AzRoleAdvertizer

last sync: 2025-Apr-29 17:15:48 UTC

Azure AI Enterprise Network Connection Approver

Azure BuiltIn RBAC Role definition

NameAzure AI Enterprise Network Connection Approver
Microsoft Learn
Idb556d68e-0be0-4f35-a333-ad7ee1ce17ea
DescriptionCan approve private endpoint connections to Azure AI common dependency resources
CategoryAI + machine learning
Microsoft Learn
CreatedOn2024-02-29 22:43:58 UTC
UpdatedOn2025-01-29 21:07:16 UTC
Permissions summary Effective control plane and data plane operations: 88 (unique operations)
•action: 16
•read: 53
•write: 19

Actions: 88
Resolved control plane operations from Actions: 88
Effective control plane operations: 88
•action: 16
•read: 53
•write: 19

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16402

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3371
Actions
Operation Description
Microsoft.ApiManagement/service/privateEndpointConnections/readGet Private Endpoint Connections
Microsoft.ApiManagement/service/privateEndpointConnections/writeApprove Or Reject Private Endpoint Connections
Microsoft.ApiManagement/service/privateLinkResources/readGet Private Link Group resources
Microsoft.ApiManagement/service/readRead metadata for an API Management Service instance
Microsoft.Cache/redis/privateEndpointConnections/readRead a private endpoint connection
Microsoft.Cache/redis/privateEndpointConnections/writeWrite a private endpoint connection
Microsoft.Cache/redis/privateEndpointConnectionsApproval/actionApprove Private Endpoint Connections
Microsoft.Cache/redis/privateLinkResources/readRead 'groupId' of redis subresource that a private link can be connected to
Microsoft.Cache/redis/readView the Redis Cache's settings and configuration in the management portal
Microsoft.Cache/redisEnterprise/privateEndpointConnections/readRead a private endpoint connection
Microsoft.Cache/redisEnterprise/privateEndpointConnections/writeWrite a private endpoint connection
Microsoft.Cache/redisEnterprise/privateEndpointConnectionsApproval/actionApprove Private Endpoint Connections
Microsoft.Cache/redisEnterprise/privateLinkResources/readRead 'groupId' of redis subresource that a private link can be connected to
Microsoft.Cache/redisEnterprise/readView the Redis Enterprise cache's settings and configuration in the management portal
Microsoft.CognitiveServices/accounts/privateEndpointConnections/readReads private endpoint connections.
Microsoft.CognitiveServices/accounts/privateEndpointConnections/writeWrites a private endpoint connections.
Microsoft.CognitiveServices/accounts/privateLinkResources/readReads private link resources for an account.
Microsoft.CognitiveServices/accounts/readReads API accounts.
Microsoft.ContainerRegistry/registries/privateEndpointConnections/readGets the properties of private endpoint connection or list all the private endpoint connections for the specified container registry
Microsoft.ContainerRegistry/registries/privateEndpointConnections/writeApproves/Rejects the private endpoint connection
Microsoft.ContainerRegistry/registries/privateEndpointConnectionsApproval/actionAuto Approves a Private Endpoint Connection
Microsoft.DBforMySQL/flexibleServers/privateEndpointConnections/readno description given
Microsoft.DBforMySQL/flexibleServers/privateEndpointConnections/writeApproves or rejects an existing private endpoint connection
Microsoft.DBforMySQL/flexibleServers/privateEndpointConnectionsApproval/actionDetermines if user is allowed to approve a private endpoint connection
Microsoft.DBforMySQL/flexibleServers/privateLinkResources/readGet the private link resources for the corresponding MySQL Server
Microsoft.DBforMySQL/flexibleServers/readReturns the list of servers or gets the properties for the specified server.
Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnections/readReturns the list of private endpoint connections or gets the properties for the specified private endpoint connection.
Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnections/writeApproves or rejects an existing private endpoint connection
Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnectionsApproval/actionDetermines if the user is allowed to approve a private endpoint connection
Microsoft.DBforPostgreSQL/flexibleServers/privateLinkResources/readReturn a list containing private link resource or gets the specified private link resource.
Microsoft.DBforPostgreSQL/flexibleServers/readReturn the list of servers or gets the properties for the specified server.
Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnections/readReturns the list of private endpoint connections or gets the properties for the specified private endpoint connection
Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnections/writeApproves or rejects an existing private endpoint connection
Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnectionsApproval/actionDetermines if user is allowed to approve a private endpoint connection for PostgreSQL SGv2
Microsoft.DBforPostgreSQL/serverGroupsv2/privateLinkResources/readGet the private link resources for the corresponding PostgreSQL SGv2
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/readRead a private endpoint connection or list all the private endpoint connections of a Database Account
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/writeCreate or update a private endpoint connection of a Database Account
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/actionManage a private endpoint connection of Database Account
Microsoft.DocumentDB/databaseAccounts/privateLinkResources/readRead a private link resource or list all the private link resources of a Database Account
Microsoft.DocumentDB/databaseAccounts/readReads a database account.
Microsoft.EventHub/namespaces/privateEndpointConnections/readGet Private Endpoint Connection
Microsoft.EventHub/namespaces/privateEndpointConnections/writeCreate or Update Private Endpoint Connection
Microsoft.EventHub/namespaces/privateEndpointConnectionsApproval/actionApprove Private Endpoint Connection
Microsoft.EventHub/namespaces/privateLinkResources/readGets the resource types that support private endpoint connections
Microsoft.EventHub/namespaces/readGet the list of Namespace Resource Description
Microsoft.Insights/privatelinkscopes/privateEndpointConnections/readRead a private endpoint connection
Microsoft.Insights/privatelinkscopes/privateEndpointConnections/writeCreate or update a private endpoint connection
Microsoft.Insights/privatelinkscopes/privateEndpointConnectionsApproval/actionApprove or reject a connection to a Private Endpoint resource of Microsoft.Network provider
Microsoft.Insights/privatelinkscopes/privateLinkResources/readRead a private link resource
Microsoft.Insights/privatelinkscopes/readRead a private link scope
Microsoft.KeyVault/vaults/privateEndpointConnections/readno description given
Microsoft.KeyVault/vaults/privateEndpointConnections/writeno description given
Microsoft.KeyVault/vaults/privateEndpointConnectionsApproval/actionno description given
Microsoft.KeyVault/vaults/privateLinkResources/readno description given
Microsoft.KeyVault/vaults/readView the properties of a key vault
Microsoft.MachineLearningServices/registries/privateEndpointConnections/readno description given
Microsoft.MachineLearningServices/registries/privateEndpointConnections/writeno description given
Microsoft.MachineLearningServices/registries/privateEndpointConnectionsApproval/actionno description given
Microsoft.MachineLearningServices/registries/privateLinkResources/readno description given
Microsoft.MachineLearningServices/registries/readGets the Machine Learning Services registry(ies)
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/readno description given
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/writeno description given
Microsoft.MachineLearningServices/workspaces/privateEndpointConnectionsApproval/actionno description given
Microsoft.MachineLearningServices/workspaces/privateLinkResources/readno description given
Microsoft.MachineLearningServices/workspaces/readGets the Machine Learning Services Workspace(s)
Microsoft.Network/applicationGateways/privateEndpointConnections/readGets Application Gateway PrivateEndpoint Connections
Microsoft.Network/applicationGateways/privateEndpointConnections/writeUpdates Application Gateway PrivateEndpoint Connection
Microsoft.Network/applicationGateways/privateLinkResources/readGets ApplicationGateway PrivateLink Resources
Microsoft.Network/applicationGateways/readGets an application gateway
Microsoft.Network/privateLinkServices/privateEndpointConnections/readGets an private endpoint connection definition.
Microsoft.Network/privateLinkServices/privateEndpointConnections/writeCreates a new private endpoint connection, or updates an existing private endpoint connection.
Microsoft.Network/privateLinkServices/privateEndpointConnectionsApproval/actionApprove or reject PrivateEndpoint connection on PrivateLinkService
Microsoft.Network/privateLinkServices/readGets an private link service resource.
Microsoft.Search/searchServices/privateEndpointConnections/readReturns the list of private endpoint connections or gets the properties for the specified private endpoint connections
Microsoft.Search/searchServices/privateEndpointConnections/writeCreates a private endpoint connections with the specified parameters or updates the properties or tags for the specified private endpoint connections
Microsoft.Search/searchServices/privateEndpointConnectionsApproval/actionApprove Private Endpoint Connection
Microsoft.Search/searchServices/readReads the search service.
Microsoft.Search/searchServices/sharedPrivateLinkResources/readReturns the list of shared private link resources or gets the properties for the specified shared private link resource
Microsoft.Sql/servers/privateEndpointConnections/readReturns the list of private endpoint connections or gets the properties for the specified private endpoint connection.
Microsoft.Sql/servers/privateEndpointConnections/writeApproves or rejects an existing private endpoint connection
Microsoft.Sql/servers/privateEndpointConnectionsApproval/actionDetermines if user is allowed to approve a private endpoint connection
Microsoft.Sql/servers/privateLinkResources/readGet the private link resources for the corresponding sql server
Microsoft.Sql/servers/readReturn the list of servers or gets the properties for the specified server.
Microsoft.Storage/storageAccounts/privateEndpointConnections/readGet Private Endpoint Connection
Microsoft.Storage/storageAccounts/privateEndpointConnections/writePut Private Endpoint Connection
Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/actionApprove Private Endpoint Connections
Microsoft.Storage/storageAccounts/privateLinkResources/readGet StorageAccount groupids
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2025-01-30 19:27:00 change: Actions Actions: 'add Microsoft.ApiManagement/service/privateEndpointConnections/read; add Microsoft.ApiManagement/service/privateEndpointConnections/write; add Microsoft.ApiManagement/service/privateLinkResources/read; add Microsoft.ApiManagement/service/read; add Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnectionsApproval/action; add Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnections/read; add Microsoft.DBforPostgreSQL/flexibleServers/privateEndpointConnections/write; add Microsoft.DBforPostgreSQL/flexibleServers/privateLinkResources/read; add Microsoft.DBforPostgreSQL/flexibleServers/read; add Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnectionsApproval/action; add Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnections/read; add Microsoft.DBforPostgreSQL/serverGroupsv2/privateEndpointConnections/write; add Microsoft.DBforPostgreSQL/serverGroupsv2/privateLinkResources/read; add Microsoft.DBforMySQL/flexibleServers/privateEndpointConnectionsApproval/action; add Microsoft.DBforMySQL/flexibleServers/privateEndpointConnections/read; add Microsoft.DBforMySQL/flexibleServers/privateEndpointConnections/write; add Microsoft.DBforMySQL/flexibleServers/privateLinkResources/read; add Microsoft.DBforMySQL/flexibleServers/read; add Microsoft.MachineLearningServices/registries/privateEndpointConnectionsApproval/action; add Microsoft.MachineLearningServices/registries/privateEndpointConnections/read; add Microsoft.MachineLearningServices/registries/privateEndpointConnections/write; add Microsoft.MachineLearningServices/registries/privateLinkResources/read; add Microsoft.MachineLearningServices/registries/read; add Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action; add Microsoft.EventHub/namespaces/privateEndpointConnectionsApproval/action; add Microsoft.EventHub/namespaces/privateEndpointConnections/read; add Microsoft.EventHub/namespaces/privateEndpointConnections/write; add Microsoft.EventHub/namespaces/privateLinkResources/read; add Microsoft.EventHub/namespaces/read; add Microsoft.Search/searchServices/privateEndpointConnectionsApproval/action; add Microsoft.Search/searchServices/privateEndpointConnections/read; add Microsoft.Search/searchServices/privateEndpointConnections/write; add Microsoft.Search/searchServices/sharedPrivateLinkResources/read; add Microsoft.Search/searchServices/read; add Microsoft.Insights/privatelinkscopes/privateEndpointConnectionsApproval/action; add Microsoft.Insights/privatelinkscopes/privateEndpointConnections/read; add Microsoft.Insights/privatelinkscopes/privateEndpointConnections/write; add Microsoft.Insights/privatelinkscopes/privateLinkResources/read; add Microsoft.Insights/privatelinkscopes/read; add Microsoft.Network/privateLinkServices/privateEndpointConnectionsApproval/action; add Microsoft.Network/privateLinkServices/privateEndpointConnections/read; add Microsoft.Network/privateLinkServices/privateEndpointConnections/write; add Microsoft.Network/privateLinkServices/read; add Microsoft.Network/applicationGateways/privateEndpointConnections/read; add Microsoft.Network/applicationGateways/privateEndpointConnections/write; add Microsoft.Network/applicationGateways/privateLinkResources/read; add Microsoft.Network/applicationGateways/read'
2024-03-04 19:12:43 add: Role b556d68e-0be0-4f35-a333-ad7ee1ce17ea
JSON
api-version=2023-07-01-preview
Condition none