-8da5-1501d4e7e843 |
Gegevens lezer FHIRFHIR Data Reader | De rol staat gebruikers of Principal toe om FHIR gegevens te lezenRole allows user or principal to read FHIR Data | 4c8d0bbc-75d3-4935-991f-5f3c56d815084c8d0bbc-75d3-4935-991f-5f3c56d81508 |
FHIR-gegevens schrijverFHIR Data Writer | Rol staat gebruiker of Principal toe om FHIR-gegevens te lezen en te schrijvenRole allows user or principal to read and write FHIR Data | 3f88fce4-5892-4214-ae73-ba52945599133f88fce4-5892-4214-ae73-ba5294559913 |
Inzender IntegratieserviceomgevingIntegration Service Environment Contributor | Hiermee kunt u de integratie service omgevingen beheren, maar niet de toegang tot ze.Lets you manage integration service environments, but not access to them. | a41e2c5b-bd99-4a07-88f4-9bf657a760b8a41e2c5b-bd99-4a07-88f4-9bf657a760b8 |
Integratieserviceomgeving-ontwikkelaarIntegration Service Environment Developer | Hiermee kunnen ontwikkel aars werk stromen, integratie accounts en API-verbindingen maken en bijwerken in integratie service omgevingen.Allows developers to create and update workflows, integration accounts and API connections in integration service environments. | c7aa55d3-1abb-444a-a5ca-5e51e485d6ecc7aa55d3-1abb-444a-a5ca-5e51e485d6ec |
Inzender voor Intelligent Systems-accountIntelligent Systems Account Contributor | Hiermee kunt u intelligente Systems-accounts beheren, maar niet de toegang tot ze.Lets you manage Intelligent Systems accounts, but not access to them. | 03a6d094-3444-4b3d-88af-7477090a9e5e03a6d094-3444-4b3d-88af-7477090a9e5e |
Inzender voor logische appsLogic App Contributor | Hiermee kunt u logische apps beheren, maar niet wijzigen.Lets you manage logic apps, but not change access to them. | 87a39d53-fc1b-424a-814c-f7e04687dc9e87a39d53-fc1b-424a-814c-f7e04687dc9e |
Logische app-operatorLogic App Operator | Hiermee kunt u logische apps lezen, inschakelen en uitschakelen, maar niet bewerken of bijwerken.Lets you read, enable, and disable logic apps, but not edit or update them. | 515c2055-d9d4-4321-b1b9-bd0c9a0f79fe515c2055-d9d4-4321-b1b9-bd0c9a0f79fe |
IdentiteitIdentity | ||
Inzender beheerde identiteitManaged Identity Contributor | Aan de gebruiker toegewezen identiteit maken, lezen, bijwerken en verwijderenCreate, Read, Update, and Delete User Assigned Identity | e40ec5ca-96e0-45a2-b4ff-59039f2c2b59e40ec5ca-96e0-45a2-b4ff-59039f2c2b59 |
Beheerde identiteits operatorManaged Identity Operator | Door gebruiker toegewezen identiteit lezen en toewijzenRead and Assign User Assigned Identity | f1a07417-d97a-45cb-824c-7a7467783830f1a07417-d97a-45cb-824c-7a7467783830 |
BeveiligingSecurity | ||
Bijdrager aan verklaringAttestation Contributor | Kan de Attestation-provider instantie lezen of verwijderenCan read write or delete the attestation provider instance | bbf86eb8-f7b4-4cce-96e4-18cddf81d86ebbf86eb8-f7b4-4cce-96e4-18cddf81d86e |
Attestation-lezerAttestation Reader | Kan de eigenschappen van de Attestation-provider lezenCan read the attestation provider properties | fd1bd22b-8476-40bc-a0bc-69b95687b9f3fd1bd22b-8476-40bc-a0bc-69b95687b9f3 |
Azure Sentinel ContributorAzure Sentinel Contributor | Azure Sentinel ContributorAzure Sentinel Contributor | ab8e14d6-4a74-4a29-9ba8-549422addadeab8e14d6-4a74-4a29-9ba8-549422addade |
Azure Sentinel ReaderAzure Sentinel Reader | Azure Sentinel ReaderAzure Sentinel Reader | 8d289c81-5878-46d4-8554-54e1e3d8b5cb8d289c81-5878-46d4-8554-54e1e3d8b5cb |
Azure Sentinel ResponderAzure Sentinel Responder | Azure Sentinel ResponderAzure Sentinel Responder | 3e150937-b8fe-4cfb-8069-0eaf05ecd0563e150937-b8fe-4cfb-8069-0eaf05ecd056 |
Key Vault beheerderKey Vault Administrator | Alle gegevenslaag bewerkingen uitvoeren op een sleutel kluis en alle objecten hierin, met inbegrip van certificaten, sleutels en geheimen.Perform all data plane operations on a key vault and all objects in it, including certificates, keys, and secrets. Kan geen sleutel kluis resources beheren of roltoewijzingen beheren.Cannot manage key vault resources or manage role assignments. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 00482a5a-887f-4fb3-b363-3b7fe8e7448300482a5a-887f-4fb3-b363-3b7fe8e74483 |
Key Vault-certificerings medewerkerKey Vault Certificates Officer | Acties uitvoeren op de certificaten van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the certificates of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | a4417e6f-fecd-4de8-b567-7b0420556985a4417e6f-fecd-4de8-b567-7b0420556985 |
Inzender Key VaultKey Vault Contributor | Sleutel kluizen beheren, maar u kunt geen rollen toewijzen in azure RBAC en biedt geen toegang tot geheimen, sleutels of certificaten.Manage key vaults, but does not allow you to assign roles in Azure RBAC, and does not allow you to access secrets, keys, or certificates. | f25e0fa2-a7c8-4377-a976-54943a77a395f25e0fa2-a7c8-4377-a976-54943a77a395 |
Crypto medewerker Key VaultKey Vault Crypto Officer | Acties uitvoeren op de sleutels van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the keys of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 14b46e9e-c2b7-41b4-b07b-48a6ebf6060314b46e9e-c2b7-41b4-b07b-48a6ebf60603 |
Versleutelings gebruiker van crypto grafie-service Key VaultKey Vault Crypto Service Encryption User | Lees de meta gegevens van sleutels en voer terugloop/uitlopende bewerkingen uit.Read metadata of keys and perform wrap/unwrap operations. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | e147488a-f6f5-4113-8e2d-b22465e65bf6e147488a-f6f5-4113-8e2d-b22465e65bf6 |
Gebruiker van crypto grafie Key VaultKey Vault Crypto User | Voer cryptografische bewerkingen uit met behulp van sleutels.Perform cryptographic operations using keys. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 12338af0-0e69-4776-bea7-57ae8d29742412338af0-0e69-4776-bea7-57ae8d297424 |
Key Vault lezerKey Vault Reader | Lees de meta gegevens van sleutel kluizen en de bijbehorende certificaten, sleutels en geheimen.Read metadata of key vaults and its certificates, keys, and secrets. Kan geen gevoelige waarden lezen, zoals geheime inhoud of sleutel materiaal.Cannot read sensitive values such as secret contents or key material. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 21090545-7ca7-4776-b22c-e363652d74d221090545-7ca7-4776-b22c-e363652d74d2 |
Functionaris voor Key Vault geheimenKey Vault Secrets Officer | Acties uitvoeren op de geheimen van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the secrets of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | b86a8fe4-44ce-4948-aee5-eccb2c155cd7b86a8fe4-44ce-4948-aee5-eccb2c155cd7 |
Key Vault geheimen gebruikerKey Vault Secrets User | Geheime inhoud lezen.Read secret contents. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 4633458b-17de-408a-b874-0445c86b69e64633458b-17de-408a-b874-0445c86b69e6 |
Beheerde HSM-InzenderManaged HSM contributor | Hiermee kunt u beheerde HSM-groepen beheren, maar niet de toegang tot de Pools.Lets you manage managed HSM pools, but not access to them. | 18500a29-7fe2-46b2-a342-b16a415e101d18500a29-7fe2-46b2-a342-b16a415e101d |
BeveiligingsbeheerderSecurity Admin | Machtigingen voor Security Center weer geven en bijwerken.View and update permissions for Security Center. Dezelfde machtigingen als de rol van beveiligings lezer en kunnen ook het beveiligings beleid bijwerken en waarschuwingen en aanbevelingen negeren.Same permissions as the Security Reader role and can also update the security policy and dismiss alerts and recommendations. | fb1c8493-542b-48eb-b624-b4c8fea62acdfb1c8493-542b-48eb-b624-b4c8fea62acd |
Inzender voor beveiligings beoordelingSecurity Assessment Contributor | Hiermee kunt u evaluaties naar Security Center pushenLets you push assessments to Security Center | 612c2aa1-cb24-443b-ac28-3ab7272de6f5612c2aa1-cb24-443b-ac28-3ab7272de6f5 |
Beveiligings beheer (verouderd)Security Manager (Legacy) | Dit is een verouderde rol.This is a legacy role. Gebruik in plaats daarvan beveiligings beheerder.Please use Security Admin instead. | e3d13bf0-dd5a-482e-ba6b-9b8433878d10e3d13bf0-dd5a-482e-ba6b-9b8433878d10 |
BeveiligingslezerSecurity Reader | Machtigingen voor Security Center weer geven.View permissions for Security Center. Kan aanbevelingen, waarschuwingen, een beveiligings beleid en beveiligings status weer geven, maar kan geen wijzigingen aanbrengen.Can view recommendations, alerts, a security policy, and security states, but cannot make changes. | 39bc4728-0917-49c7-9d2c-d95423bc2eb439bc4728-0917-49c7-9d2c-d95423bc2eb4 |
DevOpsDevOps | ||
DevTest Labs-gebruikerDevTest Labs User | Met kunt u verbinding maken met uw virtuele machines in uw Azure DevTest Labs, deze starten, opnieuw opstarten en afsluiten.Lets you connect, start, restart, and shutdown your virtual machines in your Azure DevTest Labs. | 76283e04-6283-4c54-8f91-bcf1374a3c6476283e04-6283-4c54-8f91-bcf1374a3c64 |
Lab-MakerLab Creator | Met kunt u nieuwe Labs maken onder uw Azure Lab-accounts.Lets you create new labs under your Azure Lab Accounts. | b97fb8bc-a8b2-4522-a38b-dd33c7e65eadb97fb8bc-a8b2-4522-a38b-dd33c7e65ead |
ControleMonitor | ||
Inzender voor Application Insights onderdelenApplication Insights Component Contributor | Kan Application Insights onderdelen beherenCan manage Application Insights components | ae349356-3a1b-4a5e-921d-050484c6347eae349356-3a1b-4a5e-921d-050484c6347e |
Application Insights Snapshot DebuggerApplication Insights Snapshot Debugger | Geeft gebruikers machtigingen voor het weer geven en downloaden van moment opnamen van fout opsporing die zijn verzameld met de Application Insights Snapshot Debugger.Gives user permission to view and download debug snapshots collected with the Application Insights Snapshot Debugger. Houd er rekening mee dat deze machtigingen niet zijn opgenomen in de rollen eigenaar of Inzender .Note that these permissions are not included in the Owner or Contributor roles. Wanneer gebruikers de Application Insights Snapshot Debugger rol geven, moet u de rol rechtstreeks aan de gebruiker toekennen.When giving users the Application Insights Snapshot Debugger role, you must grant the role directly to the user. De rol wordt niet herkend wanneer deze wordt toegevoegd aan een aangepaste rol.The role is not recognized when it is added to a custom role. | 08954f03-6346-4c2e-81c0-ec3a5cfae23b08954f03-6346-4c2e-81c0-ec3a5cfae23b |
Inzender bewakenMonitoring Contributor | Kan alle bewakings gegevens lezen en controle-instellingen bewerken.Can read all monitoring data and edit monitoring settings. Zie ook aan de slag met rollen, machtigingen en beveiliging met Azure monitor.See also Get started with roles, permissions, and security with Azure Monitor. | 749f88d5-cbae-40b8-bcfc-e573ddc772fa749f88d5-cbae-40b8-bcfc-e573ddc772fa |
De uitgever van metrische gegevens controlerenMonitoring Metrics Publisher | Hiermee schakelt u de metrische gegevens voor publicatie in op Azure-resourcesEnables publishing metrics against Azure resources | 3913510d-42f4-4e42-8a64-420c390055eb3913510d-42f4-4e42-8a64-420c390055eb |
Bewakings lezerMonitoring Reader | Kan alle bewakings gegevens (metrieken, logboeken, enzovoort) lezen.Can read all monitoring data (metrics, logs, etc.). Zie ook aan de slag met rollen, machtigingen en beveiliging met Azure monitor.See also Get started with roles, permissions, and security with Azure Monitor. | 43d0d8ad-25c7-4714-9337-8ba259a9fe0543d0d8ad-25c7-4714-9337-8ba259a9fe05 |
Inzender voor werkmappenWorkbook Contributor | Kan gedeelde werkmappen opslaan.Can save shared workbooks. | e8ddcd69-c73f-4f9f-9844-4100522f16ade8ddcd69-c73f-4f9f-9844-4100522f16ad |
Werkmap lezerWorkbook Reader | Kan werkmappen lezen.Can read workbooks. | b279062a-9be3-42a0-92ae-8b3cf002ec4db279062a-9be3-42a0-92ae-8b3cf002ec4d |
Beheer + governanceManagement + governance | ||
Automation-taak operatorAutomation Job Operator | Maak en beheer taken met behulp van Automation-Runbooks.Create and Manage Jobs using Automation Runbooks. | 4fe576fe-1146-4730-92eb-48519fa6bf9f4fe576fe-1146-4730-92eb-48519fa6bf9f |
Automation-operatorAutomation Operator | Automatiserings operatoren kunnen taken starten, stoppen, onderbreken en hervattenAutomation Operators are able to start, stop, suspend, and resume jobs | d3881f73-407a-4167-8283-e981cbba0404d3881f73-407a-4167-8283-e981cbba0404 |
Automation-Runbook-operatorAutomation Runbook Operator | Runbook-eigenschappen lezen: om taken van het Runbook te kunnen maken.Read Runbook properties - to be able to create Jobs of the runbook. | 5fb5aef8-1081-4b8e-bb16-9d5d0385bab55fb5aef8-1081-4b8e-bb16-9d5d0385bab5 |
Onboarding van met Azure verbonden computerAzure Connected Machine Onboarding | Kan onboarding van met Azure verbonden computers uitvoeren.Can onboard Azure Connected Machines. | b64e21ea-ac4e-4cdf-9dc9-5b892992bee7b64e21ea-ac4e-4cdf-9dc9-5b892992bee7 |
Resource beheerder van Azure Connected machineAzure Connected Machine Resource Administrator | Kan met Azure verbonden computers lezen, schrijven, verwijderen en onboarden.Can read, write, delete and re-onboard Azure Connected Machines. | cd570a14-e51a-42ad-bac8-bafd67325302cd570a14-e51a-42ad-bac8-bafd67325302 |
Facturerings lezerBilling Reader | Hiermee staat u lees toegang tot facturerings gegevens toeAllows read access to billing data | fa23ad8b-c56e-40d8-ac0c-ce449e1d2c64fa23ad8b-c56e-40d8-ac0c-ce449e1d2c64 |
BlauwdrukinzenderBlueprint Contributor | Blauwdrukinzenders kunnen blauwdrukdefinities beheren, maar deze niet toewijzen.Can manage blueprint definitions, but not assign them. | 41077137-e803-4205-871c-5a86e6a753b441077137-e803-4205-871c-5a86e6a753b4 |
BlauwdrukoperatorBlueprint Operator | Kan bestaande gepubliceerde blauw drukken toewijzen, maar kan geen nieuwe blauw drukken maken.Can assign existing published blueprints, but cannot create new blueprints. Houd er rekening mee dat dit alleen werkt als de toewijzing wordt uitgevoerd met een door de gebruiker toegewezen beheerde identiteit.Note that this only works if the assignment is done with a user-assigned managed identity. | 437d2ced-4a38-4302-8479-ed2bcb43d090437d2ced-4a38-4302-8479-ed2bcb43d090 |
Inzender Cost ManagementCost Management Contributor | Kan kosten bekijken en kosten configuratie beheren (bijvoorbeeld budgetten, exports)Can view costs and manage cost configuration (e.g. budgets, exports) | 434105ed-43f6-45c7-a02f-909b2ba83430434105ed-43f6-45c7-a02f-909b2ba83430 |
Cost Management lezerCost Management Reader | Kan kosten gegevens en-configuratie weer geven (bijvoorbeeld budgetten, exports)Can view cost data and configuration (e.g. budgets, exports) | 72fafb9e-0641-4937-9268-a91bfd8191a372fafb9e-0641-4937-9268-a91bfd8191a3 |
Beheerder hiërarchie-instellingenHierarchy Settings Administrator | Hiermee kunnen gebruikers hiërarchie-instellingen bewerken en verwijderenAllows users to edit and delete Hierarchy Settings | 350f8d15-c687-4448-8ae1-157740a3936d350f8d15-c687-4448-8ae1-157740a3936d |
Kubernetes-cluster-Azure Arc-onboardingKubernetes Cluster - Azure Arc Onboarding | Roldefinitie voor het autoriseren van elke gebruiker/service voor het maken van een connectedClusters-resourceRole definition to authorize any user/service to create connectedClusters resource | 34e09817-6cbe-4d01-b1a2-e0eac5743d4134e09817-6cbe-4d01-b1a2-e0eac5743d41 |
Rol Inzender beheerde toepassingManaged Application Contributor Role | Maakt het mogelijk om beheerde toepassings resources te maken.Allows for creating managed application resources. | 641177b8-a67a-45b9-a033-47bc880bb21e641177b8-a67a-45b9-a033-47bc880bb21e |
Rol beheerde toepassings operatorManaged Application Operator Role | Hiermee kunt u acties voor beheerde toepassings bronnen lezen en uitvoerenLets you read and perform actions on Managed Application resources | c7393b34-138c-406f-901b-d8cf2b17e6aec7393b34-138c-406f-901b-d8cf2b17e6ae |
Lezer voor beheerde toepassingenManaged Applications Reader | Hiermee kunt u bronnen in een beheerde app lezen en JIT-toegang aanvragen.Lets you read resources in a managed app and request JIT access. | b9331d33-8a36-4f8c-b097-4f54124fdb44b9331d33-8a36-4f8c-b097-4f54124fdb44 |
Rol voor registratie toewijzing beheerde services verwijderenManaged Services Registration assignment Delete Role | Met de functie voor registratie toewijzing van beheerde services verwijderen kan de Tenant gebruikers beheren de registratie toewijzing verwijderen die aan de Tenant is toegewezen.Managed Services Registration Assignment Delete Role allows the managing tenant users to delete the registration assignment assigned to their tenant. | 91c1777a-f3dc-4fae-b103-61d183457e4691c1777a-f3dc-4fae-b103-61d183457e46 |
Inzender beheer groepManagement Group Contributor | Rol Inzender beheer groepManagement Group Contributor Role | 5d58bcaf-24a5-4b20-bdb6-eed9f69fbe4c5d58bcaf-24a5-4b20-bdb6-eed9f69fbe4c |
Lezer beheer groepManagement Group Reader | Rol van lezer van beheer groepManagement Group Reader Role | ac63b705-f282-497d-ac71-919bf39d939dac63b705-f282-497d-ac71-919bf39d939d |
Nieuwe Inzender voor Relic APM-accountNew Relic APM Account Contributor | Hiermee kunt u New Relic Application Performance Management accounts en-toepassingen beheren, maar niet de toegang tot ze.Lets you manage New Relic Application Performance Management accounts and applications, but not access to them. | 5d28c62d-5b37-4476-8438-e587778df2375d28c62d-5b37-4476-8438-e587778df237 |
Policy Insights Data Writer (preview-versie)Policy Insights Data Writer (Preview) | Hiermee wordt lees toegang tot bron beleid en schrijf toegang tot bron onderdeel beleids gebeurtenissen toegestaan.Allows read access to resource policies and write access to resource component policy events. | 66bb4e9e-b016-4a94-8249-4c0511c2be8466bb4e9e-b016-4a94-8249-4c0511c2be84 |
Reserve ring-verkoperReservation Purchaser | Hiermee kunt u reserve ringen kopenLets you purchase reservations | f7b75c60-3036-4b75-91c3-6b41c27c1689f7b75c60-3036-4b75-91c3-6b41c27c1689 |
Inzender voor resourcebeleidResource Policy Contributor | Gebruikers met rechten voor het maken/wijzigen van het resource beleid, het maken van een ondersteunings ticket en het lezen van resources/hiërarchie.Users with rights to create/modify resource policy, create support ticket and read resources/hierarchy. | 36243c78-bf99-498c-9df9-86d9f8d2860836243c78-bf99-498c-9df9-86d9f8d28608 |
Site Recovery-inzenderSite Recovery Contributor | Hiermee kunt u Site Recovery-service beheren, behalve het maken van een kluis en roltoewijzingLets you manage Site Recovery service except vault creation and role assignment | 6670b86e-a3f7-4917-ac9b-5d6ab1be45676670b86e-a3f7-4917-ac9b-5d6ab1be4567 |
Site Recovery-operatorSite Recovery Operator | Een failover en failback, maar geen andere Site Recovery beheer bewerkingen uitvoerenLets you failover and failback but not perform other Site Recovery management operations | 494ae006-db33-4328-bf46-533a6560a3ca494ae006-db33-4328-bf46-533a6560a3ca |
Site Recovery-lezerSite Recovery Reader | Hiermee kunt u de Site Recovery status weer geven, maar geen andere beheer bewerkingen uitvoerenLets you view Site Recovery status but not perform other management operations | dbaa88c4-0c30-4179-9fb3-46319faa6149dbaa88c4-0c30-4179-9fb3-46319faa6149 |
Inzender voor ondersteunings aanvragenSupport Request Contributor | Hiermee kunt u ondersteunings aanvragen maken en beherenLets you create and manage Support requests | cfd33db0-3dd1-45e3-aa9d-cdbdf3b6f24ecfd33db0-3dd1-45e3-aa9d-cdbdf3b6f24e |
Inzender labelenTag Contributor | Hiermee kunt u tags op entiteiten beheren zonder dat u toegang hebt tot de entiteiten zelf.Lets you manage tags on entities, without providing access to the entities themselves. | 4a9ae827-6dc8-4573-8ac7-8239d42aa03f4a9ae827-6dc8-4573-8ac7-8239d42aa03f |
OverigeOther | ||
Azure Digital Apparaatdubbels-gegevens eigenaarAzure Digital Twins Data Owner | Volledige Access-rol voor Digital Apparaatdubbels data-vlakFull access role for Digital Twins data-plane | bcd981a7-7f74-457b-83e1-cceb9e632ffebcd981a7-7f74-457b-83e1-cceb9e632ffe |
Azure Digital Apparaatdubbels-gegevens lezerAzure Digital Twins Data Reader | Alleen-lezen rol voor Digital Apparaatdubbels data-vlak-eigenschappenRead-only role for Digital Twins data-plane properties | d57506d4-4c8d-48b1-8587-93c323f6a5a3d57506d4-4c8d-48b1-8587-93c323f6a5a3 |
BizTalk-bijdragerBizTalk Contributor | Hiermee kunt u BizTalk Services beheren, maar niet de toegang tot de service.Lets you manage BizTalk services, but not access to them. | 5e3c6656-6cfa-4708-81fe-0de47ac733425e3c6656-6cfa-4708-81fe-0de47ac73342 |
Inzender voor bureau blad-VirtualisatiehostDesktop Virtualization Application Group Contributor | Bijdrager van de toepassings groep bureau blad-virtualisatie.Contributor of the Desktop Virtualization Application Group. | 86240b0e-9422-4c43-887b-b61143f32ba886240b0e-9422-4c43-887b-b61143f32ba8 |
Lezer van toepassings groep voor desktop-virtualisatieDesktop Virtualization Application Group Reader | Lezer van de toepassings groep bureau blad-virtualisatie.Reader of the Desktop Virtualization Application Group. | aebf23d0-b568-4e86-b8f9-fe83a2c6ab55aebf23d0-b568-4e86-b8f9-fe83a2c6ab55 |
Inzender voor bureau blad-virtualisatieDesktop Virtualization Contributor | Inzender van bureau blad-virtualisatie.Contributor of Desktop Virtualization. | 082f0a83-3be5-4ba1-904c-961cca79b387082f0a83-3be5-4ba1-904c-961cca79b387 |
Inzender voor RD Virtualization hostgroepDesktop Virtualization Host Pool Contributor | Inzender van de hostgroep voor bureau blad-virtualisatie.Contributor of the Desktop Virtualization Host Pool. | e307426c-f9b6-4e81-87de-d99efb3c32bce307426c-f9b6-4e81-87de-d99efb3c32bc |
Lezer van hostgroep voor desktop-virtualisatieDesktop Virtualization Host Pool Reader | Lezer van de hostgroep voor bureau blad-virtualisatie.Reader of the Desktop Virtualization Host Pool. | ceadfde2-b300-400a-ab7b-6143895aa822ceadfde2-b300-400a-ab7b-6143895aa822 |
Desktop Virtualization-lezerDesktop Virtualization Reader | Lezer van bureau blad-virtualisatie.Reader of Desktop Virtualization. | 49a72310-ab8d-41df-bbb0-79b64920386849a72310-ab8d-41df-bbb0-79b649203868 |
Host-operator voor bureau blad-VirtualisatiehostDesktop Virtualization Session Host Operator | Operator van de host van de bureau blad-Virtualisatiehost.Operator of the Desktop Virtualization Session Host. | 2ad6aaab-ead9-4eaa-8ac5-da422f5624082ad6aaab-ead9-4eaa-8ac5-da422f562408 |
Gebruiker van bureau blad-virtualisatieDesktop Virtualization User | Hiermee kunnen gebruikers de toepassingen in een toepassings groep gebruiken.Allows user to use the applications in an application group. | 1d18fff3-a72a-46b5-b4a9-0b38a3cd7e631d18fff3-a72a-46b5-b4a9-0b38a3cd7e63 |
Operator voor de gebruikers sessie van de bureau blad-VirtualisatiehostDesktop Virtualization User Session Operator | Operator van de Uesr-sessie voor bureau blad-virtualisatie.Operator of the Desktop Virtualization Uesr Session. | ea4bfff8-7fb4-485a-aadd-d4129a0ffaa6ea4bfff8-7fb4-485a-aadd-d4129a0ffaa6 |
Mede werker van de werk ruimte bureau blad-virtualisatieDesktop Virtualization Workspace Contributor | Inzender van de werk ruimte bureau blad-virtualisatie.Contributor of the Desktop Virtualization Workspace. | 21efdde3-836f-432b-bf3d-3e8e734d4b2b21efdde3-836f-432b-bf3d-3e8e734d4b2b |
Werkruimte lezer voor desktop-virtualisatieDesktop Virtualization Workspace Reader | Lezer van de werk ruimte bureau blad-virtualisatie.Reader of the Desktop Virtualization Workspace. | 0fa44ee9-7a7d-466b-9bb2-2bf446b1204d0fa44ee9-7a7d-466b-9bb2-2bf446b1204d |
Back-uplezer van schijfDisk Backup Reader | Biedt machtiging voor back-upkluis voor het uitvoeren van schijf back-ups.Provides permission to backup vault to perform disk backup. | 3e5e47e6-65f7-47ef-90b5-e5dd4d455f243e5e47e6-65f7-47ef-90b5-e5dd4d455f24 |
Schijf herstel operatorDisk Restore Operator | Biedt machtigingen voor het maken van een back-upkluis om schijf herstel uit te voeren.Provides permission to backup vault to perform disk restore. | b50d9833-a0cb-478e-945f-707fcc997c13b50d9833-a0cb-478e-945f-707fcc997c13 |
Inzender voor schijf momentopnamenDisk Snapshot Contributor | Biedt machtiging voor back-upkluis voor het beheren van moment opnamen van schijven.Provides permission to backup vault to manage disk snapshots. | 7efff54f-a5b4-42b5-a1c5-5411624893ce7efff54f-a5b4-42b5-a1c5-5411624893ce |
Inzender voor scheduler-taak verzamelingenScheduler Job Collections Contributor | Hiermee kunt u scheduler-taak verzamelingen beheren, maar niet de toegang tot deze taken.Lets you manage Scheduler job collections, but not access to them. | 188a0f2f-5c9e-469b-ae67-2aa5ce574b94188a0f2f-5c9e-469b-ae67-2aa5ce574b94 |
Operator Services hubServices Hub Operator | Met de operator Services hub kunt u alle Lees-, schrijf-en verwijder bewerkingen uitvoeren met betrekking tot services hub-connectors.Services Hub Operator allows you to perform all read, write, and deletion operations related to Services Hub Connectors. | 82200a5b-e217-47a5-b665-6d8765ee745b82200a5b-e217-47a5-b665-6d8765ee745b |
AlgemeenGeneral
InzenderContributor
Verleent volledige toegang om alle resources te beheren, maar biedt geen ondersteuning voor het toewijzen van rollen in azure RBAC, het beheren van toewijzingen in azure-blauw drukken of het delen van afbeeldings galerieën.Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC, manage assignments in Azure Blueprints, or share image galleries. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
* | Resources van alle typen maken en beherenCreate and manage resources of all types |
NotActionsNotActions | |
Micro soft. Authorization/*/DeleteMicrosoft.Authorization/*/Delete | Rollen, beleids toewijzingen, beleids definities en definities van beleids sets verwijderenDelete roles, policy assignments, policy definitions and policy set definitions |
Micro soft. Authorization/*/writeMicrosoft.Authorization/*/Write | Rollen, roltoewijzingen, beleids toewijzingen, beleids definities en definities van beleids sets makenCreate roles, role assignments, policy assignments, policy definitions and policy set definitions |
Micro soft. Authorization/elevateAccess/ActionMicrosoft.Authorization/elevateAccess/Action | Hiermee krijgt de Gebruikerstoegangbeheerder toegang op tenantniveauGrants the caller User Access Administrator access at the tenant scope |
Micro soft. blauw druk/blueprintAssignments/writeMicrosoft.Blueprint/blueprintAssignments/write | Een blauw druk-toewijzing maken of bijwerkenCreate or update any blueprint assignments |
Micro soft. blauw druk/blueprintAssignments/DeleteMicrosoft.Blueprint/blueprintAssignments/delete | Eventuele blauw drukken-toewijzingen verwijderenDelete any blueprint assignments |
Micro soft. Compute/Galleries/share/ActionMicrosoft.Compute/galleries/share/action | Een galerie deelt met verschillende bereikenShares a Gallery to different scopes |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC, manage assignments in Azure Blueprints, or share image galleries.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b24988ac-6180-42a0-ab88-20f7382dd24c",
"name": "b24988ac-6180-42a0-ab88-20f7382dd24c",
"permissions": [
{
"actions": [
"*"
],
"notActions": [
"Microsoft.Authorization/*/Delete",
"Microsoft.Authorization/*/Write",
"Microsoft.Authorization/elevateAccess/Action",
"Microsoft.Blueprint/blueprintAssignments/write",
"Microsoft.Blueprint/blueprintAssignments/delete",
"Microsoft.Compute/galleries/share/action"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
EigenaarOwner
Hiermee wordt volledige toegang verleend voor het beheren van alle resources, inclusief de mogelijkheid om rollen toe te wijzen in azure RBAC.Grants full access to manage all resources, including the ability to assign roles in Azure RBAC. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
* | Resources van alle typen maken en beherenCreate and manage resources of all types |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants full access to manage all resources, including the ability to assign roles in Azure RBAC.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
"name": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
"permissions": [
{
"actions": [
"*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
LezerReader
Bekijk alle resources, maar u kunt geen wijzigingen aanbrengen.View all resources, but does not allow you to make any changes. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
*/read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "View all resources, but does not allow you to make any changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/acdd72a7-3385-48ef-bd42-f606fba81ae7",
"name": "acdd72a7-3385-48ef-bd42-f606fba81ae7",
"permissions": [
{
"actions": [
"*/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Beheerder van gebruikerstoegangUser Access Administrator
Hiermee beheert u de gebruikers toegang tot Azure-resources.Lets you manage user access to Azure resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
*/read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
Micro soft. autorisatie/*Microsoft.Authorization/* | Autorisatie beherenManage authorization |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage user access to Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/18d7d88d-d35e-4fb5-a5c3-7773c20a72d9",
"name": "18d7d88d-d35e-4fb5-a5c3-7773c20a72d9",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.Authorization/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "User Access Administrator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
ComputeCompute
Inzender voor klassieke virtuele machinesClassic Virtual Machine Contributor
Hiermee beheert u klassieke virtuele machines, maar kunt u niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ClassicCompute/domainNames/*Microsoft.ClassicCompute/domainNames/* | Klassieke Compute-domein namen maken en beherenCreate and manage classic compute domain names |
Micro soft. ClassicCompute/virtualMachines/*Microsoft.ClassicCompute/virtualMachines/* | Virtuele machines maken en beherenCreate and manage virtual machines |
Micro soft. ClassicNetwork/networkSecurityGroups/join/ActionMicrosoft.ClassicNetwork/networkSecurityGroups/join/action | |
Micro soft. ClassicNetwork/reservedIps/link/ActionMicrosoft.ClassicNetwork/reservedIps/link/action | Een gereserveerd IP-adres koppelenLink a reserved Ip |
Micro soft. ClassicNetwork/reservedIps/ReadMicrosoft.ClassicNetwork/reservedIps/read | Hiermee worden de gereserveerde Ip's opgehaaldGets the reserved Ips |
Micro soft. ClassicNetwork/virtualNetworks/join/ActionMicrosoft.ClassicNetwork/virtualNetworks/join/action | Voegt het virtuele netwerk samen.Joins the virtual network. |
Micro soft. ClassicNetwork/virtualNetworks/ReadMicrosoft.ClassicNetwork/virtualNetworks/read | Het virtuele netwerk ophalen.Get the virtual network. |
Micro soft. ClassicStorage/storageAccounts/disks/ReadMicrosoft.ClassicStorage/storageAccounts/disks/read | Retourneert de schijf van het opslag account.Returns the storage account disk. |
Micro soft. ClassicStorage/storageAccounts/images/ReadMicrosoft.ClassicStorage/storageAccounts/images/read | Hiermee wordt de installatie kopie van het opslag account geretourneerd.Returns the storage account image. Keur.(Deprecated. Micro soft. ClassicStorage/Storage accounts/vmImages gebruikenUse 'Microsoft.ClassicStorage/storageAccounts/vmImages') |
Micro soft. ClassicStorage/storageAccounts/listKeys/ActionMicrosoft.ClassicStorage/storageAccounts/listKeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
Micro soft. ClassicStorage/storageAccounts/ReadMicrosoft.ClassicStorage/storageAccounts/read | Retour neer het opslag account met het opgegeven account.Return the storage account with the given account. |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/d73bb868-a0df-4d4d-bd69-98a00b01fccb",
"name": "d73bb868-a0df-4d4d-bd69-98a00b01fccb",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicCompute/domainNames/*",
"Microsoft.ClassicCompute/virtualMachines/*",
"Microsoft.ClassicNetwork/networkSecurityGroups/join/action",
"Microsoft.ClassicNetwork/reservedIps/link/action",
"Microsoft.ClassicNetwork/reservedIps/read",
"Microsoft.ClassicNetwork/virtualNetworks/join/action",
"Microsoft.ClassicNetwork/virtualNetworks/read",
"Microsoft.ClassicStorage/storageAccounts/disks/read",
"Microsoft.ClassicStorage/storageAccounts/images/read",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.ClassicStorage/storageAccounts/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Virtual Machine Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Aanmelding voor de beheerder van de virtuele machineVirtual Machine Administrator Login
Bekijk Virtual Machines in de portal en meld u aan als beheerder meer informatieView Virtual Machines in the portal and login as administrator Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
Micro soft. Compute/virtualMachines/*/ReadMicrosoft.Compute/virtualMachines/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Compute/virtualMachines/login/ActionMicrosoft.Compute/virtualMachines/login/action | Als gewone gebruiker aanmelden bij een virtuele machineLog in to a virtual machine as a regular user |
Micro soft. Compute/virtualMachines/loginAsAdmin/ActionMicrosoft.Compute/virtualMachines/loginAsAdmin/action | Aanmelden bij een virtuele machine met Windows-beheerders-of Linux-root gebruikers bevoegdhedenLog in to a virtual machine with Windows administrator or Linux root user privileges |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "View Virtual Machines in the portal and login as administrator",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/1c0163c0-47e6-4577-8991-ea5c82e286e4",
"name": "1c0163c0-47e6-4577-8991-ea5c82e286e4",
"permissions": [
{
"actions": [
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Compute/virtualMachines/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Compute/virtualMachines/login/action",
"Microsoft.Compute/virtualMachines/loginAsAdmin/action"
],
"notDataActions": []
}
],
"roleName": "Virtual Machine Administrator Login",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor virtuele machinesVirtual Machine Contributor
Met kunt u virtuele machines beheren, maar niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Compute/availabilitySets/*Microsoft.Compute/availabilitySets/* | Berekenings beschikbaarheids sets maken en beherenCreate and manage compute availability sets |
Micro soft. Compute/locations/*Microsoft.Compute/locations/* | Reken locaties maken en beherenCreate and manage compute locations |
Micro soft. Compute/virtualMachines/*Microsoft.Compute/virtualMachines/* | Voer alle acties van de virtuele machine uit, waaronder het maken, bijwerken, verwijderen, starten, opnieuw opstarten en uitschakelen van virtuele machines.Perform all virtual machine actions including create, update, delete, start, restart, and power off virtual machines. Voer vooraf gedefinieerde scripts uit op virtuele machines.Execute predefined scripts on virtual machines. |
Micro soft. Compute/virtualMachineScaleSets/*Microsoft.Compute/virtualMachineScaleSets/* | Schaalsets voor virtuele machines maken en beherenCreate and manage virtual machine scale sets |
Micro soft. Compute/disks/writeMicrosoft.Compute/disks/write | Hiermee wordt een nieuwe schijf gemaakt of een bestaande bijgewerktCreates a new Disk or updates an existing one |
Micro soft. Compute/disks/ReadMicrosoft.Compute/disks/read | De eigenschappen van een schijf ophalenGet the properties of a Disk |
Micro soft. Compute/disks/DeleteMicrosoft.Compute/disks/delete | Hiermee wordt de schijf verwijderdDeletes the Disk |
Micro soft. DevTestLab/Schedules/*Microsoft.DevTestLab/schedules/* | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Network/applicationGateways/backendAddressPools/join/ActionMicrosoft.Network/applicationGateways/backendAddressPools/join/action | Voegt een back-end-adres groep van een toepassings gateway samen.Joins an application gateway backend address pool. Niet Alertable.Not Alertable. |
Micro soft. Network/loadBalancers/backendAddressPools/join/ActionMicrosoft.Network/loadBalancers/backendAddressPools/join/action | Voegt een load balancer back-end-adres groep samen.Joins a load balancer backend address pool. Niet Alertable.Not Alertable. |
Micro soft. Network/loadBalancers/inboundNatPools/join/ActionMicrosoft.Network/loadBalancers/inboundNatPools/join/action | Voegt een load balancer binnenkomende NAT-pool samen.Joins a load balancer inbound NAT pool. Niet alertable.Not alertable. |
Micro soft. Network/loadBalancers/inboundNatRules/join/ActionMicrosoft.Network/loadBalancers/inboundNatRules/join/action | Voegt een load balancer binnenkomende NAT-regel.Joins a load balancer inbound nat rule. Niet Alertable.Not Alertable. |
Micro soft. Network/loadBalancers/probes/join/ActionMicrosoft.Network/loadBalancers/probes/join/action | Staat het gebruik van tests van een load balancer toe.Allows using probes of a load balancer. Met deze machtiging healthProbe eigenschap van de VM-schaalset kan bijvoorbeeld naar de test worden verwezen.For example, with this permission healthProbe property of VM scale set can reference the probe. Niet alertable.Not alertable. |
Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
Micro soft. Network/locations/*Microsoft.Network/locations/* | Netwerk locaties maken en beherenCreate and manage network locations |
Micro soft. Network/networkInterfaces/*Microsoft.Network/networkInterfaces/* | Netwerk interfaces maken en beherenCreate and manage network interfaces |
Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
Micro soft. Network/networkSecurityGroups/ReadMicrosoft.Network/networkSecurityGroups/read | Hiermee wordt een definitie van een netwerk beveiligings groep opgehaaldGets a network security group definition |
Micro soft. Network/publicIPAddresses/join/ActionMicrosoft.Network/publicIPAddresses/join/action | Er wordt verbinding gemaakt met een openbaar IP-adres.Joins a public ip address. Niet Alertable.Not Alertable. |
Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
Micro soft. Recovery Services/locations/*Microsoft.RecoveryServices/locations/* | |
Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write | Een doel voor back-upbeveiliging makenCreate a backup Protection Intent |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/*/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/*/read | |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write | Een beveiligd back-upitem makenCreate a backup Protected Item |
Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
Micro soft. Recovery Services/vaults/backupPolicies/writeMicrosoft.RecoveryServices/Vaults/backupPolicies/write | Hiermee wordt een beveiligings beleid gemaaktCreates Protection Policy |
Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
Micro soft. Recovery Services/vaults/writeMicrosoft.RecoveryServices/Vaults/write | Met een kluis bewerking maken wordt een Azure-resource van het type ' kluis ' gemaakt.Create Vault operation creates an Azure resource of type 'vault' |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. SqlVirtualMachine/*Microsoft.SqlVirtualMachine/* | |
Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/9980e02c-c2be-4d73-94e8-173b1dc7cf3c",
"name": "9980e02c-c2be-4d73-94e8-173b1dc7cf3c",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Compute/availabilitySets/*",
"Microsoft.Compute/locations/*",
"Microsoft.Compute/virtualMachines/*",
"Microsoft.Compute/virtualMachineScaleSets/*",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/read",
"Microsoft.Compute/disks/delete",
"Microsoft.DevTestLab/schedules/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/applicationGateways/backendAddressPools/join/action",
"Microsoft.Network/loadBalancers/backendAddressPools/join/action",
"Microsoft.Network/loadBalancers/inboundNatPools/join/action",
"Microsoft.Network/loadBalancers/inboundNatRules/join/action",
"Microsoft.Network/loadBalancers/probes/join/action",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/locations/*",
"Microsoft.Network/networkInterfaces/*",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Network/networkSecurityGroups/read",
"Microsoft.Network/publicIPAddresses/join/action",
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.RecoveryServices/locations/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/*/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/write",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.RecoveryServices/Vaults/write",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.SqlVirtualMachine/*",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Virtual Machine Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gebruikers aanmelding voor de virtuele machineVirtual Machine User Login
Bekijk Virtual Machines in de portal en meld u aan als een gewone gebruiker.View Virtual Machines in the portal and login as a regular user. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
Micro soft. Compute/virtualMachines/*/ReadMicrosoft.Compute/virtualMachines/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Compute/virtualMachines/login/ActionMicrosoft.Compute/virtualMachines/login/action | Als gewone gebruiker aanmelden bij een virtuele machineLog in to a virtual machine as a regular user |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "View Virtual Machines in the portal and login as a regular user.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/fb879df8-f326-4884-b1cf-06f3ad86be52",
"name": "fb879df8-f326-4884-b1cf-06f3ad86be52",
"permissions": [
{
"actions": [
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Compute/virtualMachines/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Compute/virtualMachines/login/action"
],
"notDataActions": []
}
],
"roleName": "Virtual Machine User Login",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
NetwerkenNetworking
Inzender voor CDN-eind puntenCDN Endpoint Contributor
Kan CDN-eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN endpoints, but can't grant access to other users.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
Micro soft. CDN/Profiles/endpoints/*Microsoft.Cdn/profiles/endpoints/* | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage CDN endpoints, but can't grant access to other users.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/426e0c7f-0c7e-4658-b36f-ff54d6c29b45",
"name": "426e0c7f-0c7e-4658-b36f-ff54d6c29b45",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/endpoints/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Endpoint Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CDN-eindpunt lezerCDN Endpoint Reader
Kan CDN-eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN endpoints, but can't make changes.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
Micro soft. CDN/Profiles/endpoints/*/ReadMicrosoft.Cdn/profiles/endpoints/*/read | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view CDN endpoints, but can't make changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/871e35f6-b5c1-49cc-a043-bde969a0f2cd",
"name": "871e35f6-b5c1-49cc-a043-bde969a0f2cd",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/endpoints/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Endpoint Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor CDN-profielCDN Profile Contributor
Kan CDN-profielen en de bijbehorende eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN profiles and their endpoints, but can't grant access to other users. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
Micro soft. CDN/Profiles/*Microsoft.Cdn/profiles/* | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage CDN profiles and their endpoints, but can't grant access to other users.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ec156ff8-a8d1-4d15-830c-5b80698ca432",
"name": "ec156ff8-a8d1-4d15-830c-5b80698ca432",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Profile Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CDN-profiel lezerCDN Profile Reader
Kan CDN-profielen en de bijbehorende eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN profiles and their endpoints, but can't make changes.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
Micro soft. CDN/Profiles/*/ReadMicrosoft.Cdn/profiles/*/read | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view CDN profiles and their endpoints, but can't make changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8f96442b-4075-438f-813d-ad51ab4019af",
"name": "8f96442b-4075-438f-813d-ad51ab4019af",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Profile Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor klassieke netwerkenClassic Network Contributor
Hiermee beheert u klassieke netwerken, maar hebt u geen toegang tot de netwerk bestanden.Lets you manage classic networks, but not access to them. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ClassicNetwork/*Microsoft.ClassicNetwork/* | Klassieke netwerken maken en beherenCreate and manage classic networks |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic networks, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b34d265f-36f7-4a0d-a4d4-e158ca92e90f",
"name": "b34d265f-36f7-4a0d-a4d4-e158ca92e90f",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicNetwork/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Network Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender DNS-zoneDNS Zone Contributor
Met kunt u DNS-zones en-record sets beheren in Azure DNS, maar kunt u niet bepalen wie toegang heeft tot de groepen.Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Network/dnsZones/*Microsoft.Network/dnsZones/* | DNS-zones en-records maken en beherenCreate and manage DNS zones and records |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/befefa01-2a29-4197-83a8-272ff33ce314",
"name": "befefa01-2a29-4197-83a8-272ff33ce314",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/dnsZones/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "DNS Zone Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor netwerkenNetwork Contributor
Hiermee kunt u netwerken beheren, maar niet de toegang tot de netwerk bestanden.Lets you manage networks, but not access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Network/*Microsoft.Network/* | Netwerken maken en beherenCreate and manage networks |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage networks, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4d97b98b-1d4f-4787-a291-c67834d212e7",
"name": "4d97b98b-1d4f-4787-a291-c67834d212e7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Network Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor Privé-DNS-zonePrivate DNS Zone Contributor
Hiermee kunt u privé-DNS-zone bronnen beheren, maar niet de virtuele netwerken waaraan ze zijn gekoppeld.Lets you manage private DNS zone resources, but not the virtual networks they are linked to. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Network/privateDnsZones/*Microsoft.Network/privateDnsZones/* | |
Micro soft. Network/privateDnsOperationResults/*Microsoft.Network/privateDnsOperationResults/* | |
Micro soft. Network/privateDnsOperationStatuses/*Microsoft.Network/privateDnsOperationStatuses/* | |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/virtualNetworks/join/ActionMicrosoft.Network/virtualNetworks/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage private DNS zone resources, but not the virtual networks they are linked to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b12aa53e-6015-4669-85d0-8515ebb3ae7f",
"name": "b12aa53e-6015-4669-85d0-8515ebb3ae7f",
"permissions": [
{
"actions": [
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/privateDnsZones/*",
"Microsoft.Network/privateDnsOperationResults/*",
"Microsoft.Network/privateDnsOperationStatuses/*",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/join/action",
"Microsoft.Authorization/*/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Private DNS Zone Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Traffic ManagerTraffic Manager Contributor
Hiermee beheert u Traffic Manager profielen, maar kunt u niet bepalen wie er toegang tot heeft.Lets you manage Traffic Manager profiles, but does not let you control who has access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Network/trafficManagerProfiles/*Microsoft.Network/trafficManagerProfiles/* | |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Traffic Manager profiles, but does not let you control who has access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a4b10055-b0c7-44c2-b00f-c7b5b3550cf7",
"name": "a4b10055-b0c7-44c2-b00f-c7b5b3550cf7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/trafficManagerProfiles/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Traffic Manager Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
StorageStorage
AVERE-bijdragerAvere Contributor
Kan een avere vFXT-cluster maken en beheren.Can create and manage an Avere vFXT cluster. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Compute/*/ReadMicrosoft.Compute/*/read | |
Micro soft. Compute/availabilitySets/*Microsoft.Compute/availabilitySets/* | |
Micro soft. Compute/proximityPlacementGroups/*Microsoft.Compute/proximityPlacementGroups/* | |
Micro soft. Compute/virtualMachines/*Microsoft.Compute/virtualMachines/* | |
Micro soft. Compute/disks/*Microsoft.Compute/disks/* | |
Micro soft. Network/*/ReadMicrosoft.Network/*/read | |
Micro soft. Network/networkInterfaces/*Microsoft.Network/networkInterfaces/* | |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/virtualNetworks/subnets/ReadMicrosoft.Network/virtualNetworks/subnets/read | Hiermee wordt een subnet definitie van een virtueel netwerk opgehaaldGets a virtual network subnet definition |
Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Storage/*/ReadMicrosoft.Storage/*/read | |
Micro soft. Storage/storageAccounts/*Microsoft.Storage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. resources/Subscriptions/resourceGroups/resources/ReadMicrosoft.Resources/subscriptions/resourceGroups/resources/read | Hiermee haalt u de resources voor de resource groep op.Gets the resources for the resource group. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Hiermee wordt het resultaat van het verwijderen van een BLOB geretourneerdReturns the result of deleting a blob |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Retourneert een BLOB of een lijst met blobsReturns a blob or a list of blobs |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Hiermee wordt het resultaat van het schrijven van een BLOB geretourneerdReturns the result of writing a blob |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can create and manage an Avere vFXT cluster.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4f8fab4f-1852-4a58-a46a-8eaf358af14a",
"name": "4f8fab4f-1852-4a58-a46a-8eaf358af14a",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Compute/*/read",
"Microsoft.Compute/availabilitySets/*",
"Microsoft.Compute/proximityPlacementGroups/*",
"Microsoft.Compute/virtualMachines/*",
"Microsoft.Compute/disks/*",
"Microsoft.Network/*/read",
"Microsoft.Network/networkInterfaces/*",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Resources/deployments/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/*/read",
"Microsoft.Storage/storageAccounts/*",
"Microsoft.Support/*",
"Microsoft.Resources/subscriptions/resourceGroups/resources/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write"
],
"notDataActions": []
}
],
"roleName": "Avere Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AVERE-operatorAvere Operator
Wordt gebruikt door het avere vFXT-cluster voor het beheren van het cluster meer informatieUsed by the Avere vFXT cluster to manage the cluster Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Compute/virtualMachines/ReadMicrosoft.Compute/virtualMachines/read | De eigenschappen van een virtuele machine ophalenGet the properties of a virtual machine |
Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
Micro soft. Network/networkInterfaces/writeMicrosoft.Network/networkInterfaces/write | Hiermee maakt u een netwerk interface of werkt u een bestaande netwerk interface bij.Creates a network interface or updates an existing network interface. |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Network/virtualNetworks/subnets/ReadMicrosoft.Network/virtualNetworks/subnets/read | Hiermee wordt een subnet definitie van een virtueel netwerk opgehaaldGets a virtual network subnet definition |
Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Storage/storageAccounts/blobServices/containers/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/delete | Retourneert het resultaat van het verwijderen van een containerReturns the result of deleting a container |
Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Hiermee wordt een lijst met containers opgehaaldReturns list of containers |
Micro soft. Storage/storageAccounts/blobServices/containers/writeMicrosoft.Storage/storageAccounts/blobServices/containers/write | Retourneert het resultaat van de put-BLOB-containerReturns the result of put blob container |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Hiermee wordt het resultaat van het verwijderen van een BLOB geretourneerdReturns the result of deleting a blob |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Retourneert een BLOB of een lijst met blobsReturns a blob or a list of blobs |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Hiermee wordt het resultaat van het schrijven van een BLOB geretourneerdReturns the result of writing a blob |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Used by the Avere vFXT cluster to manage the cluster",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c025889f-8102-4ebf-b32c-fc0c6f0c6bd9",
"name": "c025889f-8102-4ebf-b32c-fc0c6f0c6bd9",
"permissions": [
{
"actions": [
"Microsoft.Compute/virtualMachines/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Network/networkInterfaces/write",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/write"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write"
],
"notDataActions": []
}
],
"roleName": "Avere Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-upinzenderBackup Contributor
Hiermee kunt u de back-upservice beheren, maar geen kluizen maken en anderen toegang gevenLets you manage backup service, but can't create vaults and give access to others Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Recovery Services/locations/*Microsoft.RecoveryServices/locations/* | |
Micro soft. Recovery Services/vaults/backupFabrics/operationResults/*Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/* | Resultaten van de werking van het back-upbeheer beherenManage results of operation on backup management |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/*Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/* | Back-upcontainers maken en beheren in back-upinfrastructuur van Recovery Services kluisCreate and manage backup containers inside backup fabrics of Recovery Services vault |
Micro soft. Recovery Services/vaults/backupFabrics/refreshContainers/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action | Hiermee vernieuwt u de container lijstRefreshes the container list |
Micro soft. Recovery Services/vaults/backupJobs/*Microsoft.RecoveryServices/Vaults/backupJobs/* | Back-uptaken maken en beherenCreate and manage backup jobs |
Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
Micro soft. Recovery Services/vaults/backupOperationResults/*Microsoft.RecoveryServices/Vaults/backupOperationResults/* | Resultaten van back-upbeheer bewerkingen maken en beherenCreate and manage Results of backup management operations |
Micro soft. Recovery Services/vaults/backupPolicies/*Microsoft.RecoveryServices/Vaults/backupPolicies/* | Back-upbeleid maken en beherenCreate and manage backup policies |
Micro soft. Recovery Services/vaults/backupProtectableItems/*Microsoft.RecoveryServices/Vaults/backupProtectableItems/* | Items maken en beheren waarvan een back-up kan worden gemaaktCreate and manage items which can be backed up |
Micro soft. Recovery Services/vaults/backupProtectedItems/*Microsoft.RecoveryServices/Vaults/backupProtectedItems/* | Back-upitems maken en beherenCreate and manage backed up items |
Micro soft. Recovery Services/vaults/backupProtectionContainers/*Microsoft.RecoveryServices/Vaults/backupProtectionContainers/* | Containers maken en beheren met back-upitemsCreate and manage containers holding backup items |
Micro soft. Recovery Services/vaults/backupSecurityPIN/*Microsoft.RecoveryServices/Vaults/backupSecurityPIN/* | |
Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
Micro soft. Recovery Services/vaults/certificates/*Microsoft.RecoveryServices/Vaults/certificates/* | Certificaten maken en beheren die zijn gerelateerd aan back-ups in Recovery Services kluisCreate and manage certificates related to backup in Recovery Services vault |
Micro soft. Recovery Services/vaults/extendedInformation/*Microsoft.RecoveryServices/Vaults/extendedInformation/* | Uitgebreide informatie met betrekking tot de kluis maken en beherenCreate and manage extended info related to vault |
Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
Micro soft. Recovery Services/vaults/registeredIdentities/*Microsoft.RecoveryServices/Vaults/registeredIdentities/* | Geregistreerde identiteiten maken en beherenCreate and manage registered identities |
Micro soft. Recovery Services/vaults/usages/*Microsoft.RecoveryServices/Vaults/usages/* | Gebruik van Recovery Services kluis maken en beherenCreate and manage usage of Recovery Services vault |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
Micro soft. Recovery Services/vaults/backupstorageconfig/*Microsoft.RecoveryServices/Vaults/backupstorageconfig/* | |
Micro soft. Recovery Services/vaults/backupconfig/*Microsoft.RecoveryServices/Vaults/backupconfig/* | |
Micro soft. Recovery Services/vaults/backupValidateOperation/ActionMicrosoft.RecoveryServices/Vaults/backupValidateOperation/action | Bewerking voor beveiligd item validerenValidate Operation on Protected Item |
Micro soft. Recovery Services/vaults/writeMicrosoft.RecoveryServices/Vaults/write | Met een kluis bewerking maken wordt een Azure-resource van het type ' kluis ' gemaakt.Create Vault operation creates an Azure resource of type 'vault' |
Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/*Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/* | |
Micro soft. Recovery Services/vaults/backupFabrics/protectableContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read | Alle Beveilig bare containers ophalenGet all protectable containers |
Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
Micro soft. Recovery Services/locations/backupPreValidateProtection/ActionMicrosoft.RecoveryServices/locations/backupPreValidateProtection/action | |
Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage backup service,but can't create vaults and give access to others",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5e467623-bb1f-42f4-a55d-6e525e11384b",
"name": "5e467623-bb1f-42f4-a55d-6e525e11384b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.RecoveryServices/locations/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action",
"Microsoft.RecoveryServices/Vaults/backupJobs/*",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/*",
"Microsoft.RecoveryServices/Vaults/backupPolicies/*",
"Microsoft.RecoveryServices/Vaults/backupProtectableItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/*",
"Microsoft.RecoveryServices/Vaults/backupSecurityPIN/*",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/certificates/*",
"Microsoft.RecoveryServices/Vaults/extendedInformation/*",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/*",
"Microsoft.RecoveryServices/Vaults/usages/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/*",
"Microsoft.RecoveryServices/Vaults/backupconfig/*",
"Microsoft.RecoveryServices/Vaults/backupValidateOperation/action",
"Microsoft.RecoveryServices/Vaults/write",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/locations/backupPreValidateProtection/action",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-upoperatorBackup Operator
Hiermee kunt u back-upservices beheren, behalve het verwijderen van back-ups, het maken van een kluis en het verlenen van toegang aan anderen meer informatieLets you manage backup services, except removal of backup, vault creation and giving access to others Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
Micro soft. Recovery Services/vaults/backupFabrics/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/operationResults/read | Hiermee wordt de status van de bewerking geretourneerdReturns status of the operation |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op de beveiligings container opgehaald.Gets result of Operation performed on Protection Container. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/backup/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/backup/action | Maakt een back-up voor het beveiligde item.Performs Backup for Protected Item. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op beveiligde items opgehaald.Gets Result of Operation Performed on Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read | Hiermee wordt de status geretourneerd van de bewerking die is uitgevoerd op beveiligde items.Returns the status of Operation performed on Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/action | Direct-item herstel inrichten voor beveiligd itemProvision Instant Item Recovery for Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/accessToken/ActionMicrosoft.RecoveryServices/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/accessToken/action | AccessToken ophalen voor het terugzetten van meerdere regio's.Get AccessToken for Cross Region Restore. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read | Herstel punten voor beveiligde items ophalen.Get Recovery Points for Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/Restore/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/restore/action | Herstel punten voor beveiligde items herstellen.Restore Recovery Points for Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/action | Herstel van onmiddellijke items intrekken voor beveiligd itemRevoke Instant Item Recovery for Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write | Een beveiligd back-upitem makenCreate a backup Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read | Hiermee worden alle geregistreerde containers geretourneerdReturns all registered containers |
Micro soft. Recovery Services/vaults/backupFabrics/refreshContainers/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action | Hiermee vernieuwt u de container lijstRefreshes the container list |
Micro soft. Recovery Services/vaults/backupJobs/*Microsoft.RecoveryServices/Vaults/backupJobs/* | Back-uptaken maken en beherenCreate and manage backup jobs |
Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
Micro soft. Recovery Services/vaults/backupOperationResults/*Microsoft.RecoveryServices/Vaults/backupOperationResults/* | Resultaten van back-upbeheer bewerkingen maken en beherenCreate and manage Results of backup management operations |
Micro soft. Recovery Services/vaults/backupPolicies/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operationResults/read | Resultaten van beleids bewerking ophalen.Get Results of Policy Operation. |
Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
Micro soft. Recovery Services/vaults/backupProtectableItems/*Microsoft.RecoveryServices/Vaults/backupProtectableItems/* | Items maken en beheren waarvan een back-up kan worden gemaaktCreate and manage items which can be backed up |
Micro soft. Recovery Services/vaults/backupProtectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupProtectedItems/read | Hiermee wordt de lijst met alle beveiligde items geretourneerd.Returns the list of all Protected Items. |
Micro soft. Recovery Services/vaults/backupProtectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionContainers/read | Hiermee worden alle containers van het abonnement geretourneerdReturns all containers belonging to the subscription |
Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
Micro soft. Recovery Services/vaults/certificates/writeMicrosoft.RecoveryServices/Vaults/certificates/write | Met de bewerking resource certificaat bijwerken wordt het resource/kluis-referentie certificaat bijgewerkt.The Update Resource Certificate operation updates the resource/vault credential certificate. |
Micro soft. Recovery Services/vaults/extendedInformation/ReadMicrosoft.RecoveryServices/Vaults/extendedInformation/read | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
Micro soft. Recovery Services/vaults/extendedInformation/writeMicrosoft.RecoveryServices/Vaults/extendedInformation/write | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
Micro soft. Recovery Services/vaults/registeredIdentities/operationResults/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read | De bewerking resultaten van de bewerking ophalen kan worden gebruikt om de bewerkings status en het resultaat van de asynchroon ingediende bewerking op te halenThe Get Operation Results operation can be used get the operation status and result for the asynchronously submitted operation |
Micro soft. Recovery Services/vaults/registeredIdentities/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/read | De bewerking containers ophalen kan worden gebruikt om de containers op te halen die voor een resource zijn geregistreerd.The Get Containers operation can be used get the containers registered for a resource. |
Micro soft. Recovery Services/vaults/registeredIdentities/writeMicrosoft.RecoveryServices/Vaults/registeredIdentities/write | De bewerking service container registreren kan worden gebruikt om een container te registreren bij de Recovery-service.The Register Service Container operation can be used to register a container with Recovery Service. |
Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
Micro soft. Recovery Services/vaults/backupstorageconfig/*Microsoft.RecoveryServices/Vaults/backupstorageconfig/* | |
Micro soft. Recovery Services/vaults/backupValidateOperation/ActionMicrosoft.RecoveryServices/Vaults/backupValidateOperation/action | Bewerking voor beveiligd item validerenValidate Operation on Protected Item |
Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupPolicies/Operations/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operations/read | Status van beleids bewerking ophalen.Get Status of Policy Operation. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/write | Hiermee maakt u een geregistreerde containerCreates a registered container |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/inquire/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/inquire/action | Een query uitvoeren voor werk belastingen binnen een containerDo inquiry for workloads within a container |
Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write | Een doel voor back-upbeveiliging makenCreate a backup Protection Intent |
Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read | Een doel voor back-upbeveiliging verkrijgenGet a backup Protection Intent |
Micro soft. Recovery Services/vaults/backupFabrics/protectableContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read | Alle Beveilig bare containers ophalenGet all protectable containers |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/items/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read | Alle items in een container ophalenGet all items in a container |
Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
Micro soft. Recovery Services/locations/backupPreValidateProtection/ActionMicrosoft.RecoveryServices/locations/backupPreValidateProtection/action | |
Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
Micro soft. Recovery Services/locations/backupAadProperties/ReadMicrosoft.RecoveryServices/locations/backupAadProperties/read | Eigenschappen van AAD ophalen voor verificatie in de derde regio voor het terugzetten van meerdere regio's.Get AAD Properties for authentication in the third region for Cross Region Restore. |
Micro soft. Recovery Services/locations/backupCrrJobs/ActionMicrosoft.RecoveryServices/locations/backupCrrJobs/action | Lijst met herstel taken voor meerdere regio's in de secundaire regio voor Recovery Services kluis.List Cross Region Restore Jobs in the secondary region for Recovery Services Vault. |
Micro soft. Recovery Services/locations/backupCrrJob/ActionMicrosoft.RecoveryServices/locations/backupCrrJob/action | Taak Details voor het herstellen van meerdere regio's in de secundaire regio voor Recovery Services kluis ophalen.Get Cross Region Restore Job Details in the secondary region for Recovery Services Vault. |
Micro soft. Recovery Services/locations/backupCrossRegionRestore/ActionMicrosoft.RecoveryServices/locations/backupCrossRegionRestore/action | Herstel van meerdere regio's activeren.Trigger Cross region restore. |
Micro soft. Recovery Services/locations/backupCrrOperationResults/ReadMicrosoft.RecoveryServices/locations/backupCrrOperationResults/read | Retourneert CRR-bewerkings resultaat voor Recovery Services kluis.Returns CRR Operation Result for Recovery Services Vault. |
Micro soft. Recovery Services/locations/backupCrrOperationsStatus/ReadMicrosoft.RecoveryServices/locations/backupCrrOperationsStatus/read | Retourneert CRR-bewerkings status voor Recovery Services kluis.Returns CRR Operation Status for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage backup services, except removal of backup, vault creation and giving access to others",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/00c29273-979b-4161-815c-10b084fb9324",
"name": "00c29273-979b-4161-815c-10b084fb9324",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/backup/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/action",
"Microsoft.RecoveryServices/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/accessToken/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/restore/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action",
"Microsoft.RecoveryServices/Vaults/backupJobs/*",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/*",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupProtectableItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/certificates/write",
"Microsoft.RecoveryServices/Vaults/extendedInformation/read",
"Microsoft.RecoveryServices/Vaults/extendedInformation/write",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/write",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/*",
"Microsoft.RecoveryServices/Vaults/backupValidateOperation/action",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operations/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/inquire/action",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/locations/backupPreValidateProtection/action",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action",
"Microsoft.RecoveryServices/locations/backupAadProperties/read",
"Microsoft.RecoveryServices/locations/backupCrrJobs/action",
"Microsoft.RecoveryServices/locations/backupCrrJob/action",
"Microsoft.RecoveryServices/locations/backupCrossRegionRestore/action",
"Microsoft.RecoveryServices/locations/backupCrrOperationResults/read",
"Microsoft.RecoveryServices/locations/backupCrrOperationsStatus/read",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-uplezerBackup Reader
Kan back-upservices weer geven, maar kan geen wijzigingen meer aanbrengenCan view backup services, but can't make changes Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Recovery Services/locations/allocatedStamp/ReadMicrosoft.RecoveryServices/locations/allocatedStamp/read | GetAllocatedStamp is een interne bewerking die wordt gebruikt door de serviceGetAllocatedStamp is internal operation used by service |
Micro soft. Recovery Services/vaults/backupFabrics/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/operationResults/read | Hiermee wordt de status van de bewerking geretourneerdReturns status of the operation |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op de beveiligings container opgehaald.Gets result of Operation performed on Protection Container. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op beveiligde items opgehaald.Gets Result of Operation Performed on Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read | Hiermee wordt de status geretourneerd van de bewerking die is uitgevoerd op beveiligde items.Returns the status of Operation performed on Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read | Herstel punten voor beveiligde items ophalen.Get Recovery Points for Protected Items. |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read | Hiermee worden alle geregistreerde containers geretourneerdReturns all registered containers |
Micro soft. Recovery Services/vaults/backupJobs/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupJobs/operationResults/read | Hiermee wordt het resultaat van de taak bewerking geretourneerd.Returns the Result of Job Operation. |
Micro soft. Recovery Services/vaults/backupJobs/ReadMicrosoft.RecoveryServices/Vaults/backupJobs/read | Hiermee worden alle taak objecten geretourneerdReturns all Job Objects |
Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
Micro soft. Recovery Services/vaults/backupOperationResults/ReadMicrosoft.RecoveryServices/Vaults/backupOperationResults/read | Retourneert een back-upbewerkings resultaat voor Recovery Services kluis.Returns Backup Operation Result for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupPolicies/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operationResults/read | Resultaten van beleids bewerking ophalen.Get Results of Policy Operation. |
Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
Micro soft. Recovery Services/vaults/backupProtectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupProtectedItems/read | Hiermee wordt de lijst met alle beveiligde items geretourneerd.Returns the list of all Protected Items. |
Micro soft. Recovery Services/vaults/backupProtectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionContainers/read | Hiermee worden alle containers van het abonnement geretourneerdReturns all containers belonging to the subscription |
Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
Micro soft. Recovery Services/vaults/extendedInformation/ReadMicrosoft.RecoveryServices/Vaults/extendedInformation/read | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
Micro soft. Recovery Services/vaults/registeredIdentities/operationResults/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read | De bewerking resultaten van de bewerking ophalen kan worden gebruikt om de bewerkings status en het resultaat van de asynchroon ingediende bewerking op te halenThe Get Operation Results operation can be used get the operation status and result for the asynchronously submitted operation |
Micro soft. Recovery Services/vaults/registeredIdentities/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/read | De bewerking containers ophalen kan worden gebruikt om de containers op te halen die voor een resource zijn geregistreerd.The Get Containers operation can be used get the containers registered for a resource. |
Micro soft. Recovery Services/vaults/backupstorageconfig/ReadMicrosoft.RecoveryServices/Vaults/backupstorageconfig/read | Hiermee wordt de opslag configuratie voor Recovery Services kluis geretourneerd.Returns Storage Configuration for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupconfig/ReadMicrosoft.RecoveryServices/Vaults/backupconfig/read | Hiermee wordt de configuratie voor Recovery Services kluis geretourneerd.Returns Configuration for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
Micro soft. Recovery Services/vaults/backupPolicies/Operations/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operations/read | Status van beleids bewerking ophalen.Get Status of Policy Operation. |
Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read | Een doel voor back-upbeveiliging verkrijgenGet a backup Protection Intent |
Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/items/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read | Alle items in een container ophalenGet all items in a container |
Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view backup services, but can't make changes",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a795c7a0-d4a2-40c1-ae25-d81f01202912",
"name": "a795c7a0-d4a2-40c1-ae25-d81f01202912",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.RecoveryServices/locations/allocatedStamp/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupJobs/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupJobs/read",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/extendedInformation/read",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/read",
"Microsoft.RecoveryServices/Vaults/backupconfig/read",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operations/read",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor klassieke opslag accountsClassic Storage Account Contributor
Hiermee kunt u klassieke opslag accounts beheren, maar niet de toegang tot de account.Lets you manage classic storage accounts, but not access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ClassicStorage/storageAccounts/*Microsoft.ClassicStorage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic storage accounts, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/86e8f5dc-a6e9-4c67-9d15-de283e8eac25",
"name": "86e8f5dc-a6e9-4c67-9d15-de283e8eac25",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicStorage/storageAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Storage Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Service functie voor de sleutel operator voor klassieke opslag accountsClassic Storage Account Key Operator Service Role
De sleutel operators voor klassieke opslag accounts mogen sleutels vermelden en opnieuw genereren voor klassieke opslag accounts meer informatieClassic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ClassicStorage/storageAccounts/listkeys/ActionMicrosoft.ClassicStorage/storageAccounts/listkeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
Micro soft. ClassicStorage/storageAccounts/regeneratekey/ActionMicrosoft.ClassicStorage/storageAccounts/regeneratekey/action | Hiermee worden de bestaande toegangs sleutels voor het opslag account opnieuw gegenereerd.Regenerates the existing access keys for the storage account. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Classic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/985d6b00-f706-48f5-a6fe-d0ca12fb668d",
"name": "985d6b00-f706-48f5-a6fe-d0ca12fb668d",
"permissions": [
{
"actions": [
"Microsoft.ClassicStorage/storageAccounts/listkeys/action",
"Microsoft.ClassicStorage/storageAccounts/regeneratekey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Storage Account Key Operator Service Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Data BoxData Box Contributor
Hiermee kunt u alles beheren onder Data Box Service, behalve dat anderen toegang verlenen.Lets you manage everything under Data Box Service except giving access to others. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Databox/*Microsoft.Databox/* | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage everything under Data Box Service except giving access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/add466c9-e687-43fc-8d98-dfcf8d720be5",
"name": "add466c9-e687-43fc-8d98-dfcf8d720be5",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Databox/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Box Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Data Box lezerData Box Reader
Met kunt u de Data Box-Service beheren, met uitzonde ring van order gegevens maken of bewerken en anderen toegang verlenen.Lets you manage Data Box Service except creating order or editing order details and giving access to others. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Databox/*/ReadMicrosoft.Databox/*/read | |
Micro soft. Databox/Jobs/listsecrets/ActionMicrosoft.Databox/jobs/listsecrets/action | |
Micro soft. Databox/Jobs/listcredentials/ActionMicrosoft.Databox/jobs/listcredentials/action | Geeft een lijst van de niet-versleutelde referenties die zijn gerelateerd aan de order.Lists the unencrypted credentials related to the order. |
Micro soft. Databox/locations/availableSkus/ActionMicrosoft.Databox/locations/availableSkus/action | Met deze methode wordt de lijst met beschik bare sku's geretourneerd.This method returns the list of available skus. |
Micro soft. Databox/locations/validateInputs/ActionMicrosoft.Databox/locations/validateInputs/action | Met deze methode worden alle typen validaties ondersteund.This method does all type of validations. |
Micro soft. Databox/locations/regionConfiguration/ActionMicrosoft.Databox/locations/regionConfiguration/action | Deze methode retourneert de configuraties voor de regio.This method returns the configurations for the region. |
Micro soft. Databox/locations/validateAddress/ActionMicrosoft.Databox/locations/validateAddress/action | Valideert het verzend adres en levert eventueel alternatieve adressen.Validates the shipping address and provides alternate addresses if any. |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Data Box Service except creating order or editing order details and giving access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027",
"name": "028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Databox/*/read",
"Microsoft.Databox/jobs/listsecrets/action",
"Microsoft.Databox/jobs/listcredentials/action",
"Microsoft.Databox/locations/availableSkus/action",
"Microsoft.Databox/locations/validateInputs/action",
"Microsoft.Databox/locations/regionConfiguration/action",
"Microsoft.Databox/locations/validateAddress/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Box Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Data Lake Analytics-ontwikkelaarData Lake Analytics Developer
Hiermee kunt u uw eigen taken verzenden, bewaken en beheren, maar geen Data Lake Analytics accounts maken of verwijderen.Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. BigAnalytics/accounts/*Microsoft.BigAnalytics/accounts/* | |
Micro soft. DataLakeAnalytics/accounts/*Microsoft.DataLakeAnalytics/accounts/* | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
Micro soft. BigAnalytics/accounts/verwijderenMicrosoft.BigAnalytics/accounts/Delete | |
Micro soft. BigAnalytics/accounts/TakeOwnership/actieMicrosoft.BigAnalytics/accounts/TakeOwnership/action | |
Micro soft. BigAnalytics/accounts/schrijvenMicrosoft.BigAnalytics/accounts/Write | |
Micro soft. DataLakeAnalytics/accounts/DeleteMicrosoft.DataLakeAnalytics/accounts/Delete | Een DataLakeAnalytics-account verwijderen.Delete a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/TakeOwnership/ActionMicrosoft.DataLakeAnalytics/accounts/TakeOwnership/action | Machtigingen verlenen om taken te annuleren die door andere gebruikers zijn verzonden.Grant permissions to cancel jobs submitted by other users. |
Micro soft. DataLakeAnalytics/accounts/writeMicrosoft.DataLakeAnalytics/accounts/Write | Een DataLakeAnalytics-account maken of bijwerken.Create or update a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/dataLakeStoreAccounts/writeMicrosoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Write | Een gekoppeld data Lake Store-account maken of bijwerken van een DataLakeAnalytics-account.Create or update a linked DataLakeStore account of a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/dataLakeStoreAccounts/DeleteMicrosoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Delete | Een Data Lake Store-account ontkoppelen van een DataLakeAnalytics-account.Unlink a DataLakeStore account from a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/storageAccounts/writeMicrosoft.DataLakeAnalytics/accounts/storageAccounts/Write | Een gekoppeld opslag account maken of bijwerken van een DataLakeAnalytics-account.Create or update a linked Storage account of a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/storageAccounts/DeleteMicrosoft.DataLakeAnalytics/accounts/storageAccounts/Delete | Een opslag account ontkoppelen van een DataLakeAnalytics-account.Unlink a Storage account from a DataLakeAnalytics account. |
Micro soft. DataLakeAnalytics/accounts/firewallRules/writeMicrosoft.DataLakeAnalytics/accounts/firewallRules/Write | Een firewall regel maken of bijwerken.Create or update a firewall rule. |
Micro soft. DataLakeAnalytics/accounts/firewallRules/DeleteMicrosoft.DataLakeAnalytics/accounts/firewallRules/Delete | Een firewall regel verwijderen.Delete a firewall rule. |
Micro soft. DataLakeAnalytics/accounts/computePolicies/writeMicrosoft.DataLakeAnalytics/accounts/computePolicies/Write | Een reken beleid maken of bijwerken.Create or update a compute policy. |
Micro soft. DataLakeAnalytics/accounts/computePolicies/DeleteMicrosoft.DataLakeAnalytics/accounts/computePolicies/Delete | Een reken beleid verwijderen.Delete a compute policy. |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/47b7735b-770e-4598-a7da-8b91488b4c88",
"name": "47b7735b-770e-4598-a7da-8b91488b4c88",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.BigAnalytics/accounts/*",
"Microsoft.DataLakeAnalytics/accounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.BigAnalytics/accounts/Delete",
"Microsoft.BigAnalytics/accounts/TakeOwnership/action",
"Microsoft.BigAnalytics/accounts/Write",
"Microsoft.DataLakeAnalytics/accounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/TakeOwnership/action",
"Microsoft.DataLakeAnalytics/accounts/Write",
"Microsoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Write",
"Microsoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/storageAccounts/Write",
"Microsoft.DataLakeAnalytics/accounts/storageAccounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/firewallRules/Write",
"Microsoft.DataLakeAnalytics/accounts/firewallRules/Delete",
"Microsoft.DataLakeAnalytics/accounts/computePolicies/Write",
"Microsoft.DataLakeAnalytics/accounts/computePolicies/Delete"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Lake Analytics Developer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer en gegevens toegangReader and Data Access
Hiermee kunt u alles weer geven, maar kunt u geen opslag account of opgenomen resource verwijderen of maken.Lets you view everything but will not let you delete or create a storage account or contained resource. Ook wordt lees-/schrijftoegang tot alle gegevens in een opslag account toegestaan via toegang tot de sleutel van het opslag account.It will also allow read/write access to all data contained in a storage account via access to storage account keys.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
Micro soft. Storage/storageAccounts/ListAccountSas/ActionMicrosoft.Storage/storageAccounts/ListAccountSas/action | Hiermee wordt het SAS-token van het account voor het opgegeven opslag account geretourneerd.Returns the Account SAS token for the specified storage account. |
Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you view everything but will not let you delete or create a storage account or contained resource. It will also allow read/write access to all data contained in a storage account via access to storage account keys.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c12c1c16-33a1-487b-954d-41c89c60f349",
"name": "c12c1c16-33a1-487b-954d-41c89c60f349",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/ListAccountSas/action",
"Microsoft.Storage/storageAccounts/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Reader and Data Access",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslagaccountsStorage Account Contributor
Hiermee staat u het beheer van opslag accounts toe.Permits management of storage accounts. Biedt toegang tot de account sleutel, die kan worden gebruikt om toegang te krijgen tot gegevens via een gedeelde sleutel autorisatie.Provides access to the account key, which can be used to access data via Shared Key authorization. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Storage/storageAccounts/*Microsoft.Storage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage storage accounts, including accessing storage account keys which provide full access to storage account data.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/17d1049b-9a84-46fb-8f53-869881c3d3ab",
"name": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Functie Service-sleutel operator van opslag accountStorage Account Key Operator Service Role
Kan de toegangs sleutels voor het opslag account weer geven en opnieuw genereren.Permits listing and regenerating storage account access keys. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/listkeys/ActionMicrosoft.Storage/storageAccounts/listkeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
Micro soft. Storage/storageAccounts/regeneratekey/ActionMicrosoft.Storage/storageAccounts/regeneratekey/action | Hiermee worden de toegangs sleutels voor het opgegeven opslag account opnieuw gegenereerd.Regenerates the access keys for the specified storage account. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Storage Account Key Operators are allowed to list and regenerate keys on Storage Accounts",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/81a9662b-bebf-436f-a333-f67b29880f12",
"name": "81a9662b-bebf-436f-a333-f67b29880f12",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/listkeys/action",
"Microsoft.Storage/storageAccounts/regeneratekey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Account Key Operator Service Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor Storage Blob-gegevensStorage Blob Data Contributor
Azure Storage containers en blobs lezen, schrijven en verwijderen.Read, write, and delete Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/blobServices/containers/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/delete | Een container verwijderen.Delete a container. |
Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Een container of een lijst met containers retour neren.Return a container or a list of containers. |
Micro soft. Storage/storageAccounts/blobServices/containers/writeMicrosoft.Storage/storageAccounts/blobServices/containers/write | Meta gegevens of eigenschappen van een container wijzigen.Modify a container's metadata or properties. |
Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Een BLOB verwijderen.Delete a blob. |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Een BLOB of een lijst met blobs retour neren.Return a blob or a list of blobs. |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Schrijven naar een blob.Write to a blob. |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/Move/ActionMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/move/action | Verplaatst de blob van het ene pad naar het andereMoves the blob from one path to another |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/add/ActionMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/add/action | Retourneert het resultaat van het toevoegen van blob-inhoudReturns the result of adding blob content |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write and delete access to Azure Storage blob containers and data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ba92f5b4-2d11-453d-a403-e96b0029c9fe",
"name": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/write",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/move/action",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/add/action"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Eigenaar van opslagblobgegevensStorage Blob Data Owner
Biedt volledige toegang tot Azure Storage BLOB-containers en-gegevens, met inbegrip van het toewijzen van POSIX-toegangs beheer.Provides full access to Azure Storage blob containers and data, including assigning POSIX access control. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/blobServices/containers/*Microsoft.Storage/storageAccounts/blobServices/containers/* | Volledige machtigingen voor containers.Full permissions on containers. |
Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/*Microsoft.Storage/storageAccounts/blobServices/containers/blobs/* | Volledige machtigingen op blobs.Full permissions on blobs. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for full access to Azure Storage blob containers and data, including assigning POSIX access control.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
"name": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/*",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/*"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer voor opslagblobgegevensStorage Blob Data Reader
Azure Storage containers en blobs lezen en weer geven.Read and list Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Een container of een lijst met containers retour neren.Return a container or a list of containers. |
Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Een BLOB of een lijst met blobs retour neren.Return a blob or a list of blobs. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure Storage blob containers and data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2a2b9908-6ea1-4ae2-8e65-a410df84e7d1",
"name": "2a2b9908-6ea1-4ae2-8e65-a410df84e7d1",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Delegering van opslag-BLOBStorage Blob Delegator
Een sleutel voor gebruikers overdracht ophalen, die vervolgens kan worden gebruikt om een gedeelde toegangs handtekening te maken voor een container of BLOB die is ondertekend met Azure AD-referenties.Get a user delegation key, which can then be used to create a shared access signature for a container or blob that is signed with Azure AD credentials. Zie een gebruiker delegering Sa's makenvoor meer informatie.For more information, see Create a user delegation SAS. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for generation of a user delegation key which can be used to sign SAS tokens",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/db58b8e5-c6ad-4a2a-8342-4190687cbf4a",
"name": "db58b8e5-c6ad-4a2a-8342-4190687cbf4a",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Blob Delegator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Contributor
Hiermee wordt lees-, schrijf-en verwijder toegang voor bestanden/mappen in azure-bestands shares toegestaan.Allows for read, write, and delete access on files/directories in Azure file shares. Deze rol heeft geen ingebouwd equivalent op Windows-bestands servers.This role has no built-in equivalent on Windows file servers. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
Micro soft. Storage/storageAccounts/fileServices/fileshares/Files/WriteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/write | Retourneert het resultaat van het schrijven van een bestand of het maken van een map.Returns the result of writing a file or creating a folder. |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/DeleteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/delete | Retourneert het resultaat van het verwijderen van een bestand/map.Returns the result of deleting a file/folder. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, and delete access in Azure Storage file shares over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb",
"name": "0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/write",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/delete"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender met verhoogde bevoegdheden voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Elevated Contributor
Hiermee kunt u Acl's voor lezen, schrijven, verwijderen en wijzigen van bestanden/mappen in azure-bestands shares.Allows for read, write, delete, and modify ACLs on files/directories in Azure file shares. Deze rol is gelijk aan een ACL van de bestands share die moet worden gewijzigd op Windows-bestands servers.This role is equivalent to a file share ACL of change on Windows file servers. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
Micro soft. Storage/storageAccounts/fileServices/fileshares/Files/WriteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/write | Retourneert het resultaat van het schrijven van een bestand of het maken van een map.Returns the result of writing a file or creating a folder. |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/DeleteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/delete | Retourneert het resultaat van het verwijderen van een bestand/map.Returns the result of deleting a file/folder. |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/ActionMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/action | Retourneert het resultaat van het wijzigen van de machtiging voor een bestand/map.Returns the result of modifying permission on a file/folder. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, delete and modify NTFS permission access in Azure Storage file shares over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a7264617-510b-434b-a828-9731dc254ea7",
"name": "a7264617-510b-434b-a828-9731dc254ea7",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/write",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/delete",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/action"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Elevated Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer voor opslagbestandgegevens via SMB-shareStorage File Data SMB Share Reader
Hiermee staat u lees toegang toe voor bestanden/mappen in azure-bestands shares.Allows for read access on files/directories in Azure file shares. Deze rol is gelijk aan een ACL voor bestands shares van lezen op Windows-bestands servers.This role is equivalent to a file share ACL of read on Windows file servers. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure File Share over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/aba4ae5f-2193-4029-9191-0cb91df5e314",
"name": "aba4ae5f-2193-4029-9191-0cb91df5e314",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslag wachtrij gegevensStorage Queue Data Contributor
Lees-, schrijf-en verwijder Azure Storage-wacht rijen en-wachtrij berichten.Read, write, and delete Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/queueServices/queues/DeleteMicrosoft.Storage/storageAccounts/queueServices/queues/delete | Een wachtrij verwijderen.Delete a queue. |
Micro soft. Storage/storageAccounts/queueServices/queues/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/read | Een wachtrij of een lijst met wacht rijen retour neren.Return a queue or a list of queues. |
Micro soft. Storage/storageAccounts/queueServices/queues/writeMicrosoft.Storage/storageAccounts/queueServices/queues/write | Meta gegevens of eigenschappen van de wachtrij wijzigen.Modify queue metadata or properties. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/DeleteMicrosoft.Storage/storageAccounts/queueServices/queues/messages/delete | Een of meer berichten verwijderen uit een wachtrij.Delete one or more messages from a queue. |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een of meer berichten uit een wachtrij bekijken of ophalen.Peek or retrieve one or more messages from a queue. |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/writeMicrosoft.Storage/storageAccounts/queueServices/queues/messages/write | Een bericht toevoegen aan een wachtrij.Add a message to a queue. |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/process/ActionMicrosoft.Storage/storageAccounts/queueServices/queues/messages/process/action | Retourneert het resultaat van de verwerking van een berichtReturns the result of processing a message |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, and delete access to Azure Storage queues and queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/974c5e8b-45b9-4653-ba55-5f855dd0fb88",
"name": "974c5e8b-45b9-4653-ba55-5f855dd0fb88",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/delete",
"Microsoft.Storage/storageAccounts/queueServices/queues/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/write"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/delete",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/write",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/process/action"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Processor voor gegevens berichten van de opslag wachtrijStorage Queue Data Message Processor
Een bericht uit een Azure Storage wachtrij bekijken, ophalen en verwijderen.Peek, retrieve, and delete a message from an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een bericht bekijken.Peek a message. |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/process/ActionMicrosoft.Storage/storageAccounts/queueServices/queues/messages/process/action | Een bericht ophalen en verwijderen.Retrieve and delete a message. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for peek, receive, and delete access to Azure Storage queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8a0f0c08-91a1-4084-bc3d-661d67233fed",
"name": "8a0f0c08-91a1-4084-bc3d-661d67233fed",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/process/action"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Message Processor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Afzender gegevens bericht van opslag wachtrijStorage Queue Data Message Sender
Berichten toevoegen aan een Azure Storage wachtrij.Add messages to an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/add/ActionMicrosoft.Storage/storageAccounts/queueServices/queues/messages/add/action | Een bericht toevoegen aan een wachtrij.Add a message to a queue. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for sending of Azure Storage queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c6a89b2d-59bc-44d0-9896-0f6e12d7b80a",
"name": "c6a89b2d-59bc-44d0-9896-0f6e12d7b80a",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/add/action"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Message Sender",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer van de opslag wachtrijStorage Queue Data Reader
Azure Storage-wacht rijen en-wachtrij berichten lezen en weer geven.Read and list Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Storage/storageAccounts/queueServices/queues/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/read | Hiermee wordt een wachtrij of een lijst met wacht rijen geretourneerd.Returns a queue or a list of queues. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een of meer berichten uit een wachtrij bekijken of ophalen.Peek or retrieve one or more messages from a queue. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure Storage queues and queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/19e7f393-937e-4f77-808e-94535e297925",
"name": "19e7f393-937e-4f77-808e-94535e297925",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
WebWeb
Inzender voor Azure Maps gegevensAzure Maps Data Contributor
Hiermee wordt toegang verleend tot lees-, schrijf-en verwijder toegang om gerelateerde gegevens vanuit een Azure Maps-account toe te wijzen.Grants access to read, write, and delete access to map related data from an Azure maps account. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Maps/accounts/*/ReadMicrosoft.Maps/accounts/*/read | |
Micro soft. Maps/accounts/*/writeMicrosoft.Maps/accounts/*/write | |
Micro soft. Maps/accounts/*/DeleteMicrosoft.Maps/accounts/*/delete | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants access to read, write, and delete access to map related data from an Azure maps account.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8f5e0ce6-4f7b-4dcf-bddf-e6f48634a204",
"name": "8f5e0ce6-4f7b-4dcf-bddf-e6f48634a204",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Maps/accounts/*/read",
"Microsoft.Maps/accounts/*/write",
"Microsoft.Maps/accounts/*/delete"
],
"notDataActions": []
}
],
"roleName": "Azure Maps Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer Azure MapsAzure Maps Data Reader
Hiermee wordt toegang verleend om gerelateerde gegevens te lezen vanuit een Azure Maps-account.Grants access to read map related data from an Azure maps account. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Maps/accounts/*/ReadMicrosoft.Maps/accounts/*/read | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants access to read map related data from an Azure maps account.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/423170ca-a8f6-4b0f-8487-9e4eb8f49bfa",
"name": "423170ca-a8f6-4b0f-8487-9e4eb8f49bfa",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Maps/accounts/*/read"
],
"notDataActions": []
}
],
"roleName": "Azure Maps Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Search ServiceSearch Service Contributor
Hiermee kunt u zoek services beheren, maar niet de toegang tot ze.Lets you manage Search services, but not access to them. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Search/searchServices/*Microsoft.Search/searchServices/* | Zoek Services maken en beherenCreate and manage search services |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Search services, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"name": "7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Search/searchServices/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Search Service Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Signaal/AccessKey-lezerSignalR AccessKey Reader
Toegangs sleutels voor de seingevings service lezenRead SignalR Service Access Keys
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. SignalRService/*/ReadMicrosoft.SignalRService/*/read | |
Micro soft. SignalRService/SignalR/listkeys/ActionMicrosoft.SignalRService/SignalR/listkeys/action | De waarde van de toegangs sleutels voor de Signa lering in de beheer portal of via API weer gevenView the value of SignalR access keys in the management portal or through API |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Read SignalR Service Access Keys",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/04165923-9d83-45d5-8227-78b77b0a687e",
"name": "04165923-9d83-45d5-8227-78b77b0a687e",
"permissions": [
{
"actions": [
"Microsoft.SignalRService/*/read",
"Microsoft.SignalRService/SignalR/listkeys/action",
"Microsoft.Authorization/*/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SignalR AccessKey Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Seingevings app-server (preview-versie)SignalR App Server (Preview)
Hiermee wordt uw app server-toegangs signaal service met AAD-verificatie opties.Lets your app server access SignalR Service with AAD auth options.
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. SignalRService/SignalR/auth/accessKey/ActionMicrosoft.SignalRService/SignalR/auth/accessKey/action | Een tijdelijke AccessKey voor het ondertekenen van ClientTokens genereren.Generate a temporary AccessKey for signing ClientTokens. |
Micro soft. SignalRService/SignalR/serverConnection/writeMicrosoft.SignalRService/SignalR/serverConnection/write | Start een server verbinding.Start a server connection. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets your app server access SignalR Service with AAD auth options.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/420fcaa2-552c-430f-98ca-3264be4806c7",
"name": "420fcaa2-552c-430f-98ca-3264be4806c7",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.SignalRService/SignalR/auth/accessKey/action",
"Microsoft.SignalRService/SignalR/serverConnection/write"
],
"notDataActions": []
}
],
"roleName": "SignalR App Server (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender bijdragerSignalR Contributor
Signalerings service resources maken, lezen, bijwerken en verwijderenCreate, Read, Update, and Delete SignalR service resources
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. SignalRService/*Microsoft.SignalRService/* | |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Create, Read, Update, and Delete SignalR service resources",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8cf5e20a-e4b2-4e9d-b3a1-5ceb692c2761",
"name": "8cf5e20a-e4b2-4e9d-b3a1-5ceb692c2761",
"permissions": [
{
"actions": [
"Microsoft.SignalRService/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SignalR Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender server zonder signaal (preview-versie)SignalR Serverless Contributor (Preview)
Hiermee kan uw app Access-service in de serverloze modus met AAD-verificatie opties.Lets your app access service in serverless mode with AAD auth options.
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. SignalRService/SignalR/auth/clientToken/ActionMicrosoft.SignalRService/SignalR/auth/clientToken/action | Genereer een ClientToken voor het starten van een client verbinding.Generate a ClientToken for starting a client connection. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets your app access service in serverless mode with AAD auth options.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/fd53cd77-2268-407a-8f46-7e7863d0f521",
"name": "fd53cd77-2268-407a-8f46-7e7863d0f521",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.SignalRService/SignalR/auth/clientToken/action"
],
"notDataActions": []
}
],
"roleName": "SignalR Serverless Contributor (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Eigenaar van de seingevings service (preview-versie)SignalR Service Owner (Preview)
Volledige toegang tot REST Api's van de Azure signalerings serviceFull access to Azure SignalR Service REST APIs
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. SignalRService/SignalR/hub/Send/ActionMicrosoft.SignalRService/SignalR/hub/send/action | Berichten broadcasten naar alle client verbindingen in hub.Broadcast messages to all client connections in hub. |
Micro soft. SignalRService/SignalR/Group/Send/ActionMicrosoft.SignalRService/SignalR/group/send/action | Broadcast bericht naar groep.Broadcast message to group. |
Micro soft. SignalRService/SignalR/Group/ReadMicrosoft.SignalRService/SignalR/group/read | Controleer of de groep bestaat of de gebruiker in de groep bestaat.Check group existence or user existence in group. |
Micro soft. SignalRService/SignalR/Group/writeMicrosoft.SignalRService/SignalR/group/write | Groep toevoegen/verlaten.Join / Leave group. |
Micro soft. SignalRService/SignalR/clientConnection/Send/ActionMicrosoft.SignalRService/SignalR/clientConnection/send/action | Verzend berichten rechtstreeks naar een client verbinding.Send messages directly to a client connection. |
Micro soft. SignalRService/SignalR/clientConnection/ReadMicrosoft.SignalRService/SignalR/clientConnection/read | Controleer de aanwezigheid van de client verbinding.Check client connection existence. |
Micro soft. SignalRService/SignalR/clientConnection/writeMicrosoft.SignalRService/SignalR/clientConnection/write | Sluit de client verbinding.Close client connection. |
Micro soft. SignalRService/SignalR/User/Send/ActionMicrosoft.SignalRService/SignalR/user/send/action | Berichten naar de gebruiker verzenden die kunnen bestaan uit meerdere client verbindingen.Send messages to user, who may consist of multiple client connections. |
Micro soft. SignalRService/SignalR/User/ReadMicrosoft.SignalRService/SignalR/user/read | Controleer de aanwezigheid van de gebruiker.Check user existence. |
Micro soft. SignalRService/SignalR/User/writeMicrosoft.SignalRService/SignalR/user/write | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Full access to Azure SignalR Service REST APIs",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7e4f1700-ea5a-4f59-8f37-079cfe29dce3",
"name": "7e4f1700-ea5a-4f59-8f37-079cfe29dce3",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.SignalRService/SignalR/hub/send/action",
"Microsoft.SignalRService/SignalR/group/send/action",
"Microsoft.SignalRService/SignalR/group/read",
"Microsoft.SignalRService/SignalR/group/write",
"Microsoft.SignalRService/SignalR/clientConnection/send/action",
"Microsoft.SignalRService/SignalR/clientConnection/read",
"Microsoft.SignalRService/SignalR/clientConnection/write",
"Microsoft.SignalRService/SignalR/user/send/action",
"Microsoft.SignalRService/SignalR/user/read",
"Microsoft.SignalRService/SignalR/user/write"
],
"notDataActions": []
}
],
"roleName": "SignalR Service Owner (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Signaal-service lezer (preview-versie)SignalR Service Reader (Preview)
Alleen-lezen toegang tot REST Api's van de Azure signalerings serviceRead-only access to Azure SignalR Service REST APIs
ActiesActions | BeschrijvingDescription |
---|---|
geennone | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. SignalRService/SignalR/Group/ReadMicrosoft.SignalRService/SignalR/group/read | Controleer of de groep bestaat of de gebruiker in de groep bestaat.Check group existence or user existence in group. |
Micro soft. SignalRService/SignalR/clientConnection/ReadMicrosoft.SignalRService/SignalR/clientConnection/read | Controleer de aanwezigheid van de client verbinding.Check client connection existence. |
Micro soft. SignalRService/SignalR/User/ReadMicrosoft.SignalRService/SignalR/user/read | Controleer de aanwezigheid van de gebruiker.Check user existence. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Read-only access to Azure SignalR Service REST APIs",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ddde6b66-c0df-4114-a159-3618637b3035",
"name": "ddde6b66-c0df-4114-a159-3618637b3035",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.SignalRService/SignalR/group/read",
"Microsoft.SignalRService/SignalR/clientConnection/read",
"Microsoft.SignalRService/SignalR/user/read"
],
"notDataActions": []
}
],
"roleName": "SignalR Service Reader (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor webabonnementenWeb Plan Contributor
Hiermee kunt u de Webabonnementen voor websites beheren, maar niet de toegang tot de abonnementen.Lets you manage the web plans for websites, but not access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Web/serverFarms/*Microsoft.Web/serverFarms/* | Server farms maken en beherenCreate and manage server farms |
Micro soft. Web-/hostingEnvironments/join/ActionMicrosoft.Web/hostingEnvironments/Join/Action | Voegt een App Service EnvironmentJoins an App Service Environment |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage the web plans for websites, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b",
"name": "2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Web/serverFarms/*",
"Microsoft.Web/hostingEnvironments/Join/Action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Web Plan Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Website bijdragerWebsite Contributor
Hiermee kunt u websites beheren (niet Webabonnementen), maar niet de toegang tot de sites.Lets you manage websites (not web plans), but not access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Insights/Components/*Microsoft.Insights/components/* | Insights-onderdelen maken en beherenCreate and manage Insights components |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Web/certificates/*Microsoft.Web/certificates/* | Website certificaten maken en beherenCreate and manage website certificates |
Micro soft. Web-/listSitesAssignedToHostName/ReadMicrosoft.Web/listSitesAssignedToHostName/read | Namen ophalen van sites die zijn toegewezen aan de hostnaam.Get names of sites assigned to hostname. |
Micro soft. Web-/serverFarms/join/ActionMicrosoft.Web/serverFarms/join/action | Een App Service-abonnement koppelenJoins an App Service Plan |
Micro soft. Web-/serverFarms/ReadMicrosoft.Web/serverFarms/read | De eigenschappen van een App Service plan ophalenGet the properties on an App Service Plan |
Micro soft. Web/sites/*Microsoft.Web/sites/* | Websites maken en beheren (voor het maken van sites is ook schrijf machtigingen vereist voor het bijbehorende App Service plan)Create and manage websites (site creation also requires write permissions to the associated App Service Plan) |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage websites (not web plans), but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/de139f84-1756-47ae-9be6-808fbbe84772",
"name": "de139f84-1756-47ae-9be6-808fbbe84772",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/components/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Web/certificates/*",
"Microsoft.Web/listSitesAssignedToHostName/read",
"Microsoft.Web/serverFarms/join/action",
"Microsoft.Web/serverFarms/read",
"Microsoft.Web/sites/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Website Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
ContainersContainers
AcrDeleteAcrDelete
meer informatie over ACR verwijderenacr delete Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/Artifacts/DeleteMicrosoft.ContainerRegistry/registries/artifacts/delete | Artefact verwijderen in container register.Delete artifact in a container registry. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr delete",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c2f4ef07-c644-48eb-af81-4b1b4947fb11",
"name": "c2f4ef07-c644-48eb-af81-4b1b4947fb11",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/artifacts/delete"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrDelete",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrImageSignerAcrImageSigner
ACR-installatie kopie-ondertekenaar meer informatieacr image signer Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/Sign/writeMicrosoft.ContainerRegistry/registries/sign/write | Meta gegevens van de vertrouwens relatie push/pull voor een container register.Push/Pull content trust metadata for a container registry. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr image signer",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/6cef56e8-d556-48e5-a04f-b8e64114680f",
"name": "6cef56e8-d556-48e5-a04f-b8e64114680f",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/sign/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrImageSigner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrPullAcrPull
ACR-pull meer informatieacr pull Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/pull/ReadMicrosoft.ContainerRegistry/registries/pull/read | Pull of ophalen van installatie kopieën uit een container register.Pull or Get images from a container registry. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr pull",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7f951dda-4ed3-4680-a7ca-43fe172d538d",
"name": "7f951dda-4ed3-4680-a7ca-43fe172d538d",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/pull/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrPull",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrPushAcrPush
ACR-push meer informatieacr push Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/pull/ReadMicrosoft.ContainerRegistry/registries/pull/read | Pull of ophalen van installatie kopieën uit een container register.Pull or Get images from a container registry. |
Micro soft. ContainerRegistry/registries/push/writeMicrosoft.ContainerRegistry/registries/push/write | Push of schrijf installatie kopieën naar een container register.Push or Write images to a container registry. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr push",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8311e382-0749-4cb8-b61a-304f252e45ec",
"name": "8311e382-0749-4cb8-b61a-304f252e45ec",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/pull/read",
"Microsoft.ContainerRegistry/registries/push/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrPush",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrQuarantineReaderAcrQuarantineReader
ACR quarantaine gegevens lezeracr quarantine data reader
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/Quarantine/ReadMicrosoft.ContainerRegistry/registries/quarantine/read | In quarantaine geplaatste installatie kopieën verzamelen of ophalen uit het container registerPull or Get quarantined images from container registry |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr quarantine data reader",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/cdda3590-29a3-44f6-95f2-9f980659eb04",
"name": "cdda3590-29a3-44f6-95f2-9f980659eb04",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/quarantine/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrQuarantineReader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrQuarantineWriterAcrQuarantineWriter
ACR quarantaine gegevens schrijveracr quarantine data writer
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ContainerRegistry/registries/Quarantine/ReadMicrosoft.ContainerRegistry/registries/quarantine/read | In quarantaine geplaatste installatie kopieën verzamelen of ophalen uit het container registerPull or Get quarantined images from container registry |
Micro soft. ContainerRegistry/registries/Quarantine/writeMicrosoft.ContainerRegistry/registries/quarantine/write | De quarantaine status van in quarantaine geplaatste installatie kopieën schrijven/wijzigenWrite/Modify quarantine state of quarantined images |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "acr quarantine data writer",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c8d4ff99-41c3-41a8-9f60-21dfdad59608",
"name": "c8d4ff99-41c3-41a8-9f60-21dfdad59608",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/quarantine/read",
"Microsoft.ContainerRegistry/registries/quarantine/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrQuarantineWriter",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Rol van Cluster beheerder voor Azure Kubernetes-serviceAzure Kubernetes Service Cluster Admin Role
Lijst met actie voor cluster beheer referenties.List cluster admin credential action. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. container service/managedClusters/listClusterAdminCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterAdminCredential/action | De clusterAdmin-referentie van een beheerd cluster weer gevenList the clusterAdmin credential of a managed cluster |
Micro soft. container service/managedClusters/accessProfiles/listCredential/ActionMicrosoft.ContainerService/managedClusters/accessProfiles/listCredential/action | Een beheerd cluster toegangs profiel verkrijgen met een rolnaam met behulp van de lijst referentieGet a managed cluster access profile by role name using list credential |
Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "List cluster admin credential action.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8",
"name": "0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/listClusterAdminCredential/action",
"Microsoft.ContainerService/managedClusters/accessProfiles/listCredential/action",
"Microsoft.ContainerService/managedClusters/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Cluster Admin Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gebruikersrol Azure Kubernetes service-clusterAzure Kubernetes Service Cluster User Role
Geef een lijst actie voor de gebruikers referenties van het cluster op.List cluster user credential action. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "List cluster user credential action.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4abbcc35-e782-43d8-92c5-2d3f1bd2253f",
"name": "4abbcc35-e782-43d8-92c5-2d3f1bd2253f",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action",
"Microsoft.ContainerService/managedClusters/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Cluster User Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Rol van de Azure Kubernetes service-bijdragerAzure Kubernetes Service Contributor Role
Hiermee wordt toegang verleend tot lees-en schrijf Service clusters van Azure Kubernetes meer informatieGrants access to read and write Azure Kubernetes Service clusters Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
Micro soft. container service/managedClusters/writeMicrosoft.ContainerService/managedClusters/write | Hiermee maakt u een nieuw beheerd cluster of wordt er een bestaande bijgewerktCreates a new managed cluster or updates an existing one |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants access to read and write Azure Kubernetes Service clusters",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8",
"name": "ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/read",
"Microsoft.ContainerService/managedClusters/write",
"Microsoft.Resources/deployments/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Contributor Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-beheerder voor Azure Kubernetes serviceAzure Kubernetes Service RBAC Admin
Hiermee kunt u alle resources beheren onder cluster/naam ruimte, behalve voor het bijwerken of verwijderen van resource quota's en naam ruimten.Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. container service/managedClusters/*Microsoft.ContainerService/managedClusters/* | |
NotDataActionsNotDataActions | |
Micro soft. container service/managedClusters/resourcequotas/writeMicrosoft.ContainerService/managedClusters/resourcequotas/write | Schrijft resourcequotasWrites resourcequotas |
Micro soft. container service/managedClusters/resourcequotas/DeleteMicrosoft.ContainerService/managedClusters/resourcequotas/delete | Hiermee worden resourcequotas verwijderdDeletes resourcequotas |
Micro soft. container service/managedClusters/namespaces/writeMicrosoft.ContainerService/managedClusters/namespaces/write | Schrijft naam ruimtenWrites namespaces |
Micro soft. container service/managedClusters/namespaces/DeleteMicrosoft.ContainerService/managedClusters/namespaces/delete | Verwijdert naam ruimtenDeletes namespaces |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/3498e952-d568-435e-9b2c-8d77e338d7f7",
"name": "3498e952-d568-435e-9b2c-8d77e338d7f7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*"
],
"notDataActions": [
"Microsoft.ContainerService/managedClusters/resourcequotas/write",
"Microsoft.ContainerService/managedClusters/resourcequotas/delete",
"Microsoft.ContainerService/managedClusters/namespaces/write",
"Microsoft.ContainerService/managedClusters/namespaces/delete"
]
}
],
"roleName": "Azure Kubernetes Service RBAC Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
De Azure Kubernetes service RBAC-cluster beheerderAzure Kubernetes Service RBAC Cluster Admin
Hiermee kunt u alle resources in het cluster beheren.Lets you manage all resources in the cluster. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. container service/managedClusters/*Microsoft.ContainerService/managedClusters/* | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage all resources in the cluster.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b",
"name": "b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*"
],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service RBAC Cluster Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-lezer van de Azure Kubernetes serviceAzure Kubernetes Service RBAC Reader
Hiermee staat u alleen-lezen toegang toe om de meeste objecten in een naam ruimte weer te geven.Allows read-only access to see most objects in a namespace. Het is niet toegestaan om weergave rollen of functie bindingen te bekijken.It does not allow viewing roles or role bindings. Deze rol staat geen weergave geheimen toe, omdat het lezen van de inhoud van geheimen toegang biedt tot ServiceAccount-referenties in de naam ruimte, waardoor API-toegang zou worden toegestaan als ServiceAccount in de naam ruimte (een vorm van bevoegdheden escalation).This role does not allow viewing Secrets, since reading the contents of Secrets enables access to ServiceAccount credentials in the namespace, which would allow API access as any ServiceAccount in the namespace (a form of privilege escalation). Als deze rol op het cluster bereik wordt toegepast, krijgt u toegang tot alle naam ruimten.Applying this role at cluster scope will give access across all namespaces. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. container service/managedClusters/apps/controllerrevisions/ReadMicrosoft.ContainerService/managedClusters/apps/controllerrevisions/read | Controllerrevisions lezenReads controllerrevisions |
Micro soft. container service/managedClusters/apps/daemonsets/ReadMicrosoft.ContainerService/managedClusters/apps/daemonsets/read | Daemonsets lezenReads daemonsets |
Micro soft. container service/managedClusters/apps/Deployments/ReadMicrosoft.ContainerService/managedClusters/apps/deployments/read | Leest implementatiesReads deployments |
Micro soft. container service/managedClusters/apps/replicasets/ReadMicrosoft.ContainerService/managedClusters/apps/replicasets/read | Replicasets lezenReads replicasets |
Micro soft. container service/managedClusters/apps/statefulsets/ReadMicrosoft.ContainerService/managedClusters/apps/statefulsets/read | Statefulsets lezenReads statefulsets |
Micro soft. container service/managedClusters/AutoScaling/horizontalpodautoscalers/ReadMicrosoft.ContainerService/managedClusters/autoscaling/horizontalpodautoscalers/read | Horizontalpodautoscalers lezenReads horizontalpodautoscalers |
Micro soft. container service/managedClusters/batch/cronjobs/ReadMicrosoft.ContainerService/managedClusters/batch/cronjobs/read | Cronjobs lezenReads cronjobs |
Micro soft. container service/managedClusters/batch/jobs/ReadMicrosoft.ContainerService/managedClusters/batch/jobs/read | Hiermee worden taken gelezenReads jobs |
Micro soft. container service/managedClusters/configmaps/ReadMicrosoft.ContainerService/managedClusters/configmaps/read | Configmaps lezenReads configmaps |
Micro soft. container service/managedClusters/endpoints/ReadMicrosoft.ContainerService/managedClusters/endpoints/read | Hiermee worden eind punten gelezenReads endpoints |
Micro soft. container service/managedClusters/Events.K8S.io/Events/ReadMicrosoft.ContainerService/managedClusters/events.k8s.io/events/read | Gebeurtenissen lezenReads events |
Micro soft. container service/managedClusters/Events/ReadMicrosoft.ContainerService/managedClusters/events/read | Gebeurtenissen lezenReads events |
Micro soft. container service/managedClusters/Extensions/daemonsets/ReadMicrosoft.ContainerService/managedClusters/extensions/daemonsets/read | Daemonsets lezenReads daemonsets |
Micro soft. container service/managedClusters/Extensions/Deployments/ReadMicrosoft.ContainerService/managedClusters/extensions/deployments/read | Leest implementatiesReads deployments |
Micro soft. container service/managedClusters/Extensions/ingresses/ReadMicrosoft.ContainerService/managedClusters/extensions/ingresses/read | Ingresses lezenReads ingresses |
Micro soft. container service/managedClusters/Extensions/networkpolicies/ReadMicrosoft.ContainerService/managedClusters/extensions/networkpolicies/read | Networkpolicies lezenReads networkpolicies |
Micro soft. container service/managedClusters/Extensions/replicasets/ReadMicrosoft.ContainerService/managedClusters/extensions/replicasets/read | Replicasets lezenReads replicasets |
Micro soft. container service/managedClusters/limitranges/ReadMicrosoft.ContainerService/managedClusters/limitranges/read | Limitranges lezenReads limitranges |
Micro soft. container service/managedClusters/namespaces/ReadMicrosoft.ContainerService/managedClusters/namespaces/read | Naam ruimten lezenReads namespaces |
Micro soft. container service/managedClusters/Networking.K8S.io/ingresses/ReadMicrosoft.ContainerService/managedClusters/networking.k8s.io/ingresses/read | Ingresses lezenReads ingresses |
Micro soft. container service/managedClusters/Networking.K8S.io/networkpolicies/ReadMicrosoft.ContainerService/managedClusters/networking.k8s.io/networkpolicies/read | Networkpolicies lezenReads networkpolicies |
Micro soft. container service/managedClusters/persistentvolumeclaims/ReadMicrosoft.ContainerService/managedClusters/persistentvolumeclaims/read | Persistentvolumeclaims lezenReads persistentvolumeclaims |
Micro soft. container service/managedClusters/pods/ReadMicrosoft.ContainerService/managedClusters/pods/read | Hiermee worden de peulen gelezenReads pods |
Micro soft. container service/managedClusters/Policy/poddisruptionbudgets/ReadMicrosoft.ContainerService/managedClusters/policy/poddisruptionbudgets/read | Poddisruptionbudgets lezenReads poddisruptionbudgets |
Micro soft. container service/managedClusters/replicationcontrollers/ReadMicrosoft.ContainerService/managedClusters/replicationcontrollers/read | Replicationcontrollers lezenReads replicationcontrollers |
Micro soft. container service/managedClusters/replicationcontrollers/ReadMicrosoft.ContainerService/managedClusters/replicationcontrollers/read | Replicationcontrollers lezenReads replicationcontrollers |
Micro soft. container service/managedClusters/resourcequotas/ReadMicrosoft.ContainerService/managedClusters/resourcequotas/read | Resourcequotas lezenReads resourcequotas |
Micro soft. container service/managedClusters/serviceaccounts/ReadMicrosoft.ContainerService/managedClusters/serviceaccounts/read | Serviceaccounts lezenReads serviceaccounts |
Micro soft. container service/managedClusters/Services/ReadMicrosoft.ContainerService/managedClusters/services/read | Services lezenReads services |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows read-only access to see most objects in a namespace. It does not allow viewing roles or role bindings. This role does not allow viewing Secrets, since reading the contents of Secrets enables access to ServiceAccount credentials in the namespace, which would allow API access as any ServiceAccount in the namespace (a form of privilege escalation). Applying this role at cluster scope will give access across all namespaces.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7f6c6a51-bcf8-42ba-9220-52d62157d7db",
"name": "7f6c6a51-bcf8-42ba-9220-52d62157d7db",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/apps/controllerrevisions/read",
"Microsoft.ContainerService/managedClusters/apps/daemonsets/read",
"Microsoft.ContainerService/managedClusters/apps/deployments/read",
"Microsoft.ContainerService/managedClusters/apps/replicasets/read",
"Microsoft.ContainerService/managedClusters/apps/statefulsets/read",
"Microsoft.ContainerService/managedClusters/autoscaling/horizontalpodautoscalers/read",
"Microsoft.ContainerService/managedClusters/batch/cronjobs/read",
"Microsoft.ContainerService/managedClusters/batch/jobs/read",
"Microsoft.ContainerService/managedClusters/configmaps/read",
"Microsoft.ContainerService/managedClusters/endpoints/read",
"Microsoft.ContainerService/managedClusters/events.k8s.io/events/read",
"Microsoft.ContainerService/managedClusters/events/read",
"Microsoft.ContainerService/managedClusters/extensions/daemonsets/read",
"Microsoft.ContainerService/managedClusters/extensions/deployments/read",
"Microsoft.ContainerService/managedClusters/extensions/ingresses/read",
"Microsoft.ContainerService/managedClusters/extensions/networkpolicies/read",
"Microsoft.ContainerService/managedClusters/extensions/replicasets/read",
"Microsoft.ContainerService/managedClusters/limitranges/read",
"Microsoft.ContainerService/managedClusters/namespaces/read",
"Microsoft.ContainerService/managedClusters/networking.k8s.io/ingresses/read",
"Microsoft.ContainerService/managedClusters/networking.k8s.io/networkpolicies/read",
"Microsoft.ContainerService/managedClusters/persistentvolumeclaims/read",
"Microsoft.ContainerService/managedClusters/pods/read",
"Microsoft.ContainerService/managedClusters/policy/poddisruptionbudgets/read",
"Microsoft.ContainerService/managedClusters/replicationcontrollers/read",
"Microsoft.ContainerService/managedClusters/replicationcontrollers/read",
"Microsoft.ContainerService/managedClusters/resourcequotas/read",
"Microsoft.ContainerService/managedClusters/serviceaccounts/read",
"Microsoft.ContainerService/managedClusters/services/read"
],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service RBAC Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-schrijver van Azure Kubernetes serviceAzure Kubernetes Service RBAC Writer
Hiermee wordt lees-/schrijftoegang tot de meeste objecten in een naam ruimte toegestaan. Deze rol staat het weer geven of wijzigen van rollen of rollen bindingen niet toe.Allows read/write access to most objects in a namespace.This role does not allow viewing or modifying roles or role bindings. Met deze rol kunt u echter wel toegang krijgen tot geheimen en een ServiceAccount uitvoeren in de naam ruimte, zodat het kan worden gebruikt om de API-toegangs niveaus van een wille keurige ServiceAccount in de naam ruimte te verkrijgen.However, this role allows accessing Secrets and running Pods as any ServiceAccount in the namespace, so it can be used to gain the API access levels of any ServiceAccount in the namespace. Als deze rol op het cluster bereik wordt toegepast, krijgt u toegang tot alle naam ruimten.Applying this role at cluster scope will give access across all namespaces. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. container service/managedClusters/apps/controllerrevisions/ReadMicrosoft.ContainerService/managedClusters/apps/controllerrevisions/read | Controllerrevisions lezenReads controllerrevisions |
Micro soft. container service/managedClusters/apps/daemonsets/*Microsoft.ContainerService/managedClusters/apps/daemonsets/* | |
Micro soft. container service/managedClusters/apps/Deployments/*Microsoft.ContainerService/managedClusters/apps/deployments/* | |
Micro soft. container service/managedClusters/apps/replicasets/*Microsoft.ContainerService/managedClusters/apps/replicasets/* | |
Micro soft. container service/managedClusters/apps/statefulsets/*Microsoft.ContainerService/managedClusters/apps/statefulsets/* | |
Micro soft. container service/managedClusters/AutoScaling/horizontalpodautoscalers/*Microsoft.ContainerService/managedClusters/autoscaling/horizontalpodautoscalers/* | |
Micro soft. container service/managedClusters/batch/cronjobs/*Microsoft.ContainerService/managedClusters/batch/cronjobs/* | |
Micro soft. container service/managedClusters/batch/jobs/*Microsoft.ContainerService/managedClusters/batch/jobs/* | |
Micro soft. container service/managedClusters/configmaps/*Microsoft.ContainerService/managedClusters/configmaps/* | |
Micro soft. container service/managedClusters/endpoints/*Microsoft.ContainerService/managedClusters/endpoints/* | |
Micro soft. container service/managedClusters/Events.K8S.io/Events/ReadMicrosoft.ContainerService/managedClusters/events.k8s.io/events/read | Gebeurtenissen lezenReads events |
Micro soft. container service/managedClusters/Events/ReadMicrosoft.ContainerService/managedClusters/events/read | Gebeurtenissen lezenReads events |
Micro soft. container service/managedClusters/Extensions/daemonsets/*Microsoft.ContainerService/managedClusters/extensions/daemonsets/* | |
Micro soft. container service/managedClusters/Extensions/Deployments/*Microsoft.ContainerService/managedClusters/extensions/deployments/* | |
Micro soft. container service/managedClusters/Extensions/ingresses/*Microsoft.ContainerService/managedClusters/extensions/ingresses/* | |
Micro soft. container service/managedClusters/Extensions/networkpolicies/*Microsoft.ContainerService/managedClusters/extensions/networkpolicies/* | |
Micro soft. container service/managedClusters/Extensions/replicasets/*Microsoft.ContainerService/managedClusters/extensions/replicasets/* | |
Micro soft. container service/managedClusters/limitranges/ReadMicrosoft.ContainerService/managedClusters/limitranges/read | Limitranges lezenReads limitranges |
Micro soft. container service/managedClusters/namespaces/ReadMicrosoft.ContainerService/managedClusters/namespaces/read | Naam ruimten lezenReads namespaces |
Micro soft. container service/managedClusters/Networking.K8S.io/ingresses/*Microsoft.ContainerService/managedClusters/networking.k8s.io/ingresses/* | |
Micro soft. container service/managedClusters/Networking.K8S.io/networkpolicies/*Microsoft.ContainerService/managedClusters/networking.k8s.io/networkpolicies/* | |
Micro soft. container service/managedClusters/persistentvolumeclaims/*Microsoft.ContainerService/managedClusters/persistentvolumeclaims/* | |
Micro soft. container service/managedClusters/pods/*Microsoft.ContainerService/managedClusters/pods/* | |
Micro soft. container service/managedClusters/Policy/poddisruptionbudgets/*Microsoft.ContainerService/managedClusters/policy/poddisruptionbudgets/* | |
Micro soft. container service/managedClusters/replicationcontrollers/*Microsoft.ContainerService/managedClusters/replicationcontrollers/* | |
Micro soft. container service/managedClusters/replicationcontrollers/*Microsoft.ContainerService/managedClusters/replicationcontrollers/* | |
Micro soft. container service/managedClusters/resourcequotas/ReadMicrosoft.ContainerService/managedClusters/resourcequotas/read | Resourcequotas lezenReads resourcequotas |
Micro soft. container service/managedClusters/Secrets/*Microsoft.ContainerService/managedClusters/secrets/* | |
Micro soft. container service/managedClusters/serviceaccounts/*Microsoft.ContainerService/managedClusters/serviceaccounts/* | |
Micro soft. container service/managedClusters/Services/*Microsoft.ContainerService/managedClusters/services/* | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows read/write access to most objects in a namespace.This role does not allow viewing or modifying roles or role bindings. However, this role allows accessing Secrets and running Pods as any ServiceAccount in the namespace, so it can be used to gain the API access levels of any ServiceAccount in the namespace. Applying this role at cluster scope will give access across all namespaces.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb",
"name": "a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/apps/controllerrevisions/read",
"Microsoft.ContainerService/managedClusters/apps/daemonsets/*",
"Microsoft.ContainerService/managedClusters/apps/deployments/*",
"Microsoft.ContainerService/managedClusters/apps/replicasets/*",
"Microsoft.ContainerService/managedClusters/apps/statefulsets/*",
"Microsoft.ContainerService/managedClusters/autoscaling/horizontalpodautoscalers/*",
"Microsoft.ContainerService/managedClusters/batch/cronjobs/*",
"Microsoft.ContainerService/managedClusters/batch/jobs/*",
"Microsoft.ContainerService/managedClusters/configmaps/*",
"Microsoft.ContainerService/managedClusters/endpoints/*",
"Microsoft.ContainerService/managedClusters/events.k8s.io/events/read",
"Microsoft.ContainerService/managedClusters/events/read",
"Microsoft.ContainerService/managedClusters/extensions/daemonsets/*",
"Microsoft.ContainerService/managedClusters/extensions/deployments/*",
"Microsoft.ContainerService/managedClusters/extensions/ingresses/*",
"Microsoft.ContainerService/managedClusters/extensions/networkpolicies/*",
"Microsoft.ContainerService/managedClusters/extensions/replicasets/*",
"Microsoft.ContainerService/managedClusters/limitranges/read",
"Microsoft.ContainerService/managedClusters/namespaces/read",
"Microsoft.ContainerService/managedClusters/networking.k8s.io/ingresses/*",
"Microsoft.ContainerService/managedClusters/networking.k8s.io/networkpolicies/*",
"Microsoft.ContainerService/managedClusters/persistentvolumeclaims/*",
"Microsoft.ContainerService/managedClusters/pods/*",
"Microsoft.ContainerService/managedClusters/policy/poddisruptionbudgets/*",
"Microsoft.ContainerService/managedClusters/replicationcontrollers/*",
"Microsoft.ContainerService/managedClusters/replicationcontrollers/*",
"Microsoft.ContainerService/managedClusters/resourcequotas/read",
"Microsoft.ContainerService/managedClusters/secrets/*",
"Microsoft.ContainerService/managedClusters/serviceaccounts/*",
"Microsoft.ContainerService/managedClusters/services/*"
],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service RBAC Writer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
DatabasesDatabases
Rol van Cosmos DB-account lezerCosmos DB Account Reader Role
Kan gegevens van Azure Cosmos DB-account lezen.Can read Azure Cosmos DB account data. Zie DocumentDB account Inzender voor het beheren van Azure Cosmos DB accounts.See DocumentDB Account Contributor for managing Azure Cosmos DB accounts. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Microsoft.DocumentDB/*/ReadMicrosoft.DocumentDB/*/read | Een verzameling lezenRead any collection |
Microsoft.DocumentDB/databaseAccounts/readonlykeys/ActionMicrosoft.DocumentDB/databaseAccounts/readonlykeys/action | Hiermee wordt de alleen-lezen sleutels van het database account gelezen.Reads the database account readonly keys. |
Micro soft. Insights/MetricDefinitions/ReadMicrosoft.Insights/MetricDefinitions/read | Metrische definities lezenRead metric definitions |
Micro soft. Insights/Metrics/ReadMicrosoft.Insights/Metrics/read | Metrische gegevens lezenRead metrics |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can read Azure Cosmos DB Accounts data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/fbdf93bf-df7d-467e-a4d2-9458aa1360c8",
"name": "fbdf93bf-df7d-467e-a4d2-9458aa1360c8",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DocumentDB/*/read",
"Microsoft.DocumentDB/databaseAccounts/readonlykeys/action",
"Microsoft.Insights/MetricDefinitions/read",
"Microsoft.Insights/Metrics/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cosmos DB Account Reader Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cosmos DB-operatorCosmos DB Operator
Hiermee kunt u Azure Cosmos DB accounts beheren, maar geen toegang tot gegevens.Lets you manage Azure Cosmos DB accounts, but not access data in them. Hiermee voor komt u toegang tot account sleutels en verbindings reeksen.Prevents access to account keys and connection strings. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Microsoft.DocumentDb/databaseAccounts/*Microsoft.DocumentDb/databaseAccounts/* | |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
NotActionsNotActions | |
Microsoft.DocumentDB/databaseAccounts/readonlyKeys/*Microsoft.DocumentDB/databaseAccounts/readonlyKeys/* | |
Microsoft.DocumentDB/databaseAccounts/regenerateKey/*Microsoft.DocumentDB/databaseAccounts/regenerateKey/* | |
Microsoft.DocumentDB/databaseAccounts/listKeys/*Microsoft.DocumentDB/databaseAccounts/listKeys/* | |
Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/*Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/* | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Azure Cosmos DB accounts, but not access data in them. Prevents access to account keys and connection strings.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/230815da-be43-4aae-9cb4-875f7bd000aa",
"name": "230815da-be43-4aae-9cb4-875f7bd000aa",
"permissions": [
{
"actions": [
"Microsoft.DocumentDb/databaseAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Authorization/*/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action"
],
"notActions": [
"Microsoft.DocumentDB/databaseAccounts/readonlyKeys/*",
"Microsoft.DocumentDB/databaseAccounts/regenerateKey/*",
"Microsoft.DocumentDB/databaseAccounts/listKeys/*",
"Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/*"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cosmos DB Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CosmosBackupOperatorCosmosBackupOperator
Kan een terugzet aanvraag indienen voor een Cosmos DB-Data Base of een container voor een account meer informatieCan submit restore request for a Cosmos DB database or a container for an account Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Microsoft.DocumentDB/databaseAccounts/backup/ActionMicrosoft.DocumentDB/databaseAccounts/backup/action | Een aanvraag indienen voor het configureren van de back-upSubmit a request to configure backup |
Microsoft.DocumentDB/databaseAccounts/Restore/ActionMicrosoft.DocumentDB/databaseAccounts/restore/action | Een herstel aanvraag verzendenSubmit a restore request |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can submit restore request for a Cosmos DB database or a container for an account",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/db7b14f2-5adf-42da-9f96-f2ee17bab5cb",
"name": "db7b14f2-5adf-42da-9f96-f2ee17bab5cb",
"permissions": [
{
"actions": [
"Microsoft.DocumentDB/databaseAccounts/backup/action",
"Microsoft.DocumentDB/databaseAccounts/restore/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CosmosBackupOperator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CosmosRestoreOperatorCosmosRestoreOperator
Kan de actie voor het herstellen van Cosmos DB database account met doorlopende back-upmodus uitvoerenCan perform restore action for Cosmos DB database account with continuous backup mode
ActiesActions | BeschrijvingDescription |
---|---|
Microsoft.DocumentDB/locations/restorableDatabaseAccounts/Restore/ActionMicrosoft.DocumentDB/locations/restorableDatabaseAccounts/restore/action | Een herstel aanvraag verzendenSubmit a restore request |
Microsoft.DocumentDB/locations/restorableDatabaseAccounts/*/ReadMicrosoft.DocumentDB/locations/restorableDatabaseAccounts/*/read | |
Microsoft.DocumentDB/locations/restorableDatabaseAccounts/ReadMicrosoft.DocumentDB/locations/restorableDatabaseAccounts/read | Een restorable data base-account lezen of alle restorable database accounts weer gevenRead a restorable database account or List all the restorable database accounts |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can perform restore action for Cosmos DB database account with continuous backup mode",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5432c526-bc82-444a-b7ba-57c5b0b5b34f",
"name": "5432c526-bc82-444a-b7ba-57c5b0b5b34f",
"permissions": [
{
"actions": [
"Microsoft.DocumentDB/locations/restorableDatabaseAccounts/restore/action",
"Microsoft.DocumentDB/locations/restorableDatabaseAccounts/*/read",
"Microsoft.DocumentDB/locations/restorableDatabaseAccounts/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CosmosRestoreOperator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor DocumentDB-accountsDocumentDB Account Contributor
Kan Azure Cosmos DB accounts beheren.Can manage Azure Cosmos DB accounts. Azure Cosmos DB is voorheen bekend als DocumentDB.Azure Cosmos DB is formerly known as DocumentDB. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Microsoft.DocumentDb/databaseAccounts/*Microsoft.DocumentDb/databaseAccounts/* | Azure Cosmos DB accounts maken en beherenCreate and manage Azure Cosmos DB accounts |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage DocumentDB accounts, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5bd9cd88-fe45-4216-938b-f97437e15450",
"name": "5bd9cd88-fe45-4216-938b-f97437e15450",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DocumentDb/databaseAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "DocumentDB Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Redis CacheRedis Cache Contributor
Hiermee kunt u redis-caches beheren, maar niet de toegang tot deze bestanden.Lets you manage Redis caches, but not access to them.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. cache/register/ActionMicrosoft.Cache/register/action | Hiermee wordt de resource provider micro soft. cache geregistreerd bij een abonnementRegisters the 'Microsoft.Cache' resource provider with a subscription |
Micro soft. cache/redis/*Microsoft.Cache/redis/* | Redis-caches maken en beherenCreate and manage Redis caches |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Redis caches, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/e0f68234-74aa-48ed-b826-c38b57376e17",
"name": "e0f68234-74aa-48ed-b826-c38b57376e17",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cache/register/action",
"Microsoft.Cache/redis/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Redis Cache Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor SQL-data baseSQL DB Contributor
Hiermee kunt u SQL-data bases beheren, maar niet de toegang tot ze.Lets you manage SQL databases, but not access to them. U kunt ook hun beveiligings beleid of de bovenliggende SQL-servers niet beheren.Also, you can't manage their security-related policies or their parent SQL servers. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
Micro soft. SQL/servers/databases/*Microsoft.Sql/servers/databases/* | SQL-databases maken en beherenCreate and manage SQL databases |
Micro soft. SQL/servers/ReadMicrosoft.Sql/servers/read | De lijst met servers retour neren of de eigenschappen voor de opgegeven server ophalen.Return the list of servers or gets the properties for the specified server. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
NotActionsNotActions | |
Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen bewerkenEdit audit settings |
Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Beleids regels voor gegevens maskering bewerkenEdit data masking policies |
Micro soft. SQL/servers/databases/extendedAuditingSettings/*Microsoft.Sql/servers/databases/extendedAuditingSettings/* | |
Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beveiligings waarschuwingen beleid bewerkenEdit security alert policies |
Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische beveiligings gegevens bewerkenEdit security metrics |
Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL databases, but not access to them. Also, you can't manage their security-related policies or their parent SQL servers.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/9b7fa17d-e63e-47b0-bb0a-15c516ac86ec",
"name": "9b7fa17d-e63e-47b0-bb0a-15c516ac86ec",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/servers/databases/*",
"Microsoft.Sql/servers/read",
"Microsoft.Support/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/*",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL DB Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor SQL Managed instanceSQL Managed Instance Contributor
Hiermee beheert u beheerde SQL-instanties en de vereiste netwerk configuratie, maar kunt u geen toegang verlenen aan anderen.Lets you manage SQL Managed Instances and required network configuration, but can't give access to others.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. Network/networkSecurityGroups/*Microsoft.Network/networkSecurityGroups/* | |
Micro soft. Network/routeTables/*Microsoft.Network/routeTables/* | |
Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
Micro soft. SQL/locations/instanceFailoverGroups/*Microsoft.Sql/locations/instanceFailoverGroups/* | |
Micro soft. SQL/managedInstances/*Microsoft.Sql/managedInstances/* | |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Network/virtualNetworks/subnets/*Microsoft.Network/virtualNetworks/subnets/* | |
Micro soft. Network/virtualNetworks/*Microsoft.Network/virtualNetworks/* | |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
NotActionsNotActions | |
Micro soft. SQL/managedInstances/azureADOnlyAuthentications/DeleteMicrosoft.Sql/managedInstances/azureADOnlyAuthentications/delete | Hiermee verwijdert u een specifieke beheerde server Azure Active Directory alleen een verificatie objectDeletes a specific managed server Azure Active Directory only authentication object |
Micro soft. SQL/managedInstances/azureADOnlyAuthentications/writeMicrosoft.Sql/managedInstances/azureADOnlyAuthentications/write | Hiermee wordt een specifieke beheerde server toegevoegd of bijgewerkt Azure Active Directory alleen een verificatie objectAdds or updates a specific managed server Azure Active Directory only authentication object |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL Managed Instances and required network configuration, but can't give access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"name": "4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"permissions": [
{
"actions": [
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Network/networkSecurityGroups/*",
"Microsoft.Network/routeTables/*",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/locations/instanceFailoverGroups/*",
"Microsoft.Sql/managedInstances/*",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/*",
"Microsoft.Network/virtualNetworks/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/delete",
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Managed Instance Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
SQL-beveiligingsbeheerderSQL Security Manager
Hiermee kunt u het beveiligings beleid van SQL-servers en-data bases beheren, maar niet de toegang tot de services.Lets you manage the security-related policies of SQL servers and databases, but not access to them. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. SQL/locations/administratorAzureAsyncOperation/ReadMicrosoft.Sql/locations/administratorAzureAsyncOperation/read | Hiermee wordt het beheerde exemplaar van Azure async Administrator-bewerkingen opgehaald.Gets the Managed instance azure async administrator operations result. |
Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/databases/transparentDataEncryption/*Microsoft.Sql/managedInstances/databases/transparentDataEncryption/* | |
Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/auditingSettings/*Microsoft.Sql/servers/auditingSettings/* | SQL Server-controle-instelling maken en beherenCreate and manage SQL server auditing setting |
Micro soft. SQL/servers/extendedAuditingSettings/ReadMicrosoft.Sql/servers/extendedAuditingSettings/read | Details ophalen van het uitgebreide-server-BLOB-controle beleid dat op een bepaalde server is geconfigureerdRetrieve details of the extended server blob auditing policy configured on a given server |
Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen voor SQL Server-Data Base maken en beherenCreate and manage SQL server database auditing settings |
Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Gegevens maskerings beleid voor SQL server-data bases maken en beherenCreate and manage SQL server database data masking policies |
Micro soft. SQL/servers/databases/extendedAuditingSettings/ReadMicrosoft.Sql/servers/databases/extendedAuditingSettings/read | Details ophalen van het uitgebreide BLOB-controle beleid dat is geconfigureerd voor een bepaalde data baseRetrieve details of the extended blob auditing policy configured on a given database |
Micro soft. SQL/servers/databases/ReadMicrosoft.Sql/servers/databases/read | De lijst met data bases retour neren of de eigenschappen voor de opgegeven Data Base ophalen.Return the list of databases or gets the properties for the specified database. |
Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/servers/databases/schemas/ReadMicrosoft.Sql/servers/databases/schemas/read | Een database schema ophalen.Get a database schema. |
Micro soft. SQL/servers/databases/schemas/Tables/columns/ReadMicrosoft.Sql/servers/databases/schemas/tables/columns/read | Een database kolom ophalen.Get a database column. |
Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/schemas/Tables/ReadMicrosoft.Sql/servers/databases/schemas/tables/read | Een database tabel ophalen.Get a database table. |
Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beveiligings waarschuwingen beleid voor SQL Server-Data Base maken en beherenCreate and manage SQL server database security alert policies |
Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische gegevens over beveiliging voor SQL Server-Data Base maken en beherenCreate and manage SQL server database security metrics |
Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/transparentDataEncryption/*Microsoft.Sql/servers/databases/transparentDataEncryption/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
Micro soft. SQL/servers/firewallRules/*Microsoft.Sql/servers/firewallRules/* | |
Micro soft. SQL/servers/ReadMicrosoft.Sql/servers/read | De lijst met servers retour neren of de eigenschappen voor de opgegeven server ophalen.Return the list of servers or gets the properties for the specified server. |
Micro soft. SQL/servers/securityAlertPolicies/*Microsoft.Sql/servers/securityAlertPolicies/* | Beveiligings waarschuwingen voor SQL Server maken en beherenCreate and manage SQL server security alert policies |
Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. SQL/servers/azureADOnlyAuthentications/*Microsoft.Sql/servers/azureADOnlyAuthentications/* | |
Micro soft. SQL/managedInstances/ReadMicrosoft.Sql/managedInstances/read | De lijst met beheerde exemplaren retour neren of de eigenschappen van het opgegeven beheerde exemplaar ophalen.Return the list of managed instances or gets the properties for the specified managed instance. |
Micro soft. SQL/managedInstances/azureADOnlyAuthentications/*Microsoft.Sql/managedInstances/azureADOnlyAuthentications/* | |
Micro soft. Security/sqlVulnerabilityAssessments/*Microsoft.Security/sqlVulnerabilityAssessments/* | |
Micro soft. SQL/managedInstances/Administrators/ReadMicrosoft.Sql/managedInstances/administrators/read | Hiermee wordt een lijst met beheerders van beheerde instanties opgehaald.Gets a list of managed instance administrators. |
Micro soft. SQL/servers/Administrators/ReadMicrosoft.Sql/servers/administrators/read | Hiermee wordt een specifiek Azure Active Directory-beheer object opgehaaldGets a specific Azure Active Directory administrator object |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage the security-related policies of SQL servers and databases, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/056cd41c-7e88-42e1-933e-88ba6a50c9c3",
"name": "056cd41c-7e88-42e1-933e-88ba6a50c9c3",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/administratorAzureAsyncOperation/read",
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/transparentDataEncryption/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/auditingSettings/*",
"Microsoft.Sql/servers/extendedAuditingSettings/read",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/read",
"Microsoft.Sql/servers/databases/read",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/read",
"Microsoft.Sql/servers/databases/schemas/tables/columns/read",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/read",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/transparentDataEncryption/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/firewallRules/*",
"Microsoft.Sql/servers/read",
"Microsoft.Sql/servers/securityAlertPolicies/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*",
"Microsoft.Support/*",
"Microsoft.Sql/servers/azureADOnlyAuthentications/*",
"Microsoft.Sql/managedInstances/read",
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/*",
"Microsoft.Security/sqlVulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/administrators/read",
"Microsoft.Sql/servers/administrators/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Security Manager",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender SQL ServerSQL Server Contributor
Hiermee kunt u SQL-servers en-data bases beheren, maar niet de toegang tot ze en niet het beveiligings beleid.Lets you manage SQL servers and databases, but not access to them, and not their security-related policies. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
Micro soft. SQL/servers/*Microsoft.Sql/servers/* | SQL-servers maken en beherenCreate and manage SQL servers |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
NotActionsNotActions | |
Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/auditingSettings/*Microsoft.Sql/servers/auditingSettings/* | SQL Server-controle-instellingen bewerkenEdit SQL server auditing settings |
Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen voor SQL Server-Data Base bewerkenEdit SQL server database auditing settings |
Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Beleids regels voor gegevens maskering van SQL Server-Data Base bewerkenEdit SQL server database data masking policies |
Micro soft. SQL/servers/databases/extendedAuditingSettings/*Microsoft.Sql/servers/databases/extendedAuditingSettings/* | |
Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beleid voor beveiligings waarschuwingen van SQL Server-Data Base bewerkenEdit SQL server database security alert policies |
Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische gegevens van beveiliging voor SQL Server-Data Base bewerkenEdit SQL server database security metrics |
Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
Micro soft. SQL/servers/extendedAuditingSettings/*Microsoft.Sql/servers/extendedAuditingSettings/* | |
Micro soft. SQL/servers/securityAlertPolicies/*Microsoft.Sql/servers/securityAlertPolicies/* | Beveiligings waarschuwingen voor SQL server bewerkenEdit SQL server security alert policies |
Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
Micro soft. SQL/servers/azureADOnlyAuthentications/DeleteMicrosoft.Sql/servers/azureADOnlyAuthentications/delete | Hiermee verwijdert u een specifieke server Azure Active Directory alleen een verificatie objectDeletes a specific server Azure Active Directory only authentication object |
Micro soft. SQL/servers/azureADOnlyAuthentications/writeMicrosoft.Sql/servers/azureADOnlyAuthentications/write | Hiermee wordt een specifieke server toegevoegd of bijgewerkt Azure Active Directory alleen een verificatie objectAdds or updates a specific server Azure Active Directory only authentication object |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL servers and databases, but not access to them, and not their security -related policies.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/6d8ee4ec-f05a-4a1d-8b00-a9b17e38b437",
"name": "6d8ee4ec-f05a-4a1d-8b00-a9b17e38b437",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/servers/*",
"Microsoft.Support/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/*",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/extendedAuditingSettings/*",
"Microsoft.Sql/servers/securityAlertPolicies/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/azureADOnlyAuthentications/delete",
"Microsoft.Sql/servers/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Server Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AnalyseAnalytics
Eigenaar van Azure Event Hubs-gegevensAzure Event Hubs Data Owner
Hiermee krijgt u volledige toegang tot Azure Event Hubs-resources.Allows for full access to Azure Event Hubs resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. EventHub/*Microsoft.EventHub/* | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. EventHub/*Microsoft.EventHub/* | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for full access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/f526a384-b230-433a-b45c-95f59c4a2dec",
"name": "f526a384-b230-433a-b45c-95f59c4a2dec",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens ontvanger van Azure Event HubsAzure Event Hubs Data Receiver
Hiermee krijgt u toegang tot Azure Event Hubs-resources.Allows receive access to Azure Event Hubs resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. EventHub/*/eventhubs/consumergroups/ReadMicrosoft.EventHub/*/eventhubs/consumergroups/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. EventHub/*/receive/ActionMicrosoft.EventHub/*/receive/action | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows receive access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a638d3c7-ab3a-418d-83e6-5f17a39d4fde",
"name": "a638d3c7-ab3a-418d-83e6-5f17a39d4fde",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*/eventhubs/consumergroups/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*/receive/action"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Receiver",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Afzender van Azure Event Hubs gegevensAzure Event Hubs Data Sender
Hiermee wordt toegang tot Azure Event Hubs-resources verzonden.Allows send access to Azure Event Hubs resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. EventHub/*/eventhubs/ReadMicrosoft.EventHub/*/eventhubs/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. EventHub/*/Send/ActionMicrosoft.EventHub/*/send/action | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows send access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2b629674-e913-4c01-ae53-ef4638d8f975",
"name": "2b629674-e913-4c01-ae53-ef4638d8f975",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*/eventhubs/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*/send/action"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Sender",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Data FactoryData Factory Contributor
Het maken en beheren van gegevens fabrieken, evenals onderliggende resources.Create and manage data factories, as well as child resources within them. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. DataFactory/dataFactories/*Microsoft.DataFactory/dataFactories/* | Maak en beheer gegevens fabrieken en onderliggende resources hierin.Create and manage data factories, and child resources within them. |
Micro soft. DataFactory/factories/*Microsoft.DataFactory/factories/* | Maak en beheer gegevens fabrieken en onderliggende resources hierin.Create and manage data factories, and child resources within them. |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
Micro soft. EventGrid/eventSubscriptions/writeMicrosoft.EventGrid/eventSubscriptions/write | Een eventSubscription maken of bijwerkenCreate or update an eventSubscription |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Create and manage data factories, as well as child resources within them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5",
"name": "673868aa-7521-48a0-acc6-0f60742d39f5",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DataFactory/dataFactories/*",
"Microsoft.DataFactory/factories/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.EventGrid/eventSubscriptions/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Factory Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens opschonerData Purger
Kan analyse gegevens opschonen meer informatieCan purge analytics data Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Insights/Components/*/ReadMicrosoft.Insights/components/*/read | |
Micro soft. Insights/Components/purge/ActionMicrosoft.Insights/components/purge/action | Gegevens uit Application Insights verwijderenPurging data from Application Insights |
Micro soft. OperationalInsights/Workspaces/*/ReadMicrosoft.OperationalInsights/workspaces/*/read | Log Analytics-gegevens weer gevenView log analytics data |
Micro soft. OperationalInsights/Workspaces/purge/ActionMicrosoft.OperationalInsights/workspaces/purge/action | Opgegeven gegevens uit de werk ruimte verwijderenDelete specified data from workspace |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can purge analytics data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/150f5e0c-0603-4f03-8c7f-cf70034c4e90",
"name": "150f5e0c-0603-4f03-8c7f-cf70034c4e90",
"permissions": [
{
"actions": [
"Microsoft.Insights/components/*/read",
"Microsoft.Insights/components/purge/action",
"Microsoft.OperationalInsights/workspaces/*/read",
"Microsoft.OperationalInsights/workspaces/purge/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Purger",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
HDInsight-cluster operatorHDInsight Cluster Operator
Hiermee kunt u HDInsight-cluster configuraties lezen en wijzigen.Lets you read and modify HDInsight cluster configurations. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. HDInsight/*/ReadMicrosoft.HDInsight/*/read | |
Micro soft. HDInsight/clusters/getGatewaySettings/ActionMicrosoft.HDInsight/clusters/getGatewaySettings/action | Gateway-instellingen voor HDInsight-cluster ophalenGet gateway settings for HDInsight Cluster |
Micro soft. HDInsight/clusters/updateGatewaySettings/ActionMicrosoft.HDInsight/clusters/updateGatewaySettings/action | Gateway-instellingen voor HDInsight-cluster bijwerkenUpdate gateway settings for HDInsight Cluster |
Micro soft. HDInsight/clusters/configurations/*Microsoft.HDInsight/clusters/configurations/* | |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. resources/Deployments/Operations/ReadMicrosoft.Resources/deployments/operations/read | Hiermee worden implementatie bewerkingen opgehaald of weer gegeven.Gets or lists deployment operations. |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you read and modify HDInsight cluster configurations.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/61ed4efc-fab3-44fd-b111-e24485cc132a",
"name": "61ed4efc-fab3-44fd-b111-e24485cc132a",
"permissions": [
{
"actions": [
"Microsoft.HDInsight/*/read",
"Microsoft.HDInsight/clusters/getGatewaySettings/action",
"Microsoft.HDInsight/clusters/updateGatewaySettings/action",
"Microsoft.HDInsight/clusters/configurations/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Authorization/*/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "HDInsight Cluster Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor HDInsight Domain ServicesHDInsight Domain Services Contributor
Kan benodigde bewerkingen voor domein services lezen, maken, wijzigen en verwijderen die nodig zijn voor HDInsight Enterprise Security Package meer informatieCan Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Aad/*/ReadMicrosoft.AAD/*/read | |
Micro soft. Aad/domainServices/*/ReadMicrosoft.AAD/domainServices/*/read | |
Micro soft. Aad/domainServices/oucontainer/*Microsoft.AAD/domainServices/oucontainer/* | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Can Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8d8d5a11-05d3-4bda-a417-a08778121c7c",
"name": "8d8d5a11-05d3-4bda-a417-a08778121c7c",
"permissions": [
{
"actions": [
"Microsoft.AAD/*/read",
"Microsoft.AAD/domainServices/*/read",
"Microsoft.AAD/domainServices/oucontainer/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "HDInsight Domain Services Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender van Log AnalyticsLog Analytics Contributor
Log Analytics Inzender kan alle bewakings gegevens lezen en controle-instellingen bewerken.Log Analytics Contributor can read all monitoring data and edit monitoring settings. Het bewerken van bewakings instellingen omvat het toevoegen van de VM-extensie aan Vm's; lezen van opslag account sleutels om het verzamelen van logboeken van Azure Storage te kunnen configureren. Automation-accounts maken en configureren; oplossingen toevoegen; en het configureren van Azure Diagnostics voor alle Azure-resources.Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
*/read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
Micro soft. Automation/automationAccounts/*Microsoft.Automation/automationAccounts/* | |
Micro soft. ClassicCompute/virtualMachines/Extensions/*Microsoft.ClassicCompute/virtualMachines/extensions/* | |
Micro soft. ClassicStorage/storageAccounts/listKeys/ActionMicrosoft.ClassicStorage/storageAccounts/listKeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
Micro soft. Compute/virtualMachines/Extensions/*Microsoft.Compute/virtualMachines/extensions/* | |
Micro soft. HybridCompute/machines/Extensions/writeMicrosoft.HybridCompute/machines/extensions/write | Hiermee wordt een Azure-Arc-extensie geïnstalleerd of bijgewerktInstalls or Updates an Azure Arc extensions |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
Micro soft. OperationalInsights/*Microsoft.OperationalInsights/* | |
Micro soft. OperationsManagement/*Microsoft.OperationsManagement/* | |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Subscriptions/ResourceGroups/Deployments/*Microsoft.Resources/subscriptions/resourcegroups/deployments/* | |
Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Log Analytics Contributor can read all monitoring data and edit monitoring settings. Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/92aaf0da-9dab-42b6-94a3-d43ce8d16293",
"name": "92aaf0da-9dab-42b6-94a3-d43ce8d16293",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.Automation/automationAccounts/*",
"Microsoft.ClassicCompute/virtualMachines/extensions/*",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.Compute/virtualMachines/extensions/*",
"Microsoft.HybridCompute/machines/extensions/write",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.OperationalInsights/*",
"Microsoft.OperationsManagement/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Log Analytics Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer van Log AnalyticsLog Analytics Reader
Log Analytics Reader kan alle bewakings gegevens weer geven en doorzoeken en controle-instellingen weer geven, inclusief het weer geven van de configuratie van Azure Diagnostics op alle Azure-resources.Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
*/read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
Micro soft. OperationalInsights/Workspaces/Analytics/query/ActionMicrosoft.OperationalInsights/workspaces/analytics/query/action | Zoek met een nieuwe engine.Search using new engine. |
Micro soft. OperationalInsights/Workspaces/Search/ActionMicrosoft.OperationalInsights/workspaces/search/action | Hiermee wordt een zoek query uitgevoerdExecutes a search query |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
Micro soft. OperationalInsights/Workspaces/sharedKeys/ReadMicrosoft.OperationalInsights/workspaces/sharedKeys/read | Hiermee worden de gedeelde sleutels voor de werk ruimte opgehaald.Retrieves the shared keys for the workspace. Deze sleutels worden gebruikt om micro soft Operational Insights-agents te verbinden met de werk ruimte.These keys are used to connect Microsoft Operational Insights agents to the workspace. |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/73c42c96-874c-492b-b04d-ab87d138a893",
"name": "73c42c96-874c-492b-b04d-ab87d138a893",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.OperationalInsights/workspaces/analytics/query/action",
"Microsoft.OperationalInsights/workspaces/search/action",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.OperationalInsights/workspaces/sharedKeys/read"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Log Analytics Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Controle sfeer liggen data curatorPurview Data Curator
Met de micro soft. controle sfeer liggen data curator kunnen catalogus gegevensobjecten worden gemaakt, gelezen, gewijzigd en verwijderd en worden relaties tussen objecten tot stand gebracht.The Microsoft.Purview data curator can create, read, modify and delete catalog data objects and establish relationships between objects. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. controle sfeer liggen/accounts/ReadMicrosoft.Purview/accounts/read | Lees de account resource voor de micro soft controle sfeer liggen-provider.Read account resource for Microsoft Purview provider. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. controle sfeer liggen/accounts/data/readMicrosoft.Purview/accounts/data/read | Gegevens objecten lezen.Read data objects. |
Micro soft. controle sfeer liggen/accounts/data/writeMicrosoft.Purview/accounts/data/write | Gegevens objecten maken, bijwerken en verwijderen.Create, update and delete data objects. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "The Microsoft.Purview data curator can create, read, modify and delete catalog data objects and establish relationships between objects. This role is in preview and subject to change.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8a3c2885-9b38-4fd2-9d99-91af537c1347",
"name": "8a3c2885-9b38-4fd2-9d99-91af537c1347",
"permissions": [
{
"actions": [
"Microsoft.Purview/accounts/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Purview/accounts/data/read",
"Microsoft.Purview/accounts/data/write"
],
"notDataActions": []
}
],
"roleName": "Purview Data Curator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer controle sfeer liggenPurview Data Reader
De gegevens lezer van micro soft. controle sfeer liggen kan catalogus gegevensobjecten lezen.The Microsoft.Purview data reader can read catalog data objects. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. controle sfeer liggen/accounts/ReadMicrosoft.Purview/accounts/read | Lees de account resource voor de micro soft controle sfeer liggen-provider.Read account resource for Microsoft Purview provider. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. controle sfeer liggen/accounts/data/readMicrosoft.Purview/accounts/data/read | Gegevens objecten lezen.Read data objects. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "The Microsoft.Purview data reader can read catalog data objects. This role is in preview and subject to change.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ff100721-1b9d-43d8-af52-42b69c1272db",
"name": "ff100721-1b9d-43d8-af52-42b69c1272db",
"permissions": [
{
"actions": [
"Microsoft.Purview/accounts/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Purview/accounts/data/read"
],
"notDataActions": []
}
],
"roleName": "Purview Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Controle sfeer liggen-gegevens bron beheerderPurview Data Source Administrator
De gegevens bron beheerder van micro soft. controle sfeer liggen kan gegevens bronnen en gegevens scans beheren.The Microsoft.Purview data source administrator can manage data sources and data scans. Deze functie is beschikbaar als preview-versie en kan worden gewijzigd.This role is in preview and subject to change.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. controle sfeer liggen/accounts/ReadMicrosoft.Purview/accounts/read | Lees de account resource voor de micro soft controle sfeer liggen-provider.Read account resource for Microsoft Purview provider. |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. controle sfeer liggen/accounts/scan/ReadMicrosoft.Purview/accounts/scan/read | Lees gegevens bronnen en scans.Read data sources and scans. |
Micro soft. controle sfeer liggen/accounts/scan/writeMicrosoft.Purview/accounts/scan/write | Gegevens bronnen maken, bijwerken en verwijderen en scans beheren.Create, update and delete data sources and manage scans. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "The Microsoft.Purview data source administrator can manage data sources and data scans. This role is in preview and subject to change.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/200bba9e-f0c8-430f-892b-6f0794863803",
"name": "200bba9e-f0c8-430f-892b-6f0794863803",
"permissions": [
{
"actions": [
"Microsoft.Purview/accounts/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Purview/accounts/scan/read",
"Microsoft.Purview/accounts/scan/write"
],
"notDataActions": []
}
],
"roleName": "Purview Data Source Administrator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender van schemaregisters (preview)Schema Registry Contributor (Preview)
Schemaregistergroepen en schema's lezen, schrijven en verwijderen.Read, write, and delete Schema Registry groups and schemas.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. EventHub/namespaces/schemagroups/*Microsoft.EventHub/namespaces/schemagroups/* | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. EventHub/namespaces/schemas/*Microsoft.EventHub/namespaces/schemas/* | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Read, write, and delete Schema Registry groups and schemas.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5dffeca3-4936-4216-b2bc-10343a5abb25",
"name": "5dffeca3-4936-4216-b2bc-10343a5abb25",
"permissions": [
{
"actions": [
"Microsoft.EventHub/namespaces/schemagroups/*"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/namespaces/schemas/*"
],
"notDataActions": []
}
],
"roleName": "Schema Registry Contributor (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer van schemaregisters (preview)Schema Registry Reader (Preview)
Schemaregistergroepen en schema's lezen en weergeven.Read and list Schema Registry groups and schemas.
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. EventHub/namespaces/schemagroups/ReadMicrosoft.EventHub/namespaces/schemagroups/read | Lijst met SchemaGroup-resource beschrijvingen ophalenGet list of SchemaGroup Resource Descriptions |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. EventHub/namespaces/schemas/ReadMicrosoft.EventHub/namespaces/schemas/read | Schema's ophalenRetrieve schemas |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Read and list Schema Registry groups and schemas.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2c56ea50-c6b3-40a6-83c0-9d98858bc7d2",
"name": "2c56ea50-c6b3-40a6-83c0-9d98858bc7d2",
"permissions": [
{
"actions": [
"Microsoft.EventHub/namespaces/schemagroups/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/namespaces/schemas/read"
],
"notDataActions": []
}
],
"roleName": "Schema Registry Reader (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
BlockchainBlockchain
Toegang tot Block Chain-leden knooppunt (preview-versie)Blockchain Member Node Access (Preview)
Hiermee krijgt u toegang tot de Block Chain-leden knooppunten meer informatieAllows for access to Blockchain Member nodes Learn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Block Chain/blockchainMembers/transactionNodes/ReadMicrosoft.Blockchain/blockchainMembers/transactionNodes/read | Hiermee wordt een lijst met bestaande Block Chain-leden transactie knooppunten opgehaald of weer gegeven.Gets or Lists existing Blockchain Member Transaction Node(s). |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. Block Chain/blockchainMembers/transactionNodes/Connect/ActionMicrosoft.Blockchain/blockchainMembers/transactionNodes/connect/action | Maakt verbinding met een trans actie-knoop punt van het block Chain-lid.Connects to a Blockchain Member Transaction Node. |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for access to Blockchain Member nodes",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/31a002a1-acaf-453e-8a5b-297c9ca1ea24",
"name": "31a002a1-acaf-453e-8a5b-297c9ca1ea24",
"permissions": [
{
"actions": [
"Microsoft.Blockchain/blockchainMembers/transactionNodes/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Blockchain/blockchainMembers/transactionNodes/connect/action"
],
"notDataActions": []
}
],
"roleName": "Blockchain Member Node Access (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AI en machine learningAI + machine learning
Inzender Cognitive ServicesCognitive Services Contributor
Hiermee kunt u sleutels van Cognitive Services maken, lezen, bijwerken, verwijderen en beheren.Lets you create, read, update, delete and manage keys of Cognitive Services. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
Micro soft. CognitiveServices/*Microsoft.CognitiveServices/* | |
Micro soft. features/features/ReadMicrosoft.Features/features/read | Hiermee haalt u de functies van een abonnement op.Gets the features of a subscription. |
Micro soft. features/providers/features/ReadMicrosoft.Features/providers/features/read | Hiermee wordt de functie van een abonnement in een bepaalde resource provider opgehaald.Gets the feature of a subscription in a given resource provider. |
Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
Micro soft. Insights/logDefinitions/ReadMicrosoft.Insights/logDefinitions/read | Logboek definities lezenRead log definitions |
Micro soft. Insights/metricdefinitions/ReadMicrosoft.Insights/metricdefinitions/read | Metrische definities lezenRead metric definitions |
Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
Micro soft. resources/Deployments/Operations/ReadMicrosoft.Resources/deployments/operations/read | Hiermee worden implementatie bewerkingen opgehaald of weer gegeven.Gets or lists deployment operations. |
Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
Micro soft. resources/Subscriptions/ResourceGroups/Deployments/*Microsoft.Resources/subscriptions/resourcegroups/deployments/* | |
Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
geennone | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you create, read, update, delete and manage keys of Cognitive Services.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"name": "25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.CognitiveServices/*",
"Microsoft.Features/features/read",
"Microsoft.Features/providers/features/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.Insights/logDefinitions/read",
"Microsoft.Insights/metricdefinitions/read",
"Microsoft.Insights/metrics/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cognitive Services Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cognitive Services Custom Vision InzenderCognitive Services Custom Vision Contributor
Volledige toegang tot het project, inclusief de mogelijkheid om projecten weer te geven, te maken, te bewerken of te verwijderen.Full access to the project, including the ability to view, create, edit, or delete projects. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/*Microsoft.CognitiveServices/accounts/CustomVision/* | |
NotDataActionsNotDataActions | |
geennone |
{
"assignableScopes": [
"/"
],
"description": "Full access to the project, including the ability to view, create, edit, or delete projects.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
"name": "c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Custom Vision Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Implementatie van Cognitive Services Custom VisionCognitive Services Custom Vision Deployment
Modellen publiceren, publicatie ongedaan maken of exporteren.Publish, unpublish or export models. Implementatie kan het project weer geven, maar kan het niet bijwerken.Deployment can view the project but can't update. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/*/ReadMicrosoft.CognitiveServices/accounts/CustomVision/*/read | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/Predictions/*Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/iterations/Publish/*Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/iterations/export/*Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/QuickTest/*Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/* | |
Micro soft. CognitiveServices/accounts/CustomVision/classify/*Microsoft.CognitiveServices/accounts/CustomVision/classify/* | |
Micro soft. CognitiveServices/accounts/CustomVision/detect/*Microsoft.CognitiveServices/accounts/CustomVision/detect/* | |
NotDataActionsNotDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/export/ReadMicrosoft.CognitiveServices/accounts/CustomVision/projects/export/read | Hiermee exporteert u een project.Exports a project. |
{
"assignableScopes": [
"/"
],
"description": "Publish, unpublish or export models. Deployment can view the project but can't update.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5c4089e1-6d96-4d2f-b296-c1bc7137275f",
"name": "5c4089e1-6d96-4d2f-b296-c1bc7137275f",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*/read",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/*",
"Microsoft.CognitiveServices/accounts/CustomVision/classify/*",
"Microsoft.CognitiveServices/accounts/CustomVision/detect/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Deployment",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cognitive Services Custom Vision LabelerCognitive Services Custom Vision Labeler
Bekijk, trainings afbeeldingen bewerken en de afbeeldings Tags maken, toevoegen, verwijderen of verwijderen.View, edit training images and create, add, remove, or delete the image tags. Labelers kunnen het project weer geven, maar kunnen andere niet bijwerken dan trainingen en tags.Labelers can view the project but can't update anything other than training images and tags. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/*/ReadMicrosoft.CognitiveServices/accounts/CustomVision/*/read | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/Predictions/query/ActionMicrosoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action | Down load installatie kopieën die naar uw Voorspellings eindpunt zijn verzonden.Get images that were sent to your prediction endpoint. |
Micro soft. CognitiveServices/accounts/CustomVision/projects/images/*Microsoft.CognitiveServices/accounts/CustomVision/projects/images/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/Tags/*Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/images/suggested/*Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/* | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/tagsandregions/Suggestions/ActionMicrosoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action | Met deze API worden voorgestelde Tags en regio's voor een matrix/batch met niet-gecodeerde installatie kopieën en vertrouwens elementen voor de Tags opgehaald.This API will get suggested tags and regions for an array/batch of untagged images along with confidences for the tags. Er wordt een lege matrix geretourneerd als er geen tags worden gevonden.It returns an empty array if no tags are found. |
NotDataActionsNotDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/export/ReadMicrosoft.CognitiveServices/accounts/CustomVision/projects/export/read | Hiermee exporteert u een project.Exports a project. |
{
"assignableScopes": [
"/"
],
"description": "View, edit training images and create, add, remove, or delete the image tags. Labelers can view the project but can't update anything other than training images and tags.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/88424f51-ebe7-446f-bc41-7fa16989e96c",
"name": "88424f51-ebe7-446f-bc41-7fa16989e96c",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*/read",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/images/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Labeler",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Custom Vision lezer Cognitive ServicesCognitive Services Custom Vision Reader
Alleen-lezen acties in het project.Read-only actions in the project. Lezers kunnen het project niet maken of bijwerken.Readers can't create or update the project. Meer informatieLearn more
ActiesActions | BeschrijvingDescription |
---|---|
Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
NotActionsNotActions | |
geennone | |
DataActionsDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/*/ReadMicrosoft.CognitiveServices/accounts/CustomVision/*/read | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/Predictions/query/ActionMicrosoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action | Down load installatie kopieën die naar uw Voorspellings eindpunt zijn verzonden.Get images that were sent to your prediction endpoint. |
NotDataActionsNotDataActions | |
Micro soft. CognitiveServices/accounts/CustomVision/projects/export/ReadMicrosoft.CognitiveServices/accounts/CustomVision/projects/export/read | Hiermee exporteert u |