AzRoleAdvertizer

last sync: 2024-Jul-26 18:17:46 UTC

Desktop Virtualization Power On Off Contributor

Azure BuiltIn RBAC Role definition

NameDesktop Virtualization Power On Off Contributor
Id40c5ff49-9181-41f8-ae61-143b0e78555e
DescriptionProvide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.
CreatedOn2022-06-29 01:44:11 UTC
UpdatedOn2024-02-08 17:46:08 UTC
History
Date/Time (UTC ymd) (i) Change Change detail
2024-02-09 20:16:20 change: Description, Actions New Description: 'Provide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.'
Old Description: 'This role is in preview and subject to change. Provide permission to the Azure Virtual Desktop Resource Provider to start and stop virtual machines.',
Actions: 'add Microsoft.HybridCompute/machines/read; add Microsoft.HybridCompute/operations/read; add Microsoft.HybridCompute/locations/operationresults/read; add Microsoft.HybridCompute/locations/operationstatus/read; add Microsoft.AzureStackHCI/virtualMachineInstances/read; add Microsoft.AzureStackHCI/virtualMachineInstances/start/action; add Microsoft.AzureStackHCI/virtualMachineInstances/stop/action; add Microsoft.AzureStackHCI/virtualMachineInstances/restart/action; add Microsoft.AzureStackHCI/operations/read'
2022-07-18 16:33:50 add: Role 40c5ff49-9181-41f8-ae61-143b0e78555e
Permissions summary Effective control plane and data plane operations: 68 (unique operations)
•: 1
•Action: 15
•delete: 3
•read: 45
•write: 4

Actions: 27
Resolved control plane operations from Actions: 68
Effective control plane operations: 68
•: 1
•Action: 15
•delete: 3
•read: 45
•write: 4

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15560

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3219
Actions
Operation Description
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.AzureStackHCI/operations/readno description given
Microsoft.AzureStackHCI/virtualMachineInstances/readGets/Lists virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/restart/actionRestarts virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/start/actionStarts virtual machine instance resource
Microsoft.AzureStackHCI/virtualMachineInstances/stop/actionStops virtual machine instance resource
Microsoft.Compute/virtualMachines/deallocate/actionPowers off the virtual machine and releases the compute resources
Microsoft.Compute/virtualMachines/instanceView/readGets the detailed runtime status of the virtual machine and its resources
Microsoft.Compute/virtualMachines/powerOff/actionPowers off the virtual machine. Note that the virtual machine will continue to be billed.
Microsoft.Compute/virtualMachines/readGet the properties of a virtual machine
Microsoft.Compute/virtualMachines/restart/actionRestarts the virtual machine
Microsoft.Compute/virtualMachines/start/actionStarts the virtual machine
Microsoft.DesktopVirtualization/hostpools/readRead hostpools
Microsoft.DesktopVirtualization/hostpools/sessionhosts/readRead hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/deleteDelete hostpools/sessionhosts/usersessions
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/readRead hostpools/sessionhosts/usersessions
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/sendMessage/actionSend message to user session
Microsoft.DesktopVirtualization/hostpools/sessionhosts/writeWrite hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/writeWrite hostpools
Microsoft.HybridCompute/locations/operationresults/readReads the status of an operation on Microsoft.HybridCompute Resource Provider
Microsoft.HybridCompute/locations/operationstatus/readReads the status of an operation on Microsoft.HybridCompute Resource Provider
Microsoft.HybridCompute/machines/readRead any Azure Arc machines
Microsoft.HybridCompute/operations/readRead all Operations for Azure Arc for Servers
Microsoft.Insights/alertRules/*wildcarded / no description
Microsoft.Insights/eventtypes/values/readRead Activity Log events
Microsoft.Resources/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
JSON
api-version=2023-07-01-preview
Condition none