{ "properties": { "roleName": "InsightCloudSec Reader User Role (Subscription)", "description": "Provides read-only access to resources supported by InsightCloudSec for a given Subscription.", "assignableScopes": [ "/subscriptions/" ], "permissions": [ { "actions": [ "Microsoft.Advisor/recommendations/read", "Microsoft.ApiManagement/service/read", "Microsoft.AppConfiguration/configurationStores/read", "Microsoft.Authorization/classicAdministrators/read", "Microsoft.Authorization/locks/read", "Microsoft.Authorization/policyAssignments/read", "Microsoft.Authorization/policyDefinitions/read", "Microsoft.Authorization/policySetDefinitions/read", "Microsoft.Authorization/roleAssignments/read", "Microsoft.Authorization/roleDefinitions/read", "Microsoft.Automation/automationAccounts/read", "Microsoft.Batch/batchAccounts/read", "Microsoft.Batch/batchAccounts/pools/read", "Microsoft.BotService/botServices/read", "Microsoft.Cache/redis/read", "Microsoft.Cache/redis/firewallRules/read", "Microsoft.Cdn/profiles/*/read", "Microsoft.CognitiveServices/accounts/read", "Microsoft.Compute/disks/read", "Microsoft.Compute/galleries/read", "Microsoft.Compute/galleries/images/read", "Microsoft.Compute/galleries/images/versions/read", "Microsoft.Compute/hostGroups/read", "Microsoft.Compute/images/read", "Microsoft.Compute/skus/read", "Microsoft.Compute/snapshots/read", "Microsoft.Compute/virtualMachineScaleSets/extensions/read", "Microsoft.Compute/virtualMachineScaleSets/instanceView/read", "Microsoft.Compute/virtualMachineScaleSets/networkInterfaces/read", "Microsoft.Compute/virtualMachineScaleSets/publicIPAddresses/read", "Microsoft.Compute/virtualMachineScaleSets/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/extensions/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/instanceView/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/networkInterfaces/ipConfigurations/publicIPAddresses/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/networkInterfaces/ipConfigurations/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/networkInterfaces/read", "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read", "Microsoft.Compute/virtualMachines/extensions/read", "Microsoft.Compute/virtualMachines/instanceView/read", "Microsoft.Compute/virtualMachines/read", "Microsoft.ContainerInstance/containerGroups/read", "Microsoft.ContainerRegistry/registries/pull/read", "Microsoft.ContainerRegistry/registries/read", "Microsoft.ContainerService/managedClusters/read", "Microsoft.Databricks/workspaces/read", "Microsoft.DataFactory/factories/read", "Microsoft.DataLakeStore/accounts/read", "Microsoft.DBforMariaDB/locations/performanceTiers/read", "Microsoft.DBforMariaDB/performanceTiers/read", "Microsoft.DBforMariaDB/servers/configurations/read", "Microsoft.DBforMariaDB/servers/firewallRules/read", "Microsoft.DBforMariaDB/servers/read", "Microsoft.DBforMariaDB/servers/virtualNetworkRules/read", "Microsoft.DBforMySQL/flexibleServers/configurations/read", "Microsoft.DBforMySQL/flexibleServers/firewallRules/read", "Microsoft.DBforMySQL/flexibleServers/read", "Microsoft.DBforMySQL/locations/performanceTiers/read", "Microsoft.DBforMySQL/performanceTiers/read", "Microsoft.DBforMySQL/servers/administrators/read", "Microsoft.DBforMySQL/servers/configurations/read", "Microsoft.DBforMySQL/servers/firewallRules/read", "Microsoft.DBforMySQL/servers/keys/read", "Microsoft.DBforMySQL/servers/read", "Microsoft.DBforMySQL/servers/virtualNetworkRules/read", "Microsoft.DBforPostgreSQL/flexibleServers/configurations/read", "Microsoft.DBforPostgreSQL/flexibleServers/firewallRules/read", "Microsoft.DBforPostgreSQL/flexibleServers/read", "Microsoft.DBforPostgreSQL/locations/performanceTiers/read", "Microsoft.DBforPostgreSQL/performanceTiers/read", "Microsoft.DBforPostgreSQL/servers/administrators/read", "Microsoft.DBforPostgreSQL/servers/configurations/read", "Microsoft.DBforPostgreSQL/servers/firewallRules/read", "Microsoft.DBforPostgreSQL/servers/keys/read", "Microsoft.DBforPostgreSQL/servers/read", "Microsoft.DBforPostgreSQL/servers/virtualNetworkRules/read", "Microsoft.DocumentDB/databaseAccounts/read", "Microsoft.DocumentDB/databaseAccounts/usages/read", "Microsoft.EventGrid/eventSubscriptions/read", "Microsoft.EventGrid/systemTopics/eventSubscriptions/read", "Microsoft.EventGrid/systemTopics/read", "Microsoft.EventGrid/topics/read", "Microsoft.EventHub/namespaces/eventhubs/read", "Microsoft.EventHub/namespaces/networkruleset/read", "Microsoft.EventHub/namespaces/networkrulesets/read", "Microsoft.EventHub/namespaces/read", "Microsoft.HDInsight/clusters/read", "Microsoft.Insights/ActivityLogAlerts/Read", "Microsoft.Insights/Components/Read", "Microsoft.Insights/DiagnosticSettings/Read", "Microsoft.Insights/LogProfiles/read", "Microsoft.KeyVault/vaults/read", "Microsoft.Logic/workflows/read", "Microsoft.Network/applicationGateways/read", "Microsoft.Network/azurefirewalls/read", "Microsoft.Network/bastionHosts/read", "Microsoft.Network/ddosProtectionPlans/read", "Microsoft.Network/dnszones/A/read", "Microsoft.Network/dnszones/AAAA/read", "Microsoft.Network/dnszones/CAA/read", "Microsoft.Network/dnszones/CNAME/read", "Microsoft.Network/dnszones/MX/read", "Microsoft.Network/dnszones/NS/read", "Microsoft.Network/dnszones/PTR/read", "Microsoft.Network/dnszones/SOA/read", "Microsoft.Network/dnszones/SRV/read", "Microsoft.Network/dnszones/TXT/read", "Microsoft.Network/dnszones/read", "Microsoft.Network/dnszones/recordsets/read", "Microsoft.Network/expressRouteCircuits/read", "Microsoft.Network/frontDoors/read", "Microsoft.Network/ipGroups/read", "Microsoft.Network/loadBalancers/backendAddressPools/read", "Microsoft.Network/loadBalancers/frontendIPConfigurations/read", "Microsoft.Network/loadBalancers/networkInterfaces/read", "Microsoft.Network/loadBalancers/read", "Microsoft.Network/locations/usages/read", "Microsoft.Network/natGateways/read", "Microsoft.Network/networkInterfaces/read", "Microsoft.Network/networkSecurityGroups/read", "Microsoft.Network/networkWatchers/configureFlowLog/action", "Microsoft.Network/networkWatchers/flowLogs/read", "Microsoft.Network/networkWatchers/queryFlowLogStatus/action", "Microsoft.Network/networkWatchers/read", "Microsoft.Network/privateDnsZones/A/read", "Microsoft.Network/privateDnsZones/AAAA/read", "Microsoft.Network/privateDnsZones/CNAME/read", "Microsoft.Network/privateDnsZones/MX/read", "Microsoft.Network/privateDnsZones/PTR/read", "Microsoft.Network/privateDnsZones/SOA/read", "Microsoft.Network/privateDnsZones/SRV/read", "Microsoft.Network/privateDnsZones/TXT/read", "Microsoft.Network/privateDnsZones/read", "Microsoft.Network/privateDnsZones/recordsets/read", "Microsoft.Network/privateDnsZones/virtualNetworkLinks/read", "Microsoft.Network/privateEndpoints/read", "Microsoft.Network/privateLinkServices/read", "Microsoft.Network/publicIPAddresses/read", "Microsoft.Network/routeTables/read", "Microsoft.Network/serviceEndpointPolicies/read", "Microsoft.Network/trafficManagerProfiles/read", "Microsoft.Network/virtualNetworks/read", "Microsoft.Network/virtualNetworks/virtualNetworkPeerings/read", "Microsoft.Network/virtualnetworks/read", "Microsoft.Network/virtualNetworkGateways/read", "Microsoft.OperationalInsights/workspaces/read", "Microsoft.Resources/subscriptions/locations/read", "Microsoft.Resources/subscriptions/providers/read", "Microsoft.Resources/subscriptions/resourceGroups/read", "Microsoft.Resources/subscriptions/resourcegroups/resources/read", "Microsoft.Resources/templatespecs/versions/read", "Microsoft.Search/searchServices/read", "Microsoft.Security/advancedThreatProtectionSettings/read", "Microsoft.Security/alerts/read", "Microsoft.Security/assessments/read", "Microsoft.Security/assessments/*/read", "Microsoft.Security/autoProvisioningSettings/read", "Microsoft.Security/locations/jitNetworkAccessPolicies/read", "Microsoft.Security/pricings/read", "Microsoft.Security/securityContacts/read", "Microsoft.Security/tasks/read", "Microsoft.ServiceBus/namespaces/networkRuleSets/read", "Microsoft.ServiceBus/namespaces/queues/read", "Microsoft.ServiceBus/namespaces/read", "Microsoft.ServiceFabric/clusters/read", "Microsoft.Sql/managedInstances/administrators/read", "Microsoft.Sql/managedInstances/encryptionProtector/read", "Microsoft.Sql/managedInstances/read", "Microsoft.Sql/managedInstances/securityAlertPolicies/read", "Microsoft.Sql/managedInstances/vulnerabilityAssessments/read", "Microsoft.Sql/servers/administrators/read", "Microsoft.Sql/servers/auditingSettings/read", "Microsoft.Sql/servers/databases/auditingSettings/read", "Microsoft.Sql/servers/databases/extendedAuditingSettings/read", "Microsoft.Sql/servers/databases/read", "Microsoft.Sql/servers/databases/securityAlertPolicies/read", "Microsoft.Sql/servers/databases/skus/read", "Microsoft.Sql/servers/databases/transparentDataEncryption/read", "Microsoft.Sql/servers/extendedAuditingSettings/read", "Microsoft.Sql/servers/encryptionProtector/read", "Microsoft.Sql/servers/firewallRules/read", "Microsoft.Sql/servers/read", "Microsoft.Sql/servers/securityAlertPolicies/read", "Microsoft.Sql/servers/virtualNetworkRules/read", "Microsoft.Sql/servers/vulnerabilityAssessments/read", "Microsoft.Storage/storageAccounts/blobServices/read", "Microsoft.Storage/storageAccounts/blobServices/containers/read", "Microsoft.Storage/storageAccounts/blobServices/containers/immutabilityPolicies/read", "Microsoft.Storage/storageAccounts/fileServices/shares/read", "Microsoft.Storage/storageAccounts/queueServices/read", "Microsoft.Storage/storageAccounts/queueServices/queues/read", "Microsoft.Storage/storageAccounts/read", "Microsoft.StorageSync/storageSyncServices/read", "Microsoft.Synapse/workspaces/read", "Microsoft.Web/serverfarms/read", "Microsoft.Web/sites/read", "Microsoft.Web/sites/config/read", "Microsoft.Web/sites/config/list/Action", "Microsoft.Web/sites/functions/read", "Microsoft.Web/sites/privateEndpointConnections/read", "Microsoft.Web/sites/slots/read", "Microsoft.Web/sites/slots/config/read", "Microsoft.Web/sites/slots/config/list/Action", "Microsoft.Web/sites/slots/functions/read", "microsoft.web/sites/slots/virtualnetworkconnections/read", "microsoft.web/sites/virtualnetworkconnections/read" ], "notActions": [], "dataActions": [], "notDataActions": [] } ] } }