AzRoleAdvertizer

last sync: 2025-Apr-29 17:15:48 UTC

Desktop Virtualization Virtual Machine Contributor

Azure BuiltIn RBAC Role definition

NameDesktop Virtualization Virtual Machine Contributor
Microsoft Learn
Ida959dbd1-f747-45e3-8ba6-dd80f235f97c
DescriptionThis role is in preview and subject to change. Provide permission to the Azure Virtual Desktop Resource Provider to create, delete, update, start, and stop virtual machines.
CategoryCompute
Microsoft Learn
CreatedOn2022-06-29 01:44:11 UTC
UpdatedOn2024-09-10 15:22:51 UTC
Permissions summary Effective control plane and data plane operations: 101 (unique operations)
•action: 20
•delete: 7
•read: 63
•write: 11

Actions: 59
Resolved control plane operations from Actions: 101
Effective control plane operations: 101
•action: 20
•delete: 7
•read: 63
•write: 11

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16389

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3371
Actions
Operation Description
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.Compute/availabilitySets/readGet the properties of an availability set
Microsoft.Compute/availabilitySets/vmSizes/readList available sizes for creating or updating a virtual machine in the availability set
Microsoft.Compute/availabilitySets/writeCreates a new availability set or updates an existing one
Microsoft.Compute/disks/deleteDeletes the Disk
Microsoft.Compute/disks/readGet the properties of a Disk
Microsoft.Compute/disks/writeCreates a new Disk or updates an existing one
Microsoft.Compute/galleries/images/readGets the properties of Gallery Image
Microsoft.Compute/galleries/images/versions/readGets the properties of Gallery Image Version
Microsoft.Compute/galleries/readGets the properties of Gallery
Microsoft.Compute/images/readGet the properties of the Image
Microsoft.Compute/locations/usages/readGets service limits and current usage quantities for the subscription's compute resources in a location
Microsoft.Compute/locations/vmSizes/readLists available virtual machine sizes in a location
Microsoft.Compute/operations/readLists operations available on Microsoft.Compute resource provider
Microsoft.Compute/skus/readGets the list of Microsoft.Compute SKUs available for your Subscription
Microsoft.Compute/virtualMachines/deallocate/actionPowers off the virtual machine and releases the compute resources
Microsoft.Compute/virtualMachines/deleteDeletes the virtual machine
Microsoft.Compute/virtualMachines/extensions/deleteDeletes the virtual machine extension
Microsoft.Compute/virtualMachines/extensions/readGet the properties of a virtual machine extension
Microsoft.Compute/virtualMachines/extensions/writeCreates a new virtual machine extension or updates an existing one
Microsoft.Compute/virtualMachines/powerOff/actionPowers off the virtual machine. Note that the virtual machine will continue to be billed.
Microsoft.Compute/virtualMachines/readGet the properties of a virtual machine
Microsoft.Compute/virtualMachines/restart/actionRestarts the virtual machine
Microsoft.Compute/virtualMachines/runCommand/actionExecutes a predefined script on the virtual machine
Microsoft.Compute/virtualMachines/runCommands/readGet the properties of a virtual machine run command
Microsoft.Compute/virtualMachines/runCommands/writeCreates a new virtual machine run command or updates an existing one
Microsoft.Compute/virtualMachines/start/actionStarts the virtual machine
Microsoft.Compute/virtualMachines/vmSizes/readLists available sizes the virtual machine can be updated to
Microsoft.Compute/virtualMachines/writeCreates a new virtual machine or updates an existing virtual machine
Microsoft.DesktopVirtualization/hostpools/doNotUseInternalAPI/actionInternal operation that is not meant to be called by customers. This will be removed in a future version. Do not use it.
Microsoft.DesktopVirtualization/hostpools/readRead hostpools
Microsoft.DesktopVirtualization/hostpools/retrieveRegistrationToken/actionRetrieve registration token for host pool
Microsoft.DesktopVirtualization/hostpools/sessionHostConfigurations/readRead hostpools/sessionhostconfigurations
Microsoft.DesktopVirtualization/hostpools/sessionhosts/deleteDelete hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/sessionhosts/readRead hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/sessionhosts/retryprovisioning/actionAction on retryprovisioning.
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/disconnect/actionDisconnects the user session form session host
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/readRead hostpools/sessionhosts/usersessions
Microsoft.DesktopVirtualization/hostpools/sessionhosts/usersessions/sendMessage/actionSend message to user session
Microsoft.DesktopVirtualization/hostpools/sessionhosts/writeWrite hostpools/sessionhosts
Microsoft.DesktopVirtualization/hostpools/writeWrite hostpools
Microsoft.DesktopVirtualization/scalingPlans/readRead scalingplans
Microsoft.DesktopVirtualization/scalingPlans/writeWrite scalingplans
Microsoft.Insights/alertRules/*wildcarded / no description
Microsoft.KeyVault/vaults/deploy/actionEnables access to secrets in a key vault when deploying Azure resources
Microsoft.Marketplace/offerTypes/publishers/offers/plans/agreements/readReturns an Agreement.
Microsoft.Network/networkInterfaces/deleteDeletes a network interface
Microsoft.Network/networkInterfaces/join/actionJoins a Virtual Machine to a network interface. Not Alertable.
Microsoft.Network/networkInterfaces/readGets a network interface definition.
Microsoft.Network/networkInterfaces/writeCreates a network interface or updates an existing network interface.
Microsoft.Network/networkSecurityGroups/readGets a network security group definition
Microsoft.Network/networkSecurityGroups/readGets a network security group definition
Microsoft.Network/virtualNetworks/readGet the virtual network definition
Microsoft.Network/virtualNetworks/subnets/join/actionJoins a virtual network. Not Alertable.
Microsoft.Network/virtualNetworks/subnets/readGets a virtual network subnet definition
Microsoft.Network/virtualNetworks/usages/readGet the IP usages for each subnet of the virtual network
Microsoft.Resources/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2024-09-10 17:48:48 change: Actions Actions: 'add Microsoft.DesktopVirtualization/scalingPlans/read; add Microsoft.DesktopVirtualization/scalingPlans/write'
2024-02-19 18:47:31 change: Actions Actions: 'add Microsoft.DesktopVirtualization/hostpools/sessionhosts/retryprovisioning/action'
2023-08-01 17:56:13 change: Actions Actions: 'add Microsoft.DesktopVirtualization/hostpools/doNotUseInternalAPI/action'
2023-06-19 17:44:59 change: Actions Actions: 'add Microsoft.Network/virtualNetworks/usages/read; add Microsoft.Network/virtualNetworks/read'
2022-07-18 16:33:50 add: Role a959dbd1-f747-45e3-8ba6-dd80f235f97c
JSON
api-version=2023-07-01-preview
Condition none