AzRoleAdvertizer

last sync: 2025-Apr-29 17:15:48 UTC

Azure Kubernetes Service RBAC Cluster Admin

Azure BuiltIn RBAC Role definition

Name

Azure Kubernetes Service RBAC Cluster Admin
Microsoft Learn

b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b

Description

Lets you manage all resources in the cluster.

Category

Containers
Microsoft Learn

CreatedOn

2020-07-02 17:47:24 UTC

UpdatedOn

2022-10-13 01:31:35 UTC

Permissions summary

Effective control plane and data plane operations: 381 (unique operations)
•action: 11
•delete: 69
•read: 226
•write: 75

Actions: 5
Resolved control plane operations from Actions: 34
Effective control plane operations: 34
•action: 1
•read: 33

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16456

DataActions: 1
Resolved data plane operations: 347
Effective data plane operations: 347
•action: 10
•delete: 69
•read: 193
•write: 75

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3024

Actions

Operation	Description
Microsoft.Authorization/*/read	wildcarded / no description
Microsoft.ContainerService/managedClusters/listClusterUserCredential/action	List the clusterUser credential of a managed cluster
Microsoft.Resources/subscriptions/operationresults/read	Get the subscription operation results.
Microsoft.Resources/subscriptions/read	Gets the list of subscriptions.
Microsoft.Resources/subscriptions/resourceGroups/read	Gets or lists resource groups.

NotActions

n/a

DataActions

Operation	Description
Microsoft.ContainerService/managedClusters/*	wildcarded / no description

NotDataActions

n/a

Used in
BuiltIn Policy

none

History

Date/Time (UTC ymd) (i)	Change	Change detail
2022-10-13 16:34:55	change: Actions	Actions: 'remove Microsoft.Insights/alertRules/; remove Microsoft.Resources/deployments/write; remove Microsoft.Support/'
2020-07-03 14:58:03	add: Role	b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b

JSON

api-version=2023-07-01-preview

Condition

none