AzRoleAdvertizer

last sync: 2025-Oct-27 18:22:46 UTC

Storage Account Backup Contributor

Azure BuiltIn RBAC Role definition

NameStorage Account Backup Contributor
Microsoft Learn
Ide5e2a7ff-d759-4cd2-bb51-3152d37e2eb1
DescriptionLets you perform backup and restore operations using Azure Backup on the storage account.
CategoryStorage
Microsoft Learn
CreatedOn2020-11-02 23:32:50 UTC
UpdatedOn2022-04-20 05:50:13 UTC
Permissions summary Effective control plane and data plane operations: 47 (unique operations)
•action: 1
•delete: 2
•read: 39
•write: 5

Actions: 18
Resolved control plane operations from Actions: 47
Effective control plane operations: 47
•action: 1
•delete: 2
•read: 39
•write: 5

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 17359

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 4081
Actions
Operation Description
Microsoft.Authorization/*/readwildcarded / no description
Microsoft.Authorization/locks/deleteDelete locks at the specified scope.
Microsoft.Authorization/locks/readGets locks at the specified scope.
Microsoft.Authorization/locks/writeAdd locks at the specified scope.
Microsoft.Features/features/readGets the features of a subscription.
Microsoft.Features/providers/features/readGets the feature of a subscription in a given resource provider.
Microsoft.Resources/subscriptions/resourceGroups/readGets or lists resource groups.
Microsoft.Storage/operations/readPolls the status of an asynchronous operation.
Microsoft.Storage/storageAccounts/blobServices/containers/readReturns list of containers
Microsoft.Storage/storageAccounts/blobServices/containers/writeReturns the result of put blob container
Microsoft.Storage/storageAccounts/blobServices/readReturns blob service properties or statistics
Microsoft.Storage/storageAccounts/blobServices/writeReturns the result of put blob service properties
Microsoft.Storage/storageAccounts/objectReplicationPolicies/deleteDelete object replication policy
Microsoft.Storage/storageAccounts/objectReplicationPolicies/readList object replication policies
Microsoft.Storage/storageAccounts/objectReplicationPolicies/restorePointMarkers/writeCreate object replication restore point marker
Microsoft.Storage/storageAccounts/objectReplicationPolicies/writeCreate or update object replication policy
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
Microsoft.Storage/storageAccounts/restoreBlobRanges/actionRestore blob ranges to the state of the specified time
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2022-04-20 16:54:13 change: DisplayName, Description, Actions New DisplayName: 'Storage Account Backup Contributor'
Old DisplayName: 'Storage Account Backup Contributor Role',
New Description: 'Lets you perform backup and restore operations using Azure Backup on the storage account.'
Old Description: 'Storage Account Backup Contributors are allowed to perform backup and restore of Storage Account.',
Actions: 'add Microsoft.Storage/storageAccounts/objectReplicationPolicies/delete; add Microsoft.Storage/storageAccounts/objectReplicationPolicies/read; add Microsoft.Storage/storageAccounts/objectReplicationPolicies/write; add Microsoft.Storage/storageAccounts/objectReplicationPolicies/restorePointMarkers/write; add Microsoft.Storage/storageAccounts/blobServices/containers/write'
2020-11-19 14:28:56 change: Actions Actions: 'add Microsoft.Authorization/locks/write; add Microsoft.Authorization/locks/delete'
2020-11-16 13:39:23 change: Actions Actions: 'add Microsoft.Authorization/*/read; add Microsoft.Authorization/locks/read'
2020-11-13 14:22:44 add: Role e5e2a7ff-d759-4cd2-bb51-3152d37e2eb1
JSON
api-version=2023-07-01-preview
Condition none