Role Information
Details and metadata
4939a1f6-9ae0-4e48-a1e0-f2cbe897382d
Change History
Track all modifications to this role
Updated On
Event Type
Summary & Details
2021-11-11 20:13:53
Initial Scan
Show full JSON
{
"properties": {
"roleName": "SQL Managed Instance Contributor",
"type": "BuiltInRole",
"description": "Lets you manage SQL Managed Instances and required network configuration, but can\u2019t give access to others.",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Network/networkSecurityGroups/*",
"Microsoft.Network/routeTables/*",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/locations/instanceFailoverGroups/*",
"Microsoft.Sql/managedInstances/*",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/*",
"Microsoft.Network/virtualNetworks/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/delete",
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"createdOn": "2018-12-10T22:57:14.293Z",
"updatedOn": "2021-11-11T20:13:53.351Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "4939a1f6-9ae0-4e48-a1e0-f2cbe897382d"
}
2021-11-11 20:13:53
Initial Scan
View details
{
"properties": {
"roleName": "SQL Managed Instance Contributor",
"type": "BuiltInRole",
"description": "Lets you manage SQL Managed Instances and required network configuration, but can\u2019t give access to others.",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Network/networkSecurityGroups/*",
"Microsoft.Network/routeTables/*",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/locations/instanceFailoverGroups/*",
"Microsoft.Sql/managedInstances/*",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/*",
"Microsoft.Network/virtualNetworks/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/delete",
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"createdOn": "2018-12-10T22:57:14.293Z",
"updatedOn": "2021-11-11T20:13:53.351Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "4939a1f6-9ae0-4e48-a1e0-f2cbe897382d"
}
Latest Role JSON
Raw definition from Azure
{
"properties": {
"roleName": "SQL Managed Instance Contributor",
"type": "BuiltInRole",
"description": "Lets you manage SQL Managed Instances and required network configuration, but can\u2019t give access to others.",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Network/networkSecurityGroups/*",
"Microsoft.Network/routeTables/*",
"Microsoft.Sql/locations/*/read",
"Microsoft.Sql/locations/instanceFailoverGroups/*",
"Microsoft.Sql/managedInstances/*",
"Microsoft.Support/*",
"Microsoft.Network/virtualNetworks/subnets/*",
"Microsoft.Network/virtualNetworks/*",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/metrics/read",
"Microsoft.Insights/metricDefinitions/read"
],
"notActions": [
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/delete",
"Microsoft.Sql/managedInstances/azureADOnlyAuthentications/write"
],
"dataActions": [],
"notDataActions": []
}
],
"createdOn": "2018-12-10T22:57:14.293Z",
"updatedOn": "2021-11-11T20:13:53.351Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/4939a1f6-9ae0-4e48-a1e0-f2cbe897382d",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "4939a1f6-9ae0-4e48-a1e0-f2cbe897382d"
}
Effective Permissions
Operations granted by this role (399 total)
Permission Patterns (from role definition)
Actions
15 patterns
Microsoft.ResourceHealth/availabilityStatuses/read
Microsoft.Resources/deployments/*
Microsoft.Resources/subscriptions/resourceGroups/read
Microsoft.Network/networkSecurityGroups/*
Microsoft.Network/routeTables/*
Microsoft.Sql/locations/*/read
Microsoft.Sql/locations/instanceFailoverGroups/*
Microsoft.Sql/managedInstances/*
Microsoft.Support/*
Microsoft.Network/virtualNetworks/subnets/*
Microsoft.Network/virtualNetworks/*
Microsoft.Authorization/*/read
Microsoft.Insights/alertRules/*
Microsoft.Insights/metrics/read
Microsoft.Insights/metricDefinitions/read
NotActions (excluded)
Microsoft.Sql/managedInstances/azureADOnlyAuthentications/delete
Microsoft.Sql/managedInstances/azureADOnlyAuthentications/write
Control Plane Operations (399)
No matching operations
/ shown
Data Plane Operations (0)
No data plane operations granted