AzRoleAdvertizer

last sync: 2025-Sep-02 17:22:46 UTC

Azure Kubernetes Service RBAC Cluster Admin

Azure BuiltIn RBAC Role definition

Name

Azure Kubernetes Service RBAC Cluster Admin
Microsoft Learn

b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b

Description

Lets you manage all resources in the cluster.

Category

Containers
Microsoft Learn

CreatedOn

2020-07-02 17:47:24 UTC

UpdatedOn

2022-10-13 01:31:35 UTC

Permissions summary

Effective control plane and data plane operations: 418 (unique operations)
•action: 11
•delete: 81
•read: 239
•write: 87

Actions: 5
Resolved control plane operations from Actions: 35
Effective control plane operations: 35
•action: 1
•read: 34

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 17032

DataActions: 1
Resolved data plane operations: 383
Effective data plane operations: 383
•action: 10
•delete: 81
•read: 205
•write: 87

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3342

Actions

Operation	Description
Microsoft.Authorization/*/read	wildcarded / no description
Microsoft.ContainerService/managedClusters/listClusterUserCredential/action	List the clusterUser credential of a managed cluster
Microsoft.Resources/subscriptions/operationresults/read	Get the subscription operation results.
Microsoft.Resources/subscriptions/read	Gets the list of subscriptions.
Microsoft.Resources/subscriptions/resourceGroups/read	Gets or lists resource groups.

NotActions

n/a

DataActions

Operation	Description
Microsoft.ContainerService/managedClusters/*	wildcarded / no description

NotDataActions

n/a

Used in
BuiltIn Policy

none

History

Date/Time (UTC ymd) (i)	Change	Change detail
2022-10-13 16:34:55	change: Actions	Actions: 'remove Microsoft.Insights/alertRules/; remove Microsoft.Resources/deployments/write; remove Microsoft.Support/'
2020-07-03 14:58:03	add: Role	b1ff04bb-8a4e-4dc4-8eb5-8693973ce19b

JSON

api-version=2023-07-01-preview

Condition

none