AzRoleAdvertizer

last sync: 2025-Sep-02 17:22:46 UTC

Defender Unified RBAC Data Manager

Azure BuiltIn RBAC Role definition

NameDefender Unified RBAC Data Manager
Id40ead2a5-466e-4039-8a80-325542d9d2dd
DescriptionDefender Unified RBAC Data Manager. This role is managed and assigned automatically by the Defender Unified RBAC system. Manual assignment of this role is not recommended, as the Defender Unified RBAC system may modify or remove it at any time based on system requirements.
CategoryNone
CreatedOn2025-08-22 09:09:13 UTC
UpdatedOn2025-08-22 09:09:13 UTC
Permissions summary Effective control plane and data plane operations: 5 (unique operations)
•delete: 1
•read: 2
•write: 2

Actions: 5
Resolved control plane operations from Actions: 5
Effective control plane operations: 5
•delete: 1
•read: 2
•write: 2

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 17062

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3725
Actions
Operation Description
Microsoft.operationalinsights/workspaces/query/readRun queries over the data in the workspace
Microsoft.operationalinsights/workspaces/readGets an existing workspace
Microsoft.operationalinsights/workspaces/tables/deleteDelete a log analytics table.
Microsoft.operationalinsights/workspaces/tables/writeCreate or update a log analytics table.
Microsoft.operationalinsights/workspaces/writeCreates a new workspace or links to an existing workspace by providing the customer id from the existing workspace.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2025-08-22 17:22:39 add: Role 40ead2a5-466e-4039-8a80-325542d9d2dd
JSON
api-version=2023-07-01-preview
Condition none