AzRoleAdvertizer

last sync: 2025-Oct-30 18:22:48 UTC

Desktop Virtualization Power On Off Contributor

Azure BuiltIn RBAC Role definition

Name

Desktop Virtualization Power On Off Contributor
Microsoft Learn

40c5ff49-9181-41f8-ae61-143b0e78555e

Description

Provide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.

Category

Compute
Microsoft Learn

CreatedOn

2022-06-29 01:44:11 UTC

UpdatedOn

2024-08-15 18:24:59 UTC

Permissions summary

Effective control plane and data plane operations: 82 (unique operations)
•: 1
•Action: 25
•delete: 3
•read: 49
•write: 4

Actions: 37
Resolved control plane operations from Actions: 82
Effective control plane operations: 82
•: 1
•Action: 25
•delete: 3
•read: 49
•write: 4

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 17383

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 4081

Actions

Operation	Description
Microsoft.Authorization/*/read	wildcarded / no description
Microsoft.AzureStackHCI/operations/read	no description given
Microsoft.AzureStackHCI/virtualMachineInstances/read	Gets/Lists virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/restart/action	Restarts virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/start/action	Starts virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/stop/action	Stops virtual machine instance resource
Microsoft.Compute/virtualMachines/deallocate/action	Powers off the virtual machine and releases the compute resources
Microsoft.Compute/virtualMachines/instanceView/read	Gets the detailed runtime status of the virtual machine and its resources
Microsoft.Compute/virtualMachines/powerOff/action	Powers off the virtual machine. Note that the virtual machine will continue to be billed.
Microsoft.Compute/virtualMachines/read	Get the properties of a virtual machine
Microsoft.Compute/virtualMachines/restart/action	Restarts the virtual machine
Microsoft.Compute/virtualMachines/start/action	Starts the virtual machine
Microsoft.ComputeSchedule/locations/virtualMachinesCancelOperations/action	VirtualMachinesCancelOperations: Cancel a previously submitted (start/deallocate/hibernate) request
Microsoft.ComputeSchedule/locations/virtualMachinesExecuteDeallocate/action	VirtualMachinesExecuteDeallocate: Execute deallocate operation for a batch of virtual machines, this operation is triggered as soon as Computeschedule receives it.
Microsoft.ComputeSchedule/locations/virtualMachinesExecuteHibernate/action	VirtualMachinesExecuteHibernate: Execute hibernate operation for a batch of virtual machines, this operation is triggered as soon as Computeschedule receives it.
Microsoft.ComputeSchedule/locations/virtualMachinesExecuteStart/action	VirtualMachinesExecuteStart: Execute start operation for a batch of virtual machines, this operation is triggered as soon as Computeschedule receives it.
Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationErrors/action	VirtualMachinesGetOperationErrors: Get error details on operation errors (like transient errors encountered, additional logs) if they exist.
Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus/action	VirtualMachinesGetOperationStatus: Polling endpoint to read status of operations performed on virtual machines
Microsoft.ComputeSchedule/locations/virtualMachinesSubmitDeallocate/action	VirtualMachinesSubmitDeallocate: Schedule deallocate operation for a batch of virtual machines at datetime in future.
Microsoft.ComputeSchedule/locations/virtualMachinesSubmitHibernate/action	VirtualMachinesSubmitHibernate: Schedule hibernate operation for a batch of virtual machines at datetime in future.
Microsoft.ComputeSchedule/locations/virtualMachinesSubmitStart/action	VirtualMachinesSubmitStart: Schedule start operation for a batch of virtual machines at datetime in future.
Microsoft.ComputeSchedule/register/action	Register the subscription for Microsoft.ComputeSchedule
Microsoft.DesktopVirtualization/hostpools/read	Read hostpools
Microsoft.DesktopVirtualization/hostpools/sessionhosts/read	Read hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/delete	Delete hostpools/sessionhosts/usersessions
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/read	Read hostpools/sessionhosts/usersessions
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/sendMessage/action	Send message to user session
Microsoft.DesktopVirtualization/hostpools/sessionhosts/write	Write hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/write	Write hostpools
Microsoft.HybridCompute/locations/operationresults/read	Reads the status of an operation on Microsoft.HybridCompute Resource Provider
Microsoft.HybridCompute/locations/operationstatus/read	Reads the status of an operation on Microsoft.HybridCompute Resource Provider
Microsoft.HybridCompute/machines/read	Read any Azure Arc machines
Microsoft.HybridCompute/operations/read	Read all Operations for Azure Arc for Servers
Microsoft.Insights/alertRules/*	wildcarded / no description
Microsoft.Insights/eventtypes/values/read	Read Activity Log events
Microsoft.Resources/deployments/*	wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/read	Gets or lists resource groups.

NotActions

n/a

DataActions

n/a

NotDataActions

n/a

Used in
BuiltIn Policy

none

History

Date/Time (UTC ymd) (i)	Change	Change detail
2024-08-16 18:19:27	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus/action; add Microsoft.ComputeSchedule/register/action'
2024-08-15 18:18:54	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-14 19:48:07	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-14 18:18:52	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-13 18:20:01	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-12 18:17:43	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-09 18:18:05	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-08 18:19:52	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-07 18:20:44	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-06 18:20:07	change: Actions	Actions: 'remove Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus; remove ; remove /action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action'
2024-08-05 18:24:48	change: Actions	Actions: 'add Microsoft.ComputeSchedule/locations/virtualMachinesCancelOperations/action; add Microsoft.ComputeSchedule/locations/virtualMachinesExecuteDeallocate/action; add Microsoft.ComputeSchedule/locations/virtualMachinesExecuteHibernate/action; add Microsoft.ComputeSchedule/locations/virtualMachinesExecuteStart/action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationErrors/action; add Microsoft.ComputeSchedule/locations/virtualMachinesGetOperationStatus /action; add Microsoft.ComputeSchedule/locations/virtualMachinesSubmitDeallocate/action; add Microsoft.ComputeSchedule/locations/virtualMachinesSubmitHibernate/action; add Microsoft.ComputeSchedule/locations/virtualMachinesSubmitStart/action'
2024-02-09 20:16:20	change: Description, Actions	New Description: 'Provide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.' Old Description: 'This role is in preview and subject to change. Provide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.', Actions: 'add Microsoft.HybridCompute/machines/read; add Microsoft.HybridCompute/operations/read; add Microsoft.HybridCompute/locations/operationresults/read; add Microsoft.HybridCompute/locations/operationstatus/read; add Microsoft.AzureStackHCI/virtualMachineInstances/read; add Microsoft.AzureStackHCI/virtualMachineInstances/start/action; add Microsoft.AzureStackHCI/virtualMachineInstances/stop/action; add Microsoft.AzureStackHCI/virtualMachineInstances/restart/action; add Microsoft.AzureStackHCI/operations/read'
2022-07-18 16:33:50	add: Role	40c5ff49-9181-41f8-ae61-143b0e78555e

JSON

api-version=2023-07-01-preview

Condition

none