AzRoleAdvertizer

last sync: 2025-Oct-27 18:22:46 UTC

Data Operator for Managed Disks

Azure BuiltIn RBAC Role definition

NameData Operator for Managed Disks
Microsoft Learn
Id959f8984-c045-4866-89c7-12bf9737be2e
DescriptionProvides permissions to upload data to empty managed disks, read, or export data of managed disks (not attached to running VMs) and snapshots using SAS URIs and Azure AD authentication.
CategoryCompute
Microsoft Learn
CreatedOn2022-03-01 05:42:02 UTC
UpdatedOn2022-03-01 05:42:02 UTC
Permissions summary Effective control plane and data plane operations: 4 (unique operations)
•action: 4

Actions: 0
Resolved control plane operations from Actions: 0
Effective control plane operations: 0

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 17406

DataActions: 4
Resolved data plane operations: 4
Effective data plane operations: 4
•action: 4

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 4077
Actions n/a
NotActions n/a
DataActions
Operation Description
Microsoft.Compute/disks/download/actionPerform read data operations on Disk SAS Uri
Microsoft.Compute/disks/upload/actionPerform write data operations on Disk SAS Uri
Microsoft.Compute/snapshots/download/actionPerform read data operations on Snapshot SAS Uri
Microsoft.Compute/snapshots/upload/actionPerform write data operations on Snapshot SAS Uri
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2022-03-01 18:03:34 add: Role 959f8984-c045-4866-89c7-12bf9737be2e
JSON
api-version=2023-07-01-preview
Condition none