last sync: 2022-Dec-02 17:43:05 UTC

Azure RBAC Role definition

Reader and Data Access

NameReader and Data Access
Microsoft docs
DescriptionLets you view everything but will not let you delete or create a storage account or contained resource. It will also allow read/write access to all data contained in a storage account via access to storage account keys.
CreatedOn2018-03-27 23:20:46 UTC
UpdatedOn2021-11-11 20:13:48 UTC
Operation Description Used in other Roles
Microsoft.Storage/storageAccounts/ListAccountSas/actionReturns the Account SAS token for the specified storage account. none
Microsoft.Storage/storageAccounts/listKeys/actionReturns the access keys for the specified storage account. DevTest Labs User, Disk Snapshot Contributor, Log Analytics Contributor , Logic App Contributor, Storage Account Key Operator Service Role, Virtual Machine Contributor
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account. Backup Contributor, Backup Operator, Desktop Virtualization Virtual Machine Contributor , Disk Snapshot Contributor, Logic App Contributor, Site Recovery Contributor, Site Recovery Operator, Storage Account Backup Contributor, Virtual Machine Contributor
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in Policy none