Ingebouwde Azure-rollenAzure built-in roles
- 124 minuten om te lezen
Toegangs beheer op basis van rollen (Azure RBAC) van Azure heeft verschillende ingebouwde rollen van Azure die u kunt toewijzen aan gebruikers, groepen, service-principals en beheerde identiteiten.Azure role-based access control (Azure RBAC) has several Azure built-in roles that you can assign to users, groups, service principals, and managed identities. Roltoewijzingen zijn de manier waarop u de toegang tot Azure-resources beheert.Role assignments are the way you control access to Azure resources. Als de ingebouwde rollen niet voldoen aan de specifieke behoeften van uw organisatie, kunt u uw eigen aangepaste Azure-rollen maken.If the built-in roles don't meet the specific needs of your organization, you can create your own Azure custom roles.
Dit artikel bevat een overzicht van de ingebouwde rollen van Azure, die altijd in ontwikkeling zijn.This article lists the Azure built-in roles, which are always evolving. Gebruik de lijst met Get-AzRoleDefinition of AZ Role definitionom de nieuwste rollen op te halen.To get the latest roles, use Get-AzRoleDefinition or az role definition list. Als u op zoek bent naar beheerders rollen voor Azure Active Directory (Azure AD), raadpleegt u machtigingen voor beheerdersrol in azure Active Directory.If you are looking for administrator roles for Azure Active Directory (Azure AD), see Administrator role permissions in Azure Active Directory.
De volgende tabel bevat een korte beschrijving en de unieke ID van elke ingebouwde rol.The following table provides a brief description and the unique ID of each built-in role. Klik op de naam van de rol om de lijst met Actions ,, NotActions DataActions en NotDataActions voor elke rol weer te geven.Click the role name to see the list of Actions, NotActions, DataActions, and NotDataActions for each role. Zie begrippen van Azure-functies begrijpenvoor informatie over wat deze acties betekenen en hoe deze van toepassing zijn op het beheer-en gegevens abonnement.For information about what these actions mean and how they apply to the management and data planes, see Understand Azure role definitions.
AllesAll
| Ingebouwde rolBuilt-in role | BeschrijvingDescription | IdID |
|---|---|---|
| AlgemeenGeneral | ||
| InzenderContributor | Hiermee wordt volledige toegang verleend voor het beheren van alle resources, maar u kunt geen rollen toewijzen in azure RBAC.Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC. | b24988ac-6180-42a0-ab88-20f7382dd24cb24988ac-6180-42a0-ab88-20f7382dd24c |
| EigenaarOwner | Hiermee wordt volledige toegang verleend voor het beheren van alle resources, inclusief de mogelijkheid om rollen toe te wijzen in azure RBAC.Grants full access to manage all resources, including the ability to assign roles in Azure RBAC. | 8e3af657-a8ff-443c-a75c-2fe8c4bcb6358e3af657-a8ff-443c-a75c-2fe8c4bcb635 |
| LezerReader | Bekijk alle resources, maar u kunt geen wijzigingen aanbrengen.View all resources, but does not allow you to make any changes. | acdd72a7-3385-48ef-bd42-f606fba81ae7acdd72a7-3385-48ef-bd42-f606fba81ae7 |
| Beheerder van gebruikerstoegangUser Access Administrator | Hiermee beheert u de gebruikers toegang tot Azure-resources.Lets you manage user access to Azure resources. | 18d7d88d-d35e-4fb5-a5c3-7773c20a72d918d7d88d-d35e-4fb5-a5c3-7773c20a72d9 |
| ComputeCompute | ||
| Inzender voor klassieke virtuele machinesClassic Virtual Machine Contributor | Hiermee beheert u klassieke virtuele machines, maar kunt u niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to. | d73bb868-a0df-4d4d-bd69-98a00b01fccbd73bb868-a0df-4d4d-bd69-98a00b01fccb |
| Aanmelding voor de beheerder van de virtuele machineVirtual Machine Administrator Login | Virtual Machines in de portal weer geven en u aanmelden als beheerderView Virtual Machines in the portal and login as administrator | 1c0163c0-47e6-4577-8991-ea5c82e286e41c0163c0-47e6-4577-8991-ea5c82e286e4 |
| Inzender voor virtuele machinesVirtual Machine Contributor | Met kunt u virtuele machines beheren, maar niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to. | 9980e02c-c2be-4d73-94e8-173b1dc7cf3c9980e02c-c2be-4d73-94e8-173b1dc7cf3c |
| Gebruikers aanmelding voor de virtuele machineVirtual Machine User Login | Bekijk Virtual Machines in de portal en meld u aan als een gewone gebruiker.View Virtual Machines in the portal and login as a regular user. | fb879df8-f326-4884-b1cf-06f3ad86be52fb879df8-f326-4884-b1cf-06f3ad86be52 |
| NetwerkenNetworking | ||
| Inzender voor CDN-eind puntenCDN Endpoint Contributor | Kan CDN-eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN endpoints, but can't grant access to other users. | 426e0c7f-0c7e-4658-b36f-ff54d6c29b45426e0c7f-0c7e-4658-b36f-ff54d6c29b45 |
| CDN-eindpunt lezerCDN Endpoint Reader | Kan CDN-eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN endpoints, but can't make changes. | 871e35f6-b5c1-49cc-a043-bde969a0f2cd871e35f6-b5c1-49cc-a043-bde969a0f2cd |
| Inzender voor CDN-profielCDN Profile Contributor | Kan CDN-profielen en de bijbehorende eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN profiles and their endpoints, but can't grant access to other users. | ec156ff8-a8d1-4d15-830c-5b80698ca432ec156ff8-a8d1-4d15-830c-5b80698ca432 |
| CDN-profiel lezerCDN Profile Reader | Kan CDN-profielen en de bijbehorende eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN profiles and their endpoints, but can't make changes. | 8f96442b-4075-438f-813d-ad51ab4019af8f96442b-4075-438f-813d-ad51ab4019af |
| Inzender voor klassieke netwerkenClassic Network Contributor | Hiermee beheert u klassieke netwerken, maar hebt u geen toegang tot de netwerk bestanden.Lets you manage classic networks, but not access to them. | b34d265f-36f7-4a0d-a4d4-e158ca92e90fb34d265f-36f7-4a0d-a4d4-e158ca92e90f |
| Inzender DNS-zoneDNS Zone Contributor | Met kunt u DNS-zones en-record sets beheren in Azure DNS, maar kunt u niet bepalen wie toegang heeft tot de groepen.Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them. | befefa01-2a29-4197-83a8-272ff33ce314befefa01-2a29-4197-83a8-272ff33ce314 |
| Inzender voor netwerkenNetwork Contributor | Hiermee kunt u netwerken beheren, maar niet de toegang tot de netwerk bestanden.Lets you manage networks, but not access to them. | 4d97b98b-1d4f-4787-a291-c67834d212e74d97b98b-1d4f-4787-a291-c67834d212e7 |
| Inzender voor Privé-DNS-zonePrivate DNS Zone Contributor | Hiermee kunt u privé-DNS-zone bronnen beheren, maar niet de virtuele netwerken waaraan ze zijn gekoppeld.Lets you manage private DNS zone resources, but not the virtual networks they are linked to. | b12aa53e-6015-4669-85d0-8515ebb3ae7fb12aa53e-6015-4669-85d0-8515ebb3ae7f |
| Inzender Traffic ManagerTraffic Manager Contributor | Hiermee beheert u Traffic Manager profielen, maar kunt u niet bepalen wie er toegang tot heeft.Lets you manage Traffic Manager profiles, but does not let you control who has access to them. | a4b10055-b0c7-44c2-b00f-c7b5b3550cf7a4b10055-b0c7-44c2-b00f-c7b5b3550cf7 |
| StorageStorage | ||
| AVERE-bijdragerAvere Contributor | Kan een avere vFXT-cluster maken en beheren.Can create and manage an Avere vFXT cluster. | 4f8fab4f-1852-4a58-a46a-8eaf358af14a4f8fab4f-1852-4a58-a46a-8eaf358af14a |
| AVERE-operatorAvere Operator | Wordt gebruikt door het avere vFXT-cluster voor het beheren van het clusterUsed by the Avere vFXT cluster to manage the cluster | c025889f-8102-4ebf-b32c-fc0c6f0c6bd9c025889f-8102-4ebf-b32c-fc0c6f0c6bd9 |
| Back-upinzenderBackup Contributor | Hiermee kunt u de back-upservice beheren, maar geen kluizen maken en anderen toegang verlenenLets you manage backup service, but can't create vaults and give access to others | 5e467623-bb1f-42f4-a55d-6e525e11384b5e467623-bb1f-42f4-a55d-6e525e11384b |
| Back-upoperatorBackup Operator | Hiermee kunt u back-upservices beheren, behalve het verwijderen van back-ups, het maken van een kluis en het verlenen van toegangLets you manage backup services, except removal of backup, vault creation and giving access to others | 00c29273-979b-4161-815c-10b084fb932400c29273-979b-4161-815c-10b084fb9324 |
| Back-uplezerBackup Reader | Kan back-upservices weer geven, maar kan geen wijzigingen aanbrengenCan view backup services, but can't make changes | a795c7a0-d4a2-40c1-ae25-d81f01202912a795c7a0-d4a2-40c1-ae25-d81f01202912 |
| Inzender voor klassieke opslag accountsClassic Storage Account Contributor | Hiermee kunt u klassieke opslag accounts beheren, maar niet de toegang tot de account.Lets you manage classic storage accounts, but not access to them. | 86e8f5dc-a6e9-4c67-9d15-de283e8eac2586e8f5dc-a6e9-4c67-9d15-de283e8eac25 |
| Service functie voor de sleutel operator voor klassieke opslag accountsClassic Storage Account Key Operator Service Role | De sleutel operators voor klassieke opslag accounts zijn toegestaan om sleutels weer te geven en opnieuw te genereren voor klassieke opslag.Classic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts | 985d6b00-f706-48f5-a6fe-d0ca12fb668d985d6b00-f706-48f5-a6fe-d0ca12fb668d |
| Inzender Data BoxData Box Contributor | Hiermee kunt u alles beheren onder Data Box Service, behalve dat anderen toegang verlenen.Lets you manage everything under Data Box Service except giving access to others. | add466c9-e687-43fc-8d98-dfcf8d720be5add466c9-e687-43fc-8d98-dfcf8d720be5 |
| Data Box lezerData Box Reader | Met kunt u de Data Box-Service beheren, met uitzonde ring van order gegevens maken of bewerken en anderen toegang verlenen.Lets you manage Data Box Service except creating order or editing order details and giving access to others. | 028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027 |
| Data Lake Analytics-ontwikkelaarData Lake Analytics Developer | Hiermee kunt u uw eigen taken verzenden, bewaken en beheren, maar geen Data Lake Analytics accounts maken of verwijderen.Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts. | 47b7735b-770E-4598-A7DA-8b91488b4c8847b7735b-770e-4598-a7da-8b91488b4c88 |
| Lezer en gegevens toegangReader and Data Access | Hiermee kunt u alles weer geven, maar kunt u geen opslag account of opgenomen resource verwijderen of maken.Lets you view everything but will not let you delete or create a storage account or contained resource. Ook wordt lees-/schrijftoegang tot alle gegevens in een opslag account toegestaan via toegang tot de sleutel van het opslag account.It will also allow read/write access to all data contained in a storage account via access to storage account keys. | c12c1c16-33a1-487b-954d-41c89c60f349c12c1c16-33a1-487b-954d-41c89c60f349 |
| Inzender voor opslagaccountsStorage Account Contributor | Hiermee staat u het beheer van opslag accounts toe.Permits management of storage accounts. Biedt toegang tot de account sleutel, die kan worden gebruikt om toegang te krijgen tot gegevens via een gedeelde sleutel autorisatie.Provides access to the account key, which can be used to access data via Shared Key authorization. | 17d1049b-9a84-46fb-8f53-869881c3d3ab17d1049b-9a84-46fb-8f53-869881c3d3ab |
| Functie Service-sleutel operator van opslag accountStorage Account Key Operator Service Role | Kan de toegangs sleutels voor het opslag account weer geven en opnieuw genereren.Permits listing and regenerating storage account access keys. | 81a9662b-bebf-436f-a333-f67b29880f1281a9662b-bebf-436f-a333-f67b29880f12 |
| Inzender voor Storage Blob-gegevensStorage Blob Data Contributor | Azure Storage containers en blobs lezen, schrijven en verwijderen.Read, write, and delete Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | ba92f5b4-2d11-453d-a403-e96b0029c9feba92f5b4-2d11-453d-a403-e96b0029c9fe |
| Eigenaar van opslagblobgegevensStorage Blob Data Owner | Biedt volledige toegang tot Azure Storage BLOB-containers en-gegevens, met inbegrip van het toewijzen van POSIX-toegangs beheer.Provides full access to Azure Storage blob containers and data, including assigning POSIX access control. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | b7e6dc6d-f1e8-4753-8033-0f276bb0955bb7e6dc6d-f1e8-4753-8033-0f276bb0955b |
| Lezer voor opslagblobgegevensStorage Blob Data Reader | Azure Storage containers en blobs lezen en weer geven.Read and list Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 2a2b9908-6ea1-4ae2-8e65-a410df84e7d12a2b9908-6ea1-4ae2-8e65-a410df84e7d1 |
| Delegering van opslag-BLOBStorage Blob Delegator | Een sleutel voor gebruikers overdracht ophalen, die vervolgens kan worden gebruikt om een gedeelde toegangs handtekening te maken voor een container of BLOB die is ondertekend met Azure AD-referenties.Get a user delegation key, which can then be used to create a shared access signature for a container or blob that is signed with Azure AD credentials. Zie een gebruiker delegering Sa's makenvoor meer informatie.For more information, see Create a user delegation SAS. | db58b8e5-c6ad-4a2a-8342-4190687cbf4adb58b8e5-c6ad-4a2a-8342-4190687cbf4a |
| Inzender voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Contributor | Hiermee wordt lees-, schrijf-en verwijder toegang voor bestanden/mappen in azure-bestands shares toegestaan.Allows for read, write, and delete access on files/directories in Azure file shares. Deze rol heeft geen ingebouwd equivalent op Windows-bestands servers.This role has no built-in equivalent on Windows file servers. | 0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb |
| Inzender met verhoogde bevoegdheden voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Elevated Contributor | Hiermee kunt u Acl's voor lezen, schrijven, verwijderen en wijzigen van bestanden/mappen in azure-bestands shares.Allows for read, write, delete, and modify ACLs on files/directories in Azure file shares. Deze rol is gelijk aan een ACL van de bestands share die moet worden gewijzigd op Windows-bestands servers.This role is equivalent to a file share ACL of change on Windows file servers. | a7264617-510b-434b-a828-9731dc254ea7a7264617-510b-434b-a828-9731dc254ea7 |
| Lezer voor opslagbestandgegevens via SMB-shareStorage File Data SMB Share Reader | Hiermee staat u lees toegang toe voor bestanden/mappen in azure-bestands shares.Allows for read access on files/directories in Azure file shares. Deze rol is gelijk aan een ACL voor bestands shares van lezen op Windows-bestands servers.This role is equivalent to a file share ACL of read on Windows file servers. | aba4ae5f-2193-4029-9191-0cb91df5e314aba4ae5f-2193-4029-9191-0cb91df5e314 |
| Inzender voor opslag wachtrij gegevensStorage Queue Data Contributor | Lees-, schrijf-en verwijder Azure Storage-wacht rijen en-wachtrij berichten.Read, write, and delete Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 974c5e8b-45b9-4653-ba55-5f855dd0fb88974c5e8b-45b9-4653-ba55-5f855dd0fb88 |
| Processor voor gegevens berichten van de opslag wachtrijStorage Queue Data Message Processor | Een bericht uit een Azure Storage wachtrij bekijken, ophalen en verwijderen.Peek, retrieve, and delete a message from an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 8a0f0c08-91a1-4084-bc3d-661d67233fed8a0f0c08-91a1-4084-bc3d-661d67233fed |
| Afzender gegevens bericht van opslag wachtrijStorage Queue Data Message Sender | Berichten toevoegen aan een Azure Storage wachtrij.Add messages to an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | c6a89b2d-59bc-44d0-9896-0f6e12d7b80ac6a89b2d-59bc-44d0-9896-0f6e12d7b80a |
| Gegevens lezer van de opslag wachtrijStorage Queue Data Reader | Azure Storage-wacht rijen en-wachtrij berichten lezen en weer geven.Read and list Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. | 19e7f393-937e-4f77-808e-94535e29792519e7f393-937e-4f77-808e-94535e297925 |
| WebWeb | ||
| Gegevens lezer Azure MapsAzure Maps Data Reader | Hiermee wordt toegang verleend om gerelateerde gegevens te lezen vanuit een Azure Maps-account.Grants access to read map related data from an Azure maps account. | 423170ca-a8f6-4b0f-8487-9e4eb8f49bfa423170ca-a8f6-4b0f-8487-9e4eb8f49bfa |
| Inzender Search ServiceSearch Service Contributor | Hiermee kunt u zoek services beheren, maar niet de toegang tot ze.Lets you manage Search services, but not access to them. | 7ca78c08-252a-4471-8644-bb5ff32d4ba07ca78c08-252a-4471-8644-bb5ff32d4ba0 |
| Inzender voor webabonnementenWeb Plan Contributor | Hiermee kunt u de Webabonnementen voor websites beheren, maar niet de toegang tot de abonnementen.Lets you manage the web plans for websites, but not access to them. | 2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b |
| Website bijdragerWebsite Contributor | Hiermee kunt u websites beheren (niet Webabonnementen), maar niet de toegang tot de sites.Lets you manage websites (not web plans), but not access to them. | de139f84-1756-47ae-9be6-808fbbe84772de139f84-1756-47ae-9be6-808fbbe84772 |
| ContainersContainers | ||
| AcrDeleteAcrDelete | ACR verwijderenacr delete | c2f4ef07-c644-48eb-af81-4b1b4947fb11c2f4ef07-c644-48eb-af81-4b1b4947fb11 |
| AcrImageSignerAcrImageSigner | ACR-installatie kopie ondertekenaaracr image signer | 6cef56e8-d556-48e5-a04f-b8e64114680f6cef56e8-d556-48e5-a04f-b8e64114680f |
| AcrPullAcrPull | ACR pullacr pull | 7f951dda-4ed3-4680-a7ca-43fe172d538d7f951dda-4ed3-4680-a7ca-43fe172d538d |
| AcrPushAcrPush | ACR-pushacr push | 8311e382-0749-4cb8-b61a-304f252e45ec8311e382-0749-4cb8-b61a-304f252e45ec |
| AcrQuarantineReaderAcrQuarantineReader | ACR quarantaine gegevens lezeracr quarantine data reader | cdda3590-29a3-44f6-95f2-9f980659eb04cdda3590-29a3-44f6-95f2-9f980659eb04 |
| AcrQuarantineWriterAcrQuarantineWriter | ACR quarantaine gegevens schrijveracr quarantine data writer | c8d4ff99-41c3-41a8-9f60-21dfdad59608c8d4ff99-41c3-41a8-9f60-21dfdad59608 |
| Rol van Cluster beheerder voor Azure Kubernetes-serviceAzure Kubernetes Service Cluster Admin Role | Lijst met actie voor cluster beheer referenties.List cluster admin credential action. | 0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be80ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8 |
| Gebruikersrol Azure Kubernetes service-clusterAzure Kubernetes Service Cluster User Role | Geef een lijst actie voor de gebruikers referenties van het cluster op.List cluster user credential action. | 4abbcc35-e782-43d8-92c5-2d3f1bd2253f4abbcc35-e782-43d8-92c5-2d3f1bd2253f |
| Rol van de Azure Kubernetes service-bijdragerAzure Kubernetes Service Contributor Role | Hiermee wordt toegang verleend voor het lezen en schrijven van Azure Kubernetes Service-clustersGrants access to read and write Azure Kubernetes Service clusters | ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8 |
| RBAC-beheerder voor Azure Kubernetes serviceAzure Kubernetes Service RBAC Admin | Hiermee kunt u alle resources beheren onder cluster/naam ruimte, behalve voor het bijwerken of verwijderen van resource quota's en naam ruimten.Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces. | 3498e952-d568-435e-9b2c-8d77e338d7f73498e952-d568-435e-9b2c-8d77e338d7f7 |
| De Azure Kubernetes service RBAC-cluster beheerderAzure Kubernetes Service RBAC Cluster Admin | Hiermee kunt u alle resources in het cluster beheren.Lets you manage all resources in the cluster. | b1ff04bb-8a4e-4dc4-8eb5-8693973ce19bb1ff04bb-8a4e-4dc4-8eb5-8693973ce19b |
| RBAC-lezer van de Azure Kubernetes serviceAzure Kubernetes Service RBAC Reader | Hiermee kunt u alle resources in het cluster of de naam ruimte weer geven, behalve geheimen.Lets you view all resources in cluster/namespace, except secrets. | 7f6c6a51-bcf8-42ba-9220-52d62157d7db7f6c6a51-bcf8-42ba-9220-52d62157d7db |
| RBAC-schrijver van Azure Kubernetes serviceAzure Kubernetes Service RBAC Writer | Hiermee kunt u alles in cluster/naam ruimte bijwerken, met uitzonde ring van resource quota's, naam ruimten, Pod-beveiligings beleid, aanvragen voor certificaat ondertekening, (cluster) rollen en (cluster) rollen bindingen.Lets you update everything in cluster/namespace, except resource quotas, namespaces, pod security policies, certificate signing requests, (cluster)roles and (cluster)role bindings. | a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eba7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb |
| DatabasesDatabases | ||
| Rol van Cosmos DB-account lezerCosmos DB Account Reader Role | Kan gegevens van Azure Cosmos DB-account lezen.Can read Azure Cosmos DB account data. Zie DocumentDB account Inzender voor het beheren van Azure Cosmos DB accounts.See DocumentDB Account Contributor for managing Azure Cosmos DB accounts. | fbdf93bf-df7d-467e-a4d2-9458aa1360c8fbdf93bf-df7d-467e-a4d2-9458aa1360c8 |
| Cosmos DB-operatorCosmos DB Operator | Hiermee kunt u Azure Cosmos DB accounts beheren, maar geen toegang tot gegevens.Lets you manage Azure Cosmos DB accounts, but not access data in them. Hiermee voor komt u toegang tot account sleutels en verbindings reeksen.Prevents access to account keys and connection strings. | 230815da-be43-4aae-9cb4-875f7bd000aa230815da-be43-4aae-9cb4-875f7bd000aa |
| CosmosBackupOperatorCosmosBackupOperator | Kan een terugzet aanvraag indienen voor een Cosmos DB-Data Base of een container voor een accountCan submit restore request for a Cosmos DB database or a container for an account | db7b14f2-5adf-42da-9f96-f2ee17bab5cbdb7b14f2-5adf-42da-9f96-f2ee17bab5cb |
| Inzender voor DocumentDB-accountsDocumentDB Account Contributor | Kan Azure Cosmos DB accounts beheren.Can manage Azure Cosmos DB accounts. Azure Cosmos DB is voorheen bekend als DocumentDB.Azure Cosmos DB is formerly known as DocumentDB. | 5bd9cd88-fe45-4216-938b-f97437e154505bd9cd88-fe45-4216-938b-f97437e15450 |
| Inzender Redis CacheRedis Cache Contributor | Hiermee kunt u redis-caches beheren, maar niet de toegang tot deze bestanden.Lets you manage Redis caches, but not access to them. | e0f68234-74aa-48ed-b826-c38b57376e17e0f68234-74aa-48ed-b826-c38b57376e17 |
| Inzender voor SQL-data baseSQL DB Contributor | Hiermee kunt u SQL-data bases beheren, maar niet de toegang tot ze.Lets you manage SQL databases, but not access to them. U kunt ook hun beveiligings beleid of de bovenliggende SQL-servers niet beheren.Also, you can't manage their security-related policies or their parent SQL servers. | 9b7fa17d-e63e-47b0-bb0a-15c516ac86ec9b7fa17d-e63e-47b0-bb0a-15c516ac86ec |
| Inzender voor SQL Managed instanceSQL Managed Instance Contributor | Hiermee beheert u beheerde SQL-instanties en de vereiste netwerk configuratie, maar kunt u geen toegang verlenen aan anderen.Lets you manage SQL Managed Instances and required network configuration, but can't give access to others. | 4939a1f6-9ae0-4e48-a1e0-f2cbe897382d4939a1f6-9ae0-4e48-a1e0-f2cbe897382d |
| SQL-beveiligingsbeheerderSQL Security Manager | Hiermee kunt u het beveiligings beleid van SQL-servers en-data bases beheren, maar niet de toegang tot de services.Lets you manage the security-related policies of SQL servers and databases, but not access to them. | 056cd41c-7e88-42e1-933e-88ba6a50c9c3056cd41c-7e88-42e1-933e-88ba6a50c9c3 |
| Inzender SQL ServerSQL Server Contributor | Hiermee kunt u SQL-servers en-data bases beheren, maar niet de toegang tot ze en niet het beveiligings beleid.Lets you manage SQL servers and databases, but not access to them, and not their security-related policies. | 6d8ee4ec-f05a-4a1d-8b00-a9b17e38b4376d8ee4ec-f05a-4a1d-8b00-a9b17e38b437 |
| AnalyseAnalytics | ||
| Eigenaar van Azure Event Hubs-gegevensAzure Event Hubs Data Owner | Hiermee krijgt u volledige toegang tot Azure Event Hubs-resources.Allows for full access to Azure Event Hubs resources. | f526a384-b230-433a-b45c-95f59c4a2decf526a384-b230-433a-b45c-95f59c4a2dec |
| Gegevens ontvanger van Azure Event HubsAzure Event Hubs Data Receiver | Hiermee krijgt u toegang tot Azure Event Hubs-resources.Allows receive access to Azure Event Hubs resources. | a638d3c7-ab3a-418d-83e6-5f17a39d4fdea638d3c7-ab3a-418d-83e6-5f17a39d4fde |
| Afzender van Azure Event Hubs gegevensAzure Event Hubs Data Sender | Hiermee wordt toegang tot Azure Event Hubs-resources verzonden.Allows send access to Azure Event Hubs resources. | 2b629674-e913-4c01-ae53-ef4638d8f9752b629674-e913-4c01-ae53-ef4638d8f975 |
| Inzender Data FactoryData Factory Contributor | Het maken en beheren van gegevens fabrieken, evenals onderliggende resources.Create and manage data factories, as well as child resources within them. | 673868aa-7521-48a0-acc6-0f60742d39f5673868aa-7521-48a0-acc6-0f60742d39f5 |
| Gegevens opschonerData Purger | Kan Analytics-gegevens verwijderenCan purge analytics data | 150f5e0c-0603-4f03-8c7f-cf70034c4e90150f5e0c-0603-4f03-8c7f-cf70034c4e90 |
| HDInsight-cluster operatorHDInsight Cluster Operator | Hiermee kunt u HDInsight-cluster configuraties lezen en wijzigen.Lets you read and modify HDInsight cluster configurations. | 61ed4efc-fab3-44fd-b111-e24485cc132a61ed4efc-fab3-44fd-b111-e24485cc132a |
| Inzender voor HDInsight Domain ServicesHDInsight Domain Services Contributor | Kan gerelateerde bewerkingen die betrekking hebben op domein services lezen, maken, wijzigen en verwijderen die nodig zijn voor HDInsight-Enterprise Security PackageCan Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package | 8d8d5a11-05d3-4bda-a417-a08778121c7c8d8d5a11-05d3-4bda-a417-a08778121c7c |
| Inzender van Log AnalyticsLog Analytics Contributor | Log Analytics Inzender kan alle bewakings gegevens lezen en controle-instellingen bewerken.Log Analytics Contributor can read all monitoring data and edit monitoring settings. Het bewerken van bewakings instellingen omvat het toevoegen van de VM-extensie aan Vm's; lezen van opslag account sleutels om het verzamelen van logboeken van Azure Storage te kunnen configureren. Automation-accounts maken en configureren; oplossingen toevoegen; en het configureren van Azure Diagnostics voor alle Azure-resources.Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources. | 92aaf0da-9dab-42b6-94a3-d43ce8d1629392aaf0da-9dab-42b6-94a3-d43ce8d16293 |
| Lezer van Log AnalyticsLog Analytics Reader | Log Analytics Reader kan alle bewakings gegevens weer geven en doorzoeken en controle-instellingen weer geven, inclusief het weer geven van de configuratie van Azure Diagnostics op alle Azure-resources.Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources. | 73c42c96-874c-492b-b04d-ab87d138a89373c42c96-874c-492b-b04d-ab87d138a893 |
| Inzender van schemaregisters (preview)Schema Registry Contributor (Preview) | Schemaregistergroepen en schema's lezen, schrijven en verwijderen.Read, write, and delete Schema Registry groups and schemas. | 5dffeca3-4936-4216-b2bc-10343a5abb255dffeca3-4936-4216-b2bc-10343a5abb25 |
| Lezer van schemaregisters (preview)Schema Registry Reader (Preview) | Schemaregistergroepen en schema's lezen en weergeven.Read and list Schema Registry groups and schemas. | 2c56ea50-c6b3-40a6-83c0-9d98858bc7d22c56ea50-c6b3-40a6-83c0-9d98858bc7d2 |
| BlockchainBlockchain | ||
| Toegang tot Block Chain-leden knooppunt (preview-versie)Blockchain Member Node Access (Preview) | Hiermee wordt toegang tot Block Chain-leden knooppunten toegestaanAllows for access to Blockchain Member nodes | 31a002a1-acaf-453e-8a5b-297c9ca1ea2431a002a1-acaf-453e-8a5b-297c9ca1ea24 |
| AI + machine learningAI + machine learning | ||
| Inzender Cognitive ServicesCognitive Services Contributor | Hiermee kunt u sleutels van Cognitive Services maken, lezen, bijwerken, verwijderen en beheren.Lets you create, read, update, delete and manage keys of Cognitive Services. | 25fbc0a9-bd7c-42a3-aa1a-3b75d497ee6825fbc0a9-bd7c-42a3-aa1a-3b75d497ee68 |
| Cognitive Services gegevens lezer (preview-versie)Cognitive Services Data Reader (Preview) | Hiermee kunt u Cognitive Services gegevens lezen.Lets you read Cognitive Services data. | b59867f0-fa02-499b-be73-45a86b5b3e1cb59867f0-fa02-499b-be73-45a86b5b3e1c |
| Cognitive Services gebruikerCognitive Services User | Hiermee kunt u de sleutels van Cognitive Services lezen en weer geven.Lets you read and list keys of Cognitive Services. | a97b65f3-24c7-4388-baec-2e87135dc908a97b65f3-24c7-4388-baec-2e87135dc908 |
| Mixed realityMixed reality | ||
| Externe rendering-beheerderRemote Rendering Administrator | Biedt gebruikers de mogelijkheid om de mogelijkheden voor het omzetten van sessies, rendering en diagnose te beheren voor externe rendering in azureProvides user with conversion, manage session, rendering and diagnostics capabilities for Azure Remote Rendering | 3df8b902-2a6f-47c7-8cc5-360e9b272a7e3df8b902-2a6f-47c7-8cc5-360e9b272a7e |
| Client voor externe RenderingRemote Rendering Client | Biedt gebruikers de mogelijkheid om sessie, rendering en diagnose te beheren voor de externe rendering van Azure.Provides user with manage session, rendering and diagnostics capabilities for Azure Remote Rendering. | d39065c4-c120-43c9-ab0a-63eed9795f0ad39065c4-c120-43c9-ab0a-63eed9795f0a |
| Inzender voor ruimtelijke ankersSpatial Anchors Account Contributor | Hiermee kunt u ruimtelijke ankers in uw account beheren, maar niet verwijderenLets you manage spatial anchors in your account, but not delete them | 8bbe83f1-e2a6-4df7-8cb4-4e04d4e5c8278bbe83f1-e2a6-4df7-8cb4-4e04d4e5c827 |
| Eigenaar van ruimtelijk ankersSpatial Anchors Account Owner | Hiermee kunt u ruimtelijke ankers in uw account beheren, met inbegrip van het verwijderen ervanLets you manage spatial anchors in your account, including deleting them | 70bbe301-9835-447d-afdd-19eb3167307c70bbe301-9835-447d-afdd-19eb3167307c |
| Lezer van ruimtelijk ankers-accountSpatial Anchors Account Reader | Hiermee kunt u eigenschappen van ruimtelijke ankers in uw account zoeken en lezenLets you locate and read properties of spatial anchors in your account | 5d51204f-eb77-4b1c-b86a-2ec626c494135d51204f-eb77-4b1c-b86a-2ec626c49413 |
| IntegratieIntegration | ||
| Inzender van API Management-serviceAPI Management Service Contributor | Kan de service en de Api's beherenCan manage service and the APIs | 312a565d-c81f-4fd8-895a-4e21e48d571c312a565d-c81f-4fd8-895a-4e21e48d571c |
| Functie API Management service operatorAPI Management Service Operator Role | Kan de service beheren, maar niet de Api'sCan manage service but not the APIs | e022efe7-f5ba-4159-bbe4-b44f577e9b61e022efe7-f5ba-4159-bbe4-b44f577e9b61 |
| API Management functie Service lezerAPI Management Service Reader Role | Alleen-lezen toegang tot de service en Api'sRead-only access to service and APIs | 71522526-b88f-4d52-b57f-d31fc3546d0d71522526-b88f-4d52-b57f-d31fc3546d0d |
| Eigenaar van app-configuratie gegevensApp Configuration Data Owner | Hiermee krijgt u volledige toegang tot de app-configuratie gegevens.Allows full access to App Configuration data. | 5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b |
| Gegevens lezer app-configuratieApp Configuration Data Reader | Hiermee staat u lees toegang toe voor app-configuratie gegevens.Allows read access to App Configuration data. | 516239f1-63e1-4d78-a4de-a74fb236a071516239f1-63e1-4d78-a4de-a74fb236a071 |
| Gegevens eigenaar Azure Service BusAzure Service Bus Data Owner | Hiermee krijgt u volledige toegang tot Azure Service Bus-resources.Allows for full access to Azure Service Bus resources. | 090c5cfd-751d-490a-894a-3ce6f1109419090c5cfd-751d-490a-894a-3ce6f1109419 |
| Gegevens ontvanger Azure Service BusAzure Service Bus Data Receiver | Hiermee krijgt u toegang tot Azure Service Bus-resources.Allows for receive access to Azure Service Bus resources. | 4f6d3b9b-027b-4f4c-9142-0e5a2a2247e04f6d3b9b-027b-4f4c-9142-0e5a2a2247e0 |
| Afzender van Azure Service Bus gegevensAzure Service Bus Data Sender | Hiermee kunt u toegang tot Azure Service Bus resources verzenden.Allows for send access to Azure Service Bus resources. | 69a216fc-b8fb-44d8-bc22-1f3c2cd27a3969a216fc-b8fb-44d8-bc22-1f3c2cd27a39 |
| Registratie-eigenaar Azure StackAzure Stack Registration Owner | Hiermee kunt u Azure Stack registraties beheren.Lets you manage Azure Stack registrations. | 6f12a6df-dd06-4f3e-bcb1-ce8be600526a6f12a6df-dd06-4f3e-bcb1-ce8be600526a |
| EventGrid EventSubscription-bijdragerEventGrid EventSubscription Contributor | Hiermee kunt u bewerkingen voor EventGrid-gebeurtenis abonnementen beheren.Lets you manage EventGrid event subscription operations. | 428e0ff0-5e57-4d9c-a221-2c70d0e0a443428e0ff0-5e57-4d9c-a221-2c70d0e0a443 |
| EventGrid EventSubscription-lezerEventGrid EventSubscription Reader | Hiermee kunt u EventGrid-gebeurtenis abonnementen lezen.Lets you read EventGrid event subscriptions. | 2414bbcf-6497-4faf-8c65-0454607484052414bbcf-6497-4faf-8c65-045460748405 |
| Inzender voor FHIR-gegevensFHIR Data Contributor | Rol maakt gebruiker of Principal volledige toegang tot FHIR-gegevensRole allows user or principal full access to FHIR Data | 5a1fc7df-4bf1-4951-a576-89034ee01acd5a1fc7df-4bf1-4951-a576-89034ee01acd |
| FHIR-gegevens exporteurFHIR Data Exporter | Rol staat gebruiker of Principal toe om FHIR-gegevens te lezen en exporterenRole allows user or principal to read and export FHIR Data | 3db33094-8700-4567-8da5-1501d4e7e8433db33094-8700-4567-8da5-1501d4e7e843 |
| Gegevens lezer FHIRFHIR Data Reader | De rol staat gebruikers of Principal toe om FHIR gegevens te lezenRole allows user or principal to read FHIR Data | 4c8d0bbc-75d3-4935-991f-5f3c56d815084c8d0bbc-75d3-4935-991f-5f3c56d81508 |
| FHIR-gegevens schrijverFHIR Data Writer | Rol staat gebruiker of Principal toe om FHIR-gegevens te lezen en te schrijvenRole allows user or principal to read and write FHIR Data | 3f88fce4-5892-4214-ae73-ba52945599133f88fce4-5892-4214-ae73-ba5294559913 |
| Inzender IntegratieserviceomgevingIntegration Service Environment Contributor | Hiermee kunt u de integratie service omgevingen beheren, maar niet de toegang tot ze.Lets you manage integration service environments, but not access to them. | a41e2c5b-bd99-4a07-88f4-9bf657a760b8a41e2c5b-bd99-4a07-88f4-9bf657a760b8 |
| Integratieserviceomgeving-ontwikkelaarIntegration Service Environment Developer | Hiermee kunnen ontwikkel aars werk stromen, integratie accounts en API-verbindingen maken en bijwerken in integratie service omgevingen.Allows developers to create and update workflows, integration accounts and API connections in integration service environments. | c7aa55d3-1abb-444a-a5ca-5e51e485d6ecc7aa55d3-1abb-444a-a5ca-5e51e485d6ec |
| Inzender voor Intelligent Systems-accountIntelligent Systems Account Contributor | Hiermee kunt u intelligente Systems-accounts beheren, maar niet de toegang tot ze.Lets you manage Intelligent Systems accounts, but not access to them. | 03a6d094-3444-4b3d-88af-7477090a9e5e03a6d094-3444-4b3d-88af-7477090a9e5e |
| Inzender voor logische appsLogic App Contributor | Hiermee kunt u logische apps beheren, maar niet wijzigen.Lets you manage logic apps, but not change access to them. | 87a39d53-fc1b-424a-814c-f7e04687dc9e87a39d53-fc1b-424a-814c-f7e04687dc9e |
| Logische app-operatorLogic App Operator | Hiermee kunt u logische apps lezen, inschakelen en uitschakelen, maar niet bewerken of bijwerken.Lets you read, enable, and disable logic apps, but not edit or update them. | 515c2055-d9d4-4321-b1b9-bd0c9a0f79fe515c2055-d9d4-4321-b1b9-bd0c9a0f79fe |
| IdentiteitIdentity | ||
| Inzender beheerde identiteitManaged Identity Contributor | Aan de gebruiker toegewezen identiteit maken, lezen, bijwerken en verwijderenCreate, Read, Update, and Delete User Assigned Identity | e40ec5ca-96e0-45a2-b4ff-59039f2c2b59e40ec5ca-96e0-45a2-b4ff-59039f2c2b59 |
| Beheerde identiteits operatorManaged Identity Operator | Door gebruiker toegewezen identiteit lezen en toewijzenRead and Assign User Assigned Identity | f1a07417-d97a-45cb-824c-7a7467783830f1a07417-d97a-45cb-824c-7a7467783830 |
| BeveiligingSecurity | ||
| Azure Sentinel ContributorAzure Sentinel Contributor | Azure Sentinel ContributorAzure Sentinel Contributor | ab8e14d6-4a74-4a29-9ba8-549422addadeab8e14d6-4a74-4a29-9ba8-549422addade |
| Azure Sentinel ReaderAzure Sentinel Reader | Azure Sentinel ReaderAzure Sentinel Reader | 8d289c81-5878-46d4-8554-54e1e3d8b5cb8d289c81-5878-46d4-8554-54e1e3d8b5cb |
| Azure Sentinel ResponderAzure Sentinel Responder | Azure Sentinel ResponderAzure Sentinel Responder | 3e150937-b8fe-4cfb-8069-0eaf05ecd0563e150937-b8fe-4cfb-8069-0eaf05ecd056 |
| Key Vault beheerder (preview-versie)Key Vault Administrator (preview) | Alle gegevenslaag bewerkingen uitvoeren op een sleutel kluis en alle objecten hierin, met inbegrip van certificaten, sleutels en geheimen.Perform all data plane operations on a key vault and all objects in it, including certificates, keys, and secrets. Kan geen sleutel kluis resources beheren of roltoewijzingen beheren.Cannot manage key vault resources or manage role assignments. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 00482a5a-887f-4fb3-b363-3b7fe8e7448300482a5a-887f-4fb3-b363-3b7fe8e74483 |
| Key Vaulte-certificerings instanties (preview-versie)Key Vault Certificates Officer (preview) | Acties uitvoeren op de certificaten van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the certificates of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | a4417e6f-fecd-4de8-b567-7b0420556985a4417e6f-fecd-4de8-b567-7b0420556985 |
| Inzender Key VaultKey Vault Contributor | Sleutel kluizen beheren, maar u kunt geen rollen toewijzen in azure RBAC en biedt geen toegang tot geheimen, sleutels of certificaten.Manage key vaults, but does not allow you to assign roles in Azure RBAC, and does not allow you to access secrets, keys, or certificates. | f25e0fa2-a7c8-4377-a976-54943a77a395f25e0fa2-a7c8-4377-a976-54943a77a395 |
| Key Vault crypto-functionaris (preview-versie)Key Vault Crypto Officer (preview) | Acties uitvoeren op de sleutels van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the keys of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 14b46e9e-c2b7-41b4-b07b-48a6ebf6060314b46e9e-c2b7-41b4-b07b-48a6ebf60603 |
| Versleuteling van crypto-service Key Vault (preview-versie)Key Vault Crypto Service Encryption (preview) | Lees de meta gegevens van sleutels en voer terugloop/uitlopende bewerkingen uit.Read metadata of keys and perform wrap/unwrap operations. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | e147488a-f6f5-4113-8e2d-b22465e65bf6e147488a-f6f5-4113-8e2d-b22465e65bf6 |
| Key Vault crypto grafie-gebruiker (preview-versie)Key Vault Crypto User (preview) | Voer cryptografische bewerkingen uit met behulp van sleutels.Perform cryptographic operations using keys. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 12338af0-0e69-4776-bea7-57ae8d29742412338af0-0e69-4776-bea7-57ae8d297424 |
| Key Vault lezer (preview-versie)Key Vault Reader (preview) | Lees de meta gegevens van sleutel kluizen en de bijbehorende certificaten, sleutels en geheimen.Read metadata of key vaults and its certificates, keys, and secrets. Kan geen gevoelige waarden lezen, zoals geheime inhoud of sleutel materiaal.Cannot read sensitive values such as secret contents or key material. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 21090545-7ca7-4776-b22c-e363652d74d221090545-7ca7-4776-b22c-e363652d74d2 |
| Key Vaulte geheimen-auditeur (preview-versie)Key Vault Secrets Officer (preview) | Acties uitvoeren op de geheimen van een sleutel kluis, met uitzonde ring van machtigingen beheren.Perform any action on the secrets of a key vault, except manage permissions. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | b86a8fe4-44ce-4948-aee5-eccb2c155cd7b86a8fe4-44ce-4948-aee5-eccb2c155cd7 |
| Key Vault geheimen gebruiker (preview-versie)Key Vault Secrets User (preview) | Geheime inhoud lezen.Read secret contents. Werkt alleen voor sleutel kluizen die gebruikmaken van het machtigings model ' Azure op rollen gebaseerd toegangs beheer '.Only works for key vaults that use the 'Azure role-based access control' permission model. | 4633458b-17de-408a-b874-0445c86b69e64633458b-17de-408a-b874-0445c86b69e6 |
| BeveiligingsbeheerderSecurity Admin | Machtigingen voor Security Center weer geven en bijwerken.View and update permissions for Security Center. Dezelfde machtigingen als de rol van beveiligings lezer en kunnen ook het beveiligings beleid bijwerken en waarschuwingen en aanbevelingen negeren.Same permissions as the Security Reader role and can also update the security policy and dismiss alerts and recommendations. | fb1c8493-542b-48eb-b624-b4c8fea62acdfb1c8493-542b-48eb-b624-b4c8fea62acd |
| Inzender voor beveiligings beoordelingSecurity Assessment Contributor | Hiermee kunt u evaluaties naar Security Center pushenLets you push assessments to Security Center | 612c2aa1-cb24-443b-ac28-3ab7272de6f5612c2aa1-cb24-443b-ac28-3ab7272de6f5 |
| Beveiligings beheer (verouderd)Security Manager (Legacy) | Dit is een verouderde rol.This is a legacy role. Gebruik in plaats daarvan beveiligings beheerder.Please use Security Admin instead. | e3d13bf0-dd5a-482e-ba6b-9b8433878d10e3d13bf0-dd5a-482e-ba6b-9b8433878d10 |
| BeveiligingslezerSecurity Reader | Machtigingen voor Security Center weer geven.View permissions for Security Center. Kan aanbevelingen, waarschuwingen, een beveiligings beleid en beveiligings status weer geven, maar kan geen wijzigingen aanbrengen.Can view recommendations, alerts, a security policy, and security states, but cannot make changes. | 39bc4728-0917-49c7-9d2c-d95423bc2eb439bc4728-0917-49c7-9d2c-d95423bc2eb4 |
| DevOpsDevOps | ||
| DevTest Labs-gebruikerDevTest Labs User | Met kunt u verbinding maken met uw virtuele machines in uw Azure DevTest Labs, deze starten, opnieuw opstarten en afsluiten.Lets you connect, start, restart, and shutdown your virtual machines in your Azure DevTest Labs. | 76283e04-6283-4c54-8f91-bcf1374a3c6476283e04-6283-4c54-8f91-bcf1374a3c64 |
| Lab-MakerLab Creator | Met kunt u nieuwe Labs maken onder uw Azure Lab-accounts.Lets you create new labs under your Azure Lab Accounts. | b97fb8bc-a8b2-4522-a38b-dd33c7e65eadb97fb8bc-a8b2-4522-a38b-dd33c7e65ead |
| ControleMonitor | ||
| Inzender voor Application Insights onderdelenApplication Insights Component Contributor | Kan Application Insights onderdelen beherenCan manage Application Insights components | ae349356-3a1b-4a5e-921d-050484c6347eae349356-3a1b-4a5e-921d-050484c6347e |
| Application Insights Snapshot DebuggerApplication Insights Snapshot Debugger | Geeft gebruikers machtigingen voor het weer geven en downloaden van moment opnamen van fout opsporing die zijn verzameld met de Application Insights Snapshot Debugger.Gives user permission to view and download debug snapshots collected with the Application Insights Snapshot Debugger. Houd er rekening mee dat deze machtigingen niet zijn opgenomen in de rollen eigenaar of Inzender .Note that these permissions are not included in the Owner or Contributor roles. Wanneer gebruikers de Application Insights Snapshot Debugger rol geven, moet u de rol rechtstreeks aan de gebruiker toekennen.When giving users the Application Insights Snapshot Debugger role, you must grant the role directly to the user. De rol wordt niet herkend wanneer deze wordt toegevoegd aan een aangepaste rol.The role is not recognized when it is added to a custom role. | 08954f03-6346-4c2e-81c0-ec3a5cfae23b08954f03-6346-4c2e-81c0-ec3a5cfae23b |
| Inzender bewakenMonitoring Contributor | Kan alle bewakings gegevens lezen en controle-instellingen bewerken.Can read all monitoring data and edit monitoring settings. Zie ook aan de slag met rollen, machtigingen en beveiliging met Azure monitor.See also Get started with roles, permissions, and security with Azure Monitor. | 749f88d5-cbae-40b8-bcfc-e573ddc772fa749f88d5-cbae-40b8-bcfc-e573ddc772fa |
| De uitgever van metrische gegevens controlerenMonitoring Metrics Publisher | Hiermee schakelt u de metrische gegevens voor publicatie in op Azure-resourcesEnables publishing metrics against Azure resources | 3913510d-42f4-4e42-8a64-420c390055eb3913510d-42f4-4e42-8a64-420c390055eb |
| Bewakings lezerMonitoring Reader | Kan alle bewakings gegevens (metrieken, logboeken, enzovoort) lezen.Can read all monitoring data (metrics, logs, etc.). Zie ook aan de slag met rollen, machtigingen en beveiliging met Azure monitor.See also Get started with roles, permissions, and security with Azure Monitor. | 43d0d8ad-25c7-4714-9337-8ba259a9fe0543d0d8ad-25c7-4714-9337-8ba259a9fe05 |
| Inzender voor werkmappenWorkbook Contributor | Kan gedeelde werkmappen opslaan.Can save shared workbooks. | e8ddcd69-c73f-4f9f-9844-4100522f16ade8ddcd69-c73f-4f9f-9844-4100522f16ad |
| Werkmap lezerWorkbook Reader | Kan werkmappen lezen.Can read workbooks. | b279062a-9be3-42a0-92ae-8b3cf002ec4db279062a-9be3-42a0-92ae-8b3cf002ec4d |
| Beheer + governanceManagement + governance | ||
| Automation-taak operatorAutomation Job Operator | Maak en beheer taken met behulp van Automation-Runbooks.Create and Manage Jobs using Automation Runbooks. | 4fe576fe-1146-4730-92eb-48519fa6bf9f4fe576fe-1146-4730-92eb-48519fa6bf9f |
| Automation-operatorAutomation Operator | Automatiserings operatoren kunnen taken starten, stoppen, onderbreken en hervattenAutomation Operators are able to start, stop, suspend, and resume jobs | d3881f73-407a-4167-8283-e981cbba0404d3881f73-407a-4167-8283-e981cbba0404 |
| Automation-Runbook-operatorAutomation Runbook Operator | Runbook-eigenschappen lezen: om taken van het Runbook te kunnen maken.Read Runbook properties - to be able to create Jobs of the runbook. | 5fb5aef8-1081-4b8e-bb16-9d5d0385bab55fb5aef8-1081-4b8e-bb16-9d5d0385bab5 |
| Onboarding van met Azure verbonden computerAzure Connected Machine Onboarding | Kan onboarding van met Azure verbonden computers uitvoeren.Can onboard Azure Connected Machines. | b64e21ea-ac4e-4cdf-9dc9-5b892992bee7b64e21ea-ac4e-4cdf-9dc9-5b892992bee7 |
| Resource beheerder van Azure Connected machineAzure Connected Machine Resource Administrator | Kan met Azure verbonden computers lezen, schrijven, verwijderen en onboarden.Can read, write, delete and re-onboard Azure Connected Machines. | cd570a14-e51a-42ad-bac8-bafd67325302cd570a14-e51a-42ad-bac8-bafd67325302 |
| Facturerings lezerBilling Reader | Hiermee staat u lees toegang tot facturerings gegevens toeAllows read access to billing data | fa23ad8b-c56e-40d8-ac0c-ce449e1d2c64fa23ad8b-c56e-40d8-ac0c-ce449e1d2c64 |
| BlauwdrukinzenderBlueprint Contributor | Blauwdrukinzenders kunnen blauwdrukdefinities beheren, maar deze niet toewijzen.Can manage blueprint definitions, but not assign them. | 41077137-e803-4205-871c-5a86e6a753b441077137-e803-4205-871c-5a86e6a753b4 |
| BlauwdrukoperatorBlueprint Operator | Kan bestaande gepubliceerde blauw drukken toewijzen, maar kan geen nieuwe blauw drukken maken.Can assign existing published blueprints, but cannot create new blueprints. Houd er rekening mee dat dit alleen werkt als de toewijzing wordt uitgevoerd met een door de gebruiker toegewezen beheerde identiteit.Note that this only works if the assignment is done with a user-assigned managed identity. | 437d2ced-4a38-4302-8479-ed2bcb43d090437d2ced-4a38-4302-8479-ed2bcb43d090 |
| Inzender Cost ManagementCost Management Contributor | Kan kosten bekijken en kosten configuratie beheren (bijvoorbeeld budgetten, exports)Can view costs and manage cost configuration (e.g. budgets, exports) | 434105ed-43f6-45c7-a02f-909b2ba83430434105ed-43f6-45c7-a02f-909b2ba83430 |
| Cost Management lezerCost Management Reader | Kan kosten gegevens en-configuratie weer geven (bijvoorbeeld budgetten, exports)Can view cost data and configuration (e.g. budgets, exports) | 72fafb9e-0641-4937-9268-a91bfd8191a372fafb9e-0641-4937-9268-a91bfd8191a3 |
| Beheerder hiërarchie-instellingenHierarchy Settings Administrator | Hiermee kunnen gebruikers hiërarchie-instellingen bewerken en verwijderenAllows users to edit and delete Hierarchy Settings | 350f8d15-c687-4448-8ae1-157740a3936d350f8d15-c687-4448-8ae1-157740a3936d |
| Kubernetes-cluster-Azure Arc-onboardingKubernetes Cluster - Azure Arc Onboarding | Roldefinitie voor het autoriseren van elke gebruiker/service voor het maken van een connectedClusters-resourceRole definition to authorize any user/service to create connectedClusters resource | 34e09817-6cbe-4d01-b1a2-e0eac5743d4134e09817-6cbe-4d01-b1a2-e0eac5743d41 |
| Rol Inzender beheerde toepassingManaged Application Contributor Role | Maakt het mogelijk om beheerde toepassings resources te maken.Allows for creating managed application resources. | 641177b8-a67a-45b9-a033-47bc880bb21e641177b8-a67a-45b9-a033-47bc880bb21e |
| Rol beheerde toepassings operatorManaged Application Operator Role | Hiermee kunt u acties voor beheerde toepassings bronnen lezen en uitvoerenLets you read and perform actions on Managed Application resources | c7393b34-138c-406f-901b-d8cf2b17e6aec7393b34-138c-406f-901b-d8cf2b17e6ae |
| Lezer voor beheerde toepassingenManaged Applications Reader | Hiermee kunt u bronnen in een beheerde app lezen en JIT-toegang aanvragen.Lets you read resources in a managed app and request JIT access. | b9331d33-8a36-4f8c-b097-4f54124fdb44b9331d33-8a36-4f8c-b097-4f54124fdb44 |
| Rol voor registratie toewijzing beheerde services verwijderenManaged Services Registration assignment Delete Role | Met de functie voor registratie toewijzing van beheerde services verwijderen kan de Tenant gebruikers beheren de registratie toewijzing verwijderen die aan de Tenant is toegewezen.Managed Services Registration Assignment Delete Role allows the managing tenant users to delete the registration assignment assigned to their tenant. | 91c1777a-f3dc-4fae-b103-61d183457e4691c1777a-f3dc-4fae-b103-61d183457e46 |
| Inzender beheer groepManagement Group Contributor | Rol Inzender beheer groepManagement Group Contributor Role | 5d58bcaf-24a5-4b20-bdb6-eed9f69fbe4c5d58bcaf-24a5-4b20-bdb6-eed9f69fbe4c |
| Lezer beheer groepManagement Group Reader | Rol van lezer van beheer groepManagement Group Reader Role | ac63b705-f282-497d-ac71-919bf39d939dac63b705-f282-497d-ac71-919bf39d939d |
| Nieuwe Inzender voor Relic APM-accountNew Relic APM Account Contributor | Hiermee kunt u New Relic Application Performance Management accounts en-toepassingen beheren, maar niet de toegang tot ze.Lets you manage New Relic Application Performance Management accounts and applications, but not access to them. | 5d28c62d-5b37-4476-8438-e587778df2375d28c62d-5b37-4476-8438-e587778df237 |
| Policy Insights Data Writer (preview-versie)Policy Insights Data Writer (Preview) | Hiermee wordt lees toegang tot bron beleid en schrijf toegang tot bron onderdeel beleids gebeurtenissen toegestaan.Allows read access to resource policies and write access to resource component policy events. | 66bb4e9e-b016-4a94-8249-4c0511c2be8466bb4e9e-b016-4a94-8249-4c0511c2be84 |
| Inzender voor resourcebeleidResource Policy Contributor | Gebruikers met rechten voor het maken/wijzigen van het resource beleid, het maken van een ondersteunings ticket en het lezen van resources/hiërarchie.Users with rights to create/modify resource policy, create support ticket and read resources/hierarchy. | 36243c78-bf99-498c-9df9-86d9f8d2860836243c78-bf99-498c-9df9-86d9f8d28608 |
| Inzender Site RecoverySite Recovery Contributor | Hiermee kunt u Site Recovery-service beheren, behalve het maken van een kluis en roltoewijzingLets you manage Site Recovery service except vault creation and role assignment | 6670b86e-a3f7-4917-ac9b-5d6ab1be45676670b86e-a3f7-4917-ac9b-5d6ab1be4567 |
| Site Recovery-operatorSite Recovery Operator | Een failover en failback, maar geen andere Site Recovery beheer bewerkingen uitvoerenLets you failover and failback but not perform other Site Recovery management operations | 494ae006-db33-4328-bf46-533a6560a3ca494ae006-db33-4328-bf46-533a6560a3ca |
| Site Recovery lezerSite Recovery Reader | Hiermee kunt u de Site Recovery status weer geven, maar geen andere beheer bewerkingen uitvoerenLets you view Site Recovery status but not perform other management operations | dbaa88c4-0c30-4179-9fb3-46319faa6149dbaa88c4-0c30-4179-9fb3-46319faa6149 |
| Inzender voor ondersteunings aanvragenSupport Request Contributor | Hiermee kunt u ondersteunings aanvragen maken en beherenLets you create and manage Support requests | cfd33db0-3dd1-45e3-aa9d-cdbdf3b6f24ecfd33db0-3dd1-45e3-aa9d-cdbdf3b6f24e |
| Inzender labelenTag Contributor | Hiermee kunt u tags op entiteiten beheren zonder dat u toegang hebt tot de entiteiten zelf.Lets you manage tags on entities, without providing access to the entities themselves. | 4a9ae827-6dc8-4573-8ac7-8239d42aa03f4a9ae827-6dc8-4573-8ac7-8239d42aa03f |
| OverigeOther | ||
| BizTalk-bijdragerBizTalk Contributor | Hiermee kunt u BizTalk Services beheren, maar niet de toegang tot de service.Lets you manage BizTalk services, but not access to them. | 5e3c6656-6cfa-4708-81fe-0de47ac733425e3c6656-6cfa-4708-81fe-0de47ac73342 |
| Gebruiker van bureau blad-virtualisatieDesktop Virtualization User | Hiermee kunnen gebruikers de toepassingen in een toepassings groep gebruiken.Allows user to use the applications in an application group. | 1d18fff3-a72a-46b5-b4a9-0b38a3cd7e631d18fff3-a72a-46b5-b4a9-0b38a3cd7e63 |
| Inzender voor scheduler-taak verzamelingenScheduler Job Collections Contributor | Hiermee kunt u scheduler-taak verzamelingen beheren, maar niet de toegang tot deze taken.Lets you manage Scheduler job collections, but not access to them. | 188a0f2f-5c9e-469b-ae67-2aa5ce574b94188a0f2f-5c9e-469b-ae67-2aa5ce574b94 |
AlgemeenGeneral
InzenderContributor
Hiermee wordt volledige toegang verleend voor het beheren van alle resources, maar u kunt geen rollen toewijzen in azure RBAC.Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| * | Resources van alle typen maken en beherenCreate and manage resources of all types |
| NotActionsNotActions | |
| Micro soft. Authorization/*/DeleteMicrosoft.Authorization/*/Delete | Rollen, beleids toewijzingen, beleids definities en definities van beleids sets verwijderenDelete roles, policy assignments, policy definitions and policy set definitions |
| Micro soft. Authorization/*/writeMicrosoft.Authorization/*/Write | Rollen, roltoewijzingen, beleids toewijzingen, beleids definities en definities van beleids sets makenCreate roles, role assignments, policy assignments, policy definitions and policy set definitions |
| Micro soft. Authorization/elevateAccess/ActionMicrosoft.Authorization/elevateAccess/Action | Hiermee krijgt de Gebruikerstoegangbeheerder toegang op tenantniveauGrants the caller User Access Administrator access at the tenant scope |
| Micro soft. blauw druk/blueprintAssignments/writeMicrosoft.Blueprint/blueprintAssignments/write | Een blauw druk-toewijzing maken of bijwerkenCreate or update any blueprint assignments |
| Micro soft. blauw druk/blueprintAssignments/DeleteMicrosoft.Blueprint/blueprintAssignments/delete | Eventuele blauw drukken-toewijzingen verwijderenDelete any blueprint assignments |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b24988ac-6180-42a0-ab88-20f7382dd24c",
"name": "b24988ac-6180-42a0-ab88-20f7382dd24c",
"permissions": [
{
"actions": [
"*"
],
"notActions": [
"Microsoft.Authorization/*/Delete",
"Microsoft.Authorization/*/Write",
"Microsoft.Authorization/elevateAccess/Action",
"Microsoft.Blueprint/blueprintAssignments/write",
"Microsoft.Blueprint/blueprintAssignments/delete"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
EigenaarOwner
Hiermee wordt volledige toegang verleend voor het beheren van alle resources, inclusief de mogelijkheid om rollen toe te wijzen in azure RBAC.Grants full access to manage all resources, including the ability to assign roles in Azure RBAC. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| * | Resources van alle typen maken en beherenCreate and manage resources of all types |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants full access to manage all resources, including the ability to assign roles in Azure RBAC.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
"name": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
"permissions": [
{
"actions": [
"*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
LezerReader
Bekijk alle resources, maar u kunt geen wijzigingen aanbrengen.View all resources, but does not allow you to make any changes. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| */read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "View all resources, but does not allow you to make any changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/acdd72a7-3385-48ef-bd42-f606fba81ae7",
"name": "acdd72a7-3385-48ef-bd42-f606fba81ae7",
"permissions": [
{
"actions": [
"*/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Beheerder van gebruikerstoegangUser Access Administrator
Hiermee beheert u de gebruikers toegang tot Azure-resources.Lets you manage user access to Azure resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| */read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
| Micro soft. autorisatie/*Microsoft.Authorization/* | Autorisatie beherenManage authorization |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage user access to Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/18d7d88d-d35e-4fb5-a5c3-7773c20a72d9",
"name": "18d7d88d-d35e-4fb5-a5c3-7773c20a72d9",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.Authorization/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "User Access Administrator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
ComputeCompute
Inzender voor klassieke virtuele machinesClassic Virtual Machine Contributor
Hiermee beheert u klassieke virtuele machines, maar kunt u niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ClassicCompute/domainNames/*Microsoft.ClassicCompute/domainNames/* | Klassieke Compute-domein namen maken en beherenCreate and manage classic compute domain names |
| Micro soft. ClassicCompute/virtualMachines/*Microsoft.ClassicCompute/virtualMachines/* | Virtuele machines maken en beherenCreate and manage virtual machines |
| Micro soft. ClassicNetwork/networkSecurityGroups/join/ActionMicrosoft.ClassicNetwork/networkSecurityGroups/join/action | |
| Micro soft. ClassicNetwork/reservedIps/link/ActionMicrosoft.ClassicNetwork/reservedIps/link/action | Een gereserveerd IP-adres koppelenLink a reserved Ip |
| Micro soft. ClassicNetwork/reservedIps/ReadMicrosoft.ClassicNetwork/reservedIps/read | Hiermee worden de gereserveerde Ip's opgehaaldGets the reserved Ips |
| Micro soft. ClassicNetwork/virtualNetworks/join/ActionMicrosoft.ClassicNetwork/virtualNetworks/join/action | Voegt het virtuele netwerk samen.Joins the virtual network. |
| Micro soft. ClassicNetwork/virtualNetworks/ReadMicrosoft.ClassicNetwork/virtualNetworks/read | Het virtuele netwerk ophalen.Get the virtual network. |
| Micro soft. ClassicStorage/storageAccounts/disks/ReadMicrosoft.ClassicStorage/storageAccounts/disks/read | Retourneert de schijf van het opslag account.Returns the storage account disk. |
| Micro soft. ClassicStorage/storageAccounts/images/ReadMicrosoft.ClassicStorage/storageAccounts/images/read | Hiermee wordt de installatie kopie van het opslag account geretourneerd.Returns the storage account image. Keur.(Deprecated. Micro soft. ClassicStorage/Storage accounts/vmImages gebruikenUse 'Microsoft.ClassicStorage/storageAccounts/vmImages') |
| Micro soft. ClassicStorage/storageAccounts/listKeys/ActionMicrosoft.ClassicStorage/storageAccounts/listKeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
| Micro soft. ClassicStorage/storageAccounts/ReadMicrosoft.ClassicStorage/storageAccounts/read | Retour neer het opslag account met het opgegeven account.Return the storage account with the given account. |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic virtual machines, but not access to them, and not the virtual network or storage account they're connected to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/d73bb868-a0df-4d4d-bd69-98a00b01fccb",
"name": "d73bb868-a0df-4d4d-bd69-98a00b01fccb",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicCompute/domainNames/*",
"Microsoft.ClassicCompute/virtualMachines/*",
"Microsoft.ClassicNetwork/networkSecurityGroups/join/action",
"Microsoft.ClassicNetwork/reservedIps/link/action",
"Microsoft.ClassicNetwork/reservedIps/read",
"Microsoft.ClassicNetwork/virtualNetworks/join/action",
"Microsoft.ClassicNetwork/virtualNetworks/read",
"Microsoft.ClassicStorage/storageAccounts/disks/read",
"Microsoft.ClassicStorage/storageAccounts/images/read",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.ClassicStorage/storageAccounts/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Virtual Machine Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Aanmelding voor de beheerder van de virtuele machineVirtual Machine Administrator Login
Bekijk Virtual Machines in de portal en meld u aan als beheerder meer informatieView Virtual Machines in the portal and login as administrator Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
| Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
| Micro soft. Compute/virtualMachines/*/ReadMicrosoft.Compute/virtualMachines/*/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Compute/virtualMachines/login/ActionMicrosoft.Compute/virtualMachines/login/action | Als gewone gebruiker aanmelden bij een virtuele machineLog in to a virtual machine as a regular user |
| Micro soft. Compute/virtualMachines/loginAsAdmin/ActionMicrosoft.Compute/virtualMachines/loginAsAdmin/action | Aanmelden bij een virtuele machine met Windows-beheerders-of Linux-root gebruikers bevoegdhedenLog in to a virtual machine with Windows administrator or Linux root user privileges |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "View Virtual Machines in the portal and login as administrator",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/1c0163c0-47e6-4577-8991-ea5c82e286e4",
"name": "1c0163c0-47e6-4577-8991-ea5c82e286e4",
"permissions": [
{
"actions": [
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Compute/virtualMachines/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Compute/virtualMachines/login/action",
"Microsoft.Compute/virtualMachines/loginAsAdmin/action"
],
"notDataActions": []
}
],
"roleName": "Virtual Machine Administrator Login",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor virtuele machinesVirtual Machine Contributor
Met kunt u virtuele machines beheren, maar niet de toegang tot ze en niet het virtuele netwerk of opslag account waarmee ze zijn verbonden.Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Compute/availabilitySets/*Microsoft.Compute/availabilitySets/* | Berekenings beschikbaarheids sets maken en beherenCreate and manage compute availability sets |
| Micro soft. Compute/locations/*Microsoft.Compute/locations/* | Reken locaties maken en beherenCreate and manage compute locations |
| Micro soft. Compute/virtualMachines/*Microsoft.Compute/virtualMachines/* | Voer alle acties van de virtuele machine uit, waaronder het maken, bijwerken, verwijderen, starten, opnieuw opstarten en uitschakelen van virtuele machines.Perform all virtual machine actions including create, update, delete, start, restart, and power off virtual machines. Voer vooraf gedefinieerde scripts uit op virtuele machines.Execute predefined scripts on virtual machines. |
| Micro soft. Compute/virtualMachineScaleSets/*Microsoft.Compute/virtualMachineScaleSets/* | Schaalsets voor virtuele machines maken en beherenCreate and manage virtual machine scale sets |
| Micro soft. Compute/disks/writeMicrosoft.Compute/disks/write | Hiermee wordt een nieuwe schijf gemaakt of een bestaande bijgewerktCreates a new Disk or updates an existing one |
| Micro soft. Compute/disks/ReadMicrosoft.Compute/disks/read | De eigenschappen van een schijf ophalenGet the properties of a Disk |
| Micro soft. Compute/disks/DeleteMicrosoft.Compute/disks/delete | Hiermee wordt de schijf verwijderdDeletes the Disk |
| Micro soft. DevTestLab/Schedules/*Microsoft.DevTestLab/schedules/* | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Network/applicationGateways/backendAddressPools/join/ActionMicrosoft.Network/applicationGateways/backendAddressPools/join/action | Voegt een back-end-adres groep van een toepassings gateway samen.Joins an application gateway backend address pool. Niet Alertable.Not Alertable. |
| Micro soft. Network/loadBalancers/backendAddressPools/join/ActionMicrosoft.Network/loadBalancers/backendAddressPools/join/action | Voegt een load balancer back-end-adres groep samen.Joins a load balancer backend address pool. Niet Alertable.Not Alertable. |
| Micro soft. Network/loadBalancers/inboundNatPools/join/ActionMicrosoft.Network/loadBalancers/inboundNatPools/join/action | Voegt een load balancer binnenkomende NAT-pool samen.Joins a load balancer inbound NAT pool. Niet alertable.Not alertable. |
| Micro soft. Network/loadBalancers/inboundNatRules/join/ActionMicrosoft.Network/loadBalancers/inboundNatRules/join/action | Voegt een load balancer binnenkomende NAT-regel.Joins a load balancer inbound nat rule. Niet Alertable.Not Alertable. |
| Micro soft. Network/loadBalancers/probes/join/ActionMicrosoft.Network/loadBalancers/probes/join/action | Staat het gebruik van tests van een load balancer toe.Allows using probes of a load balancer. Met deze machtiging healthProbe eigenschap van de VM-schaalset kan bijvoorbeeld naar de test worden verwezen.For example, with this permission healthProbe property of VM scale set can reference the probe. Niet alertable.Not alertable. |
| Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
| Micro soft. Network/locations/*Microsoft.Network/locations/* | Netwerk locaties maken en beherenCreate and manage network locations |
| Micro soft. Network/networkInterfaces/*Microsoft.Network/networkInterfaces/* | Netwerk interfaces maken en beherenCreate and manage network interfaces |
| Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
| Micro soft. Network/networkSecurityGroups/ReadMicrosoft.Network/networkSecurityGroups/read | Hiermee wordt een definitie van een netwerk beveiligings groep opgehaaldGets a network security group definition |
| Micro soft. Network/publicIPAddresses/join/ActionMicrosoft.Network/publicIPAddresses/join/action | Er wordt verbinding gemaakt met een openbaar IP-adres.Joins a public ip address. Niet Alertable.Not Alertable. |
| Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
| Micro soft. Recovery Services/locations/*Microsoft.RecoveryServices/locations/* | |
| Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write | Een doel voor back-upbeveiliging makenCreate a backup Protection Intent |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/*/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/*/read | |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write | Een beveiligd back-upitem makenCreate a backup Protected Item |
| Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
| Micro soft. Recovery Services/vaults/backupPolicies/writeMicrosoft.RecoveryServices/Vaults/backupPolicies/write | Hiermee wordt een beveiligings beleid gemaaktCreates Protection Policy |
| Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
| Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/writeMicrosoft.RecoveryServices/Vaults/write | Met een kluis bewerking maken wordt een Azure-resource van het type ' kluis ' gemaakt.Create Vault operation creates an Azure resource of type 'vault' |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. SqlVirtualMachine/*Microsoft.SqlVirtualMachine/* | |
| Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
| Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/9980e02c-c2be-4d73-94e8-173b1dc7cf3c",
"name": "9980e02c-c2be-4d73-94e8-173b1dc7cf3c",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Compute/availabilitySets/*",
"Microsoft.Compute/locations/*",
"Microsoft.Compute/virtualMachines/*",
"Microsoft.Compute/virtualMachineScaleSets/*",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/read",
"Microsoft.Compute/disks/delete",
"Microsoft.DevTestLab/schedules/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/applicationGateways/backendAddressPools/join/action",
"Microsoft.Network/loadBalancers/backendAddressPools/join/action",
"Microsoft.Network/loadBalancers/inboundNatPools/join/action",
"Microsoft.Network/loadBalancers/inboundNatRules/join/action",
"Microsoft.Network/loadBalancers/probes/join/action",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/locations/*",
"Microsoft.Network/networkInterfaces/*",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Network/networkSecurityGroups/read",
"Microsoft.Network/publicIPAddresses/join/action",
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.RecoveryServices/locations/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/*/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/write",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.RecoveryServices/Vaults/write",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.SqlVirtualMachine/*",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Virtual Machine Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gebruikers aanmelding voor de virtuele machineVirtual Machine User Login
Bekijk Virtual Machines in de portal en meld u aan als een gewone gebruiker.View Virtual Machines in the portal and login as a regular user. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Network/publicIPAddresses/ReadMicrosoft.Network/publicIPAddresses/read | Hiermee wordt een definitie van een openbaar IP-adres opgehaald.Gets a public ip address definition. |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/loadBalancers/ReadMicrosoft.Network/loadBalancers/read | Hiermee wordt een load balancer definitie opgehaaldGets a load balancer definition |
| Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
| Micro soft. Compute/virtualMachines/*/ReadMicrosoft.Compute/virtualMachines/*/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Compute/virtualMachines/login/ActionMicrosoft.Compute/virtualMachines/login/action | Als gewone gebruiker aanmelden bij een virtuele machineLog in to a virtual machine as a regular user |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "View Virtual Machines in the portal and login as a regular user.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/fb879df8-f326-4884-b1cf-06f3ad86be52",
"name": "fb879df8-f326-4884-b1cf-06f3ad86be52",
"permissions": [
{
"actions": [
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Compute/virtualMachines/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Compute/virtualMachines/login/action"
],
"notDataActions": []
}
],
"roleName": "Virtual Machine User Login",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
NetwerkenNetworking
Inzender voor CDN-eind puntenCDN Endpoint Contributor
Kan CDN-eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN endpoints, but can't grant access to other users.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
| Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
| Micro soft. CDN/Profiles/endpoints/*Microsoft.Cdn/profiles/endpoints/* | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage CDN endpoints, but can't grant access to other users.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/426e0c7f-0c7e-4658-b36f-ff54d6c29b45",
"name": "426e0c7f-0c7e-4658-b36f-ff54d6c29b45",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/endpoints/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Endpoint Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CDN-eindpunt lezerCDN Endpoint Reader
Kan CDN-eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN endpoints, but can't make changes.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
| Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
| Micro soft. CDN/Profiles/endpoints/*/ReadMicrosoft.Cdn/profiles/endpoints/*/read | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view CDN endpoints, but can't make changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/871e35f6-b5c1-49cc-a043-bde969a0f2cd",
"name": "871e35f6-b5c1-49cc-a043-bde969a0f2cd",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/endpoints/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Endpoint Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor CDN-profielCDN Profile Contributor
Kan CDN-profielen en de bijbehorende eind punten beheren, maar kan geen toegang verlenen aan andere gebruikers.Can manage CDN profiles and their endpoints, but can't grant access to other users. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
| Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
| Micro soft. CDN/Profiles/*Microsoft.Cdn/profiles/* | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage CDN profiles and their endpoints, but can't grant access to other users.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ec156ff8-a8d1-4d15-830c-5b80698ca432",
"name": "ec156ff8-a8d1-4d15-830c-5b80698ca432",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Profile Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CDN-profiel lezerCDN Profile Reader
Kan CDN-profielen en de bijbehorende eind punten weer geven, maar kan geen wijzigingen aanbrengen.Can view CDN profiles and their endpoints, but can't make changes.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. CDN/edgenodes/ReadMicrosoft.Cdn/edgenodes/read | |
| Micro soft. CDN/operationresults/*Microsoft.Cdn/operationresults/* | |
| Micro soft. CDN/Profiles/*/ReadMicrosoft.Cdn/profiles/*/read | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view CDN profiles and their endpoints, but can't make changes.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8f96442b-4075-438f-813d-ad51ab4019af",
"name": "8f96442b-4075-438f-813d-ad51ab4019af",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cdn/edgenodes/read",
"Microsoft.Cdn/operationresults/*",
"Microsoft.Cdn/profiles/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CDN Profile Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor klassieke netwerkenClassic Network Contributor
Hiermee beheert u klassieke netwerken, maar hebt u geen toegang tot de netwerk bestanden.Lets you manage classic networks, but not access to them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ClassicNetwork/*Microsoft.ClassicNetwork/* | Klassieke netwerken maken en beherenCreate and manage classic networks |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic networks, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b34d265f-36f7-4a0d-a4d4-e158ca92e90f",
"name": "b34d265f-36f7-4a0d-a4d4-e158ca92e90f",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicNetwork/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Network Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender DNS-zoneDNS Zone Contributor
Met kunt u DNS-zones en-record sets beheren in Azure DNS, maar kunt u niet bepalen wie toegang heeft tot de groepen.Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Network/dnsZones/*Microsoft.Network/dnsZones/* | DNS-zones en-records maken en beherenCreate and manage DNS zones and records |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage DNS zones and record sets in Azure DNS, but does not let you control who has access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/befefa01-2a29-4197-83a8-272ff33ce314",
"name": "befefa01-2a29-4197-83a8-272ff33ce314",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/dnsZones/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "DNS Zone Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor netwerkenNetwork Contributor
Hiermee kunt u netwerken beheren, maar niet de toegang tot de netwerk bestanden.Lets you manage networks, but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Network/*Microsoft.Network/* | Netwerken maken en beherenCreate and manage networks |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage networks, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4d97b98b-1d4f-4787-a291-c67834d212e7",
"name": "4d97b98b-1d4f-4787-a291-c67834d212e7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Network Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor Privé-DNS-zonePrivate DNS Zone Contributor
Hiermee kunt u privé-DNS-zone bronnen beheren, maar niet de virtuele netwerken waaraan ze zijn gekoppeld.Lets you manage private DNS zone resources, but not the virtual networks they are linked to. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Network/privateDnsZones/*Microsoft.Network/privateDnsZones/* | |
| Micro soft. Network/privateDnsOperationResults/*Microsoft.Network/privateDnsOperationResults/* | |
| Micro soft. Network/privateDnsOperationStatuses/*Microsoft.Network/privateDnsOperationStatuses/* | |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/virtualNetworks/join/ActionMicrosoft.Network/virtualNetworks/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage private DNS zone resources, but not the virtual networks they are linked to.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b12aa53e-6015-4669-85d0-8515ebb3ae7f",
"name": "b12aa53e-6015-4669-85d0-8515ebb3ae7f",
"permissions": [
{
"actions": [
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/privateDnsZones/*",
"Microsoft.Network/privateDnsOperationResults/*",
"Microsoft.Network/privateDnsOperationStatuses/*",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/join/action",
"Microsoft.Authorization/*/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Private DNS Zone Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Traffic ManagerTraffic Manager Contributor
Hiermee beheert u Traffic Manager profielen, maar kunt u niet bepalen wie er toegang tot heeft.Lets you manage Traffic Manager profiles, but does not let you control who has access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Network/trafficManagerProfiles/*Microsoft.Network/trafficManagerProfiles/* | |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Traffic Manager profiles, but does not let you control who has access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a4b10055-b0c7-44c2-b00f-c7b5b3550cf7",
"name": "a4b10055-b0c7-44c2-b00f-c7b5b3550cf7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/trafficManagerProfiles/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Traffic Manager Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
StorageStorage
AVERE-bijdragerAvere Contributor
Kan een avere vFXT-cluster maken en beheren.Can create and manage an Avere vFXT cluster. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Compute/*/ReadMicrosoft.Compute/*/read | |
| Micro soft. Compute/availabilitySets/*Microsoft.Compute/availabilitySets/* | |
| Micro soft. Compute/proximityPlacementGroups/*Microsoft.Compute/proximityPlacementGroups/* | |
| Micro soft. Compute/virtualMachines/*Microsoft.Compute/virtualMachines/* | |
| Micro soft. Compute/disks/*Microsoft.Compute/disks/* | |
| Micro soft. Network/*/ReadMicrosoft.Network/*/read | |
| Micro soft. Network/networkInterfaces/*Microsoft.Network/networkInterfaces/* | |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/virtualNetworks/subnets/ReadMicrosoft.Network/virtualNetworks/subnets/read | Hiermee wordt een subnet definitie van een virtueel netwerk opgehaaldGets a virtual network subnet definition |
| Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
| Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
| Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Storage/*/ReadMicrosoft.Storage/*/read | |
| Micro soft. Storage/storageAccounts/*Microsoft.Storage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. resources/Subscriptions/resourceGroups/resources/ReadMicrosoft.Resources/subscriptions/resourceGroups/resources/read | Hiermee haalt u de resources voor de resource groep op.Gets the resources for the resource group. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Hiermee wordt het resultaat van het verwijderen van een BLOB geretourneerdReturns the result of deleting a blob |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Retourneert een BLOB of een lijst met blobsReturns a blob or a list of blobs |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Hiermee wordt het resultaat van het schrijven van een BLOB geretourneerdReturns the result of writing a blob |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can create and manage an Avere vFXT cluster.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4f8fab4f-1852-4a58-a46a-8eaf358af14a",
"name": "4f8fab4f-1852-4a58-a46a-8eaf358af14a",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Compute/*/read",
"Microsoft.Compute/availabilitySets/*",
"Microsoft.Compute/proximityPlacementGroups/*",
"Microsoft.Compute/virtualMachines/*",
"Microsoft.Compute/disks/*",
"Microsoft.Network/*/read",
"Microsoft.Network/networkInterfaces/*",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Resources/deployments/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/*/read",
"Microsoft.Storage/storageAccounts/*",
"Microsoft.Support/*",
"Microsoft.Resources/subscriptions/resourceGroups/resources/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write"
],
"notDataActions": []
}
],
"roleName": "Avere Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AVERE-operatorAvere Operator
Wordt gebruikt door het avere vFXT-cluster voor het beheren van het cluster meer informatieUsed by the Avere vFXT cluster to manage the cluster Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Compute/virtualMachines/ReadMicrosoft.Compute/virtualMachines/read | De eigenschappen van een virtuele machine ophalenGet the properties of a virtual machine |
| Micro soft. Network/networkInterfaces/ReadMicrosoft.Network/networkInterfaces/read | Hiermee haalt u een definitie van een netwerk interface.Gets a network interface definition. |
| Micro soft. Network/networkInterfaces/writeMicrosoft.Network/networkInterfaces/write | Hiermee maakt u een netwerk interface of werkt u een bestaande netwerk interface bij.Creates a network interface or updates an existing network interface. |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Network/virtualNetworks/subnets/ReadMicrosoft.Network/virtualNetworks/subnets/read | Hiermee wordt een subnet definitie van een virtueel netwerk opgehaaldGets a virtual network subnet definition |
| Micro soft. Network/virtualNetworks/subnets/join/ActionMicrosoft.Network/virtualNetworks/subnets/join/action | Voegt een virtueel netwerk samen.Joins a virtual network. Niet Alertable.Not Alertable. |
| Micro soft. Network/networkSecurityGroups/join/ActionMicrosoft.Network/networkSecurityGroups/join/action | Er wordt lid van een netwerk beveiligings groep.Joins a network security group. Niet Alertable.Not Alertable. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Storage/storageAccounts/blobServices/containers/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/delete | Retourneert het resultaat van het verwijderen van een containerReturns the result of deleting a container |
| Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Hiermee wordt een lijst met containers opgehaaldReturns list of containers |
| Micro soft. Storage/storageAccounts/blobServices/containers/writeMicrosoft.Storage/storageAccounts/blobServices/containers/write | Retourneert het resultaat van de put-BLOB-containerReturns the result of put blob container |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Hiermee wordt het resultaat van het verwijderen van een BLOB geretourneerdReturns the result of deleting a blob |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Retourneert een BLOB of een lijst met blobsReturns a blob or a list of blobs |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Hiermee wordt het resultaat van het schrijven van een BLOB geretourneerdReturns the result of writing a blob |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Used by the Avere vFXT cluster to manage the cluster",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c025889f-8102-4ebf-b32c-fc0c6f0c6bd9",
"name": "c025889f-8102-4ebf-b32c-fc0c6f0c6bd9",
"permissions": [
{
"actions": [
"Microsoft.Compute/virtualMachines/read",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Network/networkInterfaces/write",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/networkSecurityGroups/join/action",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/write"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write"
],
"notDataActions": []
}
],
"roleName": "Avere Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-upinzenderBackup Contributor
Hiermee kunt u de back-upservice beheren, maar geen kluizen maken en anderen toegang gevenLets you manage backup service, but can't create vaults and give access to others Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Recovery Services/locations/*Microsoft.RecoveryServices/locations/* | |
| Micro soft. Recovery Services/vaults/backupFabrics/operationResults/*Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/* | Resultaten van de werking van het back-upbeheer beherenManage results of operation on backup management |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/*Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/* | Back-upcontainers maken en beheren in back-upinfrastructuur van Recovery Services kluisCreate and manage backup containers inside backup fabrics of Recovery Services vault |
| Micro soft. Recovery Services/vaults/backupFabrics/refreshContainers/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action | Hiermee vernieuwt u de container lijstRefreshes the container list |
| Micro soft. Recovery Services/vaults/backupJobs/*Microsoft.RecoveryServices/Vaults/backupJobs/* | Back-uptaken maken en beherenCreate and manage backup jobs |
| Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
| Micro soft. Recovery Services/vaults/backupOperationResults/*Microsoft.RecoveryServices/Vaults/backupOperationResults/* | Resultaten van back-upbeheer bewerkingen maken en beherenCreate and manage Results of backup management operations |
| Micro soft. Recovery Services/vaults/backupPolicies/*Microsoft.RecoveryServices/Vaults/backupPolicies/* | Back-upbeleid maken en beherenCreate and manage backup policies |
| Micro soft. Recovery Services/vaults/backupProtectableItems/*Microsoft.RecoveryServices/Vaults/backupProtectableItems/* | Items maken en beheren waarvan een back-up kan worden gemaaktCreate and manage items which can be backed up |
| Micro soft. Recovery Services/vaults/backupProtectedItems/*Microsoft.RecoveryServices/Vaults/backupProtectedItems/* | Back-upitems maken en beherenCreate and manage backed up items |
| Micro soft. Recovery Services/vaults/backupProtectionContainers/*Microsoft.RecoveryServices/Vaults/backupProtectionContainers/* | Containers maken en beheren met back-upitemsCreate and manage containers holding backup items |
| Micro soft. Recovery Services/vaults/backupSecurityPIN/*Microsoft.RecoveryServices/Vaults/backupSecurityPIN/* | |
| Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
| Micro soft. Recovery Services/vaults/certificates/*Microsoft.RecoveryServices/Vaults/certificates/* | Certificaten maken en beheren die zijn gerelateerd aan back-ups in Recovery Services kluisCreate and manage certificates related to backup in Recovery Services vault |
| Micro soft. Recovery Services/vaults/extendedInformation/*Microsoft.RecoveryServices/Vaults/extendedInformation/* | Uitgebreide informatie met betrekking tot de kluis maken en beherenCreate and manage extended info related to vault |
| Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
| Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
| Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
| Micro soft. Recovery Services/vaults/registeredIdentities/*Microsoft.RecoveryServices/Vaults/registeredIdentities/* | Geregistreerde identiteiten maken en beherenCreate and manage registered identities |
| Micro soft. Recovery Services/vaults/usages/*Microsoft.RecoveryServices/Vaults/usages/* | Gebruik van Recovery Services kluis maken en beherenCreate and manage usage of Recovery Services vault |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
| Micro soft. Recovery Services/vaults/backupstorageconfig/*Microsoft.RecoveryServices/Vaults/backupstorageconfig/* | |
| Micro soft. Recovery Services/vaults/backupconfig/*Microsoft.RecoveryServices/Vaults/backupconfig/* | |
| Micro soft. Recovery Services/vaults/backupValidateOperation/ActionMicrosoft.RecoveryServices/Vaults/backupValidateOperation/action | Bewerking voor beveiligd item validerenValidate Operation on Protected Item |
| Micro soft. Recovery Services/vaults/writeMicrosoft.RecoveryServices/Vaults/write | Met een kluis bewerking maken wordt een Azure-resource van het type ' kluis ' gemaakt.Create Vault operation creates an Azure resource of type 'vault' |
| Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
| Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/*Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/* | |
| Micro soft. Recovery Services/vaults/backupFabrics/protectableContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read | Alle Beveilig bare containers ophalenGet all protectable containers |
| Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
| Micro soft. Recovery Services/locations/backupPreValidateProtection/ActionMicrosoft.RecoveryServices/locations/backupPreValidateProtection/action | |
| Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
| Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
| Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
| Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
| Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage backup service,but can't create vaults and give access to others",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5e467623-bb1f-42f4-a55d-6e525e11384b",
"name": "5e467623-bb1f-42f4-a55d-6e525e11384b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.RecoveryServices/locations/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action",
"Microsoft.RecoveryServices/Vaults/backupJobs/*",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/*",
"Microsoft.RecoveryServices/Vaults/backupPolicies/*",
"Microsoft.RecoveryServices/Vaults/backupProtectableItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/*",
"Microsoft.RecoveryServices/Vaults/backupSecurityPIN/*",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/certificates/*",
"Microsoft.RecoveryServices/Vaults/extendedInformation/*",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/*",
"Microsoft.RecoveryServices/Vaults/usages/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/*",
"Microsoft.RecoveryServices/Vaults/backupconfig/*",
"Microsoft.RecoveryServices/Vaults/backupValidateOperation/action",
"Microsoft.RecoveryServices/Vaults/write",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/*",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/locations/backupPreValidateProtection/action",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-upoperatorBackup Operator
Hiermee kunt u back-upservices beheren, behalve het verwijderen van back-ups, het maken van een kluis en het verlenen van toegang aan anderen meer informatieLets you manage backup services, except removal of backup, vault creation and giving access to others Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Network/virtualNetworks/ReadMicrosoft.Network/virtualNetworks/read | De virtuele-netwerk definitie ophalenGet the virtual network definition |
| Micro soft. Recovery Services/vaults/backupFabrics/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/operationResults/read | Hiermee wordt de status van de bewerking geretourneerdReturns status of the operation |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op de beveiligings container opgehaald.Gets result of Operation performed on Protection Container. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/backup/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/backup/action | Maakt een back-up voor het beveiligde item.Performs Backup for Protected Item. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op beveiligde items opgehaald.Gets Result of Operation Performed on Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read | Hiermee wordt de status geretourneerd van de bewerking die is uitgevoerd op beveiligde items.Returns the status of Operation performed on Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/action | Direct-item herstel inrichten voor beveiligd itemProvision Instant Item Recovery for Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read | Herstel punten voor beveiligde items ophalen.Get Recovery Points for Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/Restore/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/restore/action | Herstel punten voor beveiligde items herstellen.Restore Recovery Points for Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/action | Herstel van onmiddellijke items intrekken voor beveiligd itemRevoke Instant Item Recovery for Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write | Een beveiligd back-upitem makenCreate a backup Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read | Hiermee worden alle geregistreerde containers geretourneerdReturns all registered containers |
| Micro soft. Recovery Services/vaults/backupFabrics/refreshContainers/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action | Hiermee vernieuwt u de container lijstRefreshes the container list |
| Micro soft. Recovery Services/vaults/backupJobs/*Microsoft.RecoveryServices/Vaults/backupJobs/* | Back-uptaken maken en beherenCreate and manage backup jobs |
| Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
| Micro soft. Recovery Services/vaults/backupOperationResults/*Microsoft.RecoveryServices/Vaults/backupOperationResults/* | Resultaten van back-upbeheer bewerkingen maken en beherenCreate and manage Results of backup management operations |
| Micro soft. Recovery Services/vaults/backupPolicies/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operationResults/read | Resultaten van beleids bewerking ophalen.Get Results of Policy Operation. |
| Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
| Micro soft. Recovery Services/vaults/backupProtectableItems/*Microsoft.RecoveryServices/Vaults/backupProtectableItems/* | Items maken en beheren waarvan een back-up kan worden gemaaktCreate and manage items which can be backed up |
| Micro soft. Recovery Services/vaults/backupProtectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupProtectedItems/read | Hiermee wordt de lijst met alle beveiligde items geretourneerd.Returns the list of all Protected Items. |
| Micro soft. Recovery Services/vaults/backupProtectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionContainers/read | Hiermee worden alle containers van het abonnement geretourneerdReturns all containers belonging to the subscription |
| Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
| Micro soft. Recovery Services/vaults/certificates/writeMicrosoft.RecoveryServices/Vaults/certificates/write | Met de bewerking resource certificaat bijwerken wordt het resource/kluis-referentie certificaat bijgewerkt.The Update Resource Certificate operation updates the resource/vault credential certificate. |
| Micro soft. Recovery Services/vaults/extendedInformation/ReadMicrosoft.RecoveryServices/Vaults/extendedInformation/read | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
| Micro soft. Recovery Services/vaults/extendedInformation/writeMicrosoft.RecoveryServices/Vaults/extendedInformation/write | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
| Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
| Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
| Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
| Micro soft. Recovery Services/vaults/registeredIdentities/operationResults/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read | De bewerking resultaten van de bewerking ophalen kan worden gebruikt om de bewerkings status en het resultaat van de asynchroon ingediende bewerking op te halenThe Get Operation Results operation can be used get the operation status and result for the asynchronously submitted operation |
| Micro soft. Recovery Services/vaults/registeredIdentities/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/read | De bewerking containers ophalen kan worden gebruikt om de containers op te halen die voor een resource zijn geregistreerd.The Get Containers operation can be used get the containers registered for a resource. |
| Micro soft. Recovery Services/vaults/registeredIdentities/writeMicrosoft.RecoveryServices/Vaults/registeredIdentities/write | De bewerking service container registreren kan worden gebruikt om een container te registreren bij de Recovery-service.The Register Service Container operation can be used to register a container with Recovery Service. |
| Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
| Micro soft. Recovery Services/vaults/backupstorageconfig/*Microsoft.RecoveryServices/Vaults/backupstorageconfig/* | |
| Micro soft. Recovery Services/vaults/backupValidateOperation/ActionMicrosoft.RecoveryServices/Vaults/backupValidateOperation/action | Bewerking voor beveiligd item validerenValidate Operation on Protected Item |
| Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupPolicies/Operations/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operations/read | Status van beleids bewerking ophalen.Get Status of Policy Operation. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/write | Hiermee maakt u een geregistreerde containerCreates a registered container |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/inquire/ActionMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/inquire/action | Een query uitvoeren voor werk belastingen binnen een containerDo inquiry for workloads within a container |
| Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
| Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/writeMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write | Een doel voor back-upbeveiliging makenCreate a backup Protection Intent |
| Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read | Een doel voor back-upbeveiliging verkrijgenGet a backup Protection Intent |
| Micro soft. Recovery Services/vaults/backupFabrics/protectableContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read | Alle Beveilig bare containers ophalenGet all protectable containers |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/items/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read | Alle items in een container ophalenGet all items in a container |
| Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
| Micro soft. Recovery Services/locations/backupPreValidateProtection/ActionMicrosoft.RecoveryServices/locations/backupPreValidateProtection/action | |
| Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
| Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
| Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
| Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
| Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage backup services, except removal of backup, vault creation and giving access to others",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/00c29273-979b-4161-815c-10b084fb9324",
"name": "00c29273-979b-4161-815c-10b084fb9324",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/backup/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/provisionInstantItemRecovery/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/restore/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/revokeInstantItemRecovery/action",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/refreshContainers/action",
"Microsoft.RecoveryServices/Vaults/backupJobs/*",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/*",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupProtectableItems/*",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/certificates/write",
"Microsoft.RecoveryServices/Vaults/extendedInformation/read",
"Microsoft.RecoveryServices/Vaults/extendedInformation/write",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/write",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/*",
"Microsoft.RecoveryServices/Vaults/backupValidateOperation/action",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operations/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/inquire/action",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/write",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectableContainers/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/locations/backupPreValidateProtection/action",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Back-uplezerBackup Reader
Kan back-upservices weer geven, maar kan geen wijzigingen meer aanbrengenCan view backup services, but can't make changes Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Recovery Services/locations/allocatedStamp/ReadMicrosoft.RecoveryServices/locations/allocatedStamp/read | GetAllocatedStamp is een interne bewerking die wordt gebruikt door de serviceGetAllocatedStamp is internal operation used by service |
| Micro soft. Recovery Services/vaults/backupFabrics/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/operationResults/read | Hiermee wordt de status van de bewerking geretourneerdReturns status of the operation |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op de beveiligings container opgehaald.Gets result of Operation performed on Protection Container. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read | Hiermee wordt het resultaat van de bewerking die is uitgevoerd op beveiligde items opgehaald.Gets Result of Operation Performed on Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read | Hiermee wordt de status geretourneerd van de bewerking die is uitgevoerd op beveiligde items.Returns the status of Operation performed on Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read | Hiermee worden object gegevens van het beveiligde item geretourneerdReturns object details of the Protected Item |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read | Herstel punten voor beveiligde items ophalen.Get Recovery Points for Protected Items. |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read | Hiermee worden alle geregistreerde containers geretourneerdReturns all registered containers |
| Micro soft. Recovery Services/vaults/backupJobs/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupJobs/operationResults/read | Hiermee wordt het resultaat van de taak bewerking geretourneerd.Returns the Result of Job Operation. |
| Micro soft. Recovery Services/vaults/backupJobs/ReadMicrosoft.RecoveryServices/Vaults/backupJobs/read | Hiermee worden alle taak objecten geretourneerdReturns all Job Objects |
| Micro soft. Recovery Services/vaults/backupJobsExport/ActionMicrosoft.RecoveryServices/Vaults/backupJobsExport/action | Taken exporterenExport Jobs |
| Micro soft. Recovery Services/vaults/backupOperationResults/ReadMicrosoft.RecoveryServices/Vaults/backupOperationResults/read | Retourneert een back-upbewerkings resultaat voor Recovery Services kluis.Returns Backup Operation Result for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupPolicies/operationResults/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operationResults/read | Resultaten van beleids bewerking ophalen.Get Results of Policy Operation. |
| Micro soft. Recovery Services/vaults/backupPolicies/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/read | Hiermee worden alle beveiligings beleidsregels geretourneerdReturns all Protection Policies |
| Micro soft. Recovery Services/vaults/backupProtectedItems/ReadMicrosoft.RecoveryServices/Vaults/backupProtectedItems/read | Hiermee wordt de lijst met alle beveiligde items geretourneerd.Returns the list of all Protected Items. |
| Micro soft. Recovery Services/vaults/backupProtectionContainers/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionContainers/read | Hiermee worden alle containers van het abonnement geretourneerdReturns all containers belonging to the subscription |
| Micro soft. Recovery Services/vaults/backupUsageSummaries/ReadMicrosoft.RecoveryServices/Vaults/backupUsageSummaries/read | Retourneert samen vattingen voor beveiligde items en beveiligde servers voor een Recovery Services.Returns summaries for Protected Items and Protected Servers for a Recovery Services . |
| Micro soft. Recovery Services/vaults/extendedInformation/ReadMicrosoft.RecoveryServices/Vaults/extendedInformation/read | Met de bewerking uitgebreide informatie ophalen wordt de uitgebreide informatie opgehaald van een object dat de Azure-resource van het type? kluis vertegenwoordigt?The Get Extended Info operation gets an object's Extended Info representing the Azure resource of type ?vault? |
| Micro soft. Recovery Services/vaults/monitoringAlerts/ReadMicrosoft.RecoveryServices/Vaults/monitoringAlerts/read | Hiermee worden de waarschuwingen voor de Recovery Services-kluis opgehaald.Gets the alerts for the Recovery services vault. |
| Micro soft. Recovery Services/vaults/ReadMicrosoft.RecoveryServices/Vaults/read | Met de bewerking kluis ophalen wordt een object opgehaald dat de Azure-resource van het type ' kluis ' vertegenwoordigt.The Get Vault operation gets an object representing the Azure resource of type 'vault' |
| Micro soft. Recovery Services/vaults/registeredIdentities/operationResults/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read | De bewerking resultaten van de bewerking ophalen kan worden gebruikt om de bewerkings status en het resultaat van de asynchroon ingediende bewerking op te halenThe Get Operation Results operation can be used get the operation status and result for the asynchronously submitted operation |
| Micro soft. Recovery Services/vaults/registeredIdentities/ReadMicrosoft.RecoveryServices/Vaults/registeredIdentities/read | De bewerking containers ophalen kan worden gebruikt om de containers op te halen die voor een resource zijn geregistreerd.The Get Containers operation can be used get the containers registered for a resource. |
| Micro soft. Recovery Services/vaults/backupstorageconfig/ReadMicrosoft.RecoveryServices/Vaults/backupstorageconfig/read | Hiermee wordt de opslag configuratie voor Recovery Services kluis geretourneerd.Returns Storage Configuration for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupconfig/ReadMicrosoft.RecoveryServices/Vaults/backupconfig/read | Hiermee wordt de configuratie voor Recovery Services kluis geretourneerd.Returns Configuration for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupOperations/ReadMicrosoft.RecoveryServices/Vaults/backupOperations/read | Hiermee wordt de status van de back-upbewerking voor Recovery Services kluis geretourneerd.Returns Backup Operation Status for Recovery Services Vault. |
| Micro soft. Recovery Services/vaults/backupPolicies/Operations/ReadMicrosoft.RecoveryServices/Vaults/backupPolicies/operations/read | Status van beleids bewerking ophalen.Get Status of Policy Operation. |
| Micro soft. Recovery Services/vaults/backupEngines/ReadMicrosoft.RecoveryServices/Vaults/backupEngines/read | Retourneert alle back-upbeheerser vers die zijn geregistreerd bij de kluis.Returns all the backup management servers registered with vault. |
| Micro soft. Recovery Services/vaults/backupFabrics/backupProtectionIntent/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read | Een doel voor back-upbeveiliging verkrijgenGet a backup Protection Intent |
| Micro soft. Recovery Services/vaults/backupFabrics/protectionContainers/items/ReadMicrosoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read | Alle items in een container ophalenGet all items in a container |
| Micro soft. Recovery Services/locations/backupStatus/ActionMicrosoft.RecoveryServices/locations/backupStatus/action | De back-upstatus voor Recovery Services kluizen controlerenCheck Backup Status for Recovery Services Vaults |
| Micro soft. Recovery Services/vaults/monitoringConfigurations/*Microsoft.RecoveryServices/Vaults/monitoringConfigurations/* | |
| Micro soft. Recovery Services/vaults/monitoringAlerts/writeMicrosoft.RecoveryServices/Vaults/monitoringAlerts/write | Hiermee wordt de waarschuwing opgelost.Resolves the alert. |
| Micro soft. Recovery Services/Operations/ReadMicrosoft.RecoveryServices/operations/read | Met deze bewerking wordt de lijst met bewerkingen voor een resource provider geretourneerdOperation returns the list of Operations for a Resource Provider |
| Micro soft. Recovery Services/locations/operationStatus/ReadMicrosoft.RecoveryServices/locations/operationStatus/read | Hiermee wordt de bewerkings status voor een bepaalde bewerking opgehaaldGets Operation Status for a given Operation |
| Micro soft. Recovery Services/vaults/backupProtectionIntents/ReadMicrosoft.RecoveryServices/Vaults/backupProtectionIntents/read | Alle intenties van de back-upbeveiliging weer gevenList all backup Protection Intents |
| Micro soft. Recovery Services/vaults/usages/ReadMicrosoft.RecoveryServices/Vaults/usages/read | Hiermee worden gebruiks gegevens voor een Recovery Services kluis geretourneerd.Returns usage details for a Recovery Services Vault. |
| Micro soft. Recovery Services/locations/backupValidateFeatures/ActionMicrosoft.RecoveryServices/locations/backupValidateFeatures/action | Functies validerenValidate Features |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can view backup services, but can't make changes",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a795c7a0-d4a2-40c1-ae25-d81f01202912",
"name": "a795c7a0-d4a2-40c1-ae25-d81f01202912",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.RecoveryServices/locations/allocatedStamp/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/operationsStatus/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/protectedItems/recoveryPoints/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupJobs/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupJobs/read",
"Microsoft.RecoveryServices/Vaults/backupJobsExport/action",
"Microsoft.RecoveryServices/Vaults/backupOperationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operationResults/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/read",
"Microsoft.RecoveryServices/Vaults/backupProtectedItems/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionContainers/read",
"Microsoft.RecoveryServices/Vaults/backupUsageSummaries/read",
"Microsoft.RecoveryServices/Vaults/extendedInformation/read",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/read",
"Microsoft.RecoveryServices/Vaults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/operationResults/read",
"Microsoft.RecoveryServices/Vaults/registeredIdentities/read",
"Microsoft.RecoveryServices/Vaults/backupstorageconfig/read",
"Microsoft.RecoveryServices/Vaults/backupconfig/read",
"Microsoft.RecoveryServices/Vaults/backupOperations/read",
"Microsoft.RecoveryServices/Vaults/backupPolicies/operations/read",
"Microsoft.RecoveryServices/Vaults/backupEngines/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/backupProtectionIntent/read",
"Microsoft.RecoveryServices/Vaults/backupFabrics/protectionContainers/items/read",
"Microsoft.RecoveryServices/locations/backupStatus/action",
"Microsoft.RecoveryServices/Vaults/monitoringConfigurations/*",
"Microsoft.RecoveryServices/Vaults/monitoringAlerts/write",
"Microsoft.RecoveryServices/operations/read",
"Microsoft.RecoveryServices/locations/operationStatus/read",
"Microsoft.RecoveryServices/Vaults/backupProtectionIntents/read",
"Microsoft.RecoveryServices/Vaults/usages/read",
"Microsoft.RecoveryServices/locations/backupValidateFeatures/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Backup Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor klassieke opslag accountsClassic Storage Account Contributor
Hiermee kunt u klassieke opslag accounts beheren, maar niet de toegang tot de account.Lets you manage classic storage accounts, but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ClassicStorage/storageAccounts/*Microsoft.ClassicStorage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage classic storage accounts, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/86e8f5dc-a6e9-4c67-9d15-de283e8eac25",
"name": "86e8f5dc-a6e9-4c67-9d15-de283e8eac25",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ClassicStorage/storageAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Storage Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Service functie voor de sleutel operator voor klassieke opslag accountsClassic Storage Account Key Operator Service Role
De sleutel operators voor klassieke opslag accounts mogen sleutels vermelden en opnieuw genereren voor klassieke opslag accounts meer informatieClassic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ClassicStorage/storageAccounts/listkeys/ActionMicrosoft.ClassicStorage/storageAccounts/listkeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
| Micro soft. ClassicStorage/storageAccounts/regeneratekey/ActionMicrosoft.ClassicStorage/storageAccounts/regeneratekey/action | Hiermee worden de bestaande toegangs sleutels voor het opslag account opnieuw gegenereerd.Regenerates the existing access keys for the storage account. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Classic Storage Account Key Operators are allowed to list and regenerate keys on Classic Storage Accounts",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/985d6b00-f706-48f5-a6fe-d0ca12fb668d",
"name": "985d6b00-f706-48f5-a6fe-d0ca12fb668d",
"permissions": [
{
"actions": [
"Microsoft.ClassicStorage/storageAccounts/listkeys/action",
"Microsoft.ClassicStorage/storageAccounts/regeneratekey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Classic Storage Account Key Operator Service Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Data BoxData Box Contributor
Hiermee kunt u alles beheren onder Data Box Service, behalve dat anderen toegang verlenen.Lets you manage everything under Data Box Service except giving access to others. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Databox/*Microsoft.Databox/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage everything under Data Box Service except giving access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/add466c9-e687-43fc-8d98-dfcf8d720be5",
"name": "add466c9-e687-43fc-8d98-dfcf8d720be5",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Databox/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Box Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Data Box lezerData Box Reader
Met kunt u de Data Box-Service beheren, met uitzonde ring van order gegevens maken of bewerken en anderen toegang verlenen.Lets you manage Data Box Service except creating order or editing order details and giving access to others. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Databox/*/ReadMicrosoft.Databox/*/read | |
| Micro soft. Databox/Jobs/listsecrets/ActionMicrosoft.Databox/jobs/listsecrets/action | |
| Micro soft. Databox/Jobs/listcredentials/ActionMicrosoft.Databox/jobs/listcredentials/action | Geeft een lijst van de niet-versleutelde referenties die zijn gerelateerd aan de order.Lists the unencrypted credentials related to the order. |
| Micro soft. Databox/locations/availableSkus/ActionMicrosoft.Databox/locations/availableSkus/action | Met deze methode wordt de lijst met beschik bare sku's geretourneerd.This method returns the list of available skus. |
| Micro soft. Databox/locations/validateInputs/ActionMicrosoft.Databox/locations/validateInputs/action | Met deze methode worden alle typen validaties ondersteund.This method does all type of validations. |
| Micro soft. Databox/locations/regionConfiguration/ActionMicrosoft.Databox/locations/regionConfiguration/action | Deze methode retourneert de configuraties voor de regio.This method returns the configurations for the region. |
| Micro soft. Databox/locations/validateAddress/ActionMicrosoft.Databox/locations/validateAddress/action | Valideert het verzend adres en levert eventueel alternatieve adressen.Validates the shipping address and provides alternate addresses if any. |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Data Box Service except creating order or editing order details and giving access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027",
"name": "028f4ed7-e2a9-465e-a8f4-9c0ffdfdc027",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Databox/*/read",
"Microsoft.Databox/jobs/listsecrets/action",
"Microsoft.Databox/jobs/listcredentials/action",
"Microsoft.Databox/locations/availableSkus/action",
"Microsoft.Databox/locations/validateInputs/action",
"Microsoft.Databox/locations/regionConfiguration/action",
"Microsoft.Databox/locations/validateAddress/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Box Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Data Lake Analytics-ontwikkelaarData Lake Analytics Developer
Hiermee kunt u uw eigen taken verzenden, bewaken en beheren, maar geen Data Lake Analytics accounts maken of verwijderen.Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. BigAnalytics/accounts/*Microsoft.BigAnalytics/accounts/* | |
| Micro soft. DataLakeAnalytics/accounts/*Microsoft.DataLakeAnalytics/accounts/* | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| Micro soft. BigAnalytics/accounts/verwijderenMicrosoft.BigAnalytics/accounts/Delete | |
| Micro soft. BigAnalytics/accounts/TakeOwnership/actieMicrosoft.BigAnalytics/accounts/TakeOwnership/action | |
| Micro soft. BigAnalytics/accounts/schrijvenMicrosoft.BigAnalytics/accounts/Write | |
| Micro soft. DataLakeAnalytics/accounts/DeleteMicrosoft.DataLakeAnalytics/accounts/Delete | Een DataLakeAnalytics-account verwijderen.Delete a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/TakeOwnership/ActionMicrosoft.DataLakeAnalytics/accounts/TakeOwnership/action | Machtigingen verlenen om taken te annuleren die door andere gebruikers zijn verzonden.Grant permissions to cancel jobs submitted by other users. |
| Micro soft. DataLakeAnalytics/accounts/writeMicrosoft.DataLakeAnalytics/accounts/Write | Een DataLakeAnalytics-account maken of bijwerken.Create or update a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/dataLakeStoreAccounts/writeMicrosoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Write | Een gekoppeld data Lake Store-account maken of bijwerken van een DataLakeAnalytics-account.Create or update a linked DataLakeStore account of a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/dataLakeStoreAccounts/DeleteMicrosoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Delete | Een Data Lake Store-account ontkoppelen van een DataLakeAnalytics-account.Unlink a DataLakeStore account from a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/storageAccounts/writeMicrosoft.DataLakeAnalytics/accounts/storageAccounts/Write | Een gekoppeld opslag account maken of bijwerken van een DataLakeAnalytics-account.Create or update a linked Storage account of a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/storageAccounts/DeleteMicrosoft.DataLakeAnalytics/accounts/storageAccounts/Delete | Een opslag account ontkoppelen van een DataLakeAnalytics-account.Unlink a Storage account from a DataLakeAnalytics account. |
| Micro soft. DataLakeAnalytics/accounts/firewallRules/writeMicrosoft.DataLakeAnalytics/accounts/firewallRules/Write | Een firewall regel maken of bijwerken.Create or update a firewall rule. |
| Micro soft. DataLakeAnalytics/accounts/firewallRules/DeleteMicrosoft.DataLakeAnalytics/accounts/firewallRules/Delete | Een firewall regel verwijderen.Delete a firewall rule. |
| Micro soft. DataLakeAnalytics/accounts/computePolicies/writeMicrosoft.DataLakeAnalytics/accounts/computePolicies/Write | Een reken beleid maken of bijwerken.Create or update a compute policy. |
| Micro soft. DataLakeAnalytics/accounts/computePolicies/DeleteMicrosoft.DataLakeAnalytics/accounts/computePolicies/Delete | Een reken beleid verwijderen.Delete a compute policy. |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you submit, monitor, and manage your own jobs but not create or delete Data Lake Analytics accounts.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/47b7735b-770e-4598-a7da-8b91488b4c88",
"name": "47b7735b-770e-4598-a7da-8b91488b4c88",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.BigAnalytics/accounts/*",
"Microsoft.DataLakeAnalytics/accounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.BigAnalytics/accounts/Delete",
"Microsoft.BigAnalytics/accounts/TakeOwnership/action",
"Microsoft.BigAnalytics/accounts/Write",
"Microsoft.DataLakeAnalytics/accounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/TakeOwnership/action",
"Microsoft.DataLakeAnalytics/accounts/Write",
"Microsoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Write",
"Microsoft.DataLakeAnalytics/accounts/dataLakeStoreAccounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/storageAccounts/Write",
"Microsoft.DataLakeAnalytics/accounts/storageAccounts/Delete",
"Microsoft.DataLakeAnalytics/accounts/firewallRules/Write",
"Microsoft.DataLakeAnalytics/accounts/firewallRules/Delete",
"Microsoft.DataLakeAnalytics/accounts/computePolicies/Write",
"Microsoft.DataLakeAnalytics/accounts/computePolicies/Delete"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Lake Analytics Developer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer en gegevens toegangReader and Data Access
Hiermee kunt u alles weer geven, maar kunt u geen opslag account of opgenomen resource verwijderen of maken.Lets you view everything but will not let you delete or create a storage account or contained resource. Ook wordt lees-/schrijftoegang tot alle gegevens in een opslag account toegestaan via toegang tot de sleutel van het opslag account.It will also allow read/write access to all data contained in a storage account via access to storage account keys.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
| Micro soft. Storage/storageAccounts/ListAccountSas/ActionMicrosoft.Storage/storageAccounts/ListAccountSas/action | Hiermee wordt het SAS-token van het account voor het opgegeven opslag account geretourneerd.Returns the Account SAS token for the specified storage account. |
| Micro soft. Storage/storageAccounts/ReadMicrosoft.Storage/storageAccounts/read | Retourneert de lijst met opslag accounts of haalt de eigenschappen voor het opgegeven opslag account op.Returns the list of storage accounts or gets the properties for the specified storage account. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you view everything but will not let you delete or create a storage account or contained resource. It will also allow read/write access to all data contained in a storage account via access to storage account keys.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c12c1c16-33a1-487b-954d-41c89c60f349",
"name": "c12c1c16-33a1-487b-954d-41c89c60f349",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/ListAccountSas/action",
"Microsoft.Storage/storageAccounts/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Reader and Data Access",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslagaccountsStorage Account Contributor
Hiermee staat u het beheer van opslag accounts toe.Permits management of storage accounts. Biedt toegang tot de account sleutel, die kan worden gebruikt om toegang te krijgen tot gegevens via een gedeelde sleutel autorisatie.Provides access to the account key, which can be used to access data via Shared Key authorization. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
| Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Storage/storageAccounts/*Microsoft.Storage/storageAccounts/* | Opslagaccounts maken en beherenCreate and manage storage accounts |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage storage accounts, including accessing storage account keys which provide full access to storage account data.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/17d1049b-9a84-46fb-8f53-869881c3d3ab",
"name": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Storage/storageAccounts/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Functie Service-sleutel operator van opslag accountStorage Account Key Operator Service Role
Kan de toegangs sleutels voor het opslag account weer geven en opnieuw genereren.Permits listing and regenerating storage account access keys. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/listkeys/ActionMicrosoft.Storage/storageAccounts/listkeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
| Micro soft. Storage/storageAccounts/regeneratekey/ActionMicrosoft.Storage/storageAccounts/regeneratekey/action | Hiermee worden de toegangs sleutels voor het opgegeven opslag account opnieuw gegenereerd.Regenerates the access keys for the specified storage account. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Storage Account Key Operators are allowed to list and regenerate keys on Storage Accounts",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/81a9662b-bebf-436f-a333-f67b29880f12",
"name": "81a9662b-bebf-436f-a333-f67b29880f12",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/listkeys/action",
"Microsoft.Storage/storageAccounts/regeneratekey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Account Key Operator Service Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor Storage Blob-gegevensStorage Blob Data Contributor
Azure Storage containers en blobs lezen, schrijven en verwijderen.Read, write, and delete Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/blobServices/containers/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/delete | Een container verwijderen.Delete a container. |
| Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Een container of een lijst met containers retour neren.Return a container or a list of containers. |
| Micro soft. Storage/storageAccounts/blobServices/containers/writeMicrosoft.Storage/storageAccounts/blobServices/containers/write | Meta gegevens of eigenschappen van een container wijzigen.Modify a container's metadata or properties. |
| Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/DeleteMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/delete | Een BLOB verwijderen.Delete a blob. |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Een BLOB of een lijst met blobs retour neren.Return a blob or a list of blobs. |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/Move/ActionMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/move/action | Verplaatst de blob van het ene pad naar het andereMoves the blob from one path to another |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/writeMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/write | Schrijven naar een blob.Write to a blob. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write and delete access to Azure Storage blob containers and data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ba92f5b4-2d11-453d-a403-e96b0029c9fe",
"name": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/write",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/move/action",
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/write"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Eigenaar van opslagblobgegevensStorage Blob Data Owner
Biedt volledige toegang tot Azure Storage BLOB-containers en-gegevens, met inbegrip van het toewijzen van POSIX-toegangs beheer.Provides full access to Azure Storage blob containers and data, including assigning POSIX access control. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/blobServices/containers/*Microsoft.Storage/storageAccounts/blobServices/containers/* | Volledige machtigingen voor containers.Full permissions on containers. |
| Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/*Microsoft.Storage/storageAccounts/blobServices/containers/blobs/* | Volledige machtigingen op blobs.Full permissions on blobs. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for full access to Azure Storage blob containers and data, including assigning POSIX access control.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
"name": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/*",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/*"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer voor opslagblobgegevensStorage Blob Data Reader
Azure Storage containers en blobs lezen en weer geven.Read and list Azure Storage containers and blobs. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/blobServices/containers/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/read | Een container of een lijst met containers retour neren.Return a container or a list of containers. |
| Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/blobServices/containers/blobs/ReadMicrosoft.Storage/storageAccounts/blobServices/containers/blobs/read | Een BLOB of een lijst met blobs retour neren.Return a blob or a list of blobs. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure Storage blob containers and data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2a2b9908-6ea1-4ae2-8e65-a410df84e7d1",
"name": "2a2b9908-6ea1-4ae2-8e65-a410df84e7d1",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/read",
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read"
],
"notDataActions": []
}
],
"roleName": "Storage Blob Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Delegering van opslag-BLOBStorage Blob Delegator
Een sleutel voor gebruikers overdracht ophalen, die vervolgens kan worden gebruikt om een gedeelde toegangs handtekening te maken voor een container of BLOB die is ondertekend met Azure AD-referenties.Get a user delegation key, which can then be used to create a shared access signature for a container or blob that is signed with Azure AD credentials. Zie een gebruiker delegering Sa's makenvoor meer informatie.For more information, see Create a user delegation SAS. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/blobServices/generateUserDelegationKey/ActionMicrosoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action | Retourneert een gebruikers delegerings sleutel voor de Blob service.Returns a user delegation key for the Blob service. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for generation of a user delegation key which can be used to sign SAS tokens",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/db58b8e5-c6ad-4a2a-8342-4190687cbf4a",
"name": "db58b8e5-c6ad-4a2a-8342-4190687cbf4a",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/blobServices/generateUserDelegationKey/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Storage Blob Delegator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Contributor
Hiermee wordt lees-, schrijf-en verwijder toegang voor bestanden/mappen in azure-bestands shares toegestaan.Allows for read, write, and delete access on files/directories in Azure file shares. Deze rol heeft geen ingebouwd equivalent op Windows-bestands servers.This role has no built-in equivalent on Windows file servers. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/Files/WriteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/write | Retourneert het resultaat van het schrijven van een bestand of het maken van een map.Returns the result of writing a file or creating a folder. |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/DeleteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/delete | Retourneert het resultaat van het verwijderen van een bestand/map.Returns the result of deleting a file/folder. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, and delete access in Azure Storage file shares over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb",
"name": "0c867c2a-1d8c-454a-a3db-ab2ea1bdc8bb",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/write",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/delete"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender met verhoogde bevoegdheden voor opslagbestandsgegevens via SMB-shareStorage File Data SMB Share Elevated Contributor
Hiermee kunt u Acl's voor lezen, schrijven, verwijderen en wijzigen van bestanden/mappen in azure-bestands shares.Allows for read, write, delete, and modify ACLs on files/directories in Azure file shares. Deze rol is gelijk aan een ACL van de bestands share die moet worden gewijzigd op Windows-bestands servers.This role is equivalent to a file share ACL of change on Windows file servers. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/Files/WriteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/write | Retourneert het resultaat van het schrijven van een bestand of het maken van een map.Returns the result of writing a file or creating a folder. |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/DeleteMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/delete | Retourneert het resultaat van het verwijderen van een bestand/map.Returns the result of deleting a file/folder. |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/ActionMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/action | Retourneert het resultaat van het wijzigen van de machtiging voor een bestand/map.Returns the result of modifying permission on a file/folder. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, delete and modify NTFS permission access in Azure Storage file shares over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a7264617-510b-434b-a828-9731dc254ea7",
"name": "a7264617-510b-434b-a828-9731dc254ea7",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/write",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/delete",
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/modifypermissions/action"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Elevated Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer voor opslagbestandgegevens via SMB-shareStorage File Data SMB Share Reader
Hiermee staat u lees toegang toe voor bestanden/mappen in azure-bestands shares.Allows for read access on files/directories in Azure file shares. Deze rol is gelijk aan een ACL voor bestands shares van lezen op Windows-bestands servers.This role is equivalent to a file share ACL of read on Windows file servers. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/fileServices/fileshares/files/ReadMicrosoft.Storage/storageAccounts/fileServices/fileshares/files/read | Retourneert een bestand/map of een lijst met bestanden/mappen.Returns a file/folder or a list of files/folders. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure File Share over SMB",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/aba4ae5f-2193-4029-9191-0cb91df5e314",
"name": "aba4ae5f-2193-4029-9191-0cb91df5e314",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/fileServices/fileshares/files/read"
],
"notDataActions": []
}
],
"roleName": "Storage File Data SMB Share Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor opslag wachtrij gegevensStorage Queue Data Contributor
Lees-, schrijf-en verwijder Azure Storage-wacht rijen en-wachtrij berichten.Read, write, and delete Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/queueServices/queues/DeleteMicrosoft.Storage/storageAccounts/queueServices/queues/delete | Een wachtrij verwijderen.Delete a queue. |
| Micro soft. Storage/storageAccounts/queueServices/queues/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/read | Een wachtrij of een lijst met wacht rijen retour neren.Return a queue or a list of queues. |
| Micro soft. Storage/storageAccounts/queueServices/queues/writeMicrosoft.Storage/storageAccounts/queueServices/queues/write | Meta gegevens of eigenschappen van de wachtrij wijzigen.Modify queue metadata or properties. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/DeleteMicrosoft.Storage/storageAccounts/queueServices/queues/messages/delete | Een of meer berichten verwijderen uit een wachtrij.Delete one or more messages from a queue. |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een of meer berichten uit een wachtrij bekijken of ophalen.Peek or retrieve one or more messages from a queue. |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/writeMicrosoft.Storage/storageAccounts/queueServices/queues/messages/write | Een bericht toevoegen aan een wachtrij.Add a message to a queue. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read, write, and delete access to Azure Storage queues and queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/974c5e8b-45b9-4653-ba55-5f855dd0fb88",
"name": "974c5e8b-45b9-4653-ba55-5f855dd0fb88",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/delete",
"Microsoft.Storage/storageAccounts/queueServices/queues/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/write"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/delete",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/write"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Processor voor gegevens berichten van de opslag wachtrijStorage Queue Data Message Processor
Een bericht uit een Azure Storage wachtrij bekijken, ophalen en verwijderen.Peek, retrieve, and delete a message from an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een bericht bekijken.Peek a message. |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/process/ActionMicrosoft.Storage/storageAccounts/queueServices/queues/messages/process/action | Een bericht ophalen en verwijderen.Retrieve and delete a message. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for peek, receive, and delete access to Azure Storage queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8a0f0c08-91a1-4084-bc3d-661d67233fed",
"name": "8a0f0c08-91a1-4084-bc3d-661d67233fed",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read",
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/process/action"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Message Processor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Afzender gegevens bericht van opslag wachtrijStorage Queue Data Message Sender
Berichten toevoegen aan een Azure Storage wachtrij.Add messages to an Azure Storage queue. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/add/ActionMicrosoft.Storage/storageAccounts/queueServices/queues/messages/add/action | Een bericht toevoegen aan een wachtrij.Add a message to a queue. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for sending of Azure Storage queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c6a89b2d-59bc-44d0-9896-0f6e12d7b80a",
"name": "c6a89b2d-59bc-44d0-9896-0f6e12d7b80a",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/add/action"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Message Sender",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer van de opslag wachtrijStorage Queue Data Reader
Azure Storage-wacht rijen en-wachtrij berichten lezen en weer geven.Read and list Azure Storage queues and queue messages. Zie machtigingen voor het aanroepen van BLOB-en wachtrij gegevensvoor meer informatie over welke acties vereist zijn voor een bepaalde gegevens bewerking.To learn which actions are required for a given data operation, see Permissions for calling blob and queue data operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Storage/storageAccounts/queueServices/queues/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/read | Hiermee wordt een wachtrij of een lijst met wacht rijen geretourneerd.Returns a queue or a list of queues. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Storage/storageAccounts/queueServices/queues/messages/ReadMicrosoft.Storage/storageAccounts/queueServices/queues/messages/read | Een of meer berichten uit een wachtrij bekijken of ophalen.Peek or retrieve one or more messages from a queue. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for read access to Azure Storage queues and queue messages",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/19e7f393-937e-4f77-808e-94535e297925",
"name": "19e7f393-937e-4f77-808e-94535e297925",
"permissions": [
{
"actions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Storage/storageAccounts/queueServices/queues/messages/read"
],
"notDataActions": []
}
],
"roleName": "Storage Queue Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
WebWeb
Gegevens lezer Azure MapsAzure Maps Data Reader
Hiermee wordt toegang verleend om gerelateerde gegevens te lezen vanuit een Azure Maps-account.Grants access to read map related data from an Azure maps account.
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Maps/accounts/*/ReadMicrosoft.Maps/accounts/*/read | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants access to read map related data from an Azure maps account.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/423170ca-a8f6-4b0f-8487-9e4eb8f49bfa",
"name": "423170ca-a8f6-4b0f-8487-9e4eb8f49bfa",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Maps/accounts/*/read"
],
"notDataActions": []
}
],
"roleName": "Azure Maps Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Search ServiceSearch Service Contributor
Hiermee kunt u zoek services beheren, maar niet de toegang tot ze.Lets you manage Search services, but not access to them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Search/searchServices/*Microsoft.Search/searchServices/* | Zoek Services maken en beherenCreate and manage search services |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Search services, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"name": "7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Search/searchServices/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Search Service Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor webabonnementenWeb Plan Contributor
Hiermee kunt u de Webabonnementen voor websites beheren, maar niet de toegang tot de abonnementen.Lets you manage the web plans for websites, but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Web/serverFarms/*Microsoft.Web/serverFarms/* | Server farms maken en beherenCreate and manage server farms |
| Micro soft. Web-/hostingEnvironments/join/ActionMicrosoft.Web/hostingEnvironments/Join/Action | Voegt een App Service EnvironmentJoins an App Service Environment |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage the web plans for websites, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b",
"name": "2cc479cb-7b4d-49a8-b449-8c00fd0f0a4b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Web/serverFarms/*",
"Microsoft.Web/hostingEnvironments/Join/Action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Web Plan Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Website bijdragerWebsite Contributor
Hiermee kunt u websites beheren (niet Webabonnementen), maar niet de toegang tot de sites.Lets you manage websites (not web plans), but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Insights/Components/*Microsoft.Insights/components/* | Insights-onderdelen maken en beherenCreate and manage Insights components |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Web/certificates/*Microsoft.Web/certificates/* | Website certificaten maken en beherenCreate and manage website certificates |
| Micro soft. Web-/listSitesAssignedToHostName/ReadMicrosoft.Web/listSitesAssignedToHostName/read | Namen ophalen van sites die zijn toegewezen aan de hostnaam.Get names of sites assigned to hostname. |
| Micro soft. Web-/serverFarms/join/ActionMicrosoft.Web/serverFarms/join/action | Een App Service-abonnement koppelenJoins an App Service Plan |
| Micro soft. Web-/serverFarms/ReadMicrosoft.Web/serverFarms/read | De eigenschappen van een App Service plan ophalenGet the properties on an App Service Plan |
| Micro soft. Web/sites/*Microsoft.Web/sites/* | Websites maken en beheren (voor het maken van sites is ook schrijf machtigingen vereist voor het bijbehorende App Service plan)Create and manage websites (site creation also requires write permissions to the associated App Service Plan) |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage websites (not web plans), but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/de139f84-1756-47ae-9be6-808fbbe84772",
"name": "de139f84-1756-47ae-9be6-808fbbe84772",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/components/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Web/certificates/*",
"Microsoft.Web/listSitesAssignedToHostName/read",
"Microsoft.Web/serverFarms/join/action",
"Microsoft.Web/serverFarms/read",
"Microsoft.Web/sites/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Website Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
ContainersContainers
AcrDeleteAcrDelete
meer informatie over ACR verwijderenacr delete Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/Artifacts/DeleteMicrosoft.ContainerRegistry/registries/artifacts/delete | Artefact verwijderen in container register.Delete artifact in a container registry. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr delete",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c2f4ef07-c644-48eb-af81-4b1b4947fb11",
"name": "c2f4ef07-c644-48eb-af81-4b1b4947fb11",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/artifacts/delete"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrDelete",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrImageSignerAcrImageSigner
ACR-installatie kopie-ondertekenaar meer informatieacr image signer Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/Sign/writeMicrosoft.ContainerRegistry/registries/sign/write | Meta gegevens van de vertrouwens relatie push/pull voor een container register.Push/Pull content trust metadata for a container registry. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr image signer",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/6cef56e8-d556-48e5-a04f-b8e64114680f",
"name": "6cef56e8-d556-48e5-a04f-b8e64114680f",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/sign/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrImageSigner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrPullAcrPull
ACR-pull meer informatieacr pull Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/pull/ReadMicrosoft.ContainerRegistry/registries/pull/read | Pull of ophalen van installatie kopieën uit een container register.Pull or Get images from a container registry. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr pull",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7f951dda-4ed3-4680-a7ca-43fe172d538d",
"name": "7f951dda-4ed3-4680-a7ca-43fe172d538d",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/pull/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrPull",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrPushAcrPush
ACR-push meer informatieacr push Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/pull/ReadMicrosoft.ContainerRegistry/registries/pull/read | Pull of ophalen van installatie kopieën uit een container register.Pull or Get images from a container registry. |
| Micro soft. ContainerRegistry/registries/push/writeMicrosoft.ContainerRegistry/registries/push/write | Push of schrijf installatie kopieën naar een container register.Push or Write images to a container registry. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr push",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8311e382-0749-4cb8-b61a-304f252e45ec",
"name": "8311e382-0749-4cb8-b61a-304f252e45ec",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/pull/read",
"Microsoft.ContainerRegistry/registries/push/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrPush",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrQuarantineReaderAcrQuarantineReader
ACR quarantaine gegevens lezeracr quarantine data reader
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/Quarantine/ReadMicrosoft.ContainerRegistry/registries/quarantine/read | In quarantaine geplaatste installatie kopieën verzamelen of ophalen uit het container registerPull or Get quarantined images from container registry |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr quarantine data reader",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/cdda3590-29a3-44f6-95f2-9f980659eb04",
"name": "cdda3590-29a3-44f6-95f2-9f980659eb04",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/quarantine/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrQuarantineReader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AcrQuarantineWriterAcrQuarantineWriter
ACR quarantaine gegevens schrijveracr quarantine data writer
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ContainerRegistry/registries/Quarantine/ReadMicrosoft.ContainerRegistry/registries/quarantine/read | In quarantaine geplaatste installatie kopieën verzamelen of ophalen uit het container registerPull or Get quarantined images from container registry |
| Micro soft. ContainerRegistry/registries/Quarantine/writeMicrosoft.ContainerRegistry/registries/quarantine/write | De quarantaine status van in quarantaine geplaatste installatie kopieën schrijven/wijzigenWrite/Modify quarantine state of quarantined images |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "acr quarantine data writer",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c8d4ff99-41c3-41a8-9f60-21dfdad59608",
"name": "c8d4ff99-41c3-41a8-9f60-21dfdad59608",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/quarantine/read",
"Microsoft.ContainerRegistry/registries/quarantine/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AcrQuarantineWriter",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Rol van Cluster beheerder voor Azure Kubernetes-serviceAzure Kubernetes Service Cluster Admin Role
Lijst met actie voor cluster beheer referenties.List cluster admin credential action. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. container service/managedClusters/listClusterAdminCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterAdminCredential/action | De clusterAdmin-referentie van een beheerd cluster weer gevenList the clusterAdmin credential of a managed cluster |
| Micro soft. container service/managedClusters/accessProfiles/listCredential/ActionMicrosoft.ContainerService/managedClusters/accessProfiles/listCredential/action | Een beheerd cluster toegangs profiel verkrijgen met een rolnaam met behulp van de lijst referentieGet a managed cluster access profile by role name using list credential |
| Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "List cluster admin credential action.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8",
"name": "0ab0b1a8-8aac-4efd-b8c2-3ee1fb270be8",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/listClusterAdminCredential/action",
"Microsoft.ContainerService/managedClusters/accessProfiles/listCredential/action",
"Microsoft.ContainerService/managedClusters/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Cluster Admin Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gebruikersrol Azure Kubernetes service-clusterAzure Kubernetes Service Cluster User Role
Geef een lijst actie voor de gebruikers referenties van het cluster op.List cluster user credential action. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
| Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "List cluster user credential action.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4abbcc35-e782-43d8-92c5-2d3f1bd2253f",
"name": "4abbcc35-e782-43d8-92c5-2d3f1bd2253f",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action",
"Microsoft.ContainerService/managedClusters/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Cluster User Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Rol van de Azure Kubernetes service-bijdragerAzure Kubernetes Service Contributor Role
Hiermee wordt toegang verleend tot lees-en schrijf Service clusters van Azure Kubernetes meer informatieGrants access to read and write Azure Kubernetes Service clusters Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. container service/managedClusters/ReadMicrosoft.ContainerService/managedClusters/read | Een beheerd cluster ophalenGet a managed cluster |
| Micro soft. container service/managedClusters/writeMicrosoft.ContainerService/managedClusters/write | Hiermee maakt u een nieuw beheerd cluster of wordt er een bestaande bijgewerktCreates a new managed cluster or updates an existing one |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Grants access to read and write Azure Kubernetes Service clusters",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8",
"name": "ed7f3fbd-7b88-4dd4-9017-9adb7ce333f8",
"permissions": [
{
"actions": [
"Microsoft.ContainerService/managedClusters/read",
"Microsoft.ContainerService/managedClusters/write",
"Microsoft.Resources/deployments/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service Contributor Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-beheerder voor Azure Kubernetes serviceAzure Kubernetes Service RBAC Admin
Hiermee kunt u alle resources beheren onder cluster/naam ruimte, behalve voor het bijwerken of verwijderen van resource quota's en naam ruimten.Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. container service/managedClusters/*Microsoft.ContainerService/managedClusters/* | |
| NotDataActionsNotDataActions | |
| Micro soft. container service/managedClusters/resourcequotas/writeMicrosoft.ContainerService/managedClusters/resourcequotas/write | Schrijft resourcequotasWrites resourcequotas |
| Micro soft. container service/managedClusters/resourcequotas/DeleteMicrosoft.ContainerService/managedClusters/resourcequotas/delete | Hiermee worden resourcequotas verwijderdDeletes resourcequotas |
| Micro soft. container service/managedClusters/namespaces/writeMicrosoft.ContainerService/managedClusters/namespaces/write | Schrijft naam ruimtenWrites namespaces |
| Micro soft. container service/managedClusters/namespaces/DeleteMicrosoft.ContainerService/managedClusters/namespaces/delete | Verwijdert naam ruimtenDeletes namespaces |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage all resources under cluster/namespace, except update or delete resource quotas and namespaces.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/3498e952-d568-435e-9b2c-8d77e338d7f7",
"name": "3498e952-d568-435e-9b2c-8d77e338d7f7",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*"
],
"notDataActions": [
"Microsoft.ContainerService/managedClusters/resourcequotas/write",
"Microsoft.ContainerService/managedClusters/resourcequotas/delete",
"Microsoft.ContainerService/managedClusters/namespaces/write",
"Microsoft.ContainerService/managedClusters/namespaces/delete"
]
}
],
"roleName": "Azure Kubernetes Service RBAC Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
De Azure Kubernetes service RBAC-cluster beheerderAzure Kubernetes Service RBAC Cluster Admin
Hiermee kunt u alle resources in het cluster beheren.Lets you manage all resources in the cluster. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. container service/managedClusters/*Microsoft.ContainerService/managedClusters/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage all resources in the cluster.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b",
"name": "b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*"
],
"notDataActions": []
}
],
"roleName": "Azure Kubernetes Service RBAC Cluster Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-lezer van de Azure Kubernetes serviceAzure Kubernetes Service RBAC Reader
Hiermee kunt u alle resources in het cluster of de naam ruimte weer geven, behalve geheimen.Lets you view all resources in cluster/namespace, except secrets. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. container service/managedClusters/*/ReadMicrosoft.ContainerService/managedClusters/*/read | |
| NotDataActionsNotDataActions | |
| Micro soft. container service/managedClusters/RBAC.Authorization.K8S.io/*/ReadMicrosoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/read | |
| Micro soft. container service/managedClusters/RBAC.Authorization.K8S.io/*/writeMicrosoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/write | |
| Micro soft. container service/managedClusters/Secrets/*Microsoft.ContainerService/managedClusters/secrets/* |
{
"assignableScopes": [
"/"
],
"description": "Lets you view all resources in cluster/namespace, except secrets.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/7f6c6a51-bcf8-42ba-9220-52d62157d7db",
"name": "7f6c6a51-bcf8-42ba-9220-52d62157d7db",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*/read"
],
"notDataActions": [
"Microsoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/read",
"Microsoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/write",
"Microsoft.ContainerService/managedClusters/secrets/*"
]
}
],
"roleName": "Azure Kubernetes Service RBAC Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
RBAC-schrijver van Azure Kubernetes serviceAzure Kubernetes Service RBAC Writer
Hiermee kunt u alles in cluster/naam ruimte bijwerken, met uitzonde ring van resource quota's, naam ruimten, Pod-beveiligings beleid, aanvragen voor certificaat ondertekening, (cluster) rollen en (cluster) rollen bindingen.Lets you update everything in cluster/namespace, except resource quotas, namespaces, pod security policies, certificate signing requests, (cluster)roles and (cluster)role bindings. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/writeMicrosoft.Resources/deployments/write | Hiermee wordt een implementatie gemaakt of bijgewerkt.Creates or updates an deployment. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. container service/managedClusters/listClusterUserCredential/ActionMicrosoft.ContainerService/managedClusters/listClusterUserCredential/action | De clusterUser-referentie van een beheerd cluster weer gevenList the clusterUser credential of a managed cluster |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. container service/managedClusters/*/ReadMicrosoft.ContainerService/managedClusters/*/read | |
| Micro soft. container service/managedClusters/*/writeMicrosoft.ContainerService/managedClusters/*/write | |
| NotDataActionsNotDataActions | |
| Micro soft. container service/managedClusters/RBAC.Authorization.K8S.io/*/ReadMicrosoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/read | |
| Micro soft. container service/managedClusters/RBAC.Authorization.K8S.io/*/writeMicrosoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/write | |
| Micro soft. container service/managedClusters/namespaces/writeMicrosoft.ContainerService/managedClusters/namespaces/write | Schrijft naam ruimtenWrites namespaces |
| Micro soft. container service/managedClusters/resourcequotas/writeMicrosoft.ContainerService/managedClusters/resourcequotas/write | Schrijft resourcequotasWrites resourcequotas |
| Micro soft. container service/managedClusters/certificates.K8S.io/certificatesigningrequests/writeMicrosoft.ContainerService/managedClusters/certificates.k8s.io/certificatesigningrequests/write | Schrijft certificatesigningrequestsWrites certificatesigningrequests |
| Micro soft. container service/managedClusters/Policy/podsecuritypolicies/writeMicrosoft.ContainerService/managedClusters/policy/podsecuritypolicies/write | Schrijft podsecuritypoliciesWrites podsecuritypolicies |
{
"assignableScopes": [
"/"
],
"description": "Lets you update everything in cluster/namespace, except resource quotas, namespaces, pod security policies, certificate signing requests, (cluster)roles and (cluster)role bindings.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb",
"name": "a7ffa36f-339b-4b5c-8bdf-e2c188b2c0eb",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.ContainerService/managedClusters/listClusterUserCredential/action"
],
"notActions": [],
"dataActions": [
"Microsoft.ContainerService/managedClusters/*/read",
"Microsoft.ContainerService/managedClusters/*/write"
],
"notDataActions": [
"Microsoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/read",
"Microsoft.ContainerService/managedClusters/rbac.authorization.k8s.io/*/write",
"Microsoft.ContainerService/managedClusters/namespaces/write",
"Microsoft.ContainerService/managedClusters/resourcequotas/write",
"Microsoft.ContainerService/managedClusters/certificates.k8s.io/certificatesigningrequests/write",
"Microsoft.ContainerService/managedClusters/policy/podsecuritypolicies/write"
]
}
],
"roleName": "Azure Kubernetes Service RBAC Writer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
DatabasesDatabases
Rol van Cosmos DB-account lezerCosmos DB Account Reader Role
Kan gegevens van Azure Cosmos DB-account lezen.Can read Azure Cosmos DB account data. Zie DocumentDB account Inzender voor het beheren van Azure Cosmos DB accounts.See DocumentDB Account Contributor for managing Azure Cosmos DB accounts. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Microsoft.DocumentDB/*/ReadMicrosoft.DocumentDB/*/read | Een verzameling lezenRead any collection |
| Microsoft.DocumentDB/databaseAccounts/readonlykeys/ActionMicrosoft.DocumentDB/databaseAccounts/readonlykeys/action | Hiermee wordt de alleen-lezen sleutels van het database account gelezen.Reads the database account readonly keys. |
| Micro soft. Insights/MetricDefinitions/ReadMicrosoft.Insights/MetricDefinitions/read | Metrische definities lezenRead metric definitions |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/Metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can read Azure Cosmos DB Accounts data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/fbdf93bf-df7d-467e-a4d2-9458aa1360c8",
"name": "fbdf93bf-df7d-467e-a4d2-9458aa1360c8",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DocumentDB/*/read",
"Microsoft.DocumentDB/databaseAccounts/readonlykeys/action",
"Microsoft.Insights/MetricDefinitions/read",
"Microsoft.Insights/Metrics/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cosmos DB Account Reader Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cosmos DB-operatorCosmos DB Operator
Hiermee kunt u Azure Cosmos DB accounts beheren, maar geen toegang tot gegevens.Lets you manage Azure Cosmos DB accounts, but not access data in them. Hiermee voor komt u toegang tot account sleutels en verbindings reeksen.Prevents access to account keys and connection strings. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Microsoft.DocumentDb/databaseAccounts/*Microsoft.DocumentDb/databaseAccounts/* | |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
| NotActionsNotActions | |
| Microsoft.DocumentDB/databaseAccounts/readonlyKeys/*Microsoft.DocumentDB/databaseAccounts/readonlyKeys/* | |
| Microsoft.DocumentDB/databaseAccounts/regenerateKey/*Microsoft.DocumentDB/databaseAccounts/regenerateKey/* | |
| Microsoft.DocumentDB/databaseAccounts/listKeys/*Microsoft.DocumentDB/databaseAccounts/listKeys/* | |
| Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/*Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/* | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Azure Cosmos DB accounts, but not access data in them. Prevents access to account keys and connection strings.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/230815da-be43-4aae-9cb4-875f7bd000aa",
"name": "230815da-be43-4aae-9cb4-875f7bd000aa",
"permissions": [
{
"actions": [
"Microsoft.DocumentDb/databaseAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.Authorization/*/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action"
],
"notActions": [
"Microsoft.DocumentDB/databaseAccounts/readonlyKeys/*",
"Microsoft.DocumentDB/databaseAccounts/regenerateKey/*",
"Microsoft.DocumentDB/databaseAccounts/listKeys/*",
"Microsoft.DocumentDB/databaseAccounts/listConnectionStrings/*"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cosmos DB Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
CosmosBackupOperatorCosmosBackupOperator
Kan een terugzet aanvraag indienen voor een Cosmos DB-Data Base of een container voor een account meer informatieCan submit restore request for a Cosmos DB database or a container for an account Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Microsoft.DocumentDB/databaseAccounts/backup/ActionMicrosoft.DocumentDB/databaseAccounts/backup/action | Een aanvraag indienen voor het configureren van de back-upSubmit a request to configure backup |
| Microsoft.DocumentDB/databaseAccounts/Restore/ActionMicrosoft.DocumentDB/databaseAccounts/restore/action | Een herstel aanvraag verzendenSubmit a restore request |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can submit restore request for a Cosmos DB database or a container for an account",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/db7b14f2-5adf-42da-9f96-f2ee17bab5cb",
"name": "db7b14f2-5adf-42da-9f96-f2ee17bab5cb",
"permissions": [
{
"actions": [
"Microsoft.DocumentDB/databaseAccounts/backup/action",
"Microsoft.DocumentDB/databaseAccounts/restore/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "CosmosBackupOperator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor DocumentDB-accountsDocumentDB Account Contributor
Kan Azure Cosmos DB accounts beheren.Can manage Azure Cosmos DB accounts. Azure Cosmos DB is voorheen bekend als DocumentDB.Azure Cosmos DB is formerly known as DocumentDB. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Microsoft.DocumentDb/databaseAccounts/*Microsoft.DocumentDb/databaseAccounts/* | Azure Cosmos DB accounts maken en beherenCreate and manage Azure Cosmos DB accounts |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage DocumentDB accounts, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5bd9cd88-fe45-4216-938b-f97437e15450",
"name": "5bd9cd88-fe45-4216-938b-f97437e15450",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DocumentDb/databaseAccounts/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "DocumentDB Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Redis CacheRedis Cache Contributor
Hiermee kunt u redis-caches beheren, maar niet de toegang tot deze bestanden.Lets you manage Redis caches, but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. cache/register/ActionMicrosoft.Cache/register/action | Hiermee wordt de resource provider micro soft. cache geregistreerd bij een abonnementRegisters the 'Microsoft.Cache' resource provider with a subscription |
| Micro soft. cache/redis/*Microsoft.Cache/redis/* | Redis-caches maken en beherenCreate and manage Redis caches |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Redis caches, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/e0f68234-74aa-48ed-b826-c38b57376e17",
"name": "e0f68234-74aa-48ed-b826-c38b57376e17",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Cache/register/action",
"Microsoft.Cache/redis/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Redis Cache Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor SQL-data baseSQL DB Contributor
Hiermee kunt u SQL-data bases beheren, maar niet de toegang tot ze.Lets you manage SQL databases, but not access to them. U kunt ook hun beveiligings beleid of de bovenliggende SQL-servers niet beheren.Also, you can't manage their security-related policies or their parent SQL servers. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
| Micro soft. SQL/servers/databases/*Microsoft.Sql/servers/databases/* | SQL-databases maken en beherenCreate and manage SQL databases |
| Micro soft. SQL/servers/ReadMicrosoft.Sql/servers/read | De lijst met servers retour neren of de eigenschappen voor de opgegeven server ophalen.Return the list of servers or gets the properties for the specified server. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
| NotActionsNotActions | |
| Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/databases/auditingPolicies/*Microsoft.Sql/servers/databases/auditingPolicies/* | Controle beleid bewerkenEdit audit policies |
| Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen bewerkenEdit audit settings |
| Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
| Micro soft. SQL/servers/databases/connectionPolicies/*Microsoft.Sql/servers/databases/connectionPolicies/* | Verbindings beleid bewerkenEdit connection policies |
| Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Beleids regels voor gegevens maskering bewerkenEdit data masking policies |
| Micro soft. SQL/servers/databases/extendedAuditingSettings/*Microsoft.Sql/servers/databases/extendedAuditingSettings/* | |
| Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beveiligings waarschuwingen beleid bewerkenEdit security alert policies |
| Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische beveiligings gegevens bewerkenEdit security metrics |
| Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
| Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL databases, but not access to them. Also, you can't manage their security-related policies or their parent SQL servers.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/9b7fa17d-e63e-47b0-bb0a-15c516ac86ec",
"name": "9b7fa17d-e63e-47b0-bb0a-15c516ac86ec",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/servers/databases/*",
"Microsoft.Sql/servers/read",
"Microsoft.Support/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/auditingPolicies/*",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/connectionPolicies/*",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/*",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL DB Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor SQL Managed instanceSQL Managed Instance Contributor
Hiermee beheert u beheerde SQL-instanties en de vereiste netwerk configuratie, maar kunt u geen toegang verlenen aan anderen.Lets you manage SQL Managed Instances and required network configuration, but can't give access to others.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. Network/networkSecurityGroups/*Microsoft.Network/networkSecurityGroups/* | |
| Micro soft. Network/routeTables/*Microsoft.Network/routeTables/* | |
| Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
| Micro soft. SQL/locations/instanceFailoverGroups/*Microsoft.Sql/locations/instanceFailoverGroups/* | |
| Micro soft. SQL/managedInstances/*Microsoft.Sql/managedInstances/* | |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Network/virtualNetworks/subnets/*Microsoft.Network/virtualNetworks/subnets/* | |
| Micro soft. Network/virtualNetworks/*Microsoft.Network/virtualNetworks/* | |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL Managed Instances and required network configuration, but can't give access to others.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"name": "4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"permissions": [
{
"actions": [
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Network/networkSecurityGroups/*",
"Microsoft.Network/routeTables/*",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/locations/instanceFailoverGroups/*",
"Microsoft.Sql/managedInstances/*",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/*",
"Microsoft.Network/virtualNetworks/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Managed Instance Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
SQL-beveiligingsbeheerderSQL Security Manager
Hiermee kunt u het beveiligings beleid van SQL-servers en-data bases beheren, maar niet de toegang tot de services.Lets you manage the security-related policies of SQL servers and databases, but not access to them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Network/virtualNetworks/subnets/joinViaServiceEndpoint/ActionMicrosoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action | Voegt een resource, zoals een opslag account of SQL database, toe aan een subnet.Joins resource such as storage account or SQL database to a subnet. Niet alertable.Not alertable. |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. SQL/locations/administratorAzureAsyncOperation/ReadMicrosoft.Sql/locations/administratorAzureAsyncOperation/read | |
| Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/databases/transparentDataEncryption/*Microsoft.Sql/managedInstances/databases/transparentDataEncryption/* | |
| Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/auditingPolicies/*Microsoft.Sql/servers/auditingPolicies/* | SQL Server-controle beleid maken en beherenCreate and manage SQL server auditing policies |
| Micro soft. SQL/servers/auditingSettings/*Microsoft.Sql/servers/auditingSettings/* | SQL Server-controle-instelling maken en beherenCreate and manage SQL server auditing setting |
| Micro soft. SQL/servers/extendedAuditingSettings/ReadMicrosoft.Sql/servers/extendedAuditingSettings/read | Details ophalen van het uitgebreide-server-BLOB-controle beleid dat op een bepaalde server is geconfigureerdRetrieve details of the extended server blob auditing policy configured on a given server |
| Micro soft. SQL/servers/databases/auditingPolicies/*Microsoft.Sql/servers/databases/auditingPolicies/* | Controle beleid voor SQL server-data bases maken en beherenCreate and manage SQL server database auditing policies |
| Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen voor SQL Server-Data Base maken en beherenCreate and manage SQL server database auditing settings |
| Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
| Micro soft. SQL/servers/databases/connectionPolicies/*Microsoft.Sql/servers/databases/connectionPolicies/* | SQL Server-database verbindings beleid maken en beherenCreate and manage SQL server database connection policies |
| Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Gegevens maskerings beleid voor SQL server-data bases maken en beherenCreate and manage SQL server database data masking policies |
| Micro soft. SQL/servers/databases/extendedAuditingSettings/ReadMicrosoft.Sql/servers/databases/extendedAuditingSettings/read | Details ophalen van het uitgebreide BLOB-controle beleid dat is geconfigureerd voor een bepaalde data baseRetrieve details of the extended blob auditing policy configured on a given database |
| Micro soft. SQL/servers/databases/ReadMicrosoft.Sql/servers/databases/read | De lijst met data bases retour neren of de eigenschappen voor de opgegeven Data Base ophalen.Return the list of databases or gets the properties for the specified database. |
| Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/schemas/ReadMicrosoft.Sql/servers/databases/schemas/read | Een database schema ophalen.Get a database schema. |
| Micro soft. SQL/servers/databases/schemas/Tables/columns/ReadMicrosoft.Sql/servers/databases/schemas/tables/columns/read | Een database kolom ophalen.Get a database column. |
| Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/schemas/Tables/ReadMicrosoft.Sql/servers/databases/schemas/tables/read | Een database tabel ophalen.Get a database table. |
| Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beveiligings waarschuwingen beleid voor SQL Server-Data Base maken en beherenCreate and manage SQL server database security alert policies |
| Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische gegevens over beveiliging voor SQL Server-Data Base maken en beherenCreate and manage SQL server database security metrics |
| Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/transparentDataEncryption/*Microsoft.Sql/servers/databases/transparentDataEncryption/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
| Micro soft. SQL/servers/firewallRules/*Microsoft.Sql/servers/firewallRules/* | |
| Micro soft. SQL/servers/ReadMicrosoft.Sql/servers/read | De lijst met servers retour neren of de eigenschappen voor de opgegeven server ophalen.Return the list of servers or gets the properties for the specified server. |
| Micro soft. SQL/servers/securityAlertPolicies/*Microsoft.Sql/servers/securityAlertPolicies/* | Beveiligings waarschuwingen voor SQL Server maken en beherenCreate and manage SQL server security alert policies |
| Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. SQL/servers/Administrators/ReadMicrosoft.Sql/servers/administrators/read | Hiermee wordt een specifiek Azure Active Directory-beheer object opgehaaldGets a specific Azure Active Directory administrator object |
| Micro soft. SQL/servers/azureADOnlyAuthentications/*Microsoft.Sql/servers/azureADOnlyAuthentications/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage the security-related policies of SQL servers and databases, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/056cd41c-7e88-42e1-933e-88ba6a50c9c3",
"name": "056cd41c-7e88-42e1-933e-88ba6a50c9c3",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/administratorAzureAsyncOperation/read",
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/transparentDataEncryption/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/auditingPolicies/*",
"Microsoft.Sql/servers/auditingSettings/*",
"Microsoft.Sql/servers/extendedAuditingSettings/read",
"Microsoft.Sql/servers/databases/auditingPolicies/*",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/connectionPolicies/*",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/read",
"Microsoft.Sql/servers/databases/read",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/read",
"Microsoft.Sql/servers/databases/schemas/tables/columns/read",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/read",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/transparentDataEncryption/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/firewallRules/*",
"Microsoft.Sql/servers/read",
"Microsoft.Sql/servers/securityAlertPolicies/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*",
"Microsoft.Support/*",
"Microsoft.Sql/servers/administrators/read",
"Microsoft.Sql/servers/azureADOnlyAuthentications/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Security Manager",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender SQL ServerSQL Server Contributor
Hiermee kunt u SQL-servers en-data bases beheren, maar niet de toegang tot ze en niet het beveiligings beleid.Lets you manage SQL servers and databases, but not access to them, and not their security-related policies. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. SQL/locations/*/ReadMicrosoft.Sql/locations/*/read | |
| Micro soft. SQL/servers/*Microsoft.Sql/servers/* | SQL-servers maken en beherenCreate and manage SQL servers |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. Insights/metricDefinitions/ReadMicrosoft.Insights/metricDefinitions/read | Metrische definities lezenRead metric definitions |
| NotActionsNotActions | |
| Micro soft. SQL/managedInstances/databases/currentSensitivityLabels/*Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/recommendedSensitivityLabels/*Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/securityAlertPolicies/*Microsoft.Sql/managedInstances/databases/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/databases/sensitivityLabels/*Microsoft.Sql/managedInstances/databases/sensitivityLabels/* | |
| Micro soft. SQL/managedInstances/databases/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/managedInstances/securityAlertPolicies/*Microsoft.Sql/managedInstances/securityAlertPolicies/* | |
| Micro soft. SQL/managedInstances/vulnerabilityAssessments/*Microsoft.Sql/managedInstances/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/auditingPolicies/*Microsoft.Sql/servers/auditingPolicies/* | Controle beleid voor SQL server bewerkenEdit SQL server auditing policies |
| Micro soft. SQL/servers/auditingSettings/*Microsoft.Sql/servers/auditingSettings/* | SQL Server-controle-instellingen bewerkenEdit SQL server auditing settings |
| Micro soft. SQL/servers/databases/auditingPolicies/*Microsoft.Sql/servers/databases/auditingPolicies/* | Controle beleid voor SQL Server-Data Base bewerkenEdit SQL server database auditing policies |
| Micro soft. SQL/servers/databases/auditingSettings/*Microsoft.Sql/servers/databases/auditingSettings/* | Controle-instellingen voor SQL Server-Data Base bewerkenEdit SQL server database auditing settings |
| Micro soft. SQL/servers/databases/auditRecords/ReadMicrosoft.Sql/servers/databases/auditRecords/read | De data base-BLOB-controle records ophalenRetrieve the database blob audit records |
| Micro soft. SQL/servers/databases/connectionPolicies/*Microsoft.Sql/servers/databases/connectionPolicies/* | SQL Server-database verbindings beleid bewerkenEdit SQL server database connection policies |
| Micro soft. SQL/servers/databases/currentSensitivityLabels/*Microsoft.Sql/servers/databases/currentSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/dataMaskingPolicies/*Microsoft.Sql/servers/databases/dataMaskingPolicies/* | Beleids regels voor gegevens maskering van SQL Server-Data Base bewerkenEdit SQL server database data masking policies |
| Micro soft. SQL/servers/databases/extendedAuditingSettings/*Microsoft.Sql/servers/databases/extendedAuditingSettings/* | |
| Micro soft. SQL/servers/databases/recommendedSensitivityLabels/*Microsoft.Sql/servers/databases/recommendedSensitivityLabels/* | |
| Micro soft. SQL/servers/databases/schemas/Tables/columns/sensitivityLabels/*Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/securityAlertPolicies/*Microsoft.Sql/servers/databases/securityAlertPolicies/* | Beleid voor beveiligings waarschuwingen van SQL Server-Data Base bewerkenEdit SQL server database security alert policies |
| Micro soft. SQL/servers/databases/securityMetrics/*Microsoft.Sql/servers/databases/securityMetrics/* | Metrische gegevens van beveiliging voor SQL Server-Data Base bewerkenEdit SQL server database security metrics |
| Micro soft. SQL/servers/databases/sensitivityLabels/*Microsoft.Sql/servers/databases/sensitivityLabels/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessments/*Microsoft.Sql/servers/databases/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentScans/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/* | |
| Micro soft. SQL/servers/databases/vulnerabilityAssessmentSettings/*Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/* | |
| Micro soft. SQL/servers/extendedAuditingSettings/*Microsoft.Sql/servers/extendedAuditingSettings/* | |
| Micro soft. SQL/servers/securityAlertPolicies/*Microsoft.Sql/servers/securityAlertPolicies/* | Beveiligings waarschuwingen voor SQL server bewerkenEdit SQL server security alert policies |
| Micro soft. SQL/servers/vulnerabilityAssessments/*Microsoft.Sql/servers/vulnerabilityAssessments/* | |
| Micro soft. SQL/servers/azureADOnlyAuthentications/DeleteMicrosoft.Sql/servers/azureADOnlyAuthentications/delete | Hiermee verwijdert u een specifieke server Azure Active Directory alleen een verificatie objectDeletes a specific server Azure Active Directory only authentication object |
| Micro soft. SQL/servers/azureADOnlyAuthentications/writeMicrosoft.Sql/servers/azureADOnlyAuthentications/write | Hiermee wordt een specifieke server toegevoegd of bijgewerkt Azure Active Directory alleen een verificatie objectAdds or updates a specific server Azure Active Directory only authentication object |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage SQL servers and databases, but not access to them, and not their security -related policies.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/6d8ee4ec-f05a-4a1d-8b00-a9b17e38b437",
"name": "6d8ee4ec-f05a-4a1d-8b00-a9b17e38b437",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/servers/*",
"Microsoft.Support/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/databases/currentSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/databases/sensitivityLabels/*",
"Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/managedInstances/securityAlertPolicies/*",
"Microsoft.Sql/managedInstances/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/auditingPolicies/*",
"Microsoft.Sql/servers/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditingPolicies/*",
"Microsoft.Sql/servers/databases/auditingSettings/*",
"Microsoft.Sql/servers/databases/auditRecords/read",
"Microsoft.Sql/servers/databases/connectionPolicies/*",
"Microsoft.Sql/servers/databases/currentSensitivityLabels/*",
"Microsoft.Sql/servers/databases/dataMaskingPolicies/*",
"Microsoft.Sql/servers/databases/extendedAuditingSettings/*",
"Microsoft.Sql/servers/databases/recommendedSensitivityLabels/*",
"Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/securityAlertPolicies/*",
"Microsoft.Sql/servers/databases/securityMetrics/*",
"Microsoft.Sql/servers/databases/sensitivityLabels/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentScans/*",
"Microsoft.Sql/servers/databases/vulnerabilityAssessmentSettings/*",
"Microsoft.Sql/servers/extendedAuditingSettings/*",
"Microsoft.Sql/servers/securityAlertPolicies/*",
"Microsoft.Sql/servers/vulnerabilityAssessments/*",
"Microsoft.Sql/servers/azureADOnlyAuthentications/delete",
"Microsoft.Sql/servers/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "SQL Server Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AnalyseAnalytics
Eigenaar van Azure Event Hubs-gegevensAzure Event Hubs Data Owner
Hiermee krijgt u volledige toegang tot Azure Event Hubs-resources.Allows for full access to Azure Event Hubs resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. EventHub/*Microsoft.EventHub/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. EventHub/*Microsoft.EventHub/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for full access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/f526a384-b230-433a-b45c-95f59c4a2dec",
"name": "f526a384-b230-433a-b45c-95f59c4a2dec",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens ontvanger van Azure Event HubsAzure Event Hubs Data Receiver
Hiermee krijgt u toegang tot Azure Event Hubs-resources.Allows receive access to Azure Event Hubs resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. EventHub/*/eventhubs/consumergroups/ReadMicrosoft.EventHub/*/eventhubs/consumergroups/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. EventHub/*/receive/ActionMicrosoft.EventHub/*/receive/action | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows receive access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a638d3c7-ab3a-418d-83e6-5f17a39d4fde",
"name": "a638d3c7-ab3a-418d-83e6-5f17a39d4fde",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*/eventhubs/consumergroups/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*/receive/action"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Receiver",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Afzender van Azure Event Hubs gegevensAzure Event Hubs Data Sender
Hiermee wordt toegang tot Azure Event Hubs-resources verzonden.Allows send access to Azure Event Hubs resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. EventHub/*/eventhubs/ReadMicrosoft.EventHub/*/eventhubs/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. EventHub/*/Send/ActionMicrosoft.EventHub/*/send/action | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows send access to Azure Event Hubs resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2b629674-e913-4c01-ae53-ef4638d8f975",
"name": "2b629674-e913-4c01-ae53-ef4638d8f975",
"permissions": [
{
"actions": [
"Microsoft.EventHub/*/eventhubs/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/*/send/action"
],
"notDataActions": []
}
],
"roleName": "Azure Event Hubs Data Sender",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender Data FactoryData Factory Contributor
Het maken en beheren van gegevens fabrieken, evenals onderliggende resources.Create and manage data factories, as well as child resources within them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. DataFactory/dataFactories/*Microsoft.DataFactory/dataFactories/* | Maak en beheer gegevens fabrieken en onderliggende resources hierin.Create and manage data factories, and child resources within them. |
| Micro soft. DataFactory/factories/*Microsoft.DataFactory/factories/* | Maak en beheer gegevens fabrieken en onderliggende resources hierin.Create and manage data factories, and child resources within them. |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. EventGrid/eventSubscriptions/writeMicrosoft.EventGrid/eventSubscriptions/write | Een eventSubscription maken of bijwerkenCreate or update an eventSubscription |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Create and manage data factories, as well as child resources within them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5",
"name": "673868aa-7521-48a0-acc6-0f60742d39f5",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.DataFactory/dataFactories/*",
"Microsoft.DataFactory/factories/*",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*",
"Microsoft.EventGrid/eventSubscriptions/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Factory Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens opschonerData Purger
Kan analyse gegevens opschonen meer informatieCan purge analytics data Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Insights/Components/*/ReadMicrosoft.Insights/components/*/read | |
| Micro soft. Insights/Components/purge/ActionMicrosoft.Insights/components/purge/action | Gegevens uit Application Insights verwijderenPurging data from Application Insights |
| Micro soft. OperationalInsights/Workspaces/*/ReadMicrosoft.OperationalInsights/workspaces/*/read | Log Analytics-gegevens weer gevenView log analytics data |
| Micro soft. OperationalInsights/Workspaces/purge/ActionMicrosoft.OperationalInsights/workspaces/purge/action | Opgegeven gegevens uit de werk ruimte verwijderenDelete specified data from workspace |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can purge analytics data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/150f5e0c-0603-4f03-8c7f-cf70034c4e90",
"name": "150f5e0c-0603-4f03-8c7f-cf70034c4e90",
"permissions": [
{
"actions": [
"Microsoft.Insights/components/*/read",
"Microsoft.Insights/components/purge/action",
"Microsoft.OperationalInsights/workspaces/*/read",
"Microsoft.OperationalInsights/workspaces/purge/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Data Purger",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
HDInsight-cluster operatorHDInsight Cluster Operator
Hiermee kunt u HDInsight-cluster configuraties lezen en wijzigen.Lets you read and modify HDInsight cluster configurations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. HDInsight/*/ReadMicrosoft.HDInsight/*/read | |
| Micro soft. HDInsight/clusters/getGatewaySettings/ActionMicrosoft.HDInsight/clusters/getGatewaySettings/action | Gateway-instellingen voor HDInsight-cluster ophalenGet gateway settings for HDInsight Cluster |
| Micro soft. HDInsight/clusters/updateGatewaySettings/ActionMicrosoft.HDInsight/clusters/updateGatewaySettings/action | Gateway-instellingen voor HDInsight-cluster bijwerkenUpdate gateway settings for HDInsight Cluster |
| Micro soft. HDInsight/clusters/configurations/*Microsoft.HDInsight/clusters/configurations/* | |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. resources/Deployments/Operations/ReadMicrosoft.Resources/deployments/operations/read | Hiermee worden implementatie bewerkingen opgehaald of weer gegeven.Gets or lists deployment operations. |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you read and modify HDInsight cluster configurations.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/61ed4efc-fab3-44fd-b111-e24485cc132a",
"name": "61ed4efc-fab3-44fd-b111-e24485cc132a",
"permissions": [
{
"actions": [
"Microsoft.HDInsight/*/read",
"Microsoft.HDInsight/clusters/getGatewaySettings/action",
"Microsoft.HDInsight/clusters/updateGatewaySettings/action",
"Microsoft.HDInsight/clusters/configurations/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Authorization/*/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "HDInsight Cluster Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor HDInsight Domain ServicesHDInsight Domain Services Contributor
Kan benodigde bewerkingen voor domein services lezen, maken, wijzigen en verwijderen die nodig zijn voor HDInsight Enterprise Security Package meer informatieCan Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Aad/*/ReadMicrosoft.AAD/*/read | |
| Micro soft. Aad/domainServices/*/ReadMicrosoft.AAD/domainServices/*/read | |
| Micro soft. Aad/domainServices/oucontainer/*Microsoft.AAD/domainServices/oucontainer/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can Read, Create, Modify and Delete Domain Services related operations needed for HDInsight Enterprise Security Package",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8d8d5a11-05d3-4bda-a417-a08778121c7c",
"name": "8d8d5a11-05d3-4bda-a417-a08778121c7c",
"permissions": [
{
"actions": [
"Microsoft.AAD/*/read",
"Microsoft.AAD/domainServices/*/read",
"Microsoft.AAD/domainServices/oucontainer/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "HDInsight Domain Services Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender van Log AnalyticsLog Analytics Contributor
Log Analytics Inzender kan alle bewakings gegevens lezen en controle-instellingen bewerken.Log Analytics Contributor can read all monitoring data and edit monitoring settings. Het bewerken van bewakings instellingen omvat het toevoegen van de VM-extensie aan Vm's; lezen van opslag account sleutels om het verzamelen van logboeken van Azure Storage te kunnen configureren. Automation-accounts maken en configureren; oplossingen toevoegen; en het configureren van Azure Diagnostics voor alle Azure-resources.Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| */read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
| Micro soft. Automation/automationAccounts/*Microsoft.Automation/automationAccounts/* | |
| Micro soft. ClassicCompute/virtualMachines/Extensions/*Microsoft.ClassicCompute/virtualMachines/extensions/* | |
| Micro soft. ClassicStorage/storageAccounts/listKeys/ActionMicrosoft.ClassicStorage/storageAccounts/listKeys/action | Hier worden de toegangs sleutels voor de opslag accounts weer gegeven.Lists the access keys for the storage accounts. |
| Micro soft. Compute/virtualMachines/Extensions/*Microsoft.Compute/virtualMachines/extensions/* | |
| Micro soft. HybridCompute/machines/Extensions/writeMicrosoft.HybridCompute/machines/extensions/write | Hiermee wordt een Azure-Arc-extensie geĂŻnstalleerd of bijgewerktInstalls or Updates an Azure Arc extensions |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
| Micro soft. OperationalInsights/*Microsoft.OperationalInsights/* | |
| Micro soft. OperationsManagement/*Microsoft.OperationsManagement/* | |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/ResourceGroups/Deployments/*Microsoft.Resources/subscriptions/resourcegroups/deployments/* | |
| Micro soft. Storage/storageAccounts/listKeys/ActionMicrosoft.Storage/storageAccounts/listKeys/action | Retourneert de toegangs sleutels voor het opgegeven opslag account.Returns the access keys for the specified storage account. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Log Analytics Contributor can read all monitoring data and edit monitoring settings. Editing monitoring settings includes adding the VM extension to VMs; reading storage account keys to be able to configure collection of logs from Azure Storage; creating and configuring Automation accounts; adding solutions; and configuring Azure diagnostics on all Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/92aaf0da-9dab-42b6-94a3-d43ce8d16293",
"name": "92aaf0da-9dab-42b6-94a3-d43ce8d16293",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.Automation/automationAccounts/*",
"Microsoft.ClassicCompute/virtualMachines/extensions/*",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.Compute/virtualMachines/extensions/*",
"Microsoft.HybridCompute/machines/extensions/write",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.OperationalInsights/*",
"Microsoft.OperationsManagement/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Log Analytics Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer van Log AnalyticsLog Analytics Reader
Log Analytics Reader kan alle bewakings gegevens weer geven en doorzoeken en controle-instellingen weer geven, inclusief het weer geven van de configuratie van Azure Diagnostics op alle Azure-resources.Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| */read*/read | Lees resources van alle typen, met uitzonde ring van geheimen.Read resources of all types, except secrets. |
| Micro soft. OperationalInsights/Workspaces/Analytics/query/ActionMicrosoft.OperationalInsights/workspaces/analytics/query/action | Zoek met een nieuwe engine.Search using new engine. |
| Micro soft. OperationalInsights/Workspaces/Search/ActionMicrosoft.OperationalInsights/workspaces/search/action | Hiermee wordt een zoek query uitgevoerdExecutes a search query |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| Micro soft. OperationalInsights/Workspaces/sharedKeys/ReadMicrosoft.OperationalInsights/workspaces/sharedKeys/read | Hiermee worden de gedeelde sleutels voor de werk ruimte opgehaald.Retrieves the shared keys for the workspace. Deze sleutels worden gebruikt om micro soft Operational Insights-agents te verbinden met de werk ruimte.These keys are used to connect Microsoft Operational Insights agents to the workspace. |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Log Analytics Reader can view and search all monitoring data as well as and view monitoring settings, including viewing the configuration of Azure diagnostics on all Azure resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/73c42c96-874c-492b-b04d-ab87d138a893",
"name": "73c42c96-874c-492b-b04d-ab87d138a893",
"permissions": [
{
"actions": [
"*/read",
"Microsoft.OperationalInsights/workspaces/analytics/query/action",
"Microsoft.OperationalInsights/workspaces/search/action",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.OperationalInsights/workspaces/sharedKeys/read"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Log Analytics Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender van schemaregisters (preview)Schema Registry Contributor (Preview)
Schemaregistergroepen en schema's lezen, schrijven en verwijderen.Read, write, and delete Schema Registry groups and schemas.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. EventHub/namespaces/schemagroups/*Microsoft.EventHub/namespaces/schemagroups/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. EventHub/namespaces/schemas/*Microsoft.EventHub/namespaces/schemas/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Read, write, and delete Schema Registry groups and schemas.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5dffeca3-4936-4216-b2bc-10343a5abb25",
"name": "5dffeca3-4936-4216-b2bc-10343a5abb25",
"permissions": [
{
"actions": [
"Microsoft.EventHub/namespaces/schemagroups/*"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/namespaces/schemas/*"
],
"notDataActions": []
}
],
"roleName": "Schema Registry Contributor (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer van schemaregisters (preview)Schema Registry Reader (Preview)
Schemaregistergroepen en schema's lezen en weergeven.Read and list Schema Registry groups and schemas.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. EventHub/namespaces/schemagroups/ReadMicrosoft.EventHub/namespaces/schemagroups/read | Lijst met SchemaGroup-resource beschrijvingen ophalenGet list of SchemaGroup Resource Descriptions |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. EventHub/namespaces/schemas/ReadMicrosoft.EventHub/namespaces/schemas/read | Schema's ophalenRetrieve schemas |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Read and list Schema Registry groups and schemas.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2c56ea50-c6b3-40a6-83c0-9d98858bc7d2",
"name": "2c56ea50-c6b3-40a6-83c0-9d98858bc7d2",
"permissions": [
{
"actions": [
"Microsoft.EventHub/namespaces/schemagroups/read"
],
"notActions": [],
"dataActions": [
"Microsoft.EventHub/namespaces/schemas/read"
],
"notDataActions": []
}
],
"roleName": "Schema Registry Reader (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
BlockchainBlockchain
Toegang tot Block Chain-leden knooppunt (preview-versie)Blockchain Member Node Access (Preview)
Hiermee krijgt u toegang tot de Block Chain-leden knooppunten meer informatieAllows for access to Blockchain Member nodes Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Block Chain/blockchainMembers/transactionNodes/ReadMicrosoft.Blockchain/blockchainMembers/transactionNodes/read | Hiermee wordt een lijst met bestaande Block Chain-leden transactie knooppunten opgehaald of weer gegeven.Gets or Lists existing Blockchain Member Transaction Node(s). |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. Block Chain/blockchainMembers/transactionNodes/Connect/ActionMicrosoft.Blockchain/blockchainMembers/transactionNodes/connect/action | Maakt verbinding met een trans actie-knoop punt van het block Chain-lid.Connects to a Blockchain Member Transaction Node. |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for access to Blockchain Member nodes",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/31a002a1-acaf-453e-8a5b-297c9ca1ea24",
"name": "31a002a1-acaf-453e-8a5b-297c9ca1ea24",
"permissions": [
{
"actions": [
"Microsoft.Blockchain/blockchainMembers/transactionNodes/read"
],
"notActions": [],
"dataActions": [
"Microsoft.Blockchain/blockchainMembers/transactionNodes/connect/action"
],
"notDataActions": []
}
],
"roleName": "Blockchain Member Node Access (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AI + machine learningAI + machine learning
Inzender Cognitive ServicesCognitive Services Contributor
Hiermee kunt u sleutels van Cognitive Services maken, lezen, bijwerken, verwijderen en beheren.Lets you create, read, update, delete and manage keys of Cognitive Services. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. CognitiveServices/*Microsoft.CognitiveServices/* | |
| Micro soft. features/features/ReadMicrosoft.Features/features/read | Hiermee haalt u de functies van een abonnement op.Gets the features of a subscription. |
| Micro soft. features/providers/features/ReadMicrosoft.Features/providers/features/read | Hiermee wordt de functie van een abonnement in een bepaalde resource provider opgehaald.Gets the feature of a subscription in a given resource provider. |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. Insights/diagnosticSettings/*Microsoft.Insights/diagnosticSettings/* | Hiermee wordt de diagnostische instelling voor Analyseserver gemaakt, bijgewerkt of gelezenCreates, updates, or reads the diagnostic setting for Analysis Server |
| Micro soft. Insights/logDefinitions/ReadMicrosoft.Insights/logDefinitions/read | Logboek definities lezenRead log definitions |
| Micro soft. Insights/metricdefinitions/ReadMicrosoft.Insights/metricdefinitions/read | Metrische definities lezenRead metric definitions |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Deployments/Operations/ReadMicrosoft.Resources/deployments/operations/read | Hiermee worden implementatie bewerkingen opgehaald of weer gegeven.Gets or lists deployment operations. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/ResourceGroups/Deployments/*Microsoft.Resources/subscriptions/resourcegroups/deployments/* | |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you create, read, update, delete and manage keys of Cognitive Services.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"name": "25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.CognitiveServices/*",
"Microsoft.Features/features/read",
"Microsoft.Features/providers/features/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.Insights/logDefinitions/read",
"Microsoft.Insights/metricdefinitions/read",
"Microsoft.Insights/metrics/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cognitive Services Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cognitive Services gegevens lezer (preview-versie)Cognitive Services Data Reader (Preview)
Hiermee kunt u Cognitive Services gegevens lezen.Lets you read Cognitive Services data.
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you read Cognitive Services data.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/b59867f0-fa02-499b-be73-45a86b5b3e1c",
"name": "b59867f0-fa02-499b-be73-45a86b5b3e1c",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/*/read"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Data Reader (Preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cognitive Services gebruikerCognitive Services User
Hiermee kunt u de sleutels van Cognitive Services lezen en weer geven.Lets you read and list keys of Cognitive Services. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. CognitiveServices/*/ReadMicrosoft.CognitiveServices/*/read | |
| Micro soft. CognitiveServices/accounts/listkeys/ActionMicrosoft.CognitiveServices/accounts/listkeys/action | Lijst met sleutelsList Keys |
| Micro soft. Insights/alertRules/ReadMicrosoft.Insights/alertRules/read | Een klassieke waarschuwing voor metrische gegevens lezenRead a classic metric alert |
| Micro soft. Insights/diagnosticSettings/ReadMicrosoft.Insights/diagnosticSettings/read | Een diagnostische instelling voor bronnen lezenRead a resource diagnostic setting |
| Micro soft. Insights/logDefinitions/ReadMicrosoft.Insights/logDefinitions/read | Logboek definities lezenRead log definitions |
| Micro soft. Insights/metricdefinitions/ReadMicrosoft.Insights/metricdefinitions/read | Metrische definities lezenRead metric definitions |
| Micro soft. Insights/Metrics/ReadMicrosoft.Insights/metrics/read | Metrische gegevens lezenRead metrics |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/Operations/ReadMicrosoft.Resources/deployments/operations/read | Hiermee worden implementatie bewerkingen opgehaald of weer gegeven.Gets or lists deployment operations. |
| Micro soft. resources/Subscriptions/operationresults/ReadMicrosoft.Resources/subscriptions/operationresults/read | De resultaten van de abonnements bewerking ophalen.Get the subscription operation results. |
| Micro soft. resources/Subscriptions/ReadMicrosoft.Resources/subscriptions/read | Hiermee wordt de lijst met abonnementen opgehaald.Gets the list of subscriptions. |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. CognitiveServices/*Microsoft.CognitiveServices/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you read and list keys of Cognitive Services.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a97b65f3-24c7-4388-baec-2e87135dc908",
"name": "a97b65f3-24c7-4388-baec-2e87135dc908",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.CognitiveServices/accounts/listkeys/action",
"Microsoft.Insights/alertRules/read",
"Microsoft.Insights/diagnosticSettings/read",
"Microsoft.Insights/logDefinitions/read",
"Microsoft.Insights/metricdefinitions/read",
"Microsoft.Insights/metrics/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Mixed realityMixed reality
Externe rendering-beheerderRemote Rendering Administrator
Biedt gebruikers de mogelijkheid om de mogelijkheden voor het converteren van sessies, rendering en diagnose te beheren voor Azure remote rendering meer informatieProvides user with conversion, manage session, rendering and diagnostics capabilities for Azure Remote Rendering Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. MixedReality/RemoteRenderingAccounts/Convert/ActionMicrosoft.MixedReality/RemoteRenderingAccounts/convert/action | Activum conversie startenStart asset conversion |
| Micro soft. MixedReality/RemoteRenderingAccounts/Convert/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/convert/read | Eigenschappen van activa conversie ophalenGet asset conversion properties |
| Micro soft. MixedReality/RemoteRenderingAccounts/Convert/DeleteMicrosoft.MixedReality/RemoteRenderingAccounts/convert/delete | Activa conversie stoppenStop asset conversion |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/read | Sessie-eigenschappen ophalenGet session properties |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/ActionMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/action | Sessies startenStart sessions |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/DeleteMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/delete | Sessies stoppenStop sessions |
| Micro soft. MixedReality/RemoteRenderingAccounts/render/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/render/read | Verbinding maken met een sessieConnect to a session |
| Micro soft. MixedReality/RemoteRenderingAccounts/Diagnostic/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/diagnostic/read | Verbinding maken met de externe rendering-controleConnect to the Remote Rendering inspector |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Provides user with conversion, manage session, rendering and diagnostics capabilities for Azure Remote Rendering",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/3df8b902-2a6f-47c7-8cc5-360e9b272a7e",
"name": "3df8b902-2a6f-47c7-8cc5-360e9b272a7e",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.MixedReality/RemoteRenderingAccounts/convert/action",
"Microsoft.MixedReality/RemoteRenderingAccounts/convert/read",
"Microsoft.MixedReality/RemoteRenderingAccounts/convert/delete",
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/read",
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/action",
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/delete",
"Microsoft.MixedReality/RemoteRenderingAccounts/render/read",
"Microsoft.MixedReality/RemoteRenderingAccounts/diagnostic/read"
],
"notDataActions": []
}
],
"roleName": "Remote Rendering Administrator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Client voor externe RenderingRemote Rendering Client
Biedt gebruikers de mogelijkheid om sessie, rendering en diagnose te beheren voor de externe rendering van Azure.Provides user with manage session, rendering and diagnostics capabilities for Azure Remote Rendering. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/read | Sessie-eigenschappen ophalenGet session properties |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/ActionMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/action | Sessies startenStart sessions |
| Micro soft. MixedReality/RemoteRenderingAccounts/managesessions/DeleteMicrosoft.MixedReality/RemoteRenderingAccounts/managesessions/delete | Sessies stoppenStop sessions |
| Micro soft. MixedReality/RemoteRenderingAccounts/render/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/render/read | Verbinding maken met een sessieConnect to a session |
| Micro soft. MixedReality/RemoteRenderingAccounts/Diagnostic/ReadMicrosoft.MixedReality/RemoteRenderingAccounts/diagnostic/read | Verbinding maken met de externe rendering-controleConnect to the Remote Rendering inspector |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Provides user with manage session, rendering and diagnostics capabilities for Azure Remote Rendering.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/d39065c4-c120-43c9-ab0a-63eed9795f0a",
"name": "d39065c4-c120-43c9-ab0a-63eed9795f0a",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/read",
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/action",
"Microsoft.MixedReality/RemoteRenderingAccounts/managesessions/delete",
"Microsoft.MixedReality/RemoteRenderingAccounts/render/read",
"Microsoft.MixedReality/RemoteRenderingAccounts/diagnostic/read"
],
"notDataActions": []
}
],
"roleName": "Remote Rendering Client",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor ruimtelijke ankersSpatial Anchors Account Contributor
Hiermee kunt u ruimtelijke ankers in uw account beheren, maar niet verwijderen. meer informatieLets you manage spatial anchors in your account, but not delete them Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Create/ActionMicrosoft.MixedReality/SpatialAnchorsAccounts/create/action | Ruimtelijke ankers makenCreate spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Discovery/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/discovery/read | Ruimtelijke beankeringen in de buurt detecterenDiscover nearby spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Properties/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/properties/read | Eigenschappen van ruimtelijke ankers ophalenGet properties of spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/query/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/query/read | Ruimtelijke ankers zoekenLocate spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/submitdiag/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read | Diagnostische gegevens verzenden om de kwaliteit van de Azure spatiale ankers-service te verbeterenSubmit diagnostics data to help improve the quality of the Azure Spatial Anchors service |
| Micro soft. MixedReality/SpatialAnchorsAccounts/writeMicrosoft.MixedReality/SpatialAnchorsAccounts/write | Eigenschappen van ruimtelijke ankers bijwerkenUpdate spatial anchors properties |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage spatial anchors in your account, but not delete them",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/8bbe83f1-e2a6-4df7-8cb4-4e04d4e5c827",
"name": "8bbe83f1-e2a6-4df7-8cb4-4e04d4e5c827",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.MixedReality/SpatialAnchorsAccounts/create/action",
"Microsoft.MixedReality/SpatialAnchorsAccounts/discovery/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/properties/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/query/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/write"
],
"notDataActions": []
}
],
"roleName": "Spatial Anchors Account Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Eigenaar van ruimtelijk ankersSpatial Anchors Account Owner
Hiermee kunt u ruimtelijke ankers in uw account beheren, waaronder het verwijderen van meer informatieLets you manage spatial anchors in your account, including deleting them Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Create/ActionMicrosoft.MixedReality/SpatialAnchorsAccounts/create/action | Ruimtelijke ankers makenCreate spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/DeleteMicrosoft.MixedReality/SpatialAnchorsAccounts/delete | Ruimtelijke ankers verwijderenDelete spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Discovery/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/discovery/read | Ruimtelijke beankeringen in de buurt detecterenDiscover nearby spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Properties/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/properties/read | Eigenschappen van ruimtelijke ankers ophalenGet properties of spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/query/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/query/read | Ruimtelijke ankers zoekenLocate spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/submitdiag/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read | Diagnostische gegevens verzenden om de kwaliteit van de Azure spatiale ankers-service te verbeterenSubmit diagnostics data to help improve the quality of the Azure Spatial Anchors service |
| Micro soft. MixedReality/SpatialAnchorsAccounts/writeMicrosoft.MixedReality/SpatialAnchorsAccounts/write | Eigenschappen van ruimtelijke ankers bijwerkenUpdate spatial anchors properties |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage spatial anchors in your account, including deleting them",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/70bbe301-9835-447d-afdd-19eb3167307c",
"name": "70bbe301-9835-447d-afdd-19eb3167307c",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.MixedReality/SpatialAnchorsAccounts/create/action",
"Microsoft.MixedReality/SpatialAnchorsAccounts/delete",
"Microsoft.MixedReality/SpatialAnchorsAccounts/discovery/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/properties/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/query/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/write"
],
"notDataActions": []
}
],
"roleName": "Spatial Anchors Account Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lezer van ruimtelijk ankers-accountSpatial Anchors Account Reader
Hiermee kunt u eigenschappen van ruimtelijke ankers in uw account zoeken en lezen. meer informatieLets you locate and read properties of spatial anchors in your account Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Discovery/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/discovery/read | Ruimtelijke beankeringen in de buurt detecterenDiscover nearby spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/Properties/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/properties/read | Eigenschappen van ruimtelijke ankers ophalenGet properties of spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/query/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/query/read | Ruimtelijke ankers zoekenLocate spatial anchors |
| Micro soft. MixedReality/SpatialAnchorsAccounts/submitdiag/ReadMicrosoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read | Diagnostische gegevens verzenden om de kwaliteit van de Azure spatiale ankers-service te verbeterenSubmit diagnostics data to help improve the quality of the Azure Spatial Anchors service |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you locate and read properties of spatial anchors in your account",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5d51204f-eb77-4b1c-b86a-2ec626c49413",
"name": "5d51204f-eb77-4b1c-b86a-2ec626c49413",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.MixedReality/SpatialAnchorsAccounts/discovery/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/properties/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/query/read",
"Microsoft.MixedReality/SpatialAnchorsAccounts/submitdiag/read"
],
"notDataActions": []
}
],
"roleName": "Spatial Anchors Account Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
IntegratieIntegration
Inzender van API Management-serviceAPI Management Service Contributor
Kan de service en de Api's beheren meer informatieCan manage service and the APIs Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ApiManagement/service/*Microsoft.ApiManagement/service/* | API Management-service maken en beherenCreate and manage API Management service |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage service and the APIs",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/312a565d-c81f-4fd8-895a-4e21e48d571c",
"name": "312a565d-c81f-4fd8-895a-4e21e48d571c",
"permissions": [
{
"actions": [
"Microsoft.ApiManagement/service/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "API Management Service Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Functie API Management service operatorAPI Management Service Operator Role
Kan de service beheren, maar niet de Api's meer informatieCan manage service but not the APIs Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ApiManagement/service/*/ReadMicrosoft.ApiManagement/service/*/read | API Management service-exemplaren lezenRead API Management Service instances |
| Micro soft. ApiManagement/service/Backup/ActionMicrosoft.ApiManagement/service/backup/action | Backup API Management-service naar de opgegeven container in een door de gebruiker opgegeven opslag accountBackup API Management Service to the specified container in a user provided storage account |
| Micro soft. ApiManagement/service/DeleteMicrosoft.ApiManagement/service/delete | API Management service-exemplaar verwijderenDelete API Management Service instance |
| Micro soft. ApiManagement/service/managedeployments/ActionMicrosoft.ApiManagement/service/managedeployments/action | SKU/eenheden wijzigen, regionale implementaties van API Management service toevoegen/verwijderenChange SKU/units, add/remove regional deployments of API Management Service |
| Micro soft. ApiManagement/service/ReadMicrosoft.ApiManagement/service/read | Meta gegevens voor een API Management service-exemplaar lezenRead metadata for an API Management Service instance |
| Micro soft. ApiManagement/service/Restore/ActionMicrosoft.ApiManagement/service/restore/action | De API Management-service herstellen vanuit de opgegeven container in een opslag account dat door de gebruiker is opgegevenRestore API Management Service from the specified container in a user provided storage account |
| Micro soft. ApiManagement/service/updatecertificate/ActionMicrosoft.ApiManagement/service/updatecertificate/action | TLS/SSL-certificaat voor een API Management-service uploadenUpload TLS/SSL certificate for an API Management Service |
| Micro soft. ApiManagement/service/updatehostname/ActionMicrosoft.ApiManagement/service/updatehostname/action | Aangepaste domein namen instellen, bijwerken of verwijderen voor een API Management-serviceSetup, update or remove custom domain names for an API Management Service |
| Micro soft. ApiManagement/service/writeMicrosoft.ApiManagement/service/write | API Management service-exemplaar maken of bijwerkenCreate or Update API Management Service instance |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| Micro soft. ApiManagement/service/users/Keys/ReadMicrosoft.ApiManagement/service/users/keys/read | Sleutels ophalen die aan de gebruiker zijn gekoppeldGet keys associated with user |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Can manage service but not the APIs",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/e022efe7-f5ba-4159-bbe4-b44f577e9b61",
"name": "e022efe7-f5ba-4159-bbe4-b44f577e9b61",
"permissions": [
{
"actions": [
"Microsoft.ApiManagement/service/*/read",
"Microsoft.ApiManagement/service/backup/action",
"Microsoft.ApiManagement/service/delete",
"Microsoft.ApiManagement/service/managedeployments/action",
"Microsoft.ApiManagement/service/read",
"Microsoft.ApiManagement/service/restore/action",
"Microsoft.ApiManagement/service/updatecertificate/action",
"Microsoft.ApiManagement/service/updatehostname/action",
"Microsoft.ApiManagement/service/write",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.ApiManagement/service/users/keys/read"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "API Management Service Operator Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
API Management functie Service lezerAPI Management Service Reader Role
Alleen-lezen toegang tot de service en Api's meer informatieRead-only access to service and APIs Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ApiManagement/service/*/ReadMicrosoft.ApiManagement/service/*/read | API Management service-exemplaren lezenRead API Management Service instances |
| Micro soft. ApiManagement/service/ReadMicrosoft.ApiManagement/service/read | Meta gegevens voor een API Management service-exemplaar lezenRead metadata for an API Management Service instance |
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| Micro soft. ApiManagement/service/users/Keys/ReadMicrosoft.ApiManagement/service/users/keys/read | Sleutels ophalen die aan de gebruiker zijn gekoppeldGet keys associated with user |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Read-only access to service and APIs",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/71522526-b88f-4d52-b57f-d31fc3546d0d",
"name": "71522526-b88f-4d52-b57f-d31fc3546d0d",
"permissions": [
{
"actions": [
"Microsoft.ApiManagement/service/*/read",
"Microsoft.ApiManagement/service/read",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [
"Microsoft.ApiManagement/service/users/keys/read"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "API Management Service Reader Role",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Eigenaar van app-configuratie gegevensApp Configuration Data Owner
Hiermee krijgt u volledige toegang tot de app-configuratie gegevens.Allows full access to App Configuration data. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. AppConfiguration/configurationStores/*/ReadMicrosoft.AppConfiguration/configurationStores/*/read | |
| Micro soft. AppConfiguration/configurationStores/*/writeMicrosoft.AppConfiguration/configurationStores/*/write | |
| Micro soft. AppConfiguration/configurationStores/*/DeleteMicrosoft.AppConfiguration/configurationStores/*/delete | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows full access to App Configuration data.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b",
"name": "5ae67dd6-50cb-40e7-96ff-dc2bfa4b606b",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AppConfiguration/configurationStores/*/read",
"Microsoft.AppConfiguration/configurationStores/*/write",
"Microsoft.AppConfiguration/configurationStores/*/delete"
],
"notDataActions": []
}
],
"roleName": "App Configuration Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer app-configuratieApp Configuration Data Reader
Hiermee staat u lees toegang toe voor app-configuratie gegevens.Allows read access to App Configuration data. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. AppConfiguration/configurationStores/*/ReadMicrosoft.AppConfiguration/configurationStores/*/read | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows read access to App Configuration data.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/516239f1-63e1-4d78-a4de-a74fb236a071",
"name": "516239f1-63e1-4d78-a4de-a74fb236a071",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AppConfiguration/configurationStores/*/read"
],
"notDataActions": []
}
],
"roleName": "App Configuration Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens eigenaar Azure Service BusAzure Service Bus Data Owner
Hiermee krijgt u volledige toegang tot Azure Service Bus-resources.Allows for full access to Azure Service Bus resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ServiceBus/*Microsoft.ServiceBus/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. ServiceBus/*Microsoft.ServiceBus/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for full access to Azure Service Bus resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/090c5cfd-751d-490a-894a-3ce6f1109419",
"name": "090c5cfd-751d-490a-894a-3ce6f1109419",
"permissions": [
{
"actions": [
"Microsoft.ServiceBus/*"
],
"notActions": [],
"dataActions": [
"Microsoft.ServiceBus/*"
],
"notDataActions": []
}
],
"roleName": "Azure Service Bus Data Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens ontvanger Azure Service BusAzure Service Bus Data Receiver
Hiermee krijgt u toegang tot Azure Service Bus-resources.Allows for receive access to Azure Service Bus resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ServiceBus/*/queues/ReadMicrosoft.ServiceBus/*/queues/read | |
| Micro soft. ServiceBus/*/topics/ReadMicrosoft.ServiceBus/*/topics/read | |
| Micro soft. ServiceBus/*/topics/Subscriptions/ReadMicrosoft.ServiceBus/*/topics/subscriptions/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. ServiceBus/*/receive/ActionMicrosoft.ServiceBus/*/receive/action | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for receive access to Azure Service Bus resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4f6d3b9b-027b-4f4c-9142-0e5a2a2247e0",
"name": "4f6d3b9b-027b-4f4c-9142-0e5a2a2247e0",
"permissions": [
{
"actions": [
"Microsoft.ServiceBus/*/queues/read",
"Microsoft.ServiceBus/*/topics/read",
"Microsoft.ServiceBus/*/topics/subscriptions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.ServiceBus/*/receive/action"
],
"notDataActions": []
}
],
"roleName": "Azure Service Bus Data Receiver",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Afzender van Azure Service Bus gegevensAzure Service Bus Data Sender
Hiermee kunt u toegang tot Azure Service Bus resources verzenden.Allows for send access to Azure Service Bus resources. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. ServiceBus/*/queues/ReadMicrosoft.ServiceBus/*/queues/read | |
| Micro soft. ServiceBus/*/topics/ReadMicrosoft.ServiceBus/*/topics/read | |
| Micro soft. ServiceBus/*/topics/Subscriptions/ReadMicrosoft.ServiceBus/*/topics/subscriptions/read | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. ServiceBus/*/Send/ActionMicrosoft.ServiceBus/*/send/action | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows for send access to Azure Service Bus resources.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/69a216fc-b8fb-44d8-bc22-1f3c2cd27a39",
"name": "69a216fc-b8fb-44d8-bc22-1f3c2cd27a39",
"permissions": [
{
"actions": [
"Microsoft.ServiceBus/*/queues/read",
"Microsoft.ServiceBus/*/topics/read",
"Microsoft.ServiceBus/*/topics/subscriptions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.ServiceBus/*/send/action"
],
"notDataActions": []
}
],
"roleName": "Azure Service Bus Data Sender",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Registratie-eigenaar Azure StackAzure Stack Registration Owner
Hiermee kunt u Azure Stack registraties beheren.Lets you manage Azure Stack registrations.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. AzureStack/edgeSubscriptions/ReadMicrosoft.AzureStack/edgeSubscriptions/read | |
| Micro soft. AzureStack/Registrations/Products/*/ActionMicrosoft.AzureStack/registrations/products/*/action | |
| Micro soft. AzureStack/Registrations/Products/ReadMicrosoft.AzureStack/registrations/products/read | Hiermee worden de eigenschappen van een Azure Stack Marketplace-product opgehaaldGets the properties of an Azure Stack Marketplace product |
| Micro soft. AzureStack/Registrations/ReadMicrosoft.AzureStack/registrations/read | Hiermee worden de eigenschappen van een Azure Stack registratie opgehaaldGets the properties of an Azure Stack registration |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Azure Stack registrations.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/6f12a6df-dd06-4f3e-bcb1-ce8be600526a",
"name": "6f12a6df-dd06-4f3e-bcb1-ce8be600526a",
"permissions": [
{
"actions": [
"Microsoft.AzureStack/edgeSubscriptions/read",
"Microsoft.AzureStack/registrations/products/*/action",
"Microsoft.AzureStack/registrations/products/read",
"Microsoft.AzureStack/registrations/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure Stack Registration Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
EventGrid EventSubscription-bijdragerEventGrid EventSubscription Contributor
Hiermee kunt u bewerkingen voor EventGrid-gebeurtenis abonnementen beheren.Lets you manage EventGrid event subscription operations. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. EventGrid/eventSubscriptions/*Microsoft.EventGrid/eventSubscriptions/* | |
| Micro soft. EventGrid/topicTypes/eventSubscriptions/ReadMicrosoft.EventGrid/topicTypes/eventSubscriptions/read | Globale gebeurtenis abonnementen weer geven op onderwerps typeList global event subscriptions by topic type |
| Micro soft. EventGrid/locations/eventSubscriptions/ReadMicrosoft.EventGrid/locations/eventSubscriptions/read | Regionale gebeurtenis abonnementen weer gevenList regional event subscriptions |
| Micro soft. EventGrid/locations/topicTypes/eventSubscriptions/ReadMicrosoft.EventGrid/locations/topicTypes/eventSubscriptions/read | Regionale gebeurtenis abonnementen weer geven op topictypeList regional event subscriptions by topictype |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage EventGrid event subscription operations.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/428e0ff0-5e57-4d9c-a221-2c70d0e0a443",
"name": "428e0ff0-5e57-4d9c-a221-2c70d0e0a443",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.EventGrid/eventSubscriptions/*",
"Microsoft.EventGrid/topicTypes/eventSubscriptions/read",
"Microsoft.EventGrid/locations/eventSubscriptions/read",
"Microsoft.EventGrid/locations/topicTypes/eventSubscriptions/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "EventGrid EventSubscription Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
EventGrid EventSubscription-lezerEventGrid EventSubscription Reader
Hiermee kunt u EventGrid-gebeurtenis abonnementen lezen.Lets you read EventGrid event subscriptions. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. EventGrid/eventSubscriptions/ReadMicrosoft.EventGrid/eventSubscriptions/read | Een eventSubscription lezenRead an eventSubscription |
| Micro soft. EventGrid/topicTypes/eventSubscriptions/ReadMicrosoft.EventGrid/topicTypes/eventSubscriptions/read | Globale gebeurtenis abonnementen weer geven op onderwerps typeList global event subscriptions by topic type |
| Micro soft. EventGrid/locations/eventSubscriptions/ReadMicrosoft.EventGrid/locations/eventSubscriptions/read | Regionale gebeurtenis abonnementen weer gevenList regional event subscriptions |
| Micro soft. EventGrid/locations/topicTypes/eventSubscriptions/ReadMicrosoft.EventGrid/locations/topicTypes/eventSubscriptions/read | Regionale gebeurtenis abonnementen weer geven op topictypeList regional event subscriptions by topictype |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you read EventGrid event subscriptions.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/2414bbcf-6497-4faf-8c65-045460748405",
"name": "2414bbcf-6497-4faf-8c65-045460748405",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.EventGrid/eventSubscriptions/read",
"Microsoft.EventGrid/topicTypes/eventSubscriptions/read",
"Microsoft.EventGrid/locations/eventSubscriptions/read",
"Microsoft.EventGrid/locations/topicTypes/eventSubscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "EventGrid EventSubscription Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor FHIR-gegevensFHIR Data Contributor
De rol maakt gebruiker of Principal volledige toegang tot FHIR-gegevens meer informatieRole allows user or principal full access to FHIR Data Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. HealthcareApis/Services/fhir/resources/*Microsoft.HealthcareApis/services/fhir/resources/* | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Role allows user or principal full access to FHIR Data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/5a1fc7df-4bf1-4951-a576-89034ee01acd",
"name": "5a1fc7df-4bf1-4951-a576-89034ee01acd",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthcareApis/services/fhir/resources/*"
],
"notDataActions": []
}
],
"roleName": "FHIR Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
FHIR-gegevens exporteurFHIR Data Exporter
De rol staat gebruikers of Principal toe om FHIR gegevens te lezen en exporteren meer informatieRole allows user or principal to read and export FHIR Data Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. HealthcareApis/Services/fhir/resources/lezenMicrosoft.HealthcareApis/services/fhir/resources/read | Lees FHIR-bronnen (inclusief Zoek opdrachten en geschiedenis van versies).Read FHIR resources (includes searching and versioned history). |
| Micro soft. HealthcareApis/Services/fhir/resources/exporteren/actieMicrosoft.HealthcareApis/services/fhir/resources/export/action | Export bewerking ($export).Export operation ($export). |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Role allows user or principal to read and export FHIR Data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/3db33094-8700-4567-8da5-1501d4e7e843",
"name": "3db33094-8700-4567-8da5-1501d4e7e843",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthcareApis/services/fhir/resources/read",
"Microsoft.HealthcareApis/services/fhir/resources/export/action"
],
"notDataActions": []
}
],
"roleName": "FHIR Data Exporter",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Gegevens lezer FHIRFHIR Data Reader
De rol staat gebruikers of Principal toe om FHIR gegevens te lezen meer informatieRole allows user or principal to read FHIR Data Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. HealthcareApis/Services/fhir/resources/lezenMicrosoft.HealthcareApis/services/fhir/resources/read | Lees FHIR-bronnen (inclusief Zoek opdrachten en geschiedenis van versies).Read FHIR resources (includes searching and versioned history). |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Role allows user or principal to read FHIR Data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/4c8d0bbc-75d3-4935-991f-5f3c56d81508",
"name": "4c8d0bbc-75d3-4935-991f-5f3c56d81508",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthcareApis/services/fhir/resources/read"
],
"notDataActions": []
}
],
"roleName": "FHIR Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
FHIR-gegevens schrijverFHIR Data Writer
De rol staat gebruikers of Principal toe om FHIR gegevens te lezen en te schrijven. meer informatieRole allows user or principal to read and write FHIR Data Learn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| geennone | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| Micro soft. HealthcareApis/Services/fhir/resources/*Microsoft.HealthcareApis/services/fhir/resources/* | |
| NotDataActionsNotDataActions | |
| Micro soft. HealthcareApis/Services/fhir/resources/hardDelete/actieMicrosoft.HealthcareApis/services/fhir/resources/hardDelete/action | Harde verwijdering (inclusief versie geschiedenis).Hard Delete (including version history). |
{
"assignableScopes": [
"/"
],
"description": "Role allows user or principal to read and write FHIR Data",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/3f88fce4-5892-4214-ae73-ba5294559913",
"name": "3f88fce4-5892-4214-ae73-ba5294559913",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthcareApis/services/fhir/resources/*"
],
"notDataActions": [
"Microsoft.HealthcareApis/services/fhir/resources/hardDelete/action"
]
}
],
"roleName": "FHIR Data Writer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender IntegratieserviceomgevingIntegration Service Environment Contributor
Hiermee kunt u de integratie service omgevingen beheren, maar niet de toegang tot ze.Lets you manage integration service environments, but not access to them. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Logic/integrationServiceEnvironments/*Microsoft.Logic/integrationServiceEnvironments/* | |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage integration service environments, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/a41e2c5b-bd99-4a07-88f4-9bf657a760b8",
"name": "a41e2c5b-bd99-4a07-88f4-9bf657a760b8",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Support/*",
"Microsoft.Logic/integrationServiceEnvironments/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Integration Service Environment Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Integratieserviceomgeving-ontwikkelaarIntegration Service Environment Developer
Hiermee kunnen ontwikkel aars werk stromen, integratie accounts en API-verbindingen maken en bijwerken in integratie service omgevingen.Allows developers to create and update workflows, integration accounts and API connections in integration service environments. Meer informatieLearn more
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| Micro soft. Logic/integrationServiceEnvironments/ReadMicrosoft.Logic/integrationServiceEnvironments/read | Hiermee wordt de integratie service omgeving gelezen.Reads the integration service environment. |
| Micro soft. Logic/integrationServiceEnvironments/join/ActionMicrosoft.Logic/integrationServiceEnvironments/join/action | Voegt de Integratieserviceomgeving toe.Joins the Integration Service Environment. |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Allows developers to create and update workflows, integration accounts and API connections in integration service environments.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/c7aa55d3-1abb-444a-a5ca-5e51e485d6ec",
"name": "c7aa55d3-1abb-444a-a5ca-5e51e485d6ec",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Support/*",
"Microsoft.Logic/integrationServiceEnvironments/read",
"Microsoft.Logic/integrationServiceEnvironments/join/action"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Integration Service Environment Developer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Inzender voor Intelligent Systems-accountIntelligent Systems Account Contributor
Hiermee kunt u intelligente Systems-accounts beheren, maar niet de toegang tot ze.Lets you manage Intelligent Systems accounts, but not access to them.
| ActiesActions | BeschrijvingDescription |
|---|---|
| Micro soft. Authorization/*/ReadMicrosoft.Authorization/*/read | Rollen en roltoewijzingen lezenRead roles and role assignments |
| Micro soft. Insights/alertRules/*Microsoft.Insights/alertRules/* | Een klassieke waarschuwing voor metrische gegevens maken en beherenCreate and manage a classic metric alert |
| Micro soft. IntelligentSystems/accounts/*Microsoft.IntelligentSystems/accounts/* | Intelligente systeem accounts maken en beherenCreate and manage intelligent systems accounts |
| Micro soft. ResourceHealth/availabilityStatuses/ReadMicrosoft.ResourceHealth/availabilityStatuses/read | Hiermee worden de beschikbaarheids status waarden opgehaald voor alle resources in het opgegeven bereikGets the availability statuses for all resources in the specified scope |
| Micro soft. resources/Deployments/*Microsoft.Resources/deployments/* | Een implementatie maken en beherenCreate and manage a deployment |
| Micro soft. resources/Subscriptions/resourceGroups/ReadMicrosoft.Resources/subscriptions/resourceGroups/read | Hiermee worden resource groepen opgehaald of weer gegeven.Gets or lists resource groups. |
| Micro soft. ondersteuning/*Microsoft.Support/* | Een ondersteunings ticket maken en bijwerkenCreate and update a support ticket |
| NotActionsNotActions | |
| geennone | |
| DataActionsDataActions | |
| geennone | |
| NotDataActionsNotDataActions | |
| geennone |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Intelligent Systems accounts, but not access to them.",
"id": "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleDefinitions/03a6d094-3444-4b3d-88af-7477090a9e5e",
"name": "03a6d094-3444-4b3d-88af-7477090a9e5e",
"permissions":