Role Based Access Control Administrator - Azure Built-in Role Definition (f58310d9-a9f6-439a-9e8d-f62e7b41a168)

Role Information

Details and metadata

Role ID

f58310d9-a9f6-439a-9e8d-f62e7b41a168

Type

BuiltInRole

Last Updated (Azure)

2023-11-10 21:06:25

Change History

Track all modifications to this role since 2025-12-15 01:08:16+00:00

Updated On

Event Type

Summary & Details

2023-11-10 21:06:25

Initial Scan

Show full JSON

{
  "properties": {
    "roleName": "Role Based Access Control Administrator",
    "type": "BuiltInRole",
    "description": "Manage access to Azure resources by assigning roles using Azure RBAC. This role does not allow you to manage access using other ways, such as Azure Policy.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Authorization/roleAssignments/write",
          "Microsoft.Authorization/roleAssignments/delete",
          "*/read",
          "Microsoft.Support/*"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2022-09-06T22:26:26.407Z",
    "updatedOn": "2023-11-10T21:06:25.701Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f58310d9-a9f6-439a-9e8d-f62e7b41a168",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "f58310d9-a9f6-439a-9e8d-f62e7b41a168"
}

2023-11-10 21:06:25 Initial Scan

View details

{
  "properties": {
    "roleName": "Role Based Access Control Administrator",
    "type": "BuiltInRole",
    "description": "Manage access to Azure resources by assigning roles using Azure RBAC. This role does not allow you to manage access using other ways, such as Azure Policy.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Authorization/roleAssignments/write",
          "Microsoft.Authorization/roleAssignments/delete",
          "*/read",
          "Microsoft.Support/*"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2022-09-06T22:26:26.407Z",
    "updatedOn": "2023-11-10T21:06:25.701Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f58310d9-a9f6-439a-9e8d-f62e7b41a168",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "f58310d9-a9f6-439a-9e8d-f62e7b41a168"
}

Latest Role JSON

Raw definition from Azure

{
  "properties": {
    "roleName": "Role Based Access Control Administrator",
    "type": "BuiltInRole",
    "description": "Manage access to Azure resources by assigning roles using Azure RBAC. This role does not allow you to manage access using other ways, such as Azure Policy.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Authorization/roleAssignments/write",
          "Microsoft.Authorization/roleAssignments/delete",
          "*/read",
          "Microsoft.Support/*"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2022-09-06T22:26:26.407Z",
    "updatedOn": "2023-11-10T21:06:25.701Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f58310d9-a9f6-439a-9e8d-f62e7b41a168",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "f58310d9-a9f6-439a-9e8d-f62e7b41a168"
}

Effective Permissions

Operations granted by this role (7492 total)

Permission Patterns (from role definition)

Actions 4 patterns

Microsoft.Authorization/roleAssignments/write Microsoft.Authorization/roleAssignments/delete */read Microsoft.Support/*

Control Plane Operations (7492)

Data Plane Operations (0)

No data plane operations granted