AzRoleAdvertizer

last sync: 2024-May-07 17:44:27 UTC

Azure Red Hat OpenShift Federated Credential Role

Azure BuiltIn RBAC Role definition

Name

Azure Red Hat OpenShift Federated Credential Role

ef318e2a-8334-4a05-9e4a-295a196c6a6e

Description

This role grants the permissions required in order to patch cluster managed identities with the federated credential to build a trust relationship between the managed identity, OIDC, and the service account.

CreatedOn

2024-04-15 15:14:13 UTC

UpdatedOn

2024-04-15 15:14:13 UTC

History

Date/Time (UTC ymd) (i)	Change	Change detail
2024-04-15 17:47:24	add: Role	ef318e2a-8334-4a05-9e4a-295a196c6a6e

Permissions summary

Effective control plane and data plane operations: 3 (unique operations)
•read: 2
•write: 1

Actions: 3
Resolved control plane operations from Actions: 3
Effective control plane operations: 3
•read: 2
•write: 1

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 15618

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3080

Actions

Operation	Description
Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials/read	Get or list Federated Identity Credentials
Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials/write	Add or update a Federated Identity Credential
Microsoft.ManagedIdentity/userAssignedIdentities/read	Gets an existing user assigned identity

NotActions

n/a

DataActions

n/a

NotDataActions

n/a

Used in
BuiltIn Policy

none

JSON

api-version=2023-07-01-preview

Condition

none