Read metadata of keys and perform wrap/unwrap operations. Only works for key vaults that use the 'Azure role-based access control' permission model.
2020-05-20 20:55:19 UTC
2021-11-11 20:14:31 UTC
Date/Time (UTC ymd) (i)
change: DisplayName, Actions
New DisplayName: 'Key Vault Crypto Service Encryption User (preview)' Old DisplayName: 'Key Vault Crypto Service Encryption (preview)', Actions: 'add Microsoft.EventGrid/eventSubscriptions/write; add Microsoft.EventGrid/eventSubscriptions/read; add Microsoft.EventGrid/eventSubscriptions/delete'
Effective control plane and data plane operations: 6 (unique operations)
•action: 2 •delete: 1 •read: 2 •write: 1
Resolved control plane operations from Actions: 3
Effective control plane operations: 3
•delete: 1 •read: 1 •write: 1
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 14747
Resolved data plane operations: 3
Effective data plane operations: 3
•action: 2 •read: 1
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3078
List keys in the specified vault, or read properties and public material of a key. For asymmetric keys, this operation exposes public key and includes ability to perform public key algorithms such as encrypt and verify signature. Private keys and symmetric keys are never exposed.