AzRoleAdvertizer

last sync: 2025-Jun-13 17:22:48 UTC

Azure Center for SAP solutions service role

Azure BuiltIn RBAC Role definition

NameAzure Center for SAP solutions service role
Microsoft Learn
Idaabbc5dd-1af0-458b-a942-81af88f9c138
DescriptionAzure Center for SAP solutions service role - This role is intended to be used for providing the permissions to user assigned managed identity. Azure Center for SAP solutions will use this identity to deploy and manage SAP systems.
CategoryManagement and governance
Microsoft Learn
CreatedOn2022-10-03 17:04:07 UTC
UpdatedOn2023-02-02 07:25:11 UTC
Permissions summary Effective control plane and data plane operations: 66 (unique operations)
•action: 11
•delete: 2
•read: 39
•write: 14

Actions: 55
Resolved control plane operations from Actions: 66
Effective control plane operations: 66
•action: 11
•delete: 2
•read: 39
•write: 14

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16576

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3559
Actions
Operation Description
Microsoft.Compute/availabilitySets/readGet the properties of an availability set
Microsoft.Compute/availabilitySets/writeCreates a new availability set or updates an existing one
Microsoft.Compute/disks/readGet the properties of a Disk
Microsoft.Compute/disks/writeCreates a new Disk or updates an existing one
Microsoft.Compute/skus/readGets the list of Microsoft.Compute SKUs available for your Subscription
Microsoft.Compute/sshPublicKeys/readGet the properties of an SSH public key
Microsoft.Compute/virtualMachines/extensions/deleteDeletes the virtual machine extension
Microsoft.Compute/virtualMachines/extensions/readGet the properties of a virtual machine extension
Microsoft.Compute/virtualMachines/extensions/writeCreates a new virtual machine extension or updates an existing one
Microsoft.Compute/virtualMachines/instanceView/readGets the detailed runtime status of the virtual machine and its resources
Microsoft.Compute/virtualMachines/readGet the properties of a virtual machine
Microsoft.Compute/virtualMachines/writeCreates a new virtual machine or updates an existing virtual machine
Microsoft.Network/loadBalancers/backendAddressPools/join/actionJoins a load balancer backend address pool. Not Alertable.
Microsoft.Network/loadBalancers/backendAddressPools/readGets a load balancer backend address pool definition
Microsoft.Network/loadBalancers/backendAddressPools/writeCreates a load balancer backend address pool or updates an existing load balancer backend address pool
Microsoft.Network/loadBalancers/frontendIPConfigurations/join/actionJoins a Load Balancer Frontend IP Configuration. Not alertable.
Microsoft.Network/loadBalancers/frontendIPConfigurations/readGets a load balancer frontend IP configuration definition
Microsoft.Network/loadBalancers/inboundNatRules/readGets a load balancer inbound nat rule definition
Microsoft.Network/loadBalancers/loadBalancingRules/readGets a load balancer load balancing rule definition
Microsoft.Network/loadBalancers/networkInterfaces/readGets references to all the network interfaces under a load balancer
Microsoft.Network/loadBalancers/outboundRules/readGets a load balancer outbound rule definition
Microsoft.Network/loadBalancers/providers/Microsoft.Insights/logDefinitions/readno description given
Microsoft.Network/loadBalancers/providers/Microsoft.Insights/metricDefinitions/readno description given
Microsoft.Network/loadBalancers/readGets a load balancer definition
Microsoft.Network/loadBalancers/virtualMachines/readGets references to all the virtual machines under a load balancer
Microsoft.Network/loadBalancers/writeCreates a load balancer or updates an existing load balancer
Microsoft.Network/networkInterfaces/ipconfigurations/join/actionJoins a Network Interface IP Configuration. Not alertable.
Microsoft.Network/networkInterfaces/ipconfigurations/readGets a network interface ip configuration definition.
Microsoft.Network/networkInterfaces/join/actionJoins a Virtual Machine to a network interface. Not Alertable.
Microsoft.Network/networkInterfaces/loadBalancers/readGets all the load balancers that the network interface is part of
Microsoft.Network/networkInterfaces/readGets a network interface definition.
Microsoft.Network/networkInterfaces/writeCreates a network interface or updates an existing network interface.
Microsoft.Network/privateEndpoints/readGets an private endpoint resource.
Microsoft.Network/privateEndpoints/writeCreates a new private endpoint, or updates an existing private endpoint.
Microsoft.Network/virtualNetworks/checkIpAddressAvailability/readCheck if Ip Address is available at the specified virtual network
Microsoft.Network/virtualNetworks/readGet the virtual network definition
Microsoft.Network/virtualNetworks/subnets/join/actionJoins a virtual network. Not Alertable.
Microsoft.Network/virtualNetworks/subnets/joinLoadBalancer/actionJoins a load balancer to virtual network subnets
Microsoft.Network/virtualNetworks/subnets/readGets a virtual network subnet definition
Microsoft.Network/virtualNetworks/subnets/virtualMachines/readGets references to all the virtual machines in a virtual network subnet
Microsoft.Network/virtualNetworks/virtualMachines/readGets references to all the virtual machines in a virtual network
Microsoft.Resources/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/readGets the list of subscriptions.
Microsoft.Resources/subscriptions/resourcegroups/deployments/*wildcarded / no description
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
Microsoft.Resources/subscriptions/resourceGroups/writeCreates or updates a resource group.
Microsoft.Storage/storageAccounts/blobServices/containers/readReturns list of containers
Microsoft.Storage/storageAccounts/blobServices/readReturns blob service properties or statistics
Microsoft.Storage/storageAccounts/fileServices/readGet file service properties
Microsoft.Storage/storageAccounts/fileServices/shares/readList file shares
Microsoft.Storage/storageAccounts/fileServices/shares/writeCreate or update file share
Microsoft.Storage/storageAccounts/fileServices/writePut file service properties
Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/actionApprove Private Endpoint Connections
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
Microsoft.Storage/storageAccounts/writeCreates a storage account with the specified parameters or update the properties or tags or adds custom domain for the specified storage account.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2023-02-03 18:39:00 change: Actions Actions: 'add Microsoft.Compute/virtualMachines/read; add Microsoft.Compute/virtualMachines/write; add Microsoft.Compute/virtualMachines/instanceView/read; add Microsoft.Compute/availabilitySets/read; add Microsoft.Compute/availabilitySets/write; add Microsoft.Compute/skus/read; add Microsoft.Compute/sshPublicKeys/read; add Microsoft.Compute/virtualMachines/extensions/read; add Microsoft.Compute/virtualMachines/extensions/write; add Microsoft.Compute/virtualMachines/extensions/delete; add Microsoft.Compute/disks/read; add Microsoft.Compute/disks/write'
2023-01-18 18:07:15 change: Actions Actions: 'add Microsoft.Resources/subscriptions/resourceGroups/write; add Microsoft.Network/loadBalancers/read; add Microsoft.Network/loadBalancers/write; add Microsoft.Network/loadBalancers/backendAddressPools/read; add Microsoft.Network/loadBalancers/backendAddressPools/write; add Microsoft.Network/loadBalancers/frontendIPConfigurations/read; add Microsoft.Network/loadBalancers/loadBalancingRules/read; add Microsoft.Network/loadBalancers/inboundNatRules/read; add Microsoft.Network/loadBalancers/providers/Microsoft.Insights/logDefinitions/read; add Microsoft.Network/loadBalancers/networkInterfaces/read; add Microsoft.Network/loadBalancers/outboundRules/read; add Microsoft.Network/loadBalancers/virtualMachines/read; add Microsoft.Network/loadBalancers/providers/Microsoft.Insights/metricDefinitions/read; add Microsoft.Network/networkInterfaces/read; add Microsoft.Network/networkInterfaces/write; add Microsoft.Network/networkInterfaces/ipconfigurations/read; add Microsoft.Network/networkInterfaces/loadBalancers/read; add Microsoft.Network/virtualNetworks/read; add Microsoft.Network/virtualNetworks/checkIpAddressAvailability/read; add Microsoft.Network/virtualNetworks/subnets/read; add Microsoft.Network/virtualNetworks/subnets/virtualMachines/read; add Microsoft.Network/virtualNetworks/virtualMachines/read; add Microsoft.Network/networkInterfaces/ipconfigurations/join/action; add Microsoft.Network/privateEndpoints/read; add Microsoft.Network/privateEndpoints/write; add Microsoft.Network/networkInterfaces/join/action; add Microsoft.Network/loadBalancers/backendAddressPools/join/action; add Microsoft.Network/loadBalancers/frontendIPConfigurations/join/action; add Microsoft.Network/virtualNetworks/subnets/join/action; add Microsoft.Network/virtualNetworks/subnets/joinLoadBalancer/action; add Microsoft.Storage/storageAccounts/read; add Microsoft.Storage/storageAccounts/write; add Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action; add Microsoft.Storage/storageAccounts/blobServices/read; add Microsoft.Storage/storageAccounts/blobServices/containers/read; add Microsoft.Storage/storageAccounts/fileServices/read; add Microsoft.Storage/storageAccounts/fileServices/write; add Microsoft.Storage/storageAccounts/fileServices/shares/read; add Microsoft.Storage/storageAccounts/fileServices/shares/write'
2022-11-14 17:43:02 add: Role aabbc5dd-1af0-458b-a942-81af88f9c138
JSON
api-version=2023-07-01-preview
Condition none