Roles integrados de Azure para ia y aprendizaje automático
En este artículo se enumeran los roles integrados de Azure en la categoría ia y aprendizaje automático.
Colaborador asociado del sensor de AgFood Platform
Proporciona acceso de contribución para administrar entidades relacionadas con sensores en AgFood Platform Service
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/* | |
NotDataActions | |
Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/sensors/delete | Elimina un recurso de sensores AgFoodPlatform existente restringido al ámbito del asociado del sensor del autor de la llamada. |
{
"assignableScopes": [
"/"
],
"description": "Provides contribute access to manage sensor related entities in AgFood Platform Service",
"id": "/providers/Microsoft.Authorization/roleDefinitions/6b77f0a0-0d89-41cc-acd1-579c22c17a67",
"name": "6b77f0a0-0d89-41cc-acd1-579c22c17a67",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/*"
],
"notDataActions": [
"Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/sensors/delete"
]
}
],
"roleName": "AgFood Platform Sensor Partner Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AgFood Platform Service Admin
Proporciona acceso de administrador al servicio AgFood Platform
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.AgFoodPlatform/* | Cree, actualice, lea y elimine los recursos de agFood Platform. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Provides admin access to AgFood Platform Service",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f8da80de-1ff9-4747-ad80-a19b7f6079e3",
"name": "f8da80de-1ff9-4747-ad80-a19b7f6079e3",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AgFoodPlatform/*"
],
"notDataActions": []
}
],
"roleName": "AgFood Platform Service Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador del servicio AgFood Platform
Proporciona acceso de contribución al servicio AgFood Platform
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.AgFoodPlatform/*/action | |
Microsoft.AgFoodPlatform/*/read | Lee los recursos de agFood Platform. |
Microsoft.AgFoodPlatform/*/write | Cree y actualice los recursos de agFood Platform. |
NotDataActions | |
Microsoft.AgFoodPlatform/farmBeats/farmers/write | Crea o actualiza a los agricultores agFoodPlatform. |
Microsoft.AgFoodPlatform/farmBeats/deletionJobs/*/write | |
Microsoft.AgFoodPlatform/farmBeats/parties/write | Crea o actualiza las partes agFoodPlatform. |
Microsoft.AgFoodPlatform/farmBeats/datasets/write | Crea o actualiza conjuntos de datos AgFoodPlatform. |
Microsoft.AgFoodPlatform/farmBeats/datasetRecords/write | Crea o actualiza los registros del conjunto de datos AgFoodPlatform. |
Microsoft.AgFoodPlatform/farmBeats/datasets/access/*/action |
{
"assignableScopes": [
"/"
],
"description": "Provides contribute access to AgFood Platform Service",
"id": "/providers/Microsoft.Authorization/roleDefinitions/8508508a-4469-4e45-963b-2518ee0bb728",
"name": "8508508a-4469-4e45-963b-2518ee0bb728",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AgFoodPlatform/*/action",
"Microsoft.AgFoodPlatform/*/read",
"Microsoft.AgFoodPlatform/*/write"
],
"notDataActions": [
"Microsoft.AgFoodPlatform/farmBeats/farmers/write",
"Microsoft.AgFoodPlatform/farmBeats/deletionJobs/*/write",
"Microsoft.AgFoodPlatform/farmBeats/parties/write",
"Microsoft.AgFoodPlatform/farmBeats/datasets/write",
"Microsoft.AgFoodPlatform/farmBeats/datasetRecords/write",
"Microsoft.AgFoodPlatform/farmBeats/datasets/access/*/action"
]
}
],
"roleName": "AgFood Platform Service Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
AgFood Platform Service Reader
Proporciona acceso de lectura al servicio AgFood Platform
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.AgFoodPlatform/*/list/action | |
Microsoft.AgFoodPlatform/*/read | Lee los recursos de agFood Platform. |
Microsoft.AgFoodPlatform/*/search/action | |
Microsoft.AgFoodPlatform/*/download/action | |
Microsoft.AgFoodPlatform/*/overlap/action | |
Microsoft.AgFoodPlatform/*/checkConsent/action | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Provides read access to AgFood Platform Service",
"id": "/providers/Microsoft.Authorization/roleDefinitions/7ec7ccdc-f61e-41fe-9aaf-980df0a44eba",
"name": "7ec7ccdc-f61e-41fe-9aaf-980df0a44eba",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.AgFoodPlatform/*/list/action",
"Microsoft.AgFoodPlatform/*/read",
"Microsoft.AgFoodPlatform/*/search/action",
"Microsoft.AgFoodPlatform/*/download/action",
"Microsoft.AgFoodPlatform/*/overlap/action",
"Microsoft.AgFoodPlatform/*/checkConsent/action"
],
"notDataActions": []
}
],
"roleName": "AgFood Platform Service Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Desarrollador de Azure AI
Puede realizar todas las acciones dentro de un recurso de Azure AI además de administrar el propio recurso.
Acciones | Descripción |
---|---|
Microsoft.MachineLearningServices/workspaces/*/read | |
Microsoft.MachineLearningServices/workspaces/*/action | |
Microsoft.MachineLearningServices/workspaces/*/delete | |
Microsoft.MachineLearningServices/workspaces/*/write | |
Microsoft.MachineLearningServices/locations/*/read | |
Microsoft.Authorization/*/read | Leer roles y asignaciones de roles |
Microsoft.Resources/deployments/* | Creación y administración de una implementación |
NotActions | |
Microsoft.MachineLearningServices/workspaces/delete | Elimina las áreas de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/write | Crea o actualiza las áreas de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/listKeys/action | Enumera los secretos un área de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/hubs/write | Crea o actualiza las áreas de trabajo del centro de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/hubs/delete | Elimina las áreas de trabajo del centro de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/featurestores/write | Crea o actualiza los almacenes de características de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/featurestores/delete | Elimina los almacenes de características de Machine Learning Services. |
DataActions | |
Microsoft.CognitiveServices/accounts/OpenAI/* | |
Microsoft.CognitiveServices/accounts/SpeechServices/* | |
Microsoft.CognitiveServices/accounts/ContentSafety/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can perform all actions within an Azure AI resource besides managing the resource itself.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/64702f94-c441-49e6-a78b-ef80e0188fee",
"name": "64702f94-c441-49e6-a78b-ef80e0188fee",
"permissions": [
{
"actions": [
"Microsoft.MachineLearningServices/workspaces/*/read",
"Microsoft.MachineLearningServices/workspaces/*/action",
"Microsoft.MachineLearningServices/workspaces/*/delete",
"Microsoft.MachineLearningServices/workspaces/*/write",
"Microsoft.MachineLearningServices/locations/*/read",
"Microsoft.Authorization/*/read",
"Microsoft.Resources/deployments/*"
],
"notActions": [
"Microsoft.MachineLearningServices/workspaces/delete",
"Microsoft.MachineLearningServices/workspaces/write",
"Microsoft.MachineLearningServices/workspaces/listKeys/action",
"Microsoft.MachineLearningServices/workspaces/hubs/write",
"Microsoft.MachineLearningServices/workspaces/hubs/delete",
"Microsoft.MachineLearningServices/workspaces/featurestores/write",
"Microsoft.MachineLearningServices/workspaces/featurestores/delete"
],
"dataActions": [
"Microsoft.CognitiveServices/accounts/OpenAI/*",
"Microsoft.CognitiveServices/accounts/SpeechServices/*",
"Microsoft.CognitiveServices/accounts/ContentSafety/*"
],
"notDataActions": []
}
],
"roleName": "Azure AI Developer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Aprobador de conexión de red empresarial de Azure AI
Puede aprobar conexiones de punto de conexión privado a recursos de dependencia comunes de Azure AI
Acciones | Descripción |
---|---|
Microsoft.ContainerRegistry/registries/privateEndpointConnectionsApproval/action | Aprueba automaticamente una conexión de punto de conexión privado. |
Microsoft.ContainerRegistry/registries/privateEndpointConnections/read | Obtiene las propiedades de conexión de punto de conexión privado o enumera todas las conexiones de punto de conexión privado para el registro de contenedor especificado. |
Microsoft.ContainerRegistry/registries/privateEndpointConnections/write | Aprueba o rechaza la conexión del punto de conexión privado. |
Microsoft.Cache/redis/read | Visualiza la configuración de Redis Cache en el portal de administración |
Microsoft.Cache/redis/privateEndpointConnections/read | Lee una conexión de punto de conexión privado. |
Microsoft.Cache/redis/privateEndpointConnections/write | Escribe una conexión de punto de conexión privado |
Microsoft.Cache/redis/privateLinkResources/read | Lea el 'groupId' de los subrecursos de la red a los que se puede conectar un enlace privado |
Microsoft.Cache/redis/privateEndpointConnectionsApproval/action | Aprueba las conexiones de punto de conexión privado. |
Microsoft.Cache/redisEnterprise/read | Ve la configuración de la caché de Redis Enterprise en el portal de administración. |
Microsoft.Cache/redisEnterprise/privateEndpointConnections/read | Lee una conexión de punto de conexión privado. |
Microsoft.Cache/redisEnterprise/privateEndpointConnections/write | Escribe una conexión de punto de conexión privado |
Microsoft.Cache/redisEnterprise/privateLinkResources/read | Lea el 'groupId' de los subrecursos de la red a los que se puede conectar un enlace privado |
Microsoft.Cache/redisEnterprise/privateEndpointConnectionsApproval/action | Aprueba las conexiones de punto de conexión privado. |
Microsoft.CognitiveServices/accounts/read | Lee las cuentas de la API. |
Microsoft.CognitiveServices/accounts/privateEndpointConnections/read | Lee las conexiones de punto de conexión privado. |
Microsoft.CognitiveServices/accounts/privateEndpointConnections/write | Escribe las conexiones de punto de conexión privado. |
Microsoft.CognitiveServices/accounts/privateLinkResources/read | Lee los recursos de Private Link para una cuenta. |
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action | Administra una conexión de punto de conexión privado de una cuenta de base de datos. |
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/read | Lee una conexión de punto de conexión privado o enumera todas las conexiones de punto de conexión privado de una cuenta de base de datos. |
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/write | Crea o actualiza una conexión de punto de conexión privado de una cuenta de base de datos. |
Microsoft.DocumentDB/databaseAccounts/privateLinkResources/read | Lee un recurso de vínculo privado o enumera todos los recursos de vínculo privado de una cuenta de base de datos. |
Microsoft.DocumentDB/databaseAccounts/read | Lee una cuenta de base de datos. |
Microsoft.KeyVault/vaults/privateEndpointConnectionsApproval/action | Aprueba o rechaza una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.KeyVault/vaults/privateEndpointConnections/read | Permite ver el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.KeyVault/vaults/privateEndpointConnections/write | Cambia el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.KeyVault/vaults/privateLinkResources/read | Obtiene los recursos de vínculo privado disponibles de la instancia especificada de Key Vault. |
Microsoft.KeyVault/vaults/read | Ve las propiedades de un almacén de claves |
Microsoft.MachineLearningServices/workspaces/privateEndpointConnectionsApproval/action | Aprueba o rechaza una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/read | Permite ver el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/write | Cambia el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network. |
Microsoft.MachineLearningServices/workspaces/privateLinkResources/read | Obtiene los recursos de vínculo privado disponibles para la instancia especificada de las áreas de trabajo de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/read | Obtiene las áreas de trabajo de Machine Learning Services |
Microsoft.Storage/storageAccounts/privateEndpointConnections/read | Obtiene la conexión de punto de conexión privado. |
Microsoft.Storage/storageAccounts/privateEndpointConnections/write | Establece la conexión de punto de conexión privado. |
Microsoft.Storage/storageAccounts/privateLinkResources/read | Obtiene los identificadores de grupo de la cuenta de almacenamiento. |
Microsoft.Storage/storageAccounts/read | Devuelve la lista de cuentas de almacenamiento u obtiene las propiedades de la cuenta de almacenamiento especificada. |
Microsoft.Sql/servers/privateEndpointConnectionsApproval/action | Determina si el usuario puede aprobar una conexión de punto de conexión privado. |
Microsoft.Sql/servers/privateEndpointConnections/read | Devuelve la lista de conexiones de punto de conexión privado u obtiene las propiedades de la conexión de punto de conexión privado especificada. |
Microsoft.Sql/servers/privateEndpointConnections/write | Aprueba o rechaza una conexión de punto de conexión privado existente. |
Microsoft.Sql/servers/privateLinkResources/read | Obtiene los recursos de Private Link de la instancia de SQL Server correspondiente. |
Microsoft.Sql/servers/read | Devuelve la lista de servidores u obtiene las propiedades de un servidor específico. |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can approve private endpoint connections to Azure AI common dependency resources",
"id": "/providers/Microsoft.Authorization/roleDefinitions/b556d68e-0be0-4f35-a333-ad7ee1ce17ea",
"name": "b556d68e-0be0-4f35-a333-ad7ee1ce17ea",
"permissions": [
{
"actions": [
"Microsoft.ContainerRegistry/registries/privateEndpointConnectionsApproval/action",
"Microsoft.ContainerRegistry/registries/privateEndpointConnections/read",
"Microsoft.ContainerRegistry/registries/privateEndpointConnections/write",
"Microsoft.Cache/redis/read",
"Microsoft.Cache/redis/privateEndpointConnections/read",
"Microsoft.Cache/redis/privateEndpointConnections/write",
"Microsoft.Cache/redis/privateLinkResources/read",
"Microsoft.Cache/redis/privateEndpointConnectionsApproval/action",
"Microsoft.Cache/redisEnterprise/read",
"Microsoft.Cache/redisEnterprise/privateEndpointConnections/read",
"Microsoft.Cache/redisEnterprise/privateEndpointConnections/write",
"Microsoft.Cache/redisEnterprise/privateLinkResources/read",
"Microsoft.Cache/redisEnterprise/privateEndpointConnectionsApproval/action",
"Microsoft.CognitiveServices/accounts/read",
"Microsoft.CognitiveServices/accounts/privateEndpointConnections/read",
"Microsoft.CognitiveServices/accounts/privateEndpointConnections/write",
"Microsoft.CognitiveServices/accounts/privateLinkResources/read",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/read",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/write",
"Microsoft.DocumentDB/databaseAccounts/privateLinkResources/read",
"Microsoft.DocumentDB/databaseAccounts/read",
"Microsoft.KeyVault/vaults/privateEndpointConnectionsApproval/action",
"Microsoft.KeyVault/vaults/privateEndpointConnections/read",
"Microsoft.KeyVault/vaults/privateEndpointConnections/write",
"Microsoft.KeyVault/vaults/privateLinkResources/read",
"Microsoft.KeyVault/vaults/read",
"Microsoft.MachineLearningServices/workspaces/privateEndpointConnectionsApproval/action",
"Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/read",
"Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/write",
"Microsoft.MachineLearningServices/workspaces/privateLinkResources/read",
"Microsoft.MachineLearningServices/workspaces/read",
"Microsoft.Storage/storageAccounts/privateEndpointConnections/read",
"Microsoft.Storage/storageAccounts/privateEndpointConnections/write",
"Microsoft.Storage/storageAccounts/privateLinkResources/read",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Sql/servers/privateEndpointConnectionsApproval/action",
"Microsoft.Sql/servers/privateEndpointConnections/read",
"Microsoft.Sql/servers/privateEndpointConnections/write",
"Microsoft.Sql/servers/privateLinkResources/read",
"Microsoft.Sql/servers/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure AI Enterprise Network Connection Approver",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Operador de implementación de inferencias de Azure AI
Puede realizar todas las acciones necesarias para crear una implementación de recursos dentro de un grupo de recursos.
Acciones | Descripción |
---|---|
Microsoft.Authorization/*/read | Leer roles y asignaciones de roles |
Microsoft.Resources/deployments/* | Creación y administración de una implementación |
Microsoft.Insights/AutoscaleSettings/write | Crea o actualiza una configuración de escalado automático. |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can perform all actions required to create a resource deployment within a resource group.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/3afb7f49-54cb-416e-8c09-6dc049efa503",
"name": "3afb7f49-54cb-416e-8c09-6dc049efa503",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Insights/AutoscaleSettings/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Azure AI Inference Deployment Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Operador de proceso de AzureML
Puede acceder y realizar operaciones CRUD en recursos de proceso administrados de Machine Learning Services (incluidas las máquinas virtuales de Notebook).
Acciones | Descripción |
---|---|
Microsoft.MachineLearningServices/workspaces/computes/* | |
Microsoft.MachineLearningServices/workspaces/notebooks/vm/* | |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can access and perform CRUD operations on Machine Learning Services managed compute resources (including Notebook VMs).",
"id": "/providers/Microsoft.Authorization/roleDefinitions/e503ece1-11d0-4e8e-8e2c-7a6c3bf38815",
"name": "e503ece1-11d0-4e8e-8e2c-7a6c3bf38815",
"permissions": [
{
"actions": [
"Microsoft.MachineLearningServices/workspaces/computes/*",
"Microsoft.MachineLearningServices/workspaces/notebooks/vm/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AzureML Compute Operator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Científico de datos de AzureML
Puede realizar todas las acciones dentro de un área de trabajo de Azure Machine Learning, excepto crear o eliminar recursos de proceso, y modificar la propia área de trabajo.
Acciones | Descripción |
---|---|
Microsoft.MachineLearningServices/workspaces/*/read | |
Microsoft.MachineLearningServices/workspaces/*/action | |
Microsoft.MachineLearningServices/workspaces/*/delete | |
Microsoft.MachineLearningServices/workspaces/*/write | |
NotActions | |
Microsoft.MachineLearningServices/workspaces/delete | Elimina las áreas de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/write | Crea o actualiza las áreas de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/computes/*/write | |
Microsoft.MachineLearningServices/workspaces/computes/*/delete | |
Microsoft.MachineLearningServices/workspaces/computes/listKeys/action | Enumera los secretos de los recursos de proceso en el área de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/listKeys/action | Enumera los secretos un área de trabajo de Machine Learning Services |
Microsoft.MachineLearningServices/workspaces/hubs/write | Crea o actualiza las áreas de trabajo del centro de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/hubs/delete | Elimina las áreas de trabajo del centro de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/featurestores/write | Crea o actualiza los almacenes de características de Machine Learning Services. |
Microsoft.MachineLearningServices/workspaces/featurestores/delete | Elimina los almacenes de características de Machine Learning Services. |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can perform all actions within an Azure Machine Learning workspace, except for creating or deleting compute resources and modifying the workspace itself.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f6c7c914-8db3-469d-8ca1-694a8f32e121",
"name": "f6c7c914-8db3-469d-8ca1-694a8f32e121",
"permissions": [
{
"actions": [
"Microsoft.MachineLearningServices/workspaces/*/read",
"Microsoft.MachineLearningServices/workspaces/*/action",
"Microsoft.MachineLearningServices/workspaces/*/delete",
"Microsoft.MachineLearningServices/workspaces/*/write"
],
"notActions": [
"Microsoft.MachineLearningServices/workspaces/delete",
"Microsoft.MachineLearningServices/workspaces/write",
"Microsoft.MachineLearningServices/workspaces/computes/*/write",
"Microsoft.MachineLearningServices/workspaces/computes/*/delete",
"Microsoft.MachineLearningServices/workspaces/computes/listKeys/action",
"Microsoft.MachineLearningServices/workspaces/listKeys/action",
"Microsoft.MachineLearningServices/workspaces/hubs/write",
"Microsoft.MachineLearningServices/workspaces/hubs/delete",
"Microsoft.MachineLearningServices/workspaces/featurestores/write",
"Microsoft.MachineLearningServices/workspaces/featurestores/delete"
],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AzureML Data Scientist",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Escritor de métricas de Azure ML (versión preliminar)
Permite escribir métricas en el área de trabajo de AzureML.
Acciones | Descripción |
---|---|
Microsoft.MachineLearningServices/workspaces/metrics/*/write | |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you write metrics to AzureML workspace",
"id": "/providers/Microsoft.Authorization/roleDefinitions/635dd51f-9968-44d3-b7fb-6d9a6bd613ae",
"name": "635dd51f-9968-44d3-b7fb-6d9a6bd613ae",
"permissions": [
{
"actions": [
"Microsoft.MachineLearningServices/workspaces/metrics/*/write"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AzureML Metrics Writer (preview)",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario del registro de AzureML
Puede realizar todas las acciones en los recursos del Registro de Machine Learning Services, así como obtener recursos del Registro.
Acciones | Descripción |
---|---|
Microsoft.MachineLearningServices/registries/read | Obtiene los registros de Machine Learning Services. |
Microsoft.MachineLearningServices/registries/assets/* | |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Can perform all actions on Machine Learning Services Registry assets as well as get Registry resources.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/1823dd4f-9b8c-4ab6-ab4e-7397a3684615",
"name": "1823dd4f-9b8c-4ab6-ab4e-7397a3684615",
"permissions": [
{
"actions": [
"Microsoft.MachineLearningServices/registries/read",
"Microsoft.MachineLearningServices/registries/assets/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "AzureML Registry User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador de Cognitive Services
Le permite crear, leer, actualizar, eliminar y administrar las claves de Cognitive Services.
Acciones | Descripción |
---|---|
Microsoft.Authorization/*/read | Leer roles y asignaciones de roles |
Microsoft.CognitiveServices/* | |
Microsoft.Features/features/read | Obtiene las características de una suscripción. |
Microsoft.Features/providers/features/read | Obtiene la característica de una suscripción de un proveedor de recursos determinado. |
Microsoft.Features/providers/features/register/action | Registra la característica de una suscripción de un proveedor de recursos determinado. |
Microsoft.Insights/alertRules/* | Creación y administración de una alerta de métricas clásica |
Microsoft.Insights/diagnosticSettings/* | Crea, actualiza o lee la configuración de diagnóstico de Analysis Server. |
Microsoft.Insights/logDefinitions/read | Lee definiciones de registro |
Microsoft.Insights/metricdefinitions/read | Lee definiciones de métricas |
Microsoft.Insights/metrics/read | Lee métricas |
Microsoft.ResourceHealth/availabilityStatuses/read | Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado |
Microsoft.Resources/deployments/* | Creación y administración de una implementación |
Microsoft.Resources/deployments/operations/read | Obtiene o enumera las operaciones de implementación. |
Microsoft.Resources/subscriptions/operationresults/read | Obtiene los resultados de la operación de suscripción. |
Microsoft.Resources/subscriptions/read | Obtiene la lista de suscripciones. |
Microsoft.Resources/subscriptions/resourcegroups/deployments/* | |
Microsoft.Resources/subscriptions/resourceGroups/read | Obtiene o enumera los grupos de recursos. |
Microsoft.Support/* | Creación y actualización de una incidencia de soporte técnico |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you create, read, update, delete and manage keys of Cognitive Services.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"name": "25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.CognitiveServices/*",
"Microsoft.Features/features/read",
"Microsoft.Features/providers/features/read",
"Microsoft.Features/providers/features/register/action",
"Microsoft.Insights/alertRules/*",
"Microsoft.Insights/diagnosticSettings/*",
"Microsoft.Insights/logDefinitions/read",
"Microsoft.Insights/metricdefinitions/read",
"Microsoft.Insights/metrics/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cognitive Services Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador de Custom Vision de Cognitive Services
Acceso completo al proyecto, lo que incluye la capacidad para ver, crear, editar o eliminar proyectos.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Full access to the project, including the ability to view, create, edit, or delete projects.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
"name": "c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Custom Vision Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Implementación de Custom Vision de Cognitive Services
Publicar, anular publicaciones o exportar modelos. La implementación puede ver el proyecto pero no puede actualizarlo.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/*/read | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/* | |
Microsoft.CognitiveServices/accounts/CustomVision/classify/* | |
Microsoft.CognitiveServices/accounts/CustomVision/detect/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read | Exporta un proyecto. |
{
"assignableScopes": [
"/"
],
"description": "Publish, unpublish or export models. Deployment can view the project but can't update.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/5c4089e1-6d96-4d2f-b296-c1bc7137275f",
"name": "5c4089e1-6d96-4d2f-b296-c1bc7137275f",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*/read",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/*",
"Microsoft.CognitiveServices/accounts/CustomVision/classify/*",
"Microsoft.CognitiveServices/accounts/CustomVision/detect/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Deployment",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Etiquetador de Custom Vision de Cognitive Services
Ver y editar imágenes de entrenamiento, además de crear, agregar, quitar o eliminar etiquetas de imágenes. Los etiquetadores pueden ver el proyecto, pero no pueden actualizar nada más que las imágenes y etiquetas de entrenamiento.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/*/read | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action | Obtiene las imágenes que se enviaron al punto de conexión de predicción. |
Microsoft.CognitiveServices/accounts/CustomVision/projects/images/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/* | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action | Esta API obtendrá etiquetas y regiones sugeridas para una matriz o lote de imágenes sin etiquetar, junto con las confianzas de las etiquetas. Devuelve una matriz vacía si no se encuentra ninguna etiqueta. |
NotDataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read | Exporta un proyecto. |
{
"assignableScopes": [
"/"
],
"description": "View, edit training images and create, add, remove, or delete the image tags. Labelers can view the project but can't update anything other than training images and tags.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/88424f51-ebe7-446f-bc41-7fa16989e96c",
"name": "88424f51-ebe7-446f-bc41-7fa16989e96c",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*/read",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/images/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/*",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Labeler",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de Custom Vision de Cognitive Services
Acciones de solo lectura en el proyecto. Los lectores no pueden crear ni actualizar el proyecto.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/*/read | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action | Obtiene las imágenes que se enviaron al punto de conexión de predicción. |
NotDataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read | Exporta un proyecto. |
{
"assignableScopes": [
"/"
],
"description": "Read-only actions in the project. Readers can't create or update the project.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/93586559-c37d-4a6b-ba08-b9f0940c2d73",
"name": "93586559-c37d-4a6b-ba08-b9f0940c2d73",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*/read",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Entrenador de Custom Vision de Cognitive Services
Ver, editar proyectos y entrenar los modelos, lo que incluye la capacidad de publicar, anular la publicación y exportar los modelos. Los entrenadores no pueden crear ni eliminar el proyecto.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/CustomVision/projects/action | Cree un proyecto. |
Microsoft.CognitiveServices/accounts/CustomVision/projects/delete | Elimina un proyecto específico. |
Microsoft.CognitiveServices/accounts/CustomVision/projects/import/action | Importa un proyecto. |
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read | Exporta un proyecto. |
{
"assignableScopes": [
"/"
],
"description": "View, edit projects and train the models, including the ability to publish, unpublish, export the models. Trainers can't create or delete the project.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/0a5ae4ab-0d65-4eeb-be61-29fc9b54394b",
"name": "0a5ae4ab-0d65-4eeb-be61-29fc9b54394b",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVision/projects/action",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/delete",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/import/action",
"Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
]
}
],
"roleName": "Cognitive Services Custom Vision Trainer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de datos de Cognitive Services
Permite leer los datos de Cognitive Services.
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/*/read | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you read Cognitive Services data.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/b59867f0-fa02-499b-be73-45a86b5b3e1c",
"name": "b59867f0-fa02-499b-be73-45a86b5b3e1c",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/*/read"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Cognitive Services Face Recognizer
Permite detectar, comprobar, identificar, agrupar y buscar operaciones similares en Face API. Este rol no permite operaciones de creación o eliminación, de modo que es adecuado para los puntos de conexión que solo necesitan funcionalidades de inferencia, según los procedimientos recomendados de "privilegios mínimos".
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/Face/detect/action | Detecta caras humanas en una imagen, devuelve rectángulos de caras, opcionalmente con identificadores de cara, puntos de referencia y atributos. |
Microsoft.CognitiveServices/accounts/Face/verify/action | Comprueba si dos caras pertenecen a una misma persona o si una cara pertenece a una persona. |
Microsoft.CognitiveServices/accounts/Face/identify/action | Identificación de 1 a varios para encontrar las coincidencias más cercanas de la cara de la persona de la consulta específica a partir de un grupo de personas o grupo de personas de gran tamaño. |
Microsoft.CognitiveServices/accounts/Face/group/action | Divide las caras de los candidatos en grupos en función de la similitud de la cara. |
Microsoft.CognitiveServices/accounts/Face/findsimilars/action | Dado el elemento faceId de un cara de la consulta, busca las caras similares en una matriz de elementos faceId, una lista de caras o una lista de caras de gran tamaño. faceId |
Microsoft.CognitiveServices/accounts/Face/detectliveness/horizontal/action | Realiza la detección de actividad vital en una cara de destino en una secuencia de imágenes de profundidad, color o infrarrojos, y devuelve la clasificación de actividad vital de la cara de destino como "real face" (cara real), "spoof face" (cara suplantada) o "uncertain" (indeterminado) si no se puede realizar una clasificación con las entradas especificadas. |
Microsoft.CognitiveServices/accounts/Face/detectliveness/singlemodal/action | Realiza la detección de actividad vital en una cara de destino en una secuencia de imágenes de la misma modalidad (por ejemplo, color o infrarrojos), y devuelve la clasificación de actividad vital de la cara de destino como "real face" (cara real), "spoof face" (cara suplantada) o "uncertain" (indeterminado) si no se puede realizar una clasificación con las entradas especificadas. |
Microsoft.CognitiveServices/accounts/Face/detectlivenesswithverify/singlemodal/action | Detecta la ejecución de una cara de destino en una secuencia de imágenes de la misma modalidad (por ejemplo, color) y, a continuación, compara con VerifyImage para devolver la puntuación de confianza para escenarios de identidad. |
Microsoft.CognitiveServices/accounts/Face/*/sessions/action | |
Microsoft.CognitiveServices/accounts/Face/*/sessions/delete | |
Microsoft.CognitiveServices/accounts/Face/*/sessions/read | |
Microsoft.CognitiveServices/accounts/Face/*/sessions/audit/read | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you perform detect, verify, identify, group, and find similar operations on Face API. This role does not allow create or delete operations, which makes it well suited for endpoints that only need inferencing capabilities, following 'least privilege' best practices.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/9894cab4-e18a-44aa-828b-cb588cd6f2d7",
"name": "9894cab4-e18a-44aa-828b-cb588cd6f2d7",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/Face/detect/action",
"Microsoft.CognitiveServices/accounts/Face/verify/action",
"Microsoft.CognitiveServices/accounts/Face/identify/action",
"Microsoft.CognitiveServices/accounts/Face/group/action",
"Microsoft.CognitiveServices/accounts/Face/findsimilars/action",
"Microsoft.CognitiveServices/accounts/Face/detectliveness/multimodal/action",
"Microsoft.CognitiveServices/accounts/Face/detectliveness/singlemodal/action",
"Microsoft.CognitiveServices/accounts/Face/detectlivenesswithverify/singlemodal/action",
"Microsoft.CognitiveServices/accounts/Face/*/sessions/action",
"Microsoft.CognitiveServices/accounts/Face/*/sessions/delete",
"Microsoft.CognitiveServices/accounts/Face/*/sessions/read",
"Microsoft.CognitiveServices/accounts/Face/*/sessions/audit/read"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Face Recognizer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario de Lector inmersivo de Cognitive Services
Proporciona acceso para crear sesiones de Lector inmersivo y llamar a las API
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/ImmersiveReader/getcontentmodelforreader/action | Crea una sesión de Lector inmersivo. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Provides access to create Immersive Reader sessions and call APIs",
"id": "/providers/Microsoft.Authorization/roleDefinitions/b2de6794-95db-4659-8781-7e080d3f2b9d",
"name": "b2de6794-95db-4659-8781-7e080d3f2b9d",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/ImmersiveReader/getcontentmodelforreader/action"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Immersive Reader User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Propietario de lenguaje de Cognitive Services
Tiene acceso a todas las funciones De lectura, prueba, escritura, implementación y eliminación en el portal de lenguaje
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.CognitiveServices/accounts/listkeys/action | Enumeración de claves |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LanguageAuthoring/* | |
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/* | |
Microsoft.CognitiveServices/accounts/Language/* | |
Microsoft.CognitiveServices/accounts/TextAnalytics/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/* |
{
"assignableScopes": [
"/"
],
"description": "Has access to all Read, Test, Write, Deploy and Delete functions under Language portal",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f07febfe-79bc-46b1-8b37-790e26e6e498",
"name": "f07febfe-79bc-46b1-8b37-790e26e6e498",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.CognitiveServices/accounts/listkeys/action",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LanguageAuthoring/*",
"Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*",
"Microsoft.CognitiveServices/accounts/Language/*",
"Microsoft.CognitiveServices/accounts/TextAnalytics/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*"
]
}
],
"roleName": "Cognitive Services Language Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de lenguaje de Cognitive Services
Tiene acceso a las funciones de lectura y prueba en el portal de lenguaje
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LanguageAuthoring/*/read | |
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*/read | |
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/export/action | Desencadena un trabajo para exportar datos del proyecto en formato JSON. |
Microsoft.CognitiveServices/accounts/Language/*/read | |
Microsoft.CognitiveServices/accounts/Language/*/projects/export/action | |
Microsoft.CognitiveServices/accounts/Language/query-text/action | Texto de la respuesta. |
Microsoft.CognitiveServices/accounts/Language/query-dataverse/action | Permite consultar Dataverse. |
Microsoft.CognitiveServices/accounts/Language/analyze-text/jobs/action | Envía una colección de documentos de texto para su análisis. Especifica una o más tareas únicas que se van a ejecutar. |
Microsoft.CognitiveServices/accounts/Language/analyze-text/action | Envía una colección de documentos de texto para su análisis. Especifica una tarea única que se va a ejecutar inmediatamente. |
Microsoft.CognitiveServices/accounts/Language/analyze-text/jobscancel/action | Cancela un trabajo de análisis de texto de larga duración. |
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/action | Analiza la conversación de entrada. |
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobscancel/action | Cancela un trabajo de análisis de larga duración en la conversación. |
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobs/action | Envía una conversación larga para su análisis. Especifica una o más tareas únicas que se van a ejecutar como operaciones de larga duración. |
Microsoft.CognitiveServices/accounts/Language/query-knowledgebases/action | Permite consultar la base de conocimientos. |
Microsoft.CognitiveServices/accounts/Language/generate/action | Generación de lenguajes. |
Microsoft.CognitiveServices/accounts/TextAnalytics/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/* |
{
"assignableScopes": [
"/"
],
"description": "Has access to Read and Test functions under Language portal",
"id": "/providers/Microsoft.Authorization/roleDefinitions/7628b7b8-a8b2-4cdc-b46f-e9b35248918e",
"name": "7628b7b8-a8b2-4cdc-b46f-e9b35248918e",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LanguageAuthoring/*/read",
"Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*/read",
"Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/export/action",
"Microsoft.CognitiveServices/accounts/Language/*/read",
"Microsoft.CognitiveServices/accounts/Language/*/projects/export/action",
"Microsoft.CognitiveServices/accounts/Language/query-text/action",
"Microsoft.CognitiveServices/accounts/Language/query-dataverse/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-text/jobs/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-text/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-text/jobscancel/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-conversations/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobscancel/action",
"Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobs/action",
"Microsoft.CognitiveServices/accounts/Language/query-knowledgebases/action",
"Microsoft.CognitiveServices/accounts/Language/generate/action",
"Microsoft.CognitiveServices/accounts/TextAnalytics/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*"
]
}
],
"roleName": "Cognitive Services Language Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Escritor de lenguaje de Cognitive Services
Tiene acceso a todas las funciones de lectura, prueba y escritura en el Portal de lenguaje
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LanguageAuthoring/* | |
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/* | |
Microsoft.CognitiveServices/accounts/Language/* | |
Microsoft.CognitiveServices/accounts/TextAnalytics/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/LanguageAuthoring/projects/publish/action | Desencadena el trabajo de publicación. |
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/deployments/write | Desencadena un trabajo para crear una nueva implementación o reemplazar una implementación existente. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/* | |
Microsoft.CognitiveServices/accounts/Language/*/projects/delete | |
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/write | |
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/delete | |
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/swap/action |
{
"assignableScopes": [
"/"
],
"description": " Has access to all Read, Test, and Write functions under Language Portal",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f2310ca1-dc64-4889-bb49-c8e0fa3d47a8",
"name": "f2310ca1-dc64-4889-bb49-c8e0fa3d47a8",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LanguageAuthoring/*",
"Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*",
"Microsoft.CognitiveServices/accounts/Language/*",
"Microsoft.CognitiveServices/accounts/TextAnalytics/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/LanguageAuthoring/projects/publish/action",
"Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/deployments/write",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*",
"Microsoft.CognitiveServices/accounts/Language/*/projects/delete",
"Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/write",
"Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/delete",
"Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/swap/action"
]
}
],
"roleName": "Cognitive Services Language Writer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Propietario de LUIS de Cognitive Services
Tiene acceso a todas las funciones De lectura, prueba, escritura, implementación y eliminación en LUIS
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.CognitiveServices/accounts/listkeys/action | Enumeración de claves |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LUIS/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": " Has access to all Read, Test, Write, Deploy and Delete functions under LUIS",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f72c8140-2111-481c-87ff-72b910f6e3f8",
"name": "f72c8140-2111-481c-87ff-72b910f6e3f8",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.CognitiveServices/accounts/listkeys/action",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LUIS/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services LUIS Owner",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de LUIS de Cognitive Services
Tiene acceso a las funciones de lectura y prueba en LUIS.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LUIS/*/read | |
Microsoft.CognitiveServices/accounts/LUIS/apps/testdatasets/write | Actualiza los resultados de la última prueba de un conjunto de datos de prueba por lotes existente para una aplicación determinada. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Has access to Read and Test functions under LUIS.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/18e81cdc-4e98-4e29-a639-e7d10c5a6226",
"name": "18e81cdc-4e98-4e29-a639-e7d10c5a6226",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LUIS/*/read",
"Microsoft.CognitiveServices/accounts/LUIS/apps/testdatasets/write"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services LUIS Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Escritor de LUIS de Cognitive Services
Tiene acceso a todas las funciones de lectura, prueba y escritura en LUIS
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/LUIS/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/LUIS/apps/delete | Elimina una aplicación. |
Microsoft.CognitiveServices/accounts/LUIS/apps/move/action | Mueve la aplicación a otro recurso de Azure de creación de LUIS. |
Microsoft.CognitiveServices/accounts/LUIS/apps/publish/action | Publica una versión específica de la aplicación. |
Microsoft.CognitiveServices/accounts/LUIS/apps/settings/write | Actualiza la configuración de la aplicación. |
Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/action | Asigna una cuenta de Azure a la aplicación. |
Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/delete | Obtiene las cuentas de Azure de LUIS del usuario que utiliza su token de Azure Resource Manager. |
{
"assignableScopes": [
"/"
],
"description": "Has access to all Read, Test, and Write functions under LUIS",
"id": "/providers/Microsoft.Authorization/roleDefinitions/6322a993-d5c9-4bed-b113-e49bbea25b27",
"name": "6322a993-d5c9-4bed-b113-e49bbea25b27",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/LUIS/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/LUIS/apps/delete",
"Microsoft.CognitiveServices/accounts/LUIS/apps/move/action",
"Microsoft.CognitiveServices/accounts/LUIS/apps/publish/action",
"Microsoft.CognitiveServices/accounts/LUIS/apps/settings/write",
"Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/action",
"Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/delete"
]
}
],
"roleName": "Cognitive Services LUIS Writer",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Administrador de Metrics Advisor de Cognitive Services
Acceso total al proyecto, lo que incluye la configuración del nivel de sistema.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/MetricsAdvisor/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Full access to the project, including the system level configuration.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/cb43c632-a144-4ec5-977c-e80c4affc34a",
"name": "cb43c632-a144-4ec5-977c-e80c4affc34a",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/MetricsAdvisor/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Metrics Advisor Administrator",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario de Metrics Advisor de Cognitive Services
Acceso al proyecto.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/MetricsAdvisor/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/MetricsAdvisor/stats/* |
{
"assignableScopes": [
"/"
],
"description": "Access to the project.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/3b20f47b-3825-43cb-8114-4bd2201156a8",
"name": "3b20f47b-3825-43cb-8114-4bd2201156a8",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/MetricsAdvisor/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/MetricsAdvisor/stats/*"
]
}
],
"roleName": "Cognitive Services Metrics Advisor User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador de OpenAI de Cognitive Services
Acceso completo, incluida la capacidad de ajustar, implementar y generar texto
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.CognitiveServices/accounts/deployments/write | Escribe las implementaciones. |
Microsoft.CognitiveServices/accounts/deployments/delete | Elimina las implementaciones. |
Microsoft.CognitiveServices/accounts/raiPolicies/read | Obtiene todas las directivas aplicables en la cuenta, incluidas las directivas predeterminadas. |
Microsoft.CognitiveServices/accounts/raiPolicies/write | Cree o actualice una directiva de IA responsable personalizada. |
Microsoft.CognitiveServices/accounts/raiPolicies/delete | Elimina una directiva de IA responsable personalizada a la que no hace referencia una implementación existente. |
Microsoft.CognitiveServices/accounts/commitmentplans/read | Lee los planes de compromiso. |
Microsoft.CognitiveServices/accounts/commitmentplans/write | Administra los planes de compromiso. |
Microsoft.CognitiveServices/accounts/commitmentplans/delete | Elimina los planes de compromiso. |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/OpenAI/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Full access including the ability to fine-tune, deploy and generate text",
"id": "/providers/Microsoft.Authorization/roleDefinitions/a001fd3d-188f-4b5d-821b-7da978bf7442",
"name": "a001fd3d-188f-4b5d-821b-7da978bf7442",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.CognitiveServices/accounts/deployments/write",
"Microsoft.CognitiveServices/accounts/deployments/delete",
"Microsoft.CognitiveServices/accounts/raiPolicies/read",
"Microsoft.CognitiveServices/accounts/raiPolicies/write",
"Microsoft.CognitiveServices/accounts/raiPolicies/delete",
"Microsoft.CognitiveServices/accounts/commitmentplans/read",
"Microsoft.CognitiveServices/accounts/commitmentplans/write",
"Microsoft.CognitiveServices/accounts/commitmentplans/delete",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/OpenAI/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services OpenAI Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario de OpenAI de Cognitive Services
Acceso de lectura para ver archivos, modelos e implementaciones. La capacidad de crear llamadas de finalización e inserción.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/OpenAI/*/read | |
Microsoft.CognitiveServices/accounts/OpenAI/engines/completions/action | Crea una finalización a partir de un modelo elegido. |
Microsoft.CognitiveServices/accounts/OpenAI/engines/search/action | Busca los documentos más importantes mediante el motor actual. |
Microsoft.CognitiveServices/accounts/OpenAI/engines/generate/action | (Diseñado solo para exploradores). Transmita el texto generado desde el modelo a través de la solicitud GET. Este método se proporciona porque el método EventSource nativo del explorador solo puede enviar solicitudes GET. Admite un conjunto más limitado de opciones de configuración que la variante POST. |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/audio/action | Devuelve la transcripción o traducción de un archivo de audio determinado. |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/search/action | Busca los documentos más importantes mediante el motor actual. |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/completions/action | Permite crear una finalización a partir de un modelo elegido. |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/chat/completions/action | Crea una finalización para el mensaje de chat |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/realtime/action | Crea una conexión en tiempo real a la implementación. |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/extensions/chat/completions/action | Crea una finalización para el mensaje de chat con extensiones |
Microsoft.CognitiveServices/accounts/OpenAI/deployments/embeddings/action | Devuelve las incrustaciones de un mensaje determinado. |
Microsoft.CognitiveServices/accounts/OpenAI/images/generations/action | Cree generaciones de imágenes. |
Microsoft.CognitiveServices/accounts/OpenAI/assistants/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/OpenAI/stored-completions/read | Consulta de datos de finalizaciones mediante filtros o Obtención de datos de finalización única mediante identificador de finalización o Obtención de metadatos de tráfico para la cuenta especificada |
{
"assignableScopes": [
"/"
],
"description": "Ability to view files, models, deployments. Readers can't make any changes They can inference and create images",
"id": "/providers/Microsoft.Authorization/roleDefinitions/5e0bd9bd-7b93-4f28-af87-19fc36ad61bd",
"name": "5e0bd9bd-7b93-4f28-af87-19fc36ad61bd",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/OpenAI/*/read",
"Microsoft.CognitiveServices/accounts/OpenAI/engines/completions/action",
"Microsoft.CognitiveServices/accounts/OpenAI/engines/search/action",
"Microsoft.CognitiveServices/accounts/OpenAI/engines/generate/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/audio/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/search/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/completions/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/chat/completions/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/realtime/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/extensions/chat/completions/action",
"Microsoft.CognitiveServices/accounts/OpenAI/deployments/embeddings/action",
"Microsoft.CognitiveServices/accounts/OpenAI/images/generations/action",
"Microsoft.CognitiveServices/accounts/OpenAI/assistants/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/OpenAI/stored-completions/read"
]
}
],
"roleName": "Cognitive Services OpenAI User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Editor de QnA Maker de Cognitive Services
Permite crear, editar, importar y exportar un knowledge base. No se puede publicar ni eliminar un knowledge base.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/create/write | Operación asincrónica para crear una nueva base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/write | Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/train/action | Llama a Train para agregar sugerencias a la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/write | Reemplaza los datos de las modificaciones. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/refreshkeys/action | Vuelve a generar una clave de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/write | Actualice la configuración del punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker/operations/read | Obtiene los detalles de una operación de ejecución prolongada específica. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/create/write | Operación asincrónica para crear una nueva base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/write | Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/train/action | Llama a Train para agregar sugerencias a la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/write | Reemplaza los datos de las modificaciones. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/refreshkeys/action | Vuelve a generar una clave de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/write | Actualice la configuración del punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/operations/read | Obtiene los detalles de una operación de ejecución prolongada específica. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/create/write | Operación asincrónica para crear una nueva base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/write | Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/train/action | Llama a Train para agregar sugerencias a la base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/write | Reemplaza los datos de las modificaciones. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/refreshkeys/action | Vuelve a generar una clave de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/write | Actualice la configuración del punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/operations/read | Obtiene los detalles de una operación de ejecución prolongada específica. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Let's you create, edit, import and export a KB. You cannot publish or delete a KB.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f4cc2bf9-21be-47a1-bdf1-5c5804381025",
"name": "f4cc2bf9-21be-47a1-bdf1-5c5804381025",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/create/write",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/write",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/train/action",
"Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/alterations/write",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/refreshkeys/action",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/write",
"Microsoft.CognitiveServices/accounts/QnAMaker/operations/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/create/write",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/write",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/train/action",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/write",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/refreshkeys/action",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/write",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/operations/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/create/write",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/write",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/train/action",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/write",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/refreshkeys/action",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/write",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/operations/read"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services QnA Maker Editor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de QnA Maker de Cognitive Services
Permite leer y probar solo un knowledge base.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read | Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read | Descarga la base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action | Llamada a GenerateAnswer para consultar la base de conocimiento. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read | Descarga las modificaciones en el entorno de tiempo de ejecución. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read | Obtiene las claves de punto de conexión de un punto de conexión. |
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read | Obtiene la configuración de punto de conexión de un punto de conexión. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Let's you read and test a KB only.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/466ccd10-b268-4a11-b098-b4849f024126",
"name": "466ccd10-b268-4a11-b098-b4849f024126",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read",
"Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services QnA Maker Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador de voz de Cognitive Services
Acceso total a proyectos de Voz, incluidas las tareas de lectura, escritura y eliminación de todas las entidades, para tareas de reconocimiento de voz en tiempo real y transcripción por lotes, síntesis de voz en tiempo real y tareas de audio largas, voz personalizada y voz personalizada.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/SpeechServices/* | |
Microsoft.CognitiveServices/accounts/CustomVoice/* | |
Microsoft.CognitiveServices/accounts/AudioContentCreation/* | |
Microsoft.CognitiveServices/accounts/VideoTranslation/* | |
Microsoft.CognitiveServices/accounts/CustomAvatar/* | |
Microsoft.CognitiveServices/accounts/BatchAvatar/* | |
Microsoft.CognitiveServices/accounts/BatchTextToSpeech/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Full access to Speech projects, including read, write and delete all entities, for real-time speech recognition and batch transcription tasks, real-time speech synthesis and long audio tasks, custom speech and custom voice.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/0e75ca1e-0464-4b4d-8b93-68208a576181",
"name": "0e75ca1e-0464-4b4d-8b93-68208a576181",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/SpeechServices/*",
"Microsoft.CognitiveServices/accounts/CustomVoice/*",
"Microsoft.CognitiveServices/accounts/AudioContentCreation/*",
"Microsoft.CognitiveServices/accounts/VideoTranslation/*",
"Microsoft.CognitiveServices/accounts/CustomAvatar/*",
"Microsoft.CognitiveServices/accounts/BatchAvatar/*",
"Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services Speech Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario de voz de Cognitive Services
Acceso a las API de reconocimiento de voz en tiempo real y transcripción por lotes, síntesis de voz en tiempo real y API de audio largas, así como para leer los datos, pruebas, modelos o puntos de conexión para los modelos personalizados, pero no puede crear, eliminar ni modificar los datos, pruebas, modelos o puntos de conexión para los modelos personalizados.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.Authorization/roleAssignments/read | Obtiene información sobre una asignación de roles. |
Microsoft.Authorization/roleDefinitions/read | Obtiene información sobre una definición de roles. |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/read | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/read | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/write | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/delete | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/action | |
Microsoft.CognitiveServices/accounts/SpeechServices/*/frontend/action | |
Microsoft.CognitiveServices/accounts/SpeechServices/text-dependent/*/action | |
Microsoft.CognitiveServices/accounts/SpeechServices/text-independent/*/action | |
Microsoft.CognitiveServices/accounts/CustomVoice/*/read | |
Microsoft.CognitiveServices/accounts/CustomVoice/evaluations/* | |
Microsoft.CognitiveServices/accounts/CustomVoice/longaudiosynthesis/* | |
Microsoft.CognitiveServices/accounts/AudioContentCreation/* | |
Microsoft.CognitiveServices/accounts/VideoTranslation/* | |
Microsoft.CognitiveServices/accounts/CustomAvatar/*/read | |
Microsoft.CognitiveServices/accounts/BatchAvatar/* | |
Microsoft.CognitiveServices/accounts/BatchTextToSpeech/* | |
NotDataActions | |
Microsoft.CognitiveServices/accounts/CustomVoice/datasets/files/read | Obtiene los archivos del conjunto de datos identificado mediante el identificador especificado. |
Microsoft.CognitiveServices/accounts/CustomVoice/datasets/utterances/read | Obtiene expresiones del conjunto de entrenamiento especificado. |
{
"assignableScopes": [
"/"
],
"description": "Access to the real-time speech recognition and batch transcription APIs, real-time speech synthesis and long audio APIs, as well as to read the data/test/model/endpoint for custom models, but can't create, delete or modify the data/test/model/endpoint for custom models.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f2dc8367-1007-4938-bd23-fe263f013447",
"name": "f2dc8367-1007-4938-bd23-fe263f013447",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/accounts/SpeechServices/*/read",
"Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/read",
"Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/write",
"Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/delete",
"Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/action",
"Microsoft.CognitiveServices/accounts/SpeechServices/*/frontend/action",
"Microsoft.CognitiveServices/accounts/SpeechServices/text-dependent/*/action",
"Microsoft.CognitiveServices/accounts/SpeechServices/text-independent/*/action",
"Microsoft.CognitiveServices/accounts/CustomVoice/*/read",
"Microsoft.CognitiveServices/accounts/CustomVoice/evaluations/*",
"Microsoft.CognitiveServices/accounts/CustomVoice/longaudiosynthesis/*",
"Microsoft.CognitiveServices/accounts/AudioContentCreation/*",
"Microsoft.CognitiveServices/accounts/VideoTranslation/*",
"Microsoft.CognitiveServices/accounts/CustomAvatar/*/read",
"Microsoft.CognitiveServices/accounts/BatchAvatar/*",
"Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*"
],
"notDataActions": [
"Microsoft.CognitiveServices/accounts/CustomVoice/datasets/files/read",
"Microsoft.CognitiveServices/accounts/CustomVoice/datasets/utterances/read"
]
}
],
"roleName": "Cognitive Services Speech User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de usos de Cognitive Services
Permiso mínimo para ver los usos de Cognitive Services.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/locations/usages/read | Leer todos los datos de uso |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Minimal permission to view Cognitive Services usages.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/bba48692-92b0-4667-a9ad-c31c7b334ac2",
"name": "bba48692-92b0-4667-a9ad-c31c7b334ac2",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/locations/usages/read"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Cognitive Services Usages Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Usuario de Cognitive Services
Le permite leer y mostrar las claves de Cognitive Services.
Acciones | Descripción |
---|---|
Microsoft.CognitiveServices/*/read | |
Microsoft.CognitiveServices/accounts/listkeys/action | Enumeración de claves |
Microsoft.Insights/alertRules/read | Lee una alerta de métrica clásica. |
Microsoft.Insights/diagnosticSettings/read | Lee la configuración de diagnóstico de un recurso. |
Microsoft.Insights/logDefinitions/read | Lee definiciones de registro |
Microsoft.Insights/metricdefinitions/read | Lee definiciones de métricas |
Microsoft.Insights/metrics/read | Lee métricas |
Microsoft.ResourceHealth/availabilityStatuses/read | Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado |
Microsoft.Resources/deployments/operations/read | Obtiene o enumera las operaciones de implementación. |
Microsoft.Resources/subscriptions/operationresults/read | Obtiene los resultados de la operación de suscripción. |
Microsoft.Resources/subscriptions/read | Obtiene la lista de suscripciones. |
Microsoft.Resources/subscriptions/resourceGroups/read | Obtiene o enumera los grupos de recursos. |
Microsoft.Support/* | Creación y actualización de una incidencia de soporte técnico |
NotActions | |
none | |
DataActions | |
Microsoft.CognitiveServices/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you read and list keys of Cognitive Services.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/a97b65f3-24c7-4388-baec-2e87135dc908",
"name": "a97b65f3-24c7-4388-baec-2e87135dc908",
"permissions": [
{
"actions": [
"Microsoft.CognitiveServices/*/read",
"Microsoft.CognitiveServices/accounts/listkeys/action",
"Microsoft.Insights/alertRules/read",
"Microsoft.Insights/diagnosticSettings/read",
"Microsoft.Insights/logDefinitions/read",
"Microsoft.Insights/metricdefinitions/read",
"Microsoft.Insights/metrics/read",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [
"Microsoft.CognitiveServices/*"
],
"notDataActions": []
}
],
"roleName": "Cognitive Services User",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Administrador de Health Bot
Los usuarios con acceso de administrador pueden iniciar sesión, ver y editar todos los recursos del bot, escenarios y opciones de configuración, incluidas las claves y secretos de la instancia del bot.
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.HealthBot/healthBots/Admin/Action | Inicie sesión en el portal de administración, vea y edite todos los recursos, escenarios del bot, opciones de configuración, claves de instancia y secretos. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Users with admin access can sign in, view and edit all of the bot resources, scenarios and configuration setting including the bot instance keys & secrets.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/f1082fec-a70f-419f-9230-885d2550fb38",
"name": "f1082fec-a70f-419f-9230-885d2550fb38",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthBot/healthBots/Admin/Action"
],
"notDataActions": []
}
],
"roleName": "Health Bot Admin",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Editor de bots de mantenimiento
Los usuarios con acceso al editor pueden iniciar sesión, ver y editar todos los recursos del bot, escenarios y configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final (incluidos comentarios, expresiones no reconocidas y registros de conversación). Acceso de solo lectura a los canales y aptitudes del bot.
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.HealthBot/healthBots/Editor/Action | Inicie sesión en el portal de administración, vea y edite todos los recursos del bot, escenarios y opciones de configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final. Acceso de solo lectura a los canales y aptitudes del bot. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Users with editor access can sign in, view and edit all the bot resources, scenarios and configuration setting except for the bot instance keys & secrets and the end-user inputs (including Feedback, Unrecognized utterances and Conversation logs). A read-only access to the bot skills and channels.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/af854a69-80ce-4ff7-8447-f1118a2e0ca8",
"name": "af854a69-80ce-4ff7-8447-f1118a2e0ca8",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthBot/healthBots/Editor/Action"
],
"notDataActions": []
}
],
"roleName": "Health Bot Editor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de bots de mantenimiento
Los usuarios con acceso de lector pueden iniciar sesión, tener acceso de solo lectura a los recursos del bot, escenarios y configuración, excepto las claves y secretos de la instancia del bot (incluidas las claves de autenticación, conexión de datos y canales) y las entradas del usuario final (incluidos comentarios, expresiones no reconocidas y registros de conversación).
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.HealthBot/healthBots/Reader/Action | Inicie sesión en el portal de administración, con acceso de solo lectura a los recursos, escenarios y opciones de configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Users with reader access can sign in, have read-only access to the bot resources, scenarios and configuration setting except for the bot instance keys & secrets (including Authentication, Data Connection and Channels keys) and the end-user inputs (including Feedback, Unrecognized utterances and Conversation logs).",
"id": "/providers/Microsoft.Authorization/roleDefinitions/eb5a76d5-50e7-4c33-a449-070e7c9c4cf2",
"name": "eb5a76d5-50e7-4c33-a449-070e7c9c4cf2",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.HealthBot/healthBots/Reader/Action"
],
"notDataActions": []
}
],
"roleName": "Health Bot Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador de datos de índice de búsqueda
Concede acceso total a los datos de índice de Azure Cognitive Search.
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.Search/searchServices/indexes/documents/* | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Grants full access to Azure Cognitive Search index data.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/8ebe5a00-799e-43f5-93ac-243d3dce84a7",
"name": "8ebe5a00-799e-43f5-93ac-243d3dce84a7",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Search/searchServices/indexes/documents/*"
],
"notDataActions": []
}
],
"roleName": "Search Index Data Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Lector de datos de índice de búsqueda
Concede acceso de lectura a los datos de índice de Azure Cognitive Search.
Acciones | Descripción |
---|---|
none | |
NotActions | |
none | |
DataActions | |
Microsoft.Search/searchServices/indexes/documents/read | Lee documentos o los términos de consulta sugeridos de un índice. |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Grants read access to Azure Cognitive Search index data.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/1407120a-92aa-4202-b7e9-c0e197c71c8f",
"name": "1407120a-92aa-4202-b7e9-c0e197c71c8f",
"permissions": [
{
"actions": [],
"notActions": [],
"dataActions": [
"Microsoft.Search/searchServices/indexes/documents/read"
],
"notDataActions": []
}
],
"roleName": "Search Index Data Reader",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}
Colaborador del servicio Search
Permite administrar los servicios de Búsqueda, pero no acceder a ellos.
Acciones | Descripción |
---|---|
Microsoft.Authorization/*/read | Leer roles y asignaciones de roles |
Microsoft.Insights/alertRules/* | Creación y administración de una alerta de métricas clásica |
Microsoft.ResourceHealth/availabilityStatuses/read | Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado |
Microsoft.Resources/deployments/* | Creación y administración de una implementación |
Microsoft.Resources/subscriptions/resourceGroups/read | Obtiene o enumera los grupos de recursos. |
Microsoft.Search/searchServices/* | Crear y administrar servicios de búsqueda |
Microsoft.Support/* | Creación y actualización de una incidencia de soporte técnico |
NotActions | |
none | |
DataActions | |
none | |
NotDataActions | |
none |
{
"assignableScopes": [
"/"
],
"description": "Lets you manage Search services, but not access to them.",
"id": "/providers/Microsoft.Authorization/roleDefinitions/7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"name": "7ca78c08-252a-4471-8644-bb5ff32d4ba0",
"permissions": [
{
"actions": [
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.ResourceHealth/availabilityStatuses/read",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Search/searchServices/*",
"Microsoft.Support/*"
],
"notActions": [],
"dataActions": [],
"notDataActions": []
}
],
"roleName": "Search Service Contributor",
"roleType": "BuiltInRole",
"type": "Microsoft.Authorization/roleDefinitions"
}