last sync: 2020-Sep-25 13:37:27 UTC

Azure Role

Monitoring Contributor

Role Name Monitoring Contributor
Role Id 749f88d5-cbae-40b8-bcfc-e573ddc772fa
Role Description Can read all monitoring data and update monitoring settings.
Role Changes no changes
Actions
Operation Description Used in other Role(s)
*/read Log Analytics Reader, Log Analytics Contributor, Managed Application Operator Role , Managed Applications Reader, Monitoring Reader, Reader, Resource Policy Contributor, User Access Administrator, Managed Application Contributor Role
Microsoft.AlertsManagement/alerts/*
Microsoft.AlertsManagement/alertsSummary/*
Microsoft.Insights/actiongroups/*
Microsoft.Insights/activityLogAlerts/*
Microsoft.Insights/AlertRules/* API Management Service Contributor, API Management Service Operator Role, API Management Service Reader Role , Application Insights Component Contributor, Application Insights Snapshot Debugger, Automation Job Operator, Automation Runbook Operator, Automation Operator, Avere Contributor, BizTalk Contributor, CDN Endpoint Contributor, CDN Endpoint Reader, CDN Profile Contributor, CDN Profile Reader, Classic Network Contributor, Classic Storage Account Contributor, ClearDB MySQL DB Contributor, Classic Virtual Machine Contributor, Cognitive Services Contributor, Data Factory Contributor, Data Lake Analytics Developer, DocumentDB Account Contributor, DNS Zone Contributor, EventGrid EventSubscription Contributor, Intelligent Systems Account Contributor, Key Vault Contributor, Log Analytics Contributor, Logic App Contributor, Managed Identity Operator, Managed Identity Contributor, Network Contributor, New Relic APM Account Contributor, Redis Cache Contributor, Scheduler Job Collections Contributor, Search Service Contributor, Security Admin, Security Manager (Legacy), Site Recovery Contributor, Site Recovery Operator, SQL Managed Instance Contributor, SQL DB Contributor, SQL Security Manager, Storage Account Contributor, SQL Server Contributor, Traffic Manager Contributor, Virtual Machine Contributor, Web Plan Contributor, Website Contributor, HDInsight Cluster Operator, Cosmos DB Operator, Private DNS Zone Contributor, Azure Sentinel Contributor, Azure Sentinel Responder, Azure Sentinel Reader, SignalR Contributor, Kubernetes Cluster - Azure Arc Onboarding, Tag Contributor, Key Vault Administrator (preview), Key Vault Crypto Officer (preview), Key Vault Secrets Officer (preview), Key Vault Certificates Officer (preview), Key Vault Reader (preview), Azure Arc Kubernetes Viewer, Azure Arc Kubernetes Writer, Azure Arc Kubernetes Cluster Admin, Azure Arc Kubernetes Admin, Azure Kubernetes Service RBAC Cluster Admin, Azure Kubernetes Service RBAC Admin, Azure Kubernetes Service RBAC Reader, Azure Kubernetes Service RBAC Writer, Azure Arc Enabled Kubernetes Cluster User Role, Collaborative Data Contributor, Device Update Reader, Device Update Administrator, Device Update Content Administrator, Device Update Deployments Administrator, Device Update Deployments Reader, Device Update Content Reader
Microsoft.Insights/components/* Application Insights Component Contributor, Website Contributor
Microsoft.Insights/dataCollectionRules/*
Microsoft.Insights/dataCollectionRuleAssociations/*
Microsoft.Insights/DiagnosticSettings/* Cognitive Services Contributor, Log Analytics Contributor, Logic App Contributor , Storage Account Contributor
Microsoft.Insights/eventtypes/*
Microsoft.Insights/LogDefinitions/* Logic App Contributor
Microsoft.Insights/metricalerts/* Application Insights Component Contributor, Logic App Contributor
Microsoft.Insights/MetricDefinitions/* Logic App Contributor
Microsoft.Insights/Metrics/*
Microsoft.Insights/Register/Action Register the Microsoft Insights provider Monitoring Metrics Publisher
Microsoft.Insights/scheduledqueryrules/*
Microsoft.Insights/webtests/* Application Insights Component Contributor
Microsoft.Insights/workbooks/* Azure Sentinel Contributor
Microsoft.Insights/privateLinkScopes/*
Microsoft.Insights/privateLinkScopeOperationStatuses/*
Microsoft.OperationalInsights/workspaces/write Creates a new workspace or links to an existing workspace by providing the customer id from the existing workspace.
Microsoft.OperationalInsights/workspaces/intelligencepacks/*
Microsoft.OperationalInsights/workspaces/savedSearches/* Azure Sentinel Contributor
Microsoft.OperationalInsights/workspaces/search/action Executes a search query Log Analytics Reader, Monitoring Reader
Microsoft.OperationalInsights/workspaces/sharedKeys/action Retrieves the shared keys for the workspace. These keys are used to connect Microsoft Operational Insights agents to the workspace.
Microsoft.OperationalInsights/workspaces/storageinsightconfigs/*
Microsoft.Support/* API Management Service Contributor, API Management Service Operator Role, API Management Service Reader Role , Application Insights Component Contributor, Application Insights Snapshot Debugger, Automation Job Operator, Automation Runbook Operator, Automation Operator, Avere Contributor, Backup Contributor, Billing Reader, Backup Operator, BizTalk Contributor, CDN Endpoint Contributor, CDN Endpoint Reader, CDN Profile Contributor, CDN Profile Reader, Classic Network Contributor, Classic Storage Account Contributor, ClearDB MySQL DB Contributor, Classic Virtual Machine Contributor, Cognitive Services User, Cognitive Services Contributor, Cosmos DB Account Reader Role, Cost Management Contributor, Cost Management Reader, Data Box Contributor, Data Box Reader, Data Factory Contributor, Data Lake Analytics Developer, DocumentDB Account Contributor, DNS Zone Contributor, EventGrid EventSubscription Contributor, Intelligent Systems Account Contributor, Key Vault Contributor, Lab Creator, Log Analytics Reader, Log Analytics Contributor, Logic App Operator, Logic App Contributor, Managed Identity Operator, Managed Identity Contributor, Monitoring Metrics Publisher, Monitoring Reader, Network Contributor, New Relic APM Account Contributor, Redis Cache Contributor, Resource Policy Contributor, Scheduler Job Collections Contributor, Search Service Contributor, Security Admin, Security Manager (Legacy), Site Recovery Contributor, Site Recovery Operator, Site Recovery Reader, SQL Managed Instance Contributor, SQL DB Contributor, SQL Security Manager, Storage Account Contributor, SQL Server Contributor, Support Request Contributor, Traffic Manager Contributor, User Access Administrator, Virtual Machine Contributor, Web Plan Contributor, Website Contributor, HDInsight Cluster Operator, Cosmos DB Operator, Private DNS Zone Contributor, Blueprint Contributor, Blueprint Operator, Azure Sentinel Contributor, Azure Sentinel Responder, Azure Sentinel Reader, SignalR AccessKey Reader, SignalR Contributor, Kubernetes Cluster - Azure Arc Onboarding, Tag Contributor, Integration Service Environment Developer, Integration Service Environment Contributor, Key Vault Administrator (preview), Key Vault Crypto Officer (preview), Key Vault Secrets Officer (preview), Key Vault Certificates Officer (preview), Key Vault Reader (preview), Azure Arc Kubernetes Viewer, Azure Arc Kubernetes Writer, Azure Arc Kubernetes Cluster Admin, Azure Arc Kubernetes Admin, Azure Kubernetes Service RBAC Cluster Admin, Azure Kubernetes Service RBAC Admin, Azure Kubernetes Service RBAC Reader, Azure Kubernetes Service RBAC Writer, Azure Arc Enabled Kubernetes Cluster User Role, Collaborative Data Contributor, Device Update Reader, Device Update Administrator, Device Update Content Administrator, Device Update Deployments Administrator, Device Update Deployments Reader, Device Update Content Reader
Microsoft.WorkloadMonitor/monitors/*
Microsoft.WorkloadMonitor/notificationSettings/*
Microsoft.AlertsManagement/smartDetectorAlertRules/*
Microsoft.AlertsManagement/actionRules/*
Microsoft.AlertsManagement/smartGroups/*
NotActions
DataActions
NotDataActions
Used in Policy
Policy DisplayName Policy Id
Deploy Diagnostic Settings for Service Bus to Log Analytics workspace 04d53d87-841c-4f23-8a5b-21564380b55e
Deploy Diagnostic Settings for Search Services to Log Analytics workspace 08ba64b8-738f-4918-9686-730d2ed79c7d
Deploy Diagnostic Settings for Event Hub to Log Analytics workspace 1f6e93e8-6b31-41b1-83f6-36e449a42579
Deploy Diagnostic Settings for Stream Analytics to Log Analytics workspace 237e0f7e-b0e8-4ec4-ad46-8c12cb66d673
Deploy Diagnostic Settings for Data Lake Storage Gen1 to Log Analytics workspace 25763a0a-5783-4f14-969e-79d4933eb74b
Deploy Diagnostic Settings for Logic Apps to Log Analytics workspace b889a06c-ec72-4b03-910a-cb169ee18721
Deploy Diagnostic Settings for Key Vault to Log Analytics workspace bef3f64c-5290-43b7-85b0-9b254eef4c47
[Preview]: Deploy Diagnostic Settings for Recovery Services Vault to Log Analytics workspace for resource specific categories. c717fb0c-d118-4c43-ab3d-ece30ac81fb3
Deploy Diagnostic Settings for Batch Account to Log Analytics workspace c84e5349-db6d-4769-805e-e14037dab9b5
Deploy Diagnostic Settings for Network Security Groups c9c29499-c1d1-4195-99bd-2ec9e3a9dc89
Deploy Diagnostic Settings for Data Lake Analytics to Log Analytics workspace d56a5a7c-72d7-42bc-8ceb-3baf4c0eae03
Role Definition (Json)
{
  "Name": "Monitoring Contributor",
  "Id": "749f88d5-cbae-40b8-bcfc-e573ddc772fa",
  "IsCustom": false,
  "Description": "Can read all monitoring data and update monitoring settings.",
  "Actions": [
    "*/read",
    "Microsoft.AlertsManagement/alerts/*",
    "Microsoft.AlertsManagement/alertsSummary/*",
    "Microsoft.Insights/actiongroups/*",
    "Microsoft.Insights/activityLogAlerts/*",
    "Microsoft.Insights/AlertRules/*",
    "Microsoft.Insights/components/*",
    "Microsoft.Insights/dataCollectionRules/*",
    "Microsoft.Insights/dataCollectionRuleAssociations/*",
    "Microsoft.Insights/DiagnosticSettings/*",
    "Microsoft.Insights/eventtypes/*",
    "Microsoft.Insights/LogDefinitions/*",
    "Microsoft.Insights/metricalerts/*",
    "Microsoft.Insights/MetricDefinitions/*",
    "Microsoft.Insights/Metrics/*",
    "Microsoft.Insights/Register/Action",
    "Microsoft.Insights/scheduledqueryrules/*",
    "Microsoft.Insights/webtests/*",
    "Microsoft.Insights/workbooks/*",
    "Microsoft.Insights/privateLinkScopes/*",
    "Microsoft.Insights/privateLinkScopeOperationStatuses/*",
    "Microsoft.OperationalInsights/workspaces/write",
    "Microsoft.OperationalInsights/workspaces/intelligencepacks/*",
    "Microsoft.OperationalInsights/workspaces/savedSearches/*",
    "Microsoft.OperationalInsights/workspaces/search/action",
    "Microsoft.OperationalInsights/workspaces/sharedKeys/action",
    "Microsoft.OperationalInsights/workspaces/storageinsightconfigs/*",
    "Microsoft.Support/*",
    "Microsoft.WorkloadMonitor/monitors/*",
    "Microsoft.WorkloadMonitor/notificationSettings/*",
    "Microsoft.AlertsManagement/smartDetectorAlertRules/*",
    "Microsoft.AlertsManagement/actionRules/*",
    "Microsoft.AlertsManagement/smartGroups/*"
  ],
  "NotActions": [
    
  ],
  "DataActions": [
    
  ],
  "NotDataActions": [
    
  ],
  "AssignableScopes": [
    "/"
  ]
}