Back to Operation

Operator Nexus Compute Contributor Role (Preview)

Azure Built-in Role

Role Information

Details and metadata

Role ID
4aa368ec-fba9-4e93-81ed-396b3d461cc5
Type
BuiltInRole
Last Updated (Azure)
2024-07-12 15:54:23

Change History

Track all modifications to this role

2025-12-14 23:49:13 Initial Scan
View details 
{
  "properties": {
    "roleName": "Operator Nexus Compute Contributor Role (Preview)",
    "type": "BuiltInRole",
    "description": "(Preview) Manage and configure Azure Operator Nexus infrastructure resources. This role is in preview and subject to change.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Authorization/classicAdministrators/operationstatuses/read",
          "Microsoft.Authorization/classicAdministrators/read",
          "Microsoft.Authorization/denyAssignments/read",
          "Microsoft.Authorization/diagnosticSettings/read",
          "Microsoft.Authorization/diagnosticSettingsCategories/read",
          "Microsoft.Authorization/locks/read",
          "Microsoft.Authorization/operations/read",
          "Microsoft.Authorization/permissions/read",
          "Microsoft.Authorization/policyAssignments/read",
          "Microsoft.Authorization/policyAssignments/privateLinkAssociations/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnectionProxies/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnections/read",
          "Microsoft.Authorization/policyDefinitions/read",
          "Microsoft.Authorization/policyExemptions/read",
          "Microsoft.Authorization/policySetDefinitions/read",
          "Microsoft.Authorization/providerOperations/read",
          "Microsoft.Authorization/roleAssignments/read",
          "Microsoft.Authorization/roleAssignmentScheduleInstances/read",
          "Microsoft.Authorization/roleAssignmentScheduleRequests/read",
          "Microsoft.Authorization/roleAssignmentSchedules/read",
          "Microsoft.Authorization/roleDefinitions/read",
          "Microsoft.Authorization/roleEligibilityScheduleInstances/read",
          "Microsoft.Authorization/roleEligibilityScheduleRequests/read",
          "Microsoft.Authorization/roleEligibilitySchedules/read",
          "Microsoft.Authorization/roleManagementPolicies/read",
          "Microsoft.Authorization/roleManagementPolicyAssignments/read",
          "Microsoft.ExtendedLocation/customLocations/deploy/action",
          "Microsoft.ExtendedLocation/customLocations/read",
          "Microsoft.HybridCompute/machines/extensions/read",
          "Microsoft.HybridCompute/machines/read",
          "Microsoft.Insights/alertRules/activated/action",
          "Microsoft.Insights/alertRules/delete",
          "Microsoft.Insights/alertRules/incidents/read",
          "Microsoft.Insights/alertRules/read",
          "Microsoft.Insights/alertRules/resolved/action",
          "Microsoft.Insights/alertRules/throttled/action",
          "Microsoft.Insights/alertRules/write",
          "Microsoft.Kubernetes/connectedClusters/read",
          "Microsoft.KubernetesConfiguration/extensions/read",
          "Microsoft.ManagedNetworkFabric/networkFabricControllers/join/action",
          "Microsoft.ManagedNetworkFabric/networkFabrics/join/action",
          "Microsoft.ManagedNetworkFabric/networkRacks/join/action",
          "Microsoft.NetworkCloud/bareMetalMachines/cordon/action",
          "Microsoft.NetworkCloud/bareMetalMachines/delete",
          "Microsoft.NetworkCloud/bareMetalMachines/powerOff/action",
          "Microsoft.NetworkCloud/bareMetalMachines/read",
          "Microsoft.NetworkCloud/bareMetalMachines/reimage/action",
          "Microsoft.NetworkCloud/bareMetalMachines/replace/action",
          "Microsoft.NetworkCloud/bareMetalMachines/restart/action",
          "Microsoft.NetworkCloud/bareMetalMachines/runDataExtracts/action",
          "Microsoft.NetworkCloud/bareMetalMachines/runReadCommands/action",
          "Microsoft.NetworkCloud/bareMetalMachines/start/action",
          "Microsoft.NetworkCloud/bareMetalMachines/uncordon/action",
          "Microsoft.NetworkCloud/bareMetalMachines/write",
          "Microsoft.NetworkCloud/clusterManagers/delete",
          "Microsoft.NetworkCloud/clusterManagers/read",
          "Microsoft.NetworkCloud/clusterManagers/write",
          "Microsoft.NetworkCloud/clusters/bareMetalMachineKeySets/read",
          "Microsoft.NetworkCloud/clusters/bmcKeySets/read",
          "Microsoft.NetworkCloud/clusters/continueUpdateVersion/action",
          "Microsoft.NetworkCloud/clusters/delete",
          "Microsoft.NetworkCloud/clusters/deploy/action",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/delete",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/read",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/write",
          "Microsoft.NetworkCloud/clusters/read",
          "Microsoft.NetworkCloud/clusters/scanRuntime/action",
          "Microsoft.NetworkCloud/clusters/updateVersion/action",
          "Microsoft.NetworkCloud/clusters/write",
          "Microsoft.NetworkCloud/locations/operationStatuses/read",
          "Microsoft.NetworkCloud/operations/read",
          "Microsoft.NetworkCloud/rackSkus/read",
          "Microsoft.NetworkCloud/racks/delete",
          "Microsoft.NetworkCloud/racks/join/action",
          "Microsoft.NetworkCloud/racks/read",
          "Microsoft.NetworkCloud/racks/write",
          "Microsoft.NetworkCloud/register/action",
          "Microsoft.NetworkCloud/registeredSubscriptions/read",
          "Microsoft.NetworkCloud/storageAppliances/read",
          "Microsoft.NetworkCloud/unregister/action",
          "Microsoft.Resources/deployments/cancel/action",
          "Microsoft.Resources/deployments/delete",
          "Microsoft.Resources/deployments/exportTemplate/action",
          "Microsoft.Resources/deployments/operations/read",
          "Microsoft.Resources/deployments/operationstatuses/read",
          "Microsoft.Resources/deployments/read",
          "Microsoft.Resources/deployments/validate/action",
          "Microsoft.Resources/deployments/whatIf/action",
          "Microsoft.Resources/deployments/write",
          "Microsoft.Resources/subscriptions/resourceGroups/read"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2024-07-12T15:54:23.51Z",
    "updatedOn": "2024-07-12T15:54:23.51Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/4aa368ec-fba9-4e93-81ed-396b3d461cc5",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "4aa368ec-fba9-4e93-81ed-396b3d461cc5"
}

Latest Role JSON

Raw definition from Azure

{
  "properties": {
    "roleName": "Operator Nexus Compute Contributor Role (Preview)",
    "type": "BuiltInRole",
    "description": "(Preview) Manage and configure Azure Operator Nexus infrastructure resources. This role is in preview and subject to change.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Authorization/classicAdministrators/operationstatuses/read",
          "Microsoft.Authorization/classicAdministrators/read",
          "Microsoft.Authorization/denyAssignments/read",
          "Microsoft.Authorization/diagnosticSettings/read",
          "Microsoft.Authorization/diagnosticSettingsCategories/read",
          "Microsoft.Authorization/locks/read",
          "Microsoft.Authorization/operations/read",
          "Microsoft.Authorization/permissions/read",
          "Microsoft.Authorization/policyAssignments/read",
          "Microsoft.Authorization/policyAssignments/privateLinkAssociations/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnectionProxies/read",
          "Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnections/read",
          "Microsoft.Authorization/policyDefinitions/read",
          "Microsoft.Authorization/policyExemptions/read",
          "Microsoft.Authorization/policySetDefinitions/read",
          "Microsoft.Authorization/providerOperations/read",
          "Microsoft.Authorization/roleAssignments/read",
          "Microsoft.Authorization/roleAssignmentScheduleInstances/read",
          "Microsoft.Authorization/roleAssignmentScheduleRequests/read",
          "Microsoft.Authorization/roleAssignmentSchedules/read",
          "Microsoft.Authorization/roleDefinitions/read",
          "Microsoft.Authorization/roleEligibilityScheduleInstances/read",
          "Microsoft.Authorization/roleEligibilityScheduleRequests/read",
          "Microsoft.Authorization/roleEligibilitySchedules/read",
          "Microsoft.Authorization/roleManagementPolicies/read",
          "Microsoft.Authorization/roleManagementPolicyAssignments/read",
          "Microsoft.ExtendedLocation/customLocations/deploy/action",
          "Microsoft.ExtendedLocation/customLocations/read",
          "Microsoft.HybridCompute/machines/extensions/read",
          "Microsoft.HybridCompute/machines/read",
          "Microsoft.Insights/alertRules/activated/action",
          "Microsoft.Insights/alertRules/delete",
          "Microsoft.Insights/alertRules/incidents/read",
          "Microsoft.Insights/alertRules/read",
          "Microsoft.Insights/alertRules/resolved/action",
          "Microsoft.Insights/alertRules/throttled/action",
          "Microsoft.Insights/alertRules/write",
          "Microsoft.Kubernetes/connectedClusters/read",
          "Microsoft.KubernetesConfiguration/extensions/read",
          "Microsoft.ManagedNetworkFabric/networkFabricControllers/join/action",
          "Microsoft.ManagedNetworkFabric/networkFabrics/join/action",
          "Microsoft.ManagedNetworkFabric/networkRacks/join/action",
          "Microsoft.NetworkCloud/bareMetalMachines/cordon/action",
          "Microsoft.NetworkCloud/bareMetalMachines/delete",
          "Microsoft.NetworkCloud/bareMetalMachines/powerOff/action",
          "Microsoft.NetworkCloud/bareMetalMachines/read",
          "Microsoft.NetworkCloud/bareMetalMachines/reimage/action",
          "Microsoft.NetworkCloud/bareMetalMachines/replace/action",
          "Microsoft.NetworkCloud/bareMetalMachines/restart/action",
          "Microsoft.NetworkCloud/bareMetalMachines/runDataExtracts/action",
          "Microsoft.NetworkCloud/bareMetalMachines/runReadCommands/action",
          "Microsoft.NetworkCloud/bareMetalMachines/start/action",
          "Microsoft.NetworkCloud/bareMetalMachines/uncordon/action",
          "Microsoft.NetworkCloud/bareMetalMachines/write",
          "Microsoft.NetworkCloud/clusterManagers/delete",
          "Microsoft.NetworkCloud/clusterManagers/read",
          "Microsoft.NetworkCloud/clusterManagers/write",
          "Microsoft.NetworkCloud/clusters/bareMetalMachineKeySets/read",
          "Microsoft.NetworkCloud/clusters/bmcKeySets/read",
          "Microsoft.NetworkCloud/clusters/continueUpdateVersion/action",
          "Microsoft.NetworkCloud/clusters/delete",
          "Microsoft.NetworkCloud/clusters/deploy/action",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/delete",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/read",
          "Microsoft.NetworkCloud/clusters/metricsConfigurations/write",
          "Microsoft.NetworkCloud/clusters/read",
          "Microsoft.NetworkCloud/clusters/scanRuntime/action",
          "Microsoft.NetworkCloud/clusters/updateVersion/action",
          "Microsoft.NetworkCloud/clusters/write",
          "Microsoft.NetworkCloud/locations/operationStatuses/read",
          "Microsoft.NetworkCloud/operations/read",
          "Microsoft.NetworkCloud/rackSkus/read",
          "Microsoft.NetworkCloud/racks/delete",
          "Microsoft.NetworkCloud/racks/join/action",
          "Microsoft.NetworkCloud/racks/read",
          "Microsoft.NetworkCloud/racks/write",
          "Microsoft.NetworkCloud/register/action",
          "Microsoft.NetworkCloud/registeredSubscriptions/read",
          "Microsoft.NetworkCloud/storageAppliances/read",
          "Microsoft.NetworkCloud/unregister/action",
          "Microsoft.Resources/deployments/cancel/action",
          "Microsoft.Resources/deployments/delete",
          "Microsoft.Resources/deployments/exportTemplate/action",
          "Microsoft.Resources/deployments/operations/read",
          "Microsoft.Resources/deployments/operationstatuses/read",
          "Microsoft.Resources/deployments/read",
          "Microsoft.Resources/deployments/validate/action",
          "Microsoft.Resources/deployments/whatIf/action",
          "Microsoft.Resources/deployments/write",
          "Microsoft.Resources/subscriptions/resourceGroups/read"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2024-07-12T15:54:23.51Z",
    "updatedOn": "2024-07-12T15:54:23.51Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/4aa368ec-fba9-4e93-81ed-396b3d461cc5",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "4aa368ec-fba9-4e93-81ed-396b3d461cc5"
}

Effective Permissions

Operations granted by this role (83 total)

Control Plane Operations (83)

Data Plane Operations (0)

No data plane operations granted