last sync: 2024-Apr-24 17:47:22 UTC

Management Group Contributor

Azure BuiltIn RBAC Role definition

NameManagement Group Contributor
DescriptionManagement Group Contributor Role
CreatedOn2018-06-22 00:28:29 UTC
UpdatedOn2022-09-19 17:12:03 UTC
Date/Time (UTC ymd) (i) Change Change detail
2022-09-19 16:35:35 change: Actions Actions: 'add Microsoft.Authorization/*/read'
Permissions summary Effective control plane and data plane operations: 33 (unique operations)
•delete: 2
•read: 29
•write: 2

Actions: 7
Resolved control plane operations from Actions: 33
Effective control plane operations: 33
•delete: 2
•read: 29
•write: 2

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15352

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3121
Operation Description
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.Management/managementGroups/deleteDelete management group.
Microsoft.Management/managementGroups/readList management groups for the authenticated user.
Microsoft.Management/managementGroups/subscriptions/deleteDe-associates subscription from the management group.
Microsoft.Management/managementGroups/subscriptions/readLists subscription under the given management group.
Microsoft.Management/managementGroups/subscriptions/writeAssociates existing subscription with the management group.
Microsoft.Management/managementGroups/writeCreate or update a management group.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy
Condition none