4/18/2023 0 Comments Vdi workspaceMicrosoft.DesktopVirtualization/hostpools/readĭesktop Virtualization Application Group Contributor.Microsoft.DesktopVirtualization/hostpools/*/read.The Desktop Virtualization Host Pool Reader role allows users to view everything in the host pool, but won't allow them to make any changes. Microsoft.DesktopVirtualization/hostpools/*.You will need Desktop Virtualization Application Group Contributor and Desktop Virtualization Workspace Contributor roles to create host pools using the portal, or you can use the Desktop Virtualization Contributor role. You'll also need the Virtual Machine Contributor role to create virtual machines. The Desktop Virtualization Host Pool Contributor role allows users to manage all aspects of host pools, including access to resources. Microsoft.DesktopVirtualization/applicationGroups/useApplications/actionĭesktop Virtualization Host Pool Contributor.The Desktop Virtualization User role allows users to use the applications in an application group. The Desktop Virtualization Reader role allows users to view everything in the deployment, but doesn't let them make any changes. Microsoft.Resources/subscriptions/resourceGroups/read.You'll also need the User Access Administrator role to publish application groups to users or user groups. However, it doesn't grant users access to compute resources. The Desktop Virtualization Contributor role allows users to manage all aspects of the deployment. For more information, see Understand Azure role definitions. The root scope indicates that the role is available for assignment in all scopes, for example management groups, subscriptions, or resource groups. The assignable scope for all built-in roles are set to the root scope ("/"). The built-in roles for Azure Virtual Desktop and the permissions for each one are detailed below. However, you can use the general Owner role for the service objects. These roles are named in compliance with Azure's standard roles and least-privilege methodology.Īzure Virtual Desktop doesn't have a specific Owner role. This separation lets you have more granular control over administrative tasks. However, Azure Virtual Desktop has additional roles that let you separate management roles for host pools, application groups, and workspaces. The standard built-in roles for Azure are Owner, Contributor, and Reader. To learn more about Azure RBAC, see What is Azure RBAC?. You assign roles to users and admins and these roles give permission to carry out certain tasks. There are a number of built-in roles for use with Azure Virtual Desktop which is a collection of permissions. Azure Virtual Desktop uses Azure role-based access control (RBAC) to control access to resources.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |