| Name | Microsoft Discovery Platform Administrator (Preview) | ||||||||||||||||||||||||||||
| Id | 7a2b6e6c-472e-4b39-8878-a26eb63d75c6 | ||||||||||||||||||||||||||||
| Description | Grants full access to manage Microsoft.Discovery resources. This role in preview and subjet to change. | ||||||||||||||||||||||||||||
| Category | None | ||||||||||||||||||||||||||||
| CreatedOn | 2025-07-02 15:23:29 UTC | ||||||||||||||||||||||||||||
| UpdatedOn | 2025-07-24 17:05:02 UTC | ||||||||||||||||||||||||||||
| Permissions summary | Effective control plane and data plane operations: 120 (unique operations) •action: 17 •delete: 19 •read: 65 •write: 19 Actions: 13 Resolved control plane operations from Actions: 105 Effective control plane operations: 105 •action: 14 •delete: 15 •read: 59 •write: 17 NotActions: 0 Resolved control plane operations from NotActions: 0 Effective denied control plane operations: 16789 DataActions: 1 Resolved data plane operations: 15 Effective data plane operations: 15 •action: 3 •delete: 4 •read: 6 •write: 2 NotDataActions: 0 Resolved data plane operations from NotDataActions: 0 Effective denied data plane operations: 3572 |
||||||||||||||||||||||||||||
| Actions |
|
||||||||||||||||||||||||||||
| NotActions | n/a | ||||||||||||||||||||||||||||
| DataActions |
|
||||||||||||||||||||||||||||
| NotDataActions | n/a | ||||||||||||||||||||||||||||
| Used in BuiltIn Policy |
none | ||||||||||||||||||||||||||||
| History |
|
||||||||||||||||||||||||||||
| JSON |
|
||||||||||||||||||||||||||||
| Condition |
( ( ! ( ActionMatches { 'Microsoft.Authorization/roleAssignments/write' } ) ) OR ( @Request[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals { 4d97b98b-1d4f-4787-a291-c67834d212e7 (Network Contributor), f1a07417-d97a-45cb-824c-7a7467783830 (Managed Identity Operator) } ) ) AND ( ( ! ( ActionMatches { 'Microsoft.Authorization/roleAssignments/delete' } ) ) OR ( @Resource[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals { 4d97b98b-1d4f-4787-a291-c67834d212e7 (Network Contributor), f1a07417-d97a-45cb-824c-7a7467783830 (Managed Identity Operator) } ) ) |