AzRoleAdvertizer

last sync: 2021-Oct-15 16:53:14 UTC

Azure RBAC Role definition

Key Vault Secrets User

Name Key Vault Secrets User
Microsoft docs

Id 4633458b-17de-408a-b874-0445c86b69e6

Description Read secret contents. Only works for key vaults that use the 'Azure role-based access control' permission model.

CreatedOn 2020-05-19 17:52:47 UTC

UpdatedOn 2021-01-27 22:15:29 UTC

History

Date/Time (UTC ymd) (i)	Change	Change detail
2020-05-19 20:42:36	add: Role	458b-17de-408a-b874-0445c86b69e6

Actions n/a

NotActions n/a

DataActions

Operation	Description	Used in other Roles
Microsoft.KeyVault/vaults/secrets/getSecret/action	Gets the value of a secret.	none
Microsoft.KeyVault/vaults/secrets/readMetadata/action	List or view the properties of a secret, but not its value.	Key Vault Reader

NotDataActions n/a

Used in Policy none

JSON

{
  "Name": "Key Vault Secrets User",
  "Id": "4633458b-17de-408a-b874-0445c86b69e6",
  "IsCustom": false,
  "Description": "Read secret contents. Only works for key vaults that use the 'Azure role-based access control' permission model.",
  "Actions": [],
  "NotActions": [],
  "DataActions": [
    "Microsoft.KeyVault/vaults/secrets/getSecret/action",
    "Microsoft.KeyVault/vaults/secrets/readMetadata/action"
  ],
  "NotDataActions": [],
  "AssignableScopes": [
    "/"
  ]
}