Back to Dashboard

Azure Red Hat OpenShift First Party Network

Azure Built-in Role

Role Information

Details and metadata

Role ID
42f3c60f-e7b1-46d7-ba56-6de681664342
Type
BuiltInRole
Last Updated (Azure)
2025-12-18 16:39:09

Change History

Track all modifications to this role since 2025-12-15 01:08:16+00:00

2025-12-18 16:39:09 Created
View details
+ {
+ "properties": {
+ "roleName": "Azure Red Hat OpenShift First Party Network",
+ "type": "BuiltInRole",
+ "description": "Grant ARO Classic First Party Service Principal or managed identity required network permissions.",
+ "assignableScopes": [
+ "/"
+ ],
+ "permissions": [
+ {
+ "actions": [
+ "Microsoft.Network/virtualNetworks/read",
+ "Microsoft.Network/virtualNetworks/subnets/join/action",
+ "Microsoft.Network/virtualNetworks/subnets/read",
+ "Microsoft.Network/virtualNetworks/subnets/write",
+ "Microsoft.Network/routeTables/join/action",
+ "Microsoft.Network/routeTables/read",
+ "Microsoft.Network/natGateways/join/action",
+ "Microsoft.Network/networkSecurityGroups/join/action",
+ "Microsoft.Network/networkSecurityGroups/read",
+ "Microsoft.Network/serviceEndpointPolicies/join/action",
+ "Microsoft.Network/networkIntentPolicies/join/action"
+ ],
+ "notActions": [],
+ "dataActions": [],
+ "notDataActions": []
+ }
+ ],
+ "createdOn": "2025-12-18T16:39:09.274Z",
+ "updatedOn": "2025-12-18T16:39:09.274Z",
+ "createdBy": null,
+ "updatedBy": null
+ },
+ "id": "/providers/Microsoft.Authorization/roleDefinitions/42f3c60f-e7b1-46d7-ba56-6de681664342",
+ "type": "Microsoft.Authorization/roleDefinitions",
+ "name": "42f3c60f-e7b1-46d7-ba56-6de681664342"
+ }

Latest Role JSON

Raw definition from Azure

{
  "properties": {
    "roleName": "Azure Red Hat OpenShift First Party Network",
    "type": "BuiltInRole",
    "description": "Grant ARO Classic First Party Service Principal or managed identity required network permissions.",
    "assignableScopes": [
      "/"
    ],
    "permissions": [
      {
        "actions": [
          "Microsoft.Network/virtualNetworks/read",
          "Microsoft.Network/virtualNetworks/subnets/join/action",
          "Microsoft.Network/virtualNetworks/subnets/read",
          "Microsoft.Network/virtualNetworks/subnets/write",
          "Microsoft.Network/routeTables/join/action",
          "Microsoft.Network/routeTables/read",
          "Microsoft.Network/natGateways/join/action",
          "Microsoft.Network/networkSecurityGroups/join/action",
          "Microsoft.Network/networkSecurityGroups/read",
          "Microsoft.Network/serviceEndpointPolicies/join/action",
          "Microsoft.Network/networkIntentPolicies/join/action"
        ],
        "notActions": [],
        "dataActions": [],
        "notDataActions": []
      }
    ],
    "createdOn": "2025-12-18T16:39:09.274Z",
    "updatedOn": "2025-12-18T16:39:09.274Z",
    "createdBy": null,
    "updatedBy": null
  },
  "id": "/providers/Microsoft.Authorization/roleDefinitions/42f3c60f-e7b1-46d7-ba56-6de681664342",
  "type": "Microsoft.Authorization/roleDefinitions",
  "name": "42f3c60f-e7b1-46d7-ba56-6de681664342"
}

Effective Permissions

Operations granted by this role (11 total)

Control Plane Operations (11)

Data Plane Operations (0)

No data plane operations granted