“混合 + 多云”的 Azure 权限

  • 项目

本文列出了“混合 + 多云”类别中 Azure 资源提供程序的权限。 可以在自己的 Azure 自定义角色中使用这些权限,以针对 Azure 中的资源提供精细的访问控制。 权限字符串具有以下格式:{Company}.{ProviderName}/{resourceType}/{action}

Microsoft.AzureStack

跨云边界构建并运行创新的混合应用程序。

Azure 服务:Azure Stack

操作 说明
Microsoft.AzureStack/register/action 订阅注册操作
Microsoft.AzureStack/register/action 使用 Microsoft.AzureStack 资源提供程序注册订阅
Microsoft.AzureStack/generateDeploymentLicense/action 生成用于部署 Azure Stack 设备的临时许可证。
Microsoft.AzureStack/cloudManifestFiles/read 获取云清单文件
Microsoft.AzureStack/linkedSubscriptions/read 获取 Azure Stack 关联订阅的属性
Microsoft.AzureStack/linkedSubscriptions/write 创建或更新关联的订阅
Microsoft.AzureStack/linkedSubscriptions/delete 删除关联的订阅
Microsoft.AzureStack/linkedSubscriptions/linkedResourceGroups/action 读取或写入到关联的边缘资源组下的计划的链接资源
Microsoft.AzureStack/linkedSubscriptions/linkedProviders/action 读取或写入到给定的链接资源提供程序命名空间下的计划的链接资源
Microsoft.AzureStack/linkedSubscriptions/operations/action 获取或列出对计划的链接资源进行的异步操作的状态
Microsoft.AzureStack/linkedSubscriptions/linkedResourceGroups/linkedProviders/virtualNetworks/read 获取或列出虚拟网络
Microsoft.AzureStack/Operations/read 获取资源提供程序操作的属性
Microsoft.AzureStack/registrations/read 获取 Azure Stack 注册的属性
Microsoft.AzureStack/registrations/write 创建或更新 Azure Stack 注册
Microsoft.AzureStack/registrations/delete 删除 Azure Stack 注册
Microsoft.AzureStack/registrations/getActivationKey/action 获取最新的 Azure Stack 激活密钥
Microsoft.AzureStack/registrations/enableRemoteManagement/action 为 Azure Stack 注册启用 RemoteManagement
Microsoft.AzureStack/registrations/customerSubscriptions/read 获取 Azure Stack 客户订阅的属性
Microsoft.AzureStack/registrations/customerSubscriptions/write 创建或更新 Azure Stack 客户订阅
Microsoft.AzureStack/registrations/customerSubscriptions/delete 删除 Azure Stack 客户订阅
Microsoft.AzureStack/registrations/products/read 获取 Azure Stack 市场产品的属性
Microsoft.AzureStack/registrations/products/listDetails/action 检索 Azure Stack 市场产品的扩展详细信息
Microsoft.AzureStack/registrations/products/getProducts/action 检索 Azure Stack 市场产品的列表
Microsoft.AzureStack/registrations/products/getProduct/action 检索 Azure Stack 市场产品
Microsoft.AzureStack/registrations/products/uploadProductLog/action 记录 Azure Stack 市场产品操作状态和时间戳

Microsoft.AzureStackHCI

Azure 服务:Azure Stack HCI

操作 说明
Microsoft.AzureStackHCI/Register/Action 注册 Azure Stack HCI 资源提供程序的订阅,允许创建 Azure Stack HCI 资源。
Microsoft.AzureStackHCI/Unregister/Action 取消注册 Azure Stack HCI 资源提供程序的订阅。
Microsoft.AzureStackHCI/Clusters/Read 获取群集
Microsoft.AzureStackHCI/Clusters/Write 创建或更新群集
Microsoft.AzureStackHCI/Clusters/Delete 删除群集资源
Microsoft.AzureStackHCI/Clusters/AddNodes/Action 向群集添加 Arc 节点
Microsoft.AzureStackHCI/Clusters/CreateClusterIdentity/Action 创建群集标识
Microsoft.AzureStackHCI/Clusters/UploadCertificate/Action 上传群集证书
Microsoft.AzureStackHCI/Clusters/ArcSettings/Read 获取 HCI 群集的 Arc 资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/Write 创建或更新 HCI 群集的 Arc 资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/Delete 删除 HCI 群集的 Arc 资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/GeneratePassword/Action 为 Arc 设置标识生成密码
Microsoft.AzureStackHCI/Clusters/ArcSettings/CreateArcIdentity/Action 创建 Arc 设置标识
Microsoft.AzureStackHCI/Clusters/ArcSettings/ConsentAndInstallDefaultExtensions/Action 更新同意时间和安装默认扩展
Microsoft.AzureStackHCI/Clusters/ArcSettings/InitializeDisableProcess/Action 初始化 arc 设置资源的禁用进程
Microsoft.AzureStackHCI/Clusters/ArcSettings/Extensions/Read 获取 HCI 群集的扩展资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/Extensions/Write 创建或更新 HCI 群集的扩展资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/Extensions/Delete 删除 HCI 群集的扩展资源
Microsoft.AzureStackHCI/Clusters/ArcSettings/Extensions/Upgrade/Action 升级 HCI 群集的扩展资源
Microsoft.AzureStackHCI/Clusters/DeploymentSettings/Read 获取 DeploymentSettings
Microsoft.AzureStackHCI/Clusters/DeploymentSettings/Write 创建或更新 DeploymentSettings 资源
Microsoft.AzureStackHCI/Clusters/DeploymentSettings/Delete 删除 DeploymentSettings 资源
Microsoft.AzureStackHCI/Clusters/SecuritySettings/Read 获取 HCI 群集的 SecuritySettings
Microsoft.AzureStackHCI/Clusters/SecuritySettings/Write 创建或更新 HCI 群集的 SecuritySettings 资源
Microsoft.AzureStackHCI/Clusters/SecuritySettings/Delete 删除 HCI 群集的 SecuritySettings 资源
Microsoft.AzureStackHCI/EdgeDevices/Read 获取 EdgeDevices 资源
Microsoft.AzureStackHCI/EdgeDevices/Write 创建或更新 EdgeDevice 资源
Microsoft.AzureStackHCI/EdgeDevices/Delete 删除 EdgeDevice 资源
Microsoft.AzureStackHCI/EdgeDevices/Validate/Action 验证用于部署的 EdgeDevice 资源
Microsoft.AzureStackHCI/GalleryImages/Delete 删除库映像资源
Microsoft.AzureStackHCI/GalleryImages/Write 创建/更新库映像资源
Microsoft.AzureStackHCI/GalleryImages/Read 获取/列出库映像资源
Microsoft.AzureStackHCI/GalleryImages/deploy/action 部署库映像资源
Microsoft.AzureStackHCI/LogicalNetworks/Delete 删除逻辑网络资源
Microsoft.AzureStackHCI/LogicalNetworks/Write 创建/更新逻辑网络资源
Microsoft.AzureStackHCI/LogicalNetworks/Read 获取/列出逻辑网络资源
Microsoft.AzureStackHCI/LogicalNetworks/join/action 联接逻辑网络资源
Microsoft.AzureStackHCI/MarketPlaceGalleryImages/Delete 删除市场库映像资源
Microsoft.AzureStackHCI/MarketPlaceGalleryImages/Write 创建/更新市场库映像资源
Microsoft.AzureStackHCI/MarketPlaceGalleryImages/Read 获取/列出市场库映像资源
Microsoft.AzureStackHCI/MarketPlaceGalleryImages/deploy/action 部署市场库映像资源
Microsoft.AzureStackHCI/NetworkInterfaces/Delete 删除网络接口资源
Microsoft.AzureStackHCI/NetworkInterfaces/Write 创建/更新网络接口资源
Microsoft.AzureStackHCI/NetworkInterfaces/Read 获取/列出网络接口资源
Microsoft.AzureStackHCI/Operations/Read Get 操作
Microsoft.AzureStackHCI/RegisteredSubscriptions/read 读取注册订阅
Microsoft.AzureStackHCI/StorageContainers/Delete 删除存储容器资源
Microsoft.AzureStackHCI/StorageContainers/Write 创建/更新存储容器资源
Microsoft.AzureStackHCI/StorageContainers/Read 获取/列出存储容器资源
Microsoft.AzureStackHCI/StorageContainers/deploy/action 部署存储容器资源
Microsoft.AzureStackHCI/VirtualHardDisks/Delete 删除虚拟硬盘资源
Microsoft.AzureStackHCI/VirtualHardDisks/Write 创建/更新虚拟硬盘资源
Microsoft.AzureStackHCI/VirtualHardDisks/Read 获取/列出虚拟硬盘资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Restart/Action 重启虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Start/Action 启动虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Stop/Action 停止虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Delete 删除虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Write 创建/更新虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/Read 获取/列出虚拟机实例资源
Microsoft.AzureStackHCI/VirtualMachineInstances/HybridIdentityMetadata/Read 获取/列出虚拟机实例混合标识元数据代理资源
Microsoft.AzureStackHCI/VirtualMachines/Restart/Action 重启虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Start/Action 启动虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Stop/Action 停止虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Delete 删除虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Write 创建/更新虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Read 获取/列出虚拟机资源
Microsoft.AzureStackHCI/VirtualMachines/Extensions/Read 获取/列出虚拟机扩展资源
Microsoft.AzureStackHCI/VirtualMachines/Extensions/Write 创建/更新虚拟机扩展资源
Microsoft.AzureStackHCI/VirtualMachines/Extensions/Delete 删除虚拟机扩展资源
Microsoft.AzureStackHCI/VirtualMachines/HybridIdentityMetadata/Read 获取/列出虚拟机混合标识元数据代理资源
Microsoft.AzureStackHCI/VirtualNetworks/Delete 删除虚拟网络资源
Microsoft.AzureStackHCI/VirtualNetworks/Write 创建/更新虚拟网络资源
Microsoft.AzureStackHCI/VirtualNetworks/Read 获取/列出虚拟网络资源
Microsoft.AzureStackHCI/VirtualNetworks/join/action 联接虚拟网络资源
DataAction 说明
Microsoft.AzureStackHCI/Clusters/WACloginAsAdmin/Action 以管理员身份通过 Windows Admin Center 管理 HCI 资源的 OS
Microsoft.AzureStackHCI/VirtualMachineInstances/WACloginAsAdmin/Action 以管理员身份通过 Windows Admin Center 管理 HCI 上已启用 ARC 的 VM 资源
Microsoft.AzureStackHCI/virtualMachines/WACloginAsAdmin/Action 以管理员身份通过 Windows Admin Center 管理 HCI 上已启用 ARC 的 VM 资源

Microsoft.ExtendedLocation

Azure 服务:自定义位置

操作 说明
Microsoft.ExtendedLocation/register/action 注册自定义位置资源提供程序的订阅,并启用自定义位置的创建。
Microsoft.ExtendedLocation/unregister/action 取消注册自定义位置资源提供程序的订阅,并禁用自定义位置的创建。
Microsoft.ExtendedLocation/customLocations/read 获取自定义位置资源
Microsoft.ExtendedLocation/customLocations/write 创建或更新自定义位置资源
Microsoft.ExtendedLocation/customLocations/deploy/action 部署自定义位置资源的权限
Microsoft.ExtendedLocation/customLocations/delete 删除自定义位置资源
Microsoft.ExtendedLocation/customLocations/findTargetResourceGroup/action 根据资源同步规则评估标签以获取资源同步的资源组
Microsoft.ExtendedLocation/customLocations/enabledresourcetypes/read 获取自定义位置资源的 EnabledResourceTypes
Microsoft.ExtendedLocation/customLocations/resourceSyncRules/read 获取资源同步规则资源
Microsoft.ExtendedLocation/customLocations/resourceSyncRules/write 创建或更新资源同步规则资源
Microsoft.ExtendedLocation/customLocations/resourceSyncRules/delete 删除资源同步规则资源
Microsoft.ExtendedLocation/locations/operationresults/read 获取自定义位置操作的结果
Microsoft.ExtendedLocation/locations/operationsstatus/read 获取自定义位置操作的结果
Microsoft.ExtendedLocation/operations/read 获取自定义位置的可用操作列表

Microsoft.HybridCompute

Azure 服务:Azure Arc

操作 说明
Microsoft.HybridCompute/register/action 注册 Microsoft.HybridCompute 资源提供程序的订阅
Microsoft.HybridCompute/unregister/action 取消注册 Microsoft.HybridCompute 资源提供程序的订阅
Microsoft.HybridCompute/batch/action 批量删除 Azure Arc 计算机
Microsoft.HybridCompute/validateLicense/action 验证提供的许可证数据,并返回在 PUT 到 Microsoft.HybridCompute/licenses 上创建的内容
Microsoft.HybridCompute/licenses/read 读取任何 Azure Arc 许可证
Microsoft.HybridCompute/licenses/write 安装或更新 Azure Arc 许可证
Microsoft.HybridCompute/licenses/delete 删除 Azure Arc 许可证
Microsoft.HybridCompute/locations/notifyNetworkSecurityPerimeterUpdatesAvailable/action 更新网络安全外围配置文件
Microsoft.HybridCompute/locations/notifyExtension/action 通知 Microsoft.HybridCompute 有关扩展更新的信息
Microsoft.HybridCompute/locations/operationresults/read 读取 Microsoft.HybridCompute 资源提供程序的操作状态
Microsoft.HybridCompute/locations/operationstatus/read 读取 Microsoft.HybridCompute 资源提供程序的操作状态
Microsoft.HybridCompute/locations/privateLinkScopes/read 读取任何 Azure Arc privateLinkScopes 的完整详细信息
Microsoft.HybridCompute/locations/updateCenterOperationResults/read 在计算机上读取更新中心操作的状态
Microsoft.HybridCompute/machines/read 读取任何 Azure Arc 计算机
Microsoft.HybridCompute/machines/write 写入 Azure Arc 计算机
Microsoft.HybridCompute/machines/delete 删除 Azure Arc 计算机
Microsoft.HybridCompute/machines/UpgradeExtensions/action 升级 Azure Arc 计算机上的扩展
Microsoft.HybridCompute/machines/assessPatches/action 评估任何 Azure Arc 计算机以获取缺失的软件补丁
Microsoft.HybridCompute/machines/installPatches/action 在任何 Azure Arc 计算机上安装补丁
Microsoft.HybridCompute/machines/extensions/read 读取任何 Azure Arc 扩展
Microsoft.HybridCompute/machines/extensions/write 安装或更新 Azure Arc 扩展
Microsoft.HybridCompute/machines/extensions/delete 删除 Azure Arc 扩展
Microsoft.HybridCompute/machines/hybridIdentityMetadata/read 读取任何 Azure Arc 计算机的混合标识元数据
Microsoft.HybridCompute/machines/licenseProfiles/read 读取任何 Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/licenseProfiles/write 安装或更新 Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/licenseProfiles/delete 删除 Azure Arc licenseProfiles
Microsoft.HybridCompute/machines/patchAssessmentResults/read 读取任何 Azure Arc patchAssessmentResults
Microsoft.HybridCompute/machines/patchAssessmentResults/softwarePatches/read 读取任何 Azure Arc patchAssessmentResults/softwarePatches
Microsoft.HybridCompute/machines/patchInstallationResults/read 读取任何 Azure Arc patchInstallationResults
Microsoft.HybridCompute/machines/patchInstallationResults/softwarePatches/read 读取任何 Azure Arc patchInstallationResults/softwarePatches
Microsoft.HybridCompute/machines/runcommands/read 读取任何 Azure Arc runcommand
Microsoft.HybridCompute/machines/runcommands/write 安装或更新 Azure Arc runcommand
Microsoft.HybridCompute/machines/runcommands/delete 删除任何 Azure Arc runcommand
Microsoft.HybridCompute/networkConfigurations/read 读取任何 Azure Arc networkConfigurations
Microsoft.HybridCompute/networkConfigurations/write 写入任何 Azure Arc networkConfigurations
Microsoft.HybridCompute/operations/read 读取适用于服务器的 Azure Arc 的所有操作
Microsoft.HybridCompute/osType/agentVersions/read 读取所有可用的 Azure Connected Machine Agent 版本
Microsoft.HybridCompute/osType/agentVersions/latest/read 读取最新的 Azure Connected Machine Agent 版本
Microsoft.HybridCompute/privateLinkScopes/read 读取任何 Azure Arc privateLinkScopes
Microsoft.HybridCompute/privateLinkScopes/write 写入 Azure Arc privateLinkScopes
Microsoft.HybridCompute/privateLinkScopes/delete 删除 Azure Arc privateLinkScopes
Microsoft.HybridCompute/privateLinkScopes/networkSecurityPerimeterAssociationProxies/read 读取任何 Azure Arc networkSecurityPerimeterAssociationProxies
Microsoft.HybridCompute/privateLinkScopes/networkSecurityPerimeterAssociationProxies/write 写入 Azure Arc networkSecurityPerimeterAssociationProxies
Microsoft.HybridCompute/privateLinkScopes/networkSecurityPerimeterAssociationProxies/delete 删除 Azure Arc networkSecurityPerimeterAssociationProxies
Microsoft.HybridCompute/privateLinkScopes/networkSecurityPerimeterConfigurations/read 读取任何 Azure Arc networkSecurityPerimeterConfigurations
Microsoft.HybridCompute/privateLinkScopes/networkSecurityPerimeterConfigurations/reconcile/action 强制 networkSecurityPerimeterConfigurations 资源刷新
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnectionProxies/read 读取任何 Azure Arc privateEndpointConnectionProxies
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnectionProxies/write 写入 Azure Arc privateEndpointConnectionProxies
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnectionProxies/delete 删除 Azure Arc privateEndpointConnectionProxies
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnectionProxies/validate/action 验证 Azure Arc privateEndpointConnectionProxies
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnectionProxies/updatePrivateEndpointProperties/action 使用更新的专用终结点详细信息更新 Azure Arc privateEndpointConnectionProxies
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnections/read 读取任何 Azure Arc privateEndpointConnections
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnections/write 写入 Azure Arc privateEndpointConnections
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnections/delete 删除 Azure Arc privateEndpointConnections
DataAction 说明
Microsoft.HybridCompute/locations/publishers/extensionTypes/versions/read 根据查询参数返回 extensionMetadata 的版本列表。
Microsoft.HybridCompute/machines/login/action 以常规用户身份登录 Azure Arc 计算机
Microsoft.HybridCompute/machines/loginAsAdmin/action 使用 Windows 管理员或 Linux 根用户权限登录 Azure Arc 计算机
Microsoft.HybridCompute/machines/WACloginAsAdmin/action 允许以管理员身份通过 Windows Admin Center 管理资源的 OS。

Microsoft.HybridConnectivity

Azure 服务:Microsoft.HybridConnectivity

操作 说明
Microsoft.HybridConnectivity/generateAwsTemplate/action 检索 AWS 云形成模板
Microsoft.HybridConnectivity/register/action 注册 Microsoft.HybridConnectivity 的订阅
Microsoft.HybridConnectivity/unregister/action 取消注册 Microsoft.HybridConnectivity 的订阅
Microsoft.HybridConnectivity/endpoints/read 目标资源的终结点列表。
Microsoft.HybridConnectivity/endpoints/read 获取资源的终结点。
Microsoft.HybridConnectivity/endpoints/write 创建或更新目标资源的终结点。
Microsoft.HybridConnectivity/endpoints/delete 删除对目标资源的终结点访问权限。
Microsoft.HybridConnectivity/endpoints/write 更新目标资源的终结点。
Microsoft.HybridConnectivity/endpoints/listCredentials/action 获取资源的终结点访问凭据。
Microsoft.HybridConnectivity/endpoints/listIngressGatewayCredentials/action 获取入口网关终结点凭据
Microsoft.HybridConnectivity/endpoints/listManagedProxyDetails/action 提取托管代理详细信息
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/read 用于在终结点资源下的服务配置中枚举已注册服务的 API
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/read 获取有关资源服务的详细信息。
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/write 在 serviceConfiguration 中为终结点资源创建或更新服务。
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/delete 将服务详细信息删除到目标资源。
Microsoft.HybridConnectivity/endpoints/serviceConfigurations/write 更新目标资源服务配置中的服务详细信息。
Microsoft.HybridConnectivity/Locations/OperationStatuses/read 读取 OperationStatuses
Microsoft.HybridConnectivity/Locations/OperationStatuses/write 写入 OperationStatuses
Microsoft.HybridConnectivity/Operations/read 读取操作
Microsoft.HybridConnectivity/publicCloudConnectors/read 获取订阅中的公有云连接器。
Microsoft.HybridConnectivity/publicCloudConnectors/read 获取资源组中的 publicCloudConnector。
Microsoft.HybridConnectivity/publicCloudConnectors/read 获取公有云连接器。
Microsoft.HybridConnectivity/publicCloudConnectors/write 创建公有云连接器资源。
Microsoft.HybridConnectivity/publicCloudConnectors/delete 删除公有云连接器资源。
Microsoft.HybridConnectivity/publicCloudConnectors/write 更新公有云连接器资源。
Microsoft.HybridConnectivity/solutionConfigurations/read 检索解决方案配置资源列表。
Microsoft.HybridConnectivity/solutionConfigurations/read 检索由解决方案名称标识的解决方案配置。
Microsoft.HybridConnectivity/solutionConfigurations/write 使用提供的解决方案名称创建解决方案配置
Microsoft.HybridConnectivity/solutionConfigurations/delete 使用提供的解决方案名称删除解决方案配置。
Microsoft.HybridConnectivity/solutionConfigurations/write 更新解决方案名称的解决方案配置。
Microsoft.HybridConnectivity/solutionConfigurations/inventory/read 检索清单 ID 标识的清单。
Microsoft.HybridConnectivity/solutionConfigurations/inventory/read 按解决方案名称检索清单列表。
Microsoft.HybridConnectivity/solutionTypes/read 检索可用解决方案类型的列表。
Microsoft.HybridConnectivity/solutionTypes/read 按提供的解决方案类型检索解决方案类型。

Microsoft.HybridContainerService

Azure 服务:Microsoft.HybridContainerService

操作 说明
Microsoft.HybridContainerService/register/action 注册 Microsoft.HybridContainerService 的订阅
Microsoft.HybridContainerService/unregister/action 取消注册 Microsoft.HybridContainerService 的订阅
Microsoft.HybridContainerService/kubernetesVersions/read 获取基础自定义位置中受支持的 kubernetes 版本
Microsoft.HybridContainerService/kubernetesVersions/write 放置 Kubernetes 版本资源类型
Microsoft.HybridContainerService/kubernetesVersions/delete 删除 kubernetes 版本资源类型
Microsoft.HybridContainerService/kubernetesVersions/read 列出基础自定义位置中受支持的 kubernetes 版本
Microsoft.HybridContainerService/Locations/operationStatuses/read 读取 OperationStatuses
Microsoft.HybridContainerService/Locations/operationStatuses/write 写入 operationStatuses
Microsoft.HybridContainerService/Operations/read 读取操作
Microsoft.HybridContainerService/provisionedClusterInstances/read 获取混合 AKS 预配的群集实例
Microsoft.HybridContainerService/provisionedClusterInstances/write 创建混合 AKS 预配的群集实例
Microsoft.HybridContainerService/provisionedClusterInstances/delete 删除混合 AKS 预配的群集实例
Microsoft.HybridContainerService/provisionedClusterInstances/read 获取与连接的群集关联的混合 AKS 预配群集实例
Microsoft.HybridContainerService/provisionedClusterInstances/listUserKubeconfig/action 列出仅在直接模式下使用的预配群集实例的 AAD 用户凭据。
Microsoft.HybridContainerService/provisionedClusterInstances/listAdminKubeconfig/action 列出仅在直接模式下使用的预配群集实例的管理员凭据。
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/read 在混合 AKS 预配的群集实例中获取代理池
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/write 在混合 AKS 预配的群集实例中创建代理池
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/delete 在混合 AKS 预配的群集实例中删除代理池
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/write 在混合 AKS 预配的群集实例中更新代理池
Microsoft.HybridContainerService/provisionedClusterInstances/agentPools/read 在混合 AKS 预配的群集实例中获取代理池
Microsoft.HybridContainerService/provisionedClusterInstances/hybridIdentityMetadata/read 获取混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusterInstances/hybridIdentityMetadata/write 创建有助于托管标识预配的混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusterInstances/hybridIdentityMetadata/delete 删除混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusterInstances/hybridIdentityMetadata/read 列出预配群集实例中的混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusterInstances/upgradeProfiles/read 读取 upgradeProfiles
Microsoft.HybridContainerService/provisionedClusters/read 获取混合 AKS 预配群集
Microsoft.HybridContainerService/provisionedClusters/write 创建混合 AKS 预配群集
Microsoft.HybridContainerService/provisionedClusters/delete 删除混合 AKS 预配的群集
Microsoft.HybridContainerService/provisionedClusters/write 更新混合 AKS 预配的群集
Microsoft.HybridContainerService/provisionedClusters/read 获取资源组中的混合 AKS 预配群集
Microsoft.HybridContainerService/provisionedClusters/read 获取订阅中的混合 AKS 预配群集
Microsoft.HybridContainerService/provisionedClusters/upgradeNodeImageVersionForEntireCluster/action 升级群集的节点映像版本会将最新的 OS 和运行时更新应用到节点。
Microsoft.HybridContainerService/provisionedClusters/listClusterUserCredential/action 列出仅在直接模式下使用的预配群集的 AAD 用户凭据。
Microsoft.HybridContainerService/provisionedClusters/listClusterAdminCredential/action 列出仅在直接模式下使用的预配群集的管理员凭据。
Microsoft.HybridContainerService/provisionedClusters/agentPools/read 在混合 AKS 预配的群集中获取代理池
Microsoft.HybridContainerService/provisionedClusters/agentPools/write 在混合 AKS 预配的群集中创建代理池
Microsoft.HybridContainerService/provisionedClusters/agentPools/delete 在混合 AKS 预配的群集中删除代理池
Microsoft.HybridContainerService/provisionedClusters/agentPools/write 在混合 AKS 预配的群集中更新代理池
Microsoft.HybridContainerService/provisionedClusters/agentPools/read 在混合 AKS 预配的群集中获取代理池
Microsoft.HybridContainerService/provisionedClusters/hybridIdentityMetadata/read 获取混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusters/hybridIdentityMetadata/write 创建有助于托管标识预配的混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusters/hybridIdentityMetadata/delete 删除混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusters/hybridIdentityMetadata/read 列出群集中的混合标识元数据代理资源。
Microsoft.HybridContainerService/provisionedClusters/upgradeProfiles/read 读取 upgradeProfiles
Microsoft.HybridContainerService/skus/read 从基础自定义位置中获取受支持的 VM SKU
Microsoft.HybridContainerService/skus/write 放置 VM SKU 资源类型
Microsoft.HybridContainerService/skus/delete 删除 Vm Sku 资源类型
Microsoft.HybridContainerService/skus/read 列出基础自定义位置中受支持的 VM SKU
Microsoft.HybridContainerService/storageSpaces/read 获取混合 AKS 存储空间对象
Microsoft.HybridContainerService/storageSpaces/write 放置混合 AKS 存储对象
Microsoft.HybridContainerService/storageSpaces/delete 删除混合 AKS 存储对象
Microsoft.HybridContainerService/storageSpaces/write 修补混合 AKS 存储对象
Microsoft.HybridContainerService/storageSpaces/read 按资源组列出混合 AKS 存储对象
Microsoft.HybridContainerService/storageSpaces/read 按订阅列出混合 AKS 存储对象
Microsoft.HybridContainerService/virtualNetworks/read 获取混合 AKS 虚拟网络
Microsoft.HybridContainerService/virtualNetworks/write 放置混合 AKS 虚拟网络
Microsoft.HybridContainerService/virtualNetworks/delete 删除混合 AKS 虚拟网络
Microsoft.HybridContainerService/virtualNetworks/write 修补混合 AKS 虚拟网络
Microsoft.HybridContainerService/virtualNetworks/read 按资源组列出混合 AKS 虚拟网络
Microsoft.HybridContainerService/virtualNetworks/read 按订阅列出混合 AKS 虚拟网络

Microsoft.Kubernetes

Azure 服务:启用了 Azure Arc 的 Kubernetes

操作 说明
Microsoft.Kubernetes/register/action 向 Microsoft.Kubernetes 资源提供程序注册订阅
Microsoft.Kubernetes/unregister/action 从 Microsoft.Kubernetes 资源提供程序中注销订阅
Microsoft.Kubernetes/connectedClusters/Read 读取 connectedClusters
Microsoft.Kubernetes/connectedClusters/Write 写入 connectedClusters
Microsoft.Kubernetes/connectedClusters/Delete 删除 connectedClusters
Microsoft.Kubernetes/connectedClusters/listClusterUserCredentials/action 列出 clusterUser 凭据(预览版)
Microsoft.Kubernetes/connectedClusters/listClusterUserCredential/action 列出 clusterUser 凭据
Microsoft.Kubernetes/locations/operationstatuses/read 读取操作状态
Microsoft.Kubernetes/locations/operationstatuses/write 写入操作状态
Microsoft.Kubernetes/operations/read 列出 Microsoft.Kubernetes 资源提供程序中可用的操作
Microsoft.Kubernetes/RegisteredSubscriptions/read 读取注册订阅
DataAction 说明
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/initializerconfigurations/read 读取 initializerconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/initializerconfigurations/write 写入 initializerconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/initializerconfigurations/delete 删除 initializerconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/mutatingwebhookconfigurations/read 读取 mutatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/mutatingwebhookconfigurations/write 写入 mutatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/mutatingwebhookconfigurations/delete 删除 mutatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/validatingwebhookconfigurations/read 读取 validatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/validatingwebhookconfigurations/write 写入 validatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/admissionregistration.k8s.io/validatingwebhookconfigurations/delete 删除 validatingwebhookconfigurations
Microsoft.Kubernetes/connectedClusters/api/read 读取 API
Microsoft.Kubernetes/connectedClusters/api/v1/read 读取 API/v1
Microsoft.Kubernetes/connectedClusters/apiextensions.k8s.io/customresourcedefinitions/read 读取 customresourcedefinitions
Microsoft.Kubernetes/connectedClusters/apiextensions.k8s.io/customresourcedefinitions/write 写入 customresourcedefinitions
Microsoft.Kubernetes/connectedClusters/apiextensions.k8s.io/customresourcedefinitions/delete 删除 customresourcedefinitions
Microsoft.Kubernetes/connectedClusters/apiregistration.k8s.io/apiservices/read 读取 apiservices
Microsoft.Kubernetes/connectedClusters/apiregistration.k8s.io/apiservices/write 写入 apiservices
Microsoft.Kubernetes/connectedClusters/apiregistration.k8s.io/apiservices/delete 删除 apiservices
Microsoft.Kubernetes/connectedClusters/apis/read 读取 API
Microsoft.Kubernetes/connectedClusters/apis/admissionregistration.k8s.io/read 读取 admissionregistration.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/admissionregistration.k8s.io/v1/read 读取 admissionregistration.k8s.io/v1
Microsoft.Kubernetes/connectedClusters/apis/admissionregistration.k8s.io/v1beta1/read 读取 admissionregistration.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/apiextensions.k8s.io/read 读取 apiextensions.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/apiextensions.k8s.io/v1/rea 读取 apiextensions.k8s.io/v1
Microsoft.Kubernetes/connectedClusters/apis/apiextensions.k8s.io/v1beta1/read 读取 apiextensions.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/apiregistration.k8s.io/read 读取 apiregistration.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/apiregistration.k8s.io/v1/read 读取 apiregistration.k8s.io/v1
Microsoft.Kubernetes/connectedClusters/apis/apiregistration.k8s.io/v1beta1/read 读取 apiregistration.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/apps/read 读取 apps
Microsoft.Kubernetes/connectedClusters/apis/apps/v1beta1/read 读取 apps/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/apps/v1beta2/read 读取 v1beta2
Microsoft.Kubernetes/connectedClusters/apis/authentication.k8s.io/read 读取 authentication.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/authentication.k8s.io/v1/read 读取 authentication.k8s.io/v1
Microsoft.Kubernetes/connectedClusters/apis/authentication.k8s.io/v1beta1/read 读取 authentication.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/authorization.k8s.io/read 读取 authorization.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/authorization.k8s.io/v1/read 读取 authorization.k8s.io/v1
Microsoft.Kubernetes/connectedClusters/apis/authorization.k8s.io/v1beta1/read 读取 authorization.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/autoscaling/read 读取 autoscaling
Microsoft.Kubernetes/connectedClusters/apis/autoscaling/v1/read 读取 autoscaling/v1
Microsoft.Kubernetes/connectedClusters/apis/autoscaling/v2beta1/read 读取 autoscaling/v2beta1
Microsoft.Kubernetes/connectedClusters/apis/autoscaling/v2beta2/read 读取 autoscaling/v2beta2
Microsoft.Kubernetes/connectedClusters/apis/batch/read 读取 batch
Microsoft.Kubernetes/connectedClusters/apis/batch/v1/read 读取batch/v1
Microsoft.Kubernetes/connectedClusters/apis/batch/v1beta1/read 读取 batch/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/certificates.k8s.io/read 读取 certificates.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/certificates.k8s.io/v1beta1/read 读取 certificates.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/coordination.k8s.io/read 读取 coordination.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/coordination.k8s.io/v1/read 读取 coordination/v1
Microsoft.Kubernetes/connectedClusters/apis/coordination.k8s.io/v1beta1/read 读取 coordination.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/events.k8s.io/read 读取 events.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/events.k8s.io/v1beta1/read 读取 events.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/extensions/read 读取 extensions
Microsoft.Kubernetes/connectedClusters/apis/extensions/v1beta1/read 读取 extensions/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/metrics.k8s.io/read 读取 metrics.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/metrics.k8s.io/v1beta1/read 读取 metrics.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/networking.k8s.io/read 读取 networking.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/networking.k8s.io/v1/read 读取 networking/v1
Microsoft.Kubernetes/connectedClusters/apis/networking.k8s.io/v1beta1/read 读取 networking.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/node.k8s.io/read 读取 node.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/node.k8s.io/v1beta1/read 读取 node.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/policy/read 读取 policy
Microsoft.Kubernetes/connectedClusters/apis/policy/v1beta1/read 读取 policy/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/rbac.authorization.k8s.io/read 读取 rbac.authorization.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/rbac.authorization.k8s.io/v1/read 读取 rbac.authorization/v1
Microsoft.Kubernetes/connectedClusters/apis/rbac.authorization.k8s.io/v1beta1/read 读取 rbac.authorization.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/scheduling.k8s.io/read 读取 scheduling.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/scheduling.k8s.io/v1/read 读取 scheduling/v1
Microsoft.Kubernetes/connectedClusters/apis/scheduling.k8s.io/v1beta1/read 读取 scheduling.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apis/storage.k8s.io/read 读取 storage.k8s.io
Microsoft.Kubernetes/connectedClusters/apis/storage.k8s.io/v1/read 读取 storage/v1
Microsoft.Kubernetes/connectedClusters/apis/storage.k8s.io/v1beta1/read 读取 storage.k8s.io/v1beta1
Microsoft.Kubernetes/connectedClusters/apps/controllerrevisions/read 读取 controllerrevisions
Microsoft.Kubernetes/connectedClusters/apps/controllerrevisions/write 写入 controllerrevisions
Microsoft.Kubernetes/connectedClusters/apps/controllerrevisions/delete 删除 controllerrevisions
Microsoft.Kubernetes/connectedClusters/apps/daemonsets/read 读取 daemonsets
Microsoft.Kubernetes/connectedClusters/apps/daemonsets/write 写入 daemonsets
Microsoft.Kubernetes/connectedClusters/apps/daemonsets/delete 删除 daemonsets
Microsoft.Kubernetes/connectedClusters/apps/deployments/read 读取 deployments
Microsoft.Kubernetes/connectedClusters/apps/deployments/write 写入 deployments
Microsoft.Kubernetes/connectedClusters/apps/deployments/delete 删除 deployments
Microsoft.Kubernetes/connectedClusters/apps/replicasets/read 读取 replicasets
Microsoft.Kubernetes/connectedClusters/apps/replicasets/write 写入 replicasets
Microsoft.Kubernetes/connectedClusters/apps/replicasets/delete 删除 replicasets
Microsoft.Kubernetes/connectedClusters/apps/statefulsets/read 读取 statefulsets
Microsoft.Kubernetes/connectedClusters/apps/statefulsets/write 写入 statefulsets
Microsoft.Kubernetes/connectedClusters/apps/statefulsets/delete 删除 statefulsets
Microsoft.Kubernetes/connectedClusters/authentication.k8s.io/tokenreviews/write 写入 tokenreviews
Microsoft.Kubernetes/connectedClusters/authentication.k8s.io/userextras/impersonate/action 模拟 userextras
Microsoft.Kubernetes/connectedClusters/authorization.k8s.io/localsubjectaccessreviews/write 写入 localsubjectaccessreviews
Microsoft.Kubernetes/connectedClusters/authorization.k8s.io/selfsubjectaccessreviews/write 写入 selfsubjectaccessreviews
Microsoft.Kubernetes/connectedClusters/authorization.k8s.io/selfsubjectrulesreviews/write 写入 selfsubjectrulesreviews
Microsoft.Kubernetes/connectedClusters/authorization.k8s.io/subjectaccessreviews/write 写入 subjectaccessreviews
Microsoft.Kubernetes/connectedClusters/autoscaling/horizontalpodautoscalers/read 读取 horizontalpodautoscalers
Microsoft.Kubernetes/connectedClusters/autoscaling/horizontalpodautoscalers/write 写入 horizontalpodautoscalers
Microsoft.Kubernetes/connectedClusters/autoscaling/horizontalpodautoscalers/delete 删除 horizontalpodautoscalers
Microsoft.Kubernetes/connectedClusters/batch/cronjobs/read 读取 cronjobs
Microsoft.Kubernetes/connectedClusters/batch/cronjobs/write 写入 cronjobs
Microsoft.Kubernetes/connectedClusters/batch/cronjobs/delete 删除 cronjobs
Microsoft.Kubernetes/connectedClusters/batch/jobs/read 读取作业
Microsoft.Kubernetes/connectedClusters/batch/jobs/write 写入 jobs
Microsoft.Kubernetes/connectedClusters/batch/jobs/delete 删除 jobs
Microsoft.Kubernetes/connectedClusters/bindings/write 写入 bindings
Microsoft.Kubernetes/connectedClusters/certificates.k8s.io/certificatesigningrequests/read 读取 certificatesigningrequests
Microsoft.Kubernetes/connectedClusters/certificates.k8s.io/certificatesigningrequests/write 写入 certificatesigningrequests
Microsoft.Kubernetes/connectedClusters/certificates.k8s.io/certificatesigningrequests/delete 删除 certificatesigningrequests
Microsoft.Kubernetes/connectedClusters/componentstatuses/read 读取 componentstatuses
Microsoft.Kubernetes/connectedClusters/componentstatuses/write 写入 componentstatuses
Microsoft.Kubernetes/connectedClusters/componentstatuses/delete 删除 componentstatuses
Microsoft.Kubernetes/connectedClusters/configmaps/read 读取 configmaps
Microsoft.Kubernetes/connectedClusters/configmaps/write 写入 configmaps
Microsoft.Kubernetes/connectedClusters/configmaps/delete 删除 configmaps
Microsoft.Kubernetes/connectedClusters/coordination.k8s.io/leases/read 读取 leases
Microsoft.Kubernetes/connectedClusters/coordination.k8s.io/leases/write 写入 leases
Microsoft.Kubernetes/connectedClusters/coordination.k8s.io/leases/delete 删除 leases
Microsoft.Kubernetes/connectedClusters/discovery.k8s.io/endpointslices/read 读取 endpointslices
Microsoft.Kubernetes/connectedClusters/discovery.k8s.io/endpointslices/write 写入 endpointslices
Microsoft.Kubernetes/connectedClusters/discovery.k8s.io/endpointslices/delete 删除 endpointslices
Microsoft.Kubernetes/connectedClusters/endpoints/read 读取 endpoints
Microsoft.Kubernetes/connectedClusters/endpoints/write 写入 endpoints
Microsoft.Kubernetes/connectedClusters/endpoints/delete 删除 endpoints
Microsoft.Kubernetes/connectedClusters/events/read 读取 events
Microsoft.Kubernetes/connectedClusters/events/write 写入 events
Microsoft.Kubernetes/connectedClusters/events/delete 删除 events
Microsoft.Kubernetes/connectedClusters/events.k8s.io/events/read 读取 events
Microsoft.Kubernetes/connectedClusters/events.k8s.io/events/write 写入 events
Microsoft.Kubernetes/connectedClusters/events.k8s.io/events/delete 删除 events
Microsoft.Kubernetes/connectedClusters/extensions/daemonsets/read 读取 daemonsets
Microsoft.Kubernetes/connectedClusters/extensions/daemonsets/write 写入 daemonsets
Microsoft.Kubernetes/connectedClusters/extensions/daemonsets/delete 删除 daemonsets
Microsoft.Kubernetes/connectedClusters/extensions/deployments/read 读取 deployments
Microsoft.Kubernetes/connectedClusters/extensions/deployments/write 写入 deployments
Microsoft.Kubernetes/connectedClusters/extensions/deployments/delete 删除 deployments
Microsoft.Kubernetes/connectedClusters/extensions/ingresses/read 读取 ingresses
Microsoft.Kubernetes/connectedClusters/extensions/ingresses/write 写入 ingresses
Microsoft.Kubernetes/connectedClusters/extensions/ingresses/delete 删除 ingresses
Microsoft.Kubernetes/connectedClusters/extensions/networkpolicies/read 读取 networkpolicies
Microsoft.Kubernetes/connectedClusters/extensions/networkpolicies/write 写入 networkpolicies
Microsoft.Kubernetes/connectedClusters/extensions/networkpolicies/delete 删除 networkpolicies
Microsoft.Kubernetes/connectedClusters/extensions/podsecuritypolicies/read 读取 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/extensions/podsecuritypolicies/write 写入 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/extensions/podsecuritypolicies/delete 删除 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/extensions/replicasets/read 读取 replicasets
Microsoft.Kubernetes/connectedClusters/extensions/replicasets/write 写入 replicasets
Microsoft.Kubernetes/connectedClusters/extensions/replicasets/delete 删除 replicasets
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/flowschemas/read 读取 flowschemas
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/flowschemas/write 写入 flowschemas
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/flowschemas/delete 删除 flowschemas
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/prioritylevelconfigurations/read 读取 prioritylevelconfigurations
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/prioritylevelconfigurations/write 写入 prioritylevelconfigurations
Microsoft.Kubernetes/connectedClusters/flowcontrol.apiserver.k8s.io/prioritylevelconfigurations/delete 删除 prioritylevelconfigurations
Microsoft.Kubernetes/connectedClusters/groups/impersonate/action 模拟 groups
Microsoft.Kubernetes/connectedClusters/healthz/read 读取 healthz
Microsoft.Kubernetes/connectedClusters/healthz/autoregister-completion/read 读取 autoregister-completion
Microsoft.Kubernetes/connectedClusters/healthz/etcd/read 读取 etcd
Microsoft.Kubernetes/connectedClusters/healthz/log/read 读取 log
Microsoft.Kubernetes/connectedClusters/healthz/ping/read 读取 ping
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/apiservice-openapi-controller/read 读取 apiservice-openapi-controller
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/apiservice-registration-controller/read 读取 apiservice-registration-controller
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/apiservice-status-available-controller/read 读取 apiservice-status-available-controller
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/bootstrap-controller/read 读取 bootstrap-controller
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/ca-registration/read 读取 ca-registration
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/crd-informer-synced/read 读取 crd-informer-synced
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/generic-apiserver-start-informers/read 读取 generic-apiserver-start-informers
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/kube-apiserver-autoregistration/read 读取 kube-apiserver-autoregistration
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/rbac/bootstrap-roles/read 读取 bootstrap-roles
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/scheduling/bootstrap-system-priority-classes/read 读取 bootstrap-system-priority-classes
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/start-apiextensions-controllers/read 读取 start-apiextensions-controllers
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/start-apiextensions-informers/read 读取 start-apiextensions-informers
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/start-kube-aggregator-informers/read 读取 start-kube-aggregator-informers
Microsoft.Kubernetes/connectedClusters/healthz/poststarthook/start-kube-apiserver-admission-initializer/read 读取 start-kube-apiserver-admission-initializer
Microsoft.Kubernetes/connectedClusters/limitranges/read 读取 limitranges
Microsoft.Kubernetes/connectedClusters/limitranges/write 写入 limitranges
Microsoft.Kubernetes/connectedClusters/limitranges/delete 删除 limitranges
Microsoft.Kubernetes/connectedClusters/livez/read 读取 livez
Microsoft.Kubernetes/connectedClusters/livez/autoregister-completion/read 读取 autoregister-completion
Microsoft.Kubernetes/connectedClusters/livez/etcd/read 读取 etcd
Microsoft.Kubernetes/connectedClusters/livez/log/read 读取 log
Microsoft.Kubernetes/connectedClusters/livez/ping/read 读取 ping
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/apiservice-openapi-controller/read 读取 apiservice-openapi-controller
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/apiservice-registration-controller/read 读取 apiservice-registration-controller
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/apiservice-status-available-controller/read 读取 apiservice-status-available-controller
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/bootstrap-controller/read 读取 bootstrap-controller
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/ca-registration/read 读取 ca-registration
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/crd-informer-synced/read 读取 crd-informer-synced
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/generic-apiserver-start-informers/read 读取 generic-apiserver-start-informers
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/kube-apiserver-autoregistration/read 读取 kube-apiserver-autoregistration
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/rbac/bootstrap-roles/read 读取 bootstrap-roles
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/scheduling/bootstrap-system-priority-classes/read 读取 bootstrap-system-priority-classes
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/start-apiextensions-controllers/read 读取 start-apiextensions-controllers
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/start-apiextensions-informers/read 读取 start-apiextensions-informers
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/start-kube-aggregator-informers/read 读取 start-kube-aggregator-informers
Microsoft.Kubernetes/connectedClusters/livez/poststarthook/start-kube-apiserver-admission-initializer/read 读取 start-kube-apiserver-admission-initializer
Microsoft.Kubernetes/connectedClusters/logs/read 读取 logs
Microsoft.Kubernetes/connectedClusters/metrics/read 读取 metrics
Microsoft.Kubernetes/connectedClusters/metrics.k8s.io/nodes/read 读取 nodes
Microsoft.Kubernetes/connectedClusters/metrics.k8s.io/pods/read 读取 Pod
Microsoft.Kubernetes/connectedClusters/namespaces/read 读取 namespaces
Microsoft.Kubernetes/connectedClusters/namespaces/write 写入 namespaces
Microsoft.Kubernetes/connectedClusters/namespaces/delete 删除 namespaces
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingressclasses/read 读取 ingressclasses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingressclasses/write 写入 ingressclasses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingressclasses/delete 删除 ingressclasses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingresses/read 读取 ingresses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingresses/write 写入 ingresses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/ingresses/delete 删除 ingresses
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/networkpolicies/read 读取 networkpolicies
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/networkpolicies/write 写入 networkpolicies
Microsoft.Kubernetes/connectedClusters/networking.k8s.io/networkpolicies/delete 删除 networkpolicies
Microsoft.Kubernetes/connectedClusters/node.k8s.io/runtimeclasses/read 读取 runtimeclasses
Microsoft.Kubernetes/connectedClusters/node.k8s.io/runtimeclasses/write 写入 runtimeclasses
Microsoft.Kubernetes/connectedClusters/node.k8s.io/runtimeclasses/delete 删除 runtimeclasses
Microsoft.Kubernetes/connectedClusters/nodes/read 读取 nodes
Microsoft.Kubernetes/connectedClusters/nodes/write 写入 nodes
Microsoft.Kubernetes/connectedClusters/nodes/delete 删除 nodes
Microsoft.Kubernetes/connectedClusters/openapi/v2/read 读取 v2
Microsoft.Kubernetes/connectedClusters/persistentvolumeclaims/read 读取 persistentvolumeclaims
Microsoft.Kubernetes/connectedClusters/persistentvolumeclaims/write 写入 persistentvolumeclaims
Microsoft.Kubernetes/connectedClusters/persistentvolumeclaims/delete 删除 persistentvolumeclaims
Microsoft.Kubernetes/connectedClusters/persistentvolumes/read 读取 persistentvolumes
Microsoft.Kubernetes/connectedClusters/persistentvolumes/write 写入 persistentvolumes
Microsoft.Kubernetes/connectedClusters/persistentvolumes/delete 删除 persistentvolumes
Microsoft.Kubernetes/connectedClusters/pods/read 读取 Pod
Microsoft.Kubernetes/connectedClusters/pods/write 写入 Pod
Microsoft.Kubernetes/connectedClusters/pods/delete 删除 Pod
Microsoft.Kubernetes/connectedClusters/pods/exec/action 执行到 Pod
Microsoft.Kubernetes/connectedClusters/podtemplates/read 读取 podtemplates
Microsoft.Kubernetes/connectedClusters/podtemplates/write 写入 podtemplates
Microsoft.Kubernetes/connectedClusters/podtemplates/delete 删除 podtemplates
Microsoft.Kubernetes/connectedClusters/policy/poddisruptionbudgets/read 读取 poddisruptionbudgets
Microsoft.Kubernetes/connectedClusters/policy/poddisruptionbudgets/write 写入 poddisruptionbudgets
Microsoft.Kubernetes/connectedClusters/policy/poddisruptionbudgets/delete 删除 poddisruptionbudgets
Microsoft.Kubernetes/connectedClusters/policy/podsecuritypolicies/read 读取 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/policy/podsecuritypolicies/write 写入 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/policy/podsecuritypolicies/delet 删除 podsecuritypolicies
Microsoft.Kubernetes/connectedClusters/policy/podsecuritypolicies/use/action 对 podsecuritypolicies 执行操作
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterrolebindings/read 读取 clusterrolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterrolebindings/write 写入 clusterrolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterrolebindings/delete 删除 clusterrolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterroles/read 读取 clusterroles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterroles/write 写入 clusterroles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterroles/delete 删除 clusterroles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterroles/bind/action 绑定 clusterroles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/clusterroles/escalate/action 上报
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/rolebindings/read 读取 rolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/rolebindings/write 写入 rolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/rolebindings/delete 删除 rolebindings
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/roles/read 读取 roles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/roles/write 写入 roles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/roles/delete 删除 roles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/roles/bind/action 绑定 roles
Microsoft.Kubernetes/connectedClusters/rbac.authorization.k8s.io/roles/escalate/action 上报 roles
Microsoft.Kubernetes/connectedClusters/readyz/read 读取 readyz
Microsoft.Kubernetes/connectedClusters/readyz/autoregister-completion/read 读取 autoregister-completion
Microsoft.Kubernetes/connectedClusters/readyz/etcd/read 读取 etcd
Microsoft.Kubernetes/connectedClusters/readyz/log/read 读取 log
Microsoft.Kubernetes/connectedClusters/readyz/ping/read 读取 ping
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/apiservice-openapi-controller/read 读取 apiservice-openapi-controller
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/apiservice-registration-controller/read 读取 apiservice-registration-controller
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/apiservice-status-available-controller/read 读取 apiservice-status-available-controller
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/bootstrap-controller/read 读取 bootstrap-controller
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/ca-registration/read 读取 ca-registration
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/crd-informer-synced/read 读取 crd-informer-synced
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/generic-apiserver-start-informers/read 读取 generic-apiserver-start-informers
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/kube-apiserver-autoregistration/read 读取 kube-apiserver-autoregistration
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/rbac/bootstrap-roles/read 读取 bootstrap-roles
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/scheduling/bootstrap-system-priority-classes/read 读取 bootstrap-system-priority-classes
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/start-apiextensions-controllers/read 读取 start-apiextensions-controllers
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/start-apiextensions-informers/read 读取 start-apiextensions-informers
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/start-kube-aggregator-informers/read 读取 start-kube-aggregator-informers
Microsoft.Kubernetes/connectedClusters/readyz/poststarthook/start-kube-apiserver-admission-initializer/read 读取 start-kube-apiserver-admission-initializer
Microsoft.Kubernetes/connectedClusters/readyz/shutdown/read 读取 shutdown
Microsoft.Kubernetes/connectedClusters/replicationcontrollers/read 读取 replicationcontrollers
Microsoft.Kubernetes/connectedClusters/replicationcontrollers/write 写入 replicationcontrollers
Microsoft.Kubernetes/connectedClusters/replicationcontrollers/delete 删除 replicationcontrollers
Microsoft.Kubernetes/connectedClusters/resetMetrics/read 读取 resetMetrics
Microsoft.Kubernetes/connectedClusters/resourcequotas/read 读取 resourcequotas
Microsoft.Kubernetes/connectedClusters/resourcequotas/write 写入 resourcequotas
Microsoft.Kubernetes/connectedClusters/resourcequotas/delete 删除 resourcequotas
Microsoft.Kubernetes/connectedClusters/scheduling.k8s.io/priorityclasses/read 读取 priorityclasses
Microsoft.Kubernetes/connectedClusters/scheduling.k8s.io/priorityclasses/write 写入 priorityclasses
Microsoft.Kubernetes/connectedClusters/scheduling.k8s.io/priorityclasses/delete 删除 priorityclasses
Microsoft.Kubernetes/connectedClusters/secrets/read 读取 secrets
Microsoft.Kubernetes/connectedClusters/secrets/write 写入 secrets
Microsoft.Kubernetes/connectedClusters/secrets/delete 删除 secrets
Microsoft.Kubernetes/connectedClusters/serviceaccounts/read 读取 serviceaccounts
Microsoft.Kubernetes/connectedClusters/serviceaccounts/write 写入 serviceaccounts
Microsoft.Kubernetes/connectedClusters/serviceaccounts/delete 删除 serviceaccounts
Microsoft.Kubernetes/connectedClusters/serviceaccounts/impersonate/action 模拟 serviceaccounts
Microsoft.Kubernetes/connectedClusters/services/read 读取 services
Microsoft.Kubernetes/connectedClusters/services/write 写入 services
Microsoft.Kubernetes/connectedClusters/services/delete 删除 services
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csidrivers/read 读取 csidrivers
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csidrivers/write 写入 csidrivers
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csidrivers/delete 删除 csidrivers
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csinodes/read 读取 csinodes
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csinodes/write 写入 csinodes
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csinodes/delete 删除 csinodes
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csistoragecapacities/read 读取 csistoragecapacities
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csistoragecapacities/write 写入 csistoragecapacities
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/csistoragecapacities/delete 删除 csistoragecapacities
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/storageclasses/read 读取 storageclasses
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/storageclasses/write 写入 storageclasses
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/storageclasses/delete 删除 storageclasses
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/volumeattachments/read 读取 volumeattachments
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/volumeattachments/write 写入 volumeattachments
Microsoft.Kubernetes/connectedClusters/storage.k8s.io/volumeattachments/delete 删除 volumeattachments
Microsoft.Kubernetes/connectedClusters/swagger-api/read 读取 swagger-api
Microsoft.Kubernetes/connectedClusters/swagger-ui/read 读取 swagger-ui
Microsoft.Kubernetes/connectedClusters/ui/read 读取 ui
Microsoft.Kubernetes/connectedClusters/users/impersonate/action 模拟用户
Microsoft.Kubernetes/connectedClusters/version/read 读取 version

Microsoft.KubernetesConfiguration

Azure 服务:启用了 Azure Arc 的 Kubernetes

操作 说明
Microsoft.KubernetesConfiguration/register/action 注册 Microsoft.KubernetesConfiguration 资源提供程序订阅。
Microsoft.KubernetesConfiguration/unregister/action 取消注册 Microsoft.KubernetesConfiguration 资源提供程序订阅。
Microsoft.KubernetesConfiguration/extensions/write 创建或更新扩展资源。
Microsoft.KubernetesConfiguration/extensions/read 获取扩展实例资源。
Microsoft.KubernetesConfiguration/extensions/delete 删除扩展实例资源。
Microsoft.KubernetesConfiguration/extensions/operations/read 获取异步操作状态。
Microsoft.KubernetesConfiguration/extensionTypes/read 获取扩展类型。
Microsoft.KubernetesConfiguration/fluxConfigurations/write 创建或更新 Flux 配置。
Microsoft.KubernetesConfiguration/fluxConfigurations/read 获取 Flux 配置。
Microsoft.KubernetesConfiguration/fluxConfigurations/delete 删除 Flux 配置。
Microsoft.KubernetesConfiguration/fluxConfigurations/operations/read 获取 Flux 配置的异步操作状态。
Microsoft.KubernetesConfiguration/namespaces/read 获取命名空间资源
Microsoft.KubernetesConfiguration/namespaces/listUserCredential/action 获取命名空间资源的父群集的用户凭据。
Microsoft.KubernetesConfiguration/operations/read 获取 Microsoft.KubernetesConfiguration 资源提供程序的可用操作。
Microsoft.KubernetesConfiguration/privateLinkScopes/write 创建或更新专用链接范围。
Microsoft.KubernetesConfiguration/privateLinkScopes/delete 删除专用链接范围。
Microsoft.KubernetesConfiguration/privateLinkScopes/read 获取专用链接范围
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/write 创建或更新专用终结点连接代理。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/delete 删除专用终结点连接代理
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/read 获取专用终结点连接代理。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/validate/action 验证专用终结点连接代理对象。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/updatePrivateEndpointProperties/action 更新专用终结点连接代理上的补丁。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnectionProxies/operations/read 获取专用终结点连接代理操作。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnections/write 创建或更新专用终结点连接。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnections/delete 删除专用终结点连接。
Microsoft.KubernetesConfiguration/privateLinkScopes/privateEndpointConnections/read 获取专用终结点连接。
Microsoft.KubernetesConfiguration/sourceControlConfigurations/write 创建或更新源控件配置。
Microsoft.KubernetesConfiguration/sourceControlConfigurations/read 获取源控制配置。
Microsoft.KubernetesConfiguration/sourceControlConfigurations/delete 删除源控制配置。

Microsoft.ResourceConnector

Azure 服务:Microsoft ResourceConnector

操作 说明
Microsoft.ResourceConnector/register/action 注册设备资源提供程序的订阅,并启用设备的创建。
Microsoft.ResourceConnector/unregister/action 取消注册设备资源提供程序的订阅,并禁用设备的创建。
Microsoft.ResourceConnector/appliances/read 获取设备资源
Microsoft.ResourceConnector/appliances/write 创建或更新设备资源
Microsoft.ResourceConnector/appliances/delete 删除设备资源
Microsoft.ResourceConnector/appliances/listClusterUserCredential/action 获取设备群集用户凭据
Microsoft.ResourceConnector/appliances/listKeys/action 获取设备群集客户用户密钥
Microsoft.ResourceConnector/appliances/upgradeGraphs/read 获取设备群集的升级图
Microsoft.ResourceConnector/locations/operationresults/read 获取设备操作的结果
Microsoft.ResourceConnector/locations/operationsstatus/read 获取设备操作的结果
Microsoft.ResourceConnector/operations/read 获取设备可用操作的列表
Microsoft.ResourceConnector/telemetryconfig/read 获取设备 CLI 使用的设备遥测配置

后续步骤