AzRoleAdvertizer

last sync: 2025-Jun-13 17:22:48 UTC

Azure Red Hat OpenShift Service Operator

Azure BuiltIn RBAC Role definition

NameAzure Red Hat OpenShift Service Operator
Microsoft Learn
Id4436bae4-7702-4c84-919b-c4069ff25ee2
DescriptionMaintain machine health, network configuration, monitoring, and other features that are specific to an OpenShift cluster's continued functionality as a managed service.
CategoryContainers
Microsoft Learn
CreatedOn2024-01-30 16:11:37 UTC
UpdatedOn2025-06-03 15:14:11 UTC
Permissions summary Effective control plane and data plane operations: 10 (unique operations)
•action: 7
•read: 2
•write: 1

Actions: 10
Resolved control plane operations from Actions: 10
Effective control plane operations: 10
•action: 7
•read: 2
•write: 1

NotActions: 0
Resolved control plane operations from NotActions: 0
Effective denied control plane operations: 16632

DataActions: 0
Resolved data plane operations: 0
Effective data plane operations: 0

NotDataActions: 0
Resolved data plane operations from NotDataActions: 0
Effective denied data plane operations: 3559
Actions
Operation Description
Microsoft.Network/natGateways/join/actionJoins a NAT Gateway
Microsoft.Network/networkIntentPolicies/join/actionJoins a Network Intent Policy. Not alertable.
Microsoft.Network/networkManagers/ipamPools/associateResourcesToPool/actionAction permission for associate resources to Ipam Pool
Microsoft.Network/networkSecurityGroups/join/actionJoins a network security group. Not Alertable.
Microsoft.Network/routeTables/join/actionJoins a route table. Not Alertable.
Microsoft.Network/serviceEndpointPolicies/join/actionJoins a Service Endpoint Policy. Not alertable.
Microsoft.Network/virtualNetworks/subnets/readGets a virtual network subnet definition
Microsoft.Network/virtualNetworks/subnets/writeCreates a virtual network subnet or updates an existing virtual network subnet
Microsoft.Storage/storageAccounts/listKeys/actionReturns the access keys for the specified storage account.
Microsoft.Storage/storageAccounts/readReturns the list of storage accounts or gets the properties for the specified storage account.
NotActions n/a
DataActions n/a
NotDataActions n/a
Used in
BuiltIn Policy		 none
History
Date/Time (UTC ymd) (i) Change Change detail
2025-06-03 17:22:50 change: DisplayName, Actions New DisplayName: 'Azure Red Hat OpenShift Service Operator'
Old DisplayName: 'Azure RedHat OpenShift Service Operator',
Actions: 'add Microsoft.Network/serviceEndpointPolicies/join/action; add Microsoft.Network/networkIntentPolicies/join/action; add Microsoft.Network/networkManagers/ipamPools/associateResourcesToPool/action'
2024-04-15 17:47:24 change: Actions Actions: 'add Microsoft.Network/virtualNetworks/subnets/read; add Microsoft.Network/virtualNetworks/subnets/write; add Microsoft.Network/natGateways/join/action; add Microsoft.Network/routeTables/join/action; add Microsoft.Network/networkSecurityGroups/join/action; add Microsoft.Storage/storageAccounts/listKeys/action; add Microsoft.Storage/storageAccounts/read'
2024-01-31 19:57:40 add: Role 4436bae4-7702-4c84-919b-c4069ff25ee2
JSON
api-version=2023-07-01-preview
Condition none