Compartir vía


Roles integrados de Azure para ia y aprendizaje automático

En este artículo se enumeran los roles integrados de Azure en la categoría ia y aprendizaje automático.

Colaborador asociado del sensor de AgFood Platform

Proporciona acceso de contribución para administrar entidades relacionadas con sensores en AgFood Platform Service

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/*
NotDataActions
Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/sensors/delete Elimina un recurso de sensores AgFoodPlatform existente restringido al ámbito del asociado del sensor del autor de la llamada.
{
  "assignableScopes": [
    "/"
  ],
  "description": "Provides contribute access to manage sensor related entities in AgFood Platform Service",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/6b77f0a0-0d89-41cc-acd1-579c22c17a67",
  "name": "6b77f0a0-0d89-41cc-acd1-579c22c17a67",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/*"
      ],
      "notDataActions": [
        "Microsoft.AgFoodPlatform/farmBeats/sensorPartnerScope/sensors/delete"
      ]
    }
  ],
  "roleName": "AgFood Platform Sensor Partner Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

AgFood Platform Service Admin

Proporciona acceso de administrador al servicio AgFood Platform

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.AgFoodPlatform/* Cree, actualice, lea y elimine los recursos de agFood Platform.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Provides admin access to AgFood Platform Service",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f8da80de-1ff9-4747-ad80-a19b7f6079e3",
  "name": "f8da80de-1ff9-4747-ad80-a19b7f6079e3",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.AgFoodPlatform/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "AgFood Platform Service Admin",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador del servicio AgFood Platform

Proporciona acceso de contribución al servicio AgFood Platform

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.AgFoodPlatform/*/action
Microsoft.AgFoodPlatform/*/read Lee los recursos de agFood Platform.
Microsoft.AgFoodPlatform/*/write Cree y actualice los recursos de agFood Platform.
NotDataActions
Microsoft.AgFoodPlatform/farmBeats/farmers/write Crea o actualiza a los agricultores agFoodPlatform.
Microsoft.AgFoodPlatform/farmBeats/deletionJobs/*/write
Microsoft.AgFoodPlatform/farmBeats/parties/write Crea o actualiza las partes agFoodPlatform.
Microsoft.AgFoodPlatform/farmBeats/datasets/write Crea o actualiza conjuntos de datos AgFoodPlatform.
Microsoft.AgFoodPlatform/farmBeats/datasetRecords/write Crea o actualiza los registros del conjunto de datos AgFoodPlatform.
Microsoft.AgFoodPlatform/farmBeats/datasets/access/*/action
{
  "assignableScopes": [
    "/"
  ],
  "description": "Provides contribute access to AgFood Platform Service",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/8508508a-4469-4e45-963b-2518ee0bb728",
  "name": "8508508a-4469-4e45-963b-2518ee0bb728",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.AgFoodPlatform/*/action",
        "Microsoft.AgFoodPlatform/*/read",
        "Microsoft.AgFoodPlatform/*/write"
      ],
      "notDataActions": [
        "Microsoft.AgFoodPlatform/farmBeats/farmers/write",
        "Microsoft.AgFoodPlatform/farmBeats/deletionJobs/*/write",
        "Microsoft.AgFoodPlatform/farmBeats/parties/write",
        "Microsoft.AgFoodPlatform/farmBeats/datasets/write",
        "Microsoft.AgFoodPlatform/farmBeats/datasetRecords/write",
        "Microsoft.AgFoodPlatform/farmBeats/datasets/access/*/action"
      ]
    }
  ],
  "roleName": "AgFood Platform Service Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

AgFood Platform Service Reader

Proporciona acceso de lectura al servicio AgFood Platform

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.AgFoodPlatform/*/list/action
Microsoft.AgFoodPlatform/*/read Lee los recursos de agFood Platform.
Microsoft.AgFoodPlatform/*/search/action
Microsoft.AgFoodPlatform/*/download/action
Microsoft.AgFoodPlatform/*/overlap/action
Microsoft.AgFoodPlatform/*/checkConsent/action
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Provides read access to AgFood Platform Service",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/7ec7ccdc-f61e-41fe-9aaf-980df0a44eba",
  "name": "7ec7ccdc-f61e-41fe-9aaf-980df0a44eba",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.AgFoodPlatform/*/list/action",
        "Microsoft.AgFoodPlatform/*/read",
        "Microsoft.AgFoodPlatform/*/search/action",
        "Microsoft.AgFoodPlatform/*/download/action",
        "Microsoft.AgFoodPlatform/*/overlap/action",
        "Microsoft.AgFoodPlatform/*/checkConsent/action"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "AgFood Platform Service Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Desarrollador de Azure AI

Puede realizar todas las acciones dentro de un recurso de Azure AI además de administrar el propio recurso.

Más información

Acciones Descripción
Microsoft.MachineLearningServices/workspaces/*/read
Microsoft.MachineLearningServices/workspaces/*/action
Microsoft.MachineLearningServices/workspaces/*/delete
Microsoft.MachineLearningServices/workspaces/*/write
Microsoft.MachineLearningServices/locations/*/read
Microsoft.Authorization/*/read Leer roles y asignaciones de roles
Microsoft.Resources/deployments/* Creación y administración de una implementación
NotActions
Microsoft.MachineLearningServices/workspaces/delete Elimina las áreas de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/write Crea o actualiza las áreas de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/listKeys/action Enumera los secretos un área de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/hubs/write Crea o actualiza las áreas de trabajo del centro de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/hubs/delete Elimina las áreas de trabajo del centro de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/featurestores/write Crea o actualiza los almacenes de características de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/featurestores/delete Elimina los almacenes de características de Machine Learning Services.
DataActions
Microsoft.CognitiveServices/accounts/OpenAI/*
Microsoft.CognitiveServices/accounts/SpeechServices/*
Microsoft.CognitiveServices/accounts/ContentSafety/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can perform all actions within an Azure AI resource besides managing the resource itself.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/64702f94-c441-49e6-a78b-ef80e0188fee",
  "name": "64702f94-c441-49e6-a78b-ef80e0188fee",
  "permissions": [
    {
      "actions": [
        "Microsoft.MachineLearningServices/workspaces/*/read",
        "Microsoft.MachineLearningServices/workspaces/*/action",
        "Microsoft.MachineLearningServices/workspaces/*/delete",
        "Microsoft.MachineLearningServices/workspaces/*/write",
        "Microsoft.MachineLearningServices/locations/*/read",
        "Microsoft.Authorization/*/read",
        "Microsoft.Resources/deployments/*"
      ],
      "notActions": [
        "Microsoft.MachineLearningServices/workspaces/delete",
        "Microsoft.MachineLearningServices/workspaces/write",
        "Microsoft.MachineLearningServices/workspaces/listKeys/action",
        "Microsoft.MachineLearningServices/workspaces/hubs/write",
        "Microsoft.MachineLearningServices/workspaces/hubs/delete",
        "Microsoft.MachineLearningServices/workspaces/featurestores/write",
        "Microsoft.MachineLearningServices/workspaces/featurestores/delete"
      ],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/OpenAI/*",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*",
        "Microsoft.CognitiveServices/accounts/ContentSafety/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Azure AI Developer",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Aprobador de conexión de red empresarial de Azure AI

Puede aprobar conexiones de punto de conexión privado a recursos de dependencia comunes de Azure AI

Más información

Acciones Descripción
Microsoft.ContainerRegistry/registries/privateEndpointConnectionsApproval/action Aprueba automaticamente una conexión de punto de conexión privado.
Microsoft.ContainerRegistry/registries/privateEndpointConnections/read Obtiene las propiedades de conexión de punto de conexión privado o enumera todas las conexiones de punto de conexión privado para el registro de contenedor especificado.
Microsoft.ContainerRegistry/registries/privateEndpointConnections/write Aprueba o rechaza la conexión del punto de conexión privado.
Microsoft.Cache/redis/read Visualiza la configuración de Redis Cache en el portal de administración
Microsoft.Cache/redis/privateEndpointConnections/read Lee una conexión de punto de conexión privado.
Microsoft.Cache/redis/privateEndpointConnections/write Escribe una conexión de punto de conexión privado
Microsoft.Cache/redis/privateLinkResources/read Lea el 'groupId' de los subrecursos de la red a los que se puede conectar un enlace privado
Microsoft.Cache/redis/privateEndpointConnectionsApproval/action Aprueba las conexiones de punto de conexión privado.
Microsoft.Cache/redisEnterprise/read Ve la configuración de la caché de Redis Enterprise en el portal de administración.
Microsoft.Cache/redisEnterprise/privateEndpointConnections/read Lee una conexión de punto de conexión privado.
Microsoft.Cache/redisEnterprise/privateEndpointConnections/write Escribe una conexión de punto de conexión privado
Microsoft.Cache/redisEnterprise/privateLinkResources/read Lea el 'groupId' de los subrecursos de la red a los que se puede conectar un enlace privado
Microsoft.Cache/redisEnterprise/privateEndpointConnectionsApproval/action Aprueba las conexiones de punto de conexión privado.
Microsoft.CognitiveServices/accounts/read Lee las cuentas de la API.
Microsoft.CognitiveServices/accounts/privateEndpointConnections/read Lee las conexiones de punto de conexión privado.
Microsoft.CognitiveServices/accounts/privateEndpointConnections/write Escribe las conexiones de punto de conexión privado.
Microsoft.CognitiveServices/accounts/privateLinkResources/read Lee los recursos de Private Link para una cuenta.
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action Administra una conexión de punto de conexión privado de una cuenta de base de datos.
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/read Lee una conexión de punto de conexión privado o enumera todas las conexiones de punto de conexión privado de una cuenta de base de datos.
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/write Crea o actualiza una conexión de punto de conexión privado de una cuenta de base de datos.
Microsoft.DocumentDB/databaseAccounts/privateLinkResources/read Lee un recurso de vínculo privado o enumera todos los recursos de vínculo privado de una cuenta de base de datos.
Microsoft.DocumentDB/databaseAccounts/read Lee una cuenta de base de datos.
Microsoft.KeyVault/vaults/privateEndpointConnectionsApproval/action Aprueba o rechaza una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.KeyVault/vaults/privateEndpointConnections/read Permite ver el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.KeyVault/vaults/privateEndpointConnections/write Cambia el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.KeyVault/vaults/privateLinkResources/read Obtiene los recursos de vínculo privado disponibles de la instancia especificada de Key Vault.
Microsoft.KeyVault/vaults/read Ve las propiedades de un almacén de claves
Microsoft.MachineLearningServices/workspaces/privateEndpointConnectionsApproval/action Aprueba o rechaza una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/read Permite ver el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/write Cambia el estado de una conexión a un recurso de punto de conexión privado del proveedor Microsoft.Network.
Microsoft.MachineLearningServices/workspaces/privateLinkResources/read Obtiene los recursos de vínculo privado disponibles para la instancia especificada de las áreas de trabajo de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/read Obtiene las áreas de trabajo de Machine Learning Services
Microsoft.Storage/storageAccounts/privateEndpointConnections/read Obtiene la conexión de punto de conexión privado.
Microsoft.Storage/storageAccounts/privateEndpointConnections/write Establece la conexión de punto de conexión privado.
Microsoft.Storage/storageAccounts/privateLinkResources/read Obtiene los identificadores de grupo de la cuenta de almacenamiento.
Microsoft.Storage/storageAccounts/read Devuelve la lista de cuentas de almacenamiento u obtiene las propiedades de la cuenta de almacenamiento especificada.
Microsoft.Sql/servers/privateEndpointConnectionsApproval/action Determina si el usuario puede aprobar una conexión de punto de conexión privado.
Microsoft.Sql/servers/privateEndpointConnections/read Devuelve la lista de conexiones de punto de conexión privado u obtiene las propiedades de la conexión de punto de conexión privado especificada.
Microsoft.Sql/servers/privateEndpointConnections/write Aprueba o rechaza una conexión de punto de conexión privado existente.
Microsoft.Sql/servers/privateLinkResources/read Obtiene los recursos de Private Link de la instancia de SQL Server correspondiente.
Microsoft.Sql/servers/read Devuelve la lista de servidores u obtiene las propiedades de un servidor específico.
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can approve private endpoint connections to Azure AI common dependency resources",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/b556d68e-0be0-4f35-a333-ad7ee1ce17ea",
  "name": "b556d68e-0be0-4f35-a333-ad7ee1ce17ea",
  "permissions": [
    {
      "actions": [
        "Microsoft.ContainerRegistry/registries/privateEndpointConnectionsApproval/action",
        "Microsoft.ContainerRegistry/registries/privateEndpointConnections/read",
        "Microsoft.ContainerRegistry/registries/privateEndpointConnections/write",
        "Microsoft.Cache/redis/read",
        "Microsoft.Cache/redis/privateEndpointConnections/read",
        "Microsoft.Cache/redis/privateEndpointConnections/write",
        "Microsoft.Cache/redis/privateLinkResources/read",
        "Microsoft.Cache/redis/privateEndpointConnectionsApproval/action",
        "Microsoft.Cache/redisEnterprise/read",
        "Microsoft.Cache/redisEnterprise/privateEndpointConnections/read",
        "Microsoft.Cache/redisEnterprise/privateEndpointConnections/write",
        "Microsoft.Cache/redisEnterprise/privateLinkResources/read",
        "Microsoft.Cache/redisEnterprise/privateEndpointConnectionsApproval/action",
        "Microsoft.CognitiveServices/accounts/read",
        "Microsoft.CognitiveServices/accounts/privateEndpointConnections/read",
        "Microsoft.CognitiveServices/accounts/privateEndpointConnections/write",
        "Microsoft.CognitiveServices/accounts/privateLinkResources/read",
        "Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action",
        "Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/read",
        "Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/write",
        "Microsoft.DocumentDB/databaseAccounts/privateLinkResources/read",
        "Microsoft.DocumentDB/databaseAccounts/read",
        "Microsoft.KeyVault/vaults/privateEndpointConnectionsApproval/action",
        "Microsoft.KeyVault/vaults/privateEndpointConnections/read",
        "Microsoft.KeyVault/vaults/privateEndpointConnections/write",
        "Microsoft.KeyVault/vaults/privateLinkResources/read",
        "Microsoft.KeyVault/vaults/read",
        "Microsoft.MachineLearningServices/workspaces/privateEndpointConnectionsApproval/action",
        "Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/read",
        "Microsoft.MachineLearningServices/workspaces/privateEndpointConnections/write",
        "Microsoft.MachineLearningServices/workspaces/privateLinkResources/read",
        "Microsoft.MachineLearningServices/workspaces/read",
        "Microsoft.Storage/storageAccounts/privateEndpointConnections/read",
        "Microsoft.Storage/storageAccounts/privateEndpointConnections/write",
        "Microsoft.Storage/storageAccounts/privateLinkResources/read",
        "Microsoft.Storage/storageAccounts/read",
        "Microsoft.Sql/servers/privateEndpointConnectionsApproval/action",
        "Microsoft.Sql/servers/privateEndpointConnections/read",
        "Microsoft.Sql/servers/privateEndpointConnections/write",
        "Microsoft.Sql/servers/privateLinkResources/read",
        "Microsoft.Sql/servers/read"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "Azure AI Enterprise Network Connection Approver",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Operador de implementación de inferencias de Azure AI

Puede realizar todas las acciones necesarias para crear una implementación de recursos dentro de un grupo de recursos.

Más información

Acciones Descripción
Microsoft.Authorization/*/read Leer roles y asignaciones de roles
Microsoft.Resources/deployments/* Creación y administración de una implementación
Microsoft.Insights/AutoscaleSettings/write Crea o actualiza una configuración de escalado automático.
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can perform all actions required to create a resource deployment within a resource group.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/3afb7f49-54cb-416e-8c09-6dc049efa503",
  "name": "3afb7f49-54cb-416e-8c09-6dc049efa503",
  "permissions": [
    {
      "actions": [
        "Microsoft.Authorization/*/read",
        "Microsoft.Resources/deployments/*",
        "Microsoft.Insights/AutoscaleSettings/write"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "Azure AI Inference Deployment Operator",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Operador de proceso de AzureML

Puede acceder y realizar operaciones CRUD en recursos de proceso administrados de Machine Learning Services (incluidas las máquinas virtuales de Notebook).

Más información

Acciones Descripción
Microsoft.MachineLearningServices/workspaces/computes/*
Microsoft.MachineLearningServices/workspaces/notebooks/vm/*
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can access and perform CRUD operations on Machine Learning Services managed compute resources (including Notebook VMs).",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/e503ece1-11d0-4e8e-8e2c-7a6c3bf38815",
  "name": "e503ece1-11d0-4e8e-8e2c-7a6c3bf38815",
  "permissions": [
    {
      "actions": [
        "Microsoft.MachineLearningServices/workspaces/computes/*",
        "Microsoft.MachineLearningServices/workspaces/notebooks/vm/*"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "AzureML Compute Operator",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Científico de datos de AzureML

Puede realizar todas las acciones dentro de un área de trabajo de Azure Machine Learning, excepto crear o eliminar recursos de proceso, y modificar la propia área de trabajo.

Más información

Acciones Descripción
Microsoft.MachineLearningServices/workspaces/*/read
Microsoft.MachineLearningServices/workspaces/*/action
Microsoft.MachineLearningServices/workspaces/*/delete
Microsoft.MachineLearningServices/workspaces/*/write
NotActions
Microsoft.MachineLearningServices/workspaces/delete Elimina las áreas de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/write Crea o actualiza las áreas de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/computes/*/write
Microsoft.MachineLearningServices/workspaces/computes/*/delete
Microsoft.MachineLearningServices/workspaces/computes/listKeys/action Enumera los secretos de los recursos de proceso en el área de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/listKeys/action Enumera los secretos un área de trabajo de Machine Learning Services
Microsoft.MachineLearningServices/workspaces/hubs/write Crea o actualiza las áreas de trabajo del centro de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/hubs/delete Elimina las áreas de trabajo del centro de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/featurestores/write Crea o actualiza los almacenes de características de Machine Learning Services.
Microsoft.MachineLearningServices/workspaces/featurestores/delete Elimina los almacenes de características de Machine Learning Services.
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can perform all actions within an Azure Machine Learning workspace, except for creating or deleting compute resources and modifying the workspace itself.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f6c7c914-8db3-469d-8ca1-694a8f32e121",
  "name": "f6c7c914-8db3-469d-8ca1-694a8f32e121",
  "permissions": [
    {
      "actions": [
        "Microsoft.MachineLearningServices/workspaces/*/read",
        "Microsoft.MachineLearningServices/workspaces/*/action",
        "Microsoft.MachineLearningServices/workspaces/*/delete",
        "Microsoft.MachineLearningServices/workspaces/*/write"
      ],
      "notActions": [
        "Microsoft.MachineLearningServices/workspaces/delete",
        "Microsoft.MachineLearningServices/workspaces/write",
        "Microsoft.MachineLearningServices/workspaces/computes/*/write",
        "Microsoft.MachineLearningServices/workspaces/computes/*/delete",
        "Microsoft.MachineLearningServices/workspaces/computes/listKeys/action",
        "Microsoft.MachineLearningServices/workspaces/listKeys/action",
        "Microsoft.MachineLearningServices/workspaces/hubs/write",
        "Microsoft.MachineLearningServices/workspaces/hubs/delete",
        "Microsoft.MachineLearningServices/workspaces/featurestores/write",
        "Microsoft.MachineLearningServices/workspaces/featurestores/delete"
      ],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "AzureML Data Scientist",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Escritor de métricas de Azure ML (versión preliminar)

Permite escribir métricas en el área de trabajo de AzureML.

Más información

Acciones Descripción
Microsoft.MachineLearningServices/workspaces/metrics/*/write
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you write metrics to AzureML workspace",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/635dd51f-9968-44d3-b7fb-6d9a6bd613ae",
  "name": "635dd51f-9968-44d3-b7fb-6d9a6bd613ae",
  "permissions": [
    {
      "actions": [
        "Microsoft.MachineLearningServices/workspaces/metrics/*/write"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "AzureML Metrics Writer (preview)",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario del registro de AzureML

Puede realizar todas las acciones en los recursos del Registro de Machine Learning Services, así como obtener recursos del Registro.

Más información

Acciones Descripción
Microsoft.MachineLearningServices/registries/read Obtiene los registros de Machine Learning Services.
Microsoft.MachineLearningServices/registries/assets/*
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Can perform all actions on Machine Learning Services Registry assets as well as get Registry resources.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/1823dd4f-9b8c-4ab6-ab4e-7397a3684615",
  "name": "1823dd4f-9b8c-4ab6-ab4e-7397a3684615",
  "permissions": [
    {
      "actions": [
        "Microsoft.MachineLearningServices/registries/read",
        "Microsoft.MachineLearningServices/registries/assets/*"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "AzureML Registry User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador de Cognitive Services

Le permite crear, leer, actualizar, eliminar y administrar las claves de Cognitive Services.

Más información

Acciones Descripción
Microsoft.Authorization/*/read Leer roles y asignaciones de roles
Microsoft.CognitiveServices/*
Microsoft.Features/features/read Obtiene las características de una suscripción.
Microsoft.Features/providers/features/read Obtiene la característica de una suscripción de un proveedor de recursos determinado.
Microsoft.Features/providers/features/register/action Registra la característica de una suscripción de un proveedor de recursos determinado.
Microsoft.Insights/alertRules/* Creación y administración de una alerta de métricas clásica
Microsoft.Insights/diagnosticSettings/* Crea, actualiza o lee la configuración de diagnóstico de Analysis Server.
Microsoft.Insights/logDefinitions/read Lee definiciones de registro
Microsoft.Insights/metricdefinitions/read Lee definiciones de métricas
Microsoft.Insights/metrics/read Lee métricas
Microsoft.ResourceHealth/availabilityStatuses/read Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado
Microsoft.Resources/deployments/* Creación y administración de una implementación
Microsoft.Resources/deployments/operations/read Obtiene o enumera las operaciones de implementación.
Microsoft.Resources/subscriptions/operationresults/read Obtiene los resultados de la operación de suscripción.
Microsoft.Resources/subscriptions/read Obtiene la lista de suscripciones.
Microsoft.Resources/subscriptions/resourcegroups/deployments/*
Microsoft.Resources/subscriptions/resourceGroups/read Obtiene o enumera los grupos de recursos.
Microsoft.Support/* Creación y actualización de una incidencia de soporte técnico
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you create, read, update, delete and manage keys of Cognitive Services.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
  "name": "25fbc0a9-bd7c-42a3-aa1a-3b75d497ee68",
  "permissions": [
    {
      "actions": [
        "Microsoft.Authorization/*/read",
        "Microsoft.CognitiveServices/*",
        "Microsoft.Features/features/read",
        "Microsoft.Features/providers/features/read",
        "Microsoft.Features/providers/features/register/action",
        "Microsoft.Insights/alertRules/*",
        "Microsoft.Insights/diagnosticSettings/*",
        "Microsoft.Insights/logDefinitions/read",
        "Microsoft.Insights/metricdefinitions/read",
        "Microsoft.Insights/metrics/read",
        "Microsoft.ResourceHealth/availabilityStatuses/read",
        "Microsoft.Resources/deployments/*",
        "Microsoft.Resources/deployments/operations/read",
        "Microsoft.Resources/subscriptions/operationresults/read",
        "Microsoft.Resources/subscriptions/read",
        "Microsoft.Resources/subscriptions/resourcegroups/deployments/*",
        "Microsoft.Resources/subscriptions/resourceGroups/read",
        "Microsoft.Support/*"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador de Custom Vision de Cognitive Services

Acceso completo al proyecto, lo que incluye la capacidad para ver, crear, editar o eliminar proyectos.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/CustomVision/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Full access to the project, including the ability to view, create, edit, or delete projects.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
  "name": "c1ff6cc2-c111-46fe-8896-e0ef812ad9f3",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Custom Vision Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Implementación de Custom Vision de Cognitive Services

Publicar, anular publicaciones o exportar modelos. La implementación puede ver el proyecto pero no puede actualizarlo.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/CustomVision/*/read
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/*
Microsoft.CognitiveServices/accounts/CustomVision/classify/*
Microsoft.CognitiveServices/accounts/CustomVision/detect/*
NotDataActions
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read Exporta un proyecto.
{
  "assignableScopes": [
    "/"
  ],
  "description": "Publish, unpublish or export models. Deployment can view the project but can't update.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/5c4089e1-6d96-4d2f-b296-c1bc7137275f",
  "name": "5c4089e1-6d96-4d2f-b296-c1bc7137275f",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/*/read",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/publish/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/iterations/export/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/quicktest/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/classify/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/detect/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
      ]
    }
  ],
  "roleName": "Cognitive Services Custom Vision Deployment",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Etiquetador de Custom Vision de Cognitive Services

Ver y editar imágenes de entrenamiento, además de crear, agregar, quitar o eliminar etiquetas de imágenes. Los etiquetadores pueden ver el proyecto, pero no pueden actualizar nada más que las imágenes y etiquetas de entrenamiento.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/CustomVision/*/read
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action Obtiene las imágenes que se enviaron al punto de conexión de predicción.
Microsoft.CognitiveServices/accounts/CustomVision/projects/images/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/*
Microsoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action Esta API obtendrá etiquetas y regiones sugeridas para una matriz o lote de imágenes sin etiquetar, junto con las confianzas de las etiquetas. Devuelve una matriz vacía si no se encuentra ninguna etiqueta.
NotDataActions
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read Exporta un proyecto.
{
  "assignableScopes": [
    "/"
  ],
  "description": "View, edit training images and create, add, remove, or delete the image tags. Labelers can view the project but can't update anything other than training images and tags.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/88424f51-ebe7-446f-bc41-7fa16989e96c",
  "name": "88424f51-ebe7-446f-bc41-7fa16989e96c",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/*/read",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/images/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/tags/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/images/suggested/*",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/tagsandregions/suggestions/action"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
      ]
    }
  ],
  "roleName": "Cognitive Services Custom Vision Labeler",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de Custom Vision de Cognitive Services

Acciones de solo lectura en el proyecto. Los lectores no pueden crear ni actualizar el proyecto.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/CustomVision/*/read
Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action Obtiene las imágenes que se enviaron al punto de conexión de predicción.
NotDataActions
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read Exporta un proyecto.
{
  "assignableScopes": [
    "/"
  ],
  "description": "Read-only actions in the project. Readers can't create or update the project.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/93586559-c37d-4a6b-ba08-b9f0940c2d73",
  "name": "93586559-c37d-4a6b-ba08-b9f0940c2d73",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/*/read",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/predictions/query/action"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
      ]
    }
  ],
  "roleName": "Cognitive Services Custom Vision Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Entrenador de Custom Vision de Cognitive Services

Ver, editar proyectos y entrenar los modelos, lo que incluye la capacidad de publicar, anular la publicación y exportar los modelos. Los entrenadores no pueden crear ni eliminar el proyecto.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/CustomVision/*
NotDataActions
Microsoft.CognitiveServices/accounts/CustomVision/projects/action Cree un proyecto.
Microsoft.CognitiveServices/accounts/CustomVision/projects/delete Elimina un proyecto específico.
Microsoft.CognitiveServices/accounts/CustomVision/projects/import/action Importa un proyecto.
Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read Exporta un proyecto.
{
  "assignableScopes": [
    "/"
  ],
  "description": "View, edit projects and train the models, including the ability to publish, unpublish, export the models. Trainers can't create or delete the project.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/0a5ae4ab-0d65-4eeb-be61-29fc9b54394b",
  "name": "0a5ae4ab-0d65-4eeb-be61-29fc9b54394b",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/action",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/delete",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/import/action",
        "Microsoft.CognitiveServices/accounts/CustomVision/projects/export/read"
      ]
    }
  ],
  "roleName": "Cognitive Services Custom Vision Trainer",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de datos de Cognitive Services

Permite leer los datos de Cognitive Services.

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.CognitiveServices/*/read
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you read Cognitive Services data.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/b59867f0-fa02-499b-be73-45a86b5b3e1c",
  "name": "b59867f0-fa02-499b-be73-45a86b5b3e1c",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Data Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Cognitive Services Face Recognizer

Permite detectar, comprobar, identificar, agrupar y buscar operaciones similares en Face API. Este rol no permite operaciones de creación o eliminación, de modo que es adecuado para los puntos de conexión que solo necesitan funcionalidades de inferencia, según los procedimientos recomendados de "privilegios mínimos".

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/Face/detect/action Detecta caras humanas en una imagen, devuelve rectángulos de caras, opcionalmente con identificadores de cara, puntos de referencia y atributos.
Microsoft.CognitiveServices/accounts/Face/verify/action Comprueba si dos caras pertenecen a una misma persona o si una cara pertenece a una persona.
Microsoft.CognitiveServices/accounts/Face/identify/action Identificación de 1 a varios para encontrar las coincidencias más cercanas de la cara de la persona de la consulta específica a partir de un grupo de personas o grupo de personas de gran tamaño.
Microsoft.CognitiveServices/accounts/Face/group/action Divide las caras de los candidatos en grupos en función de la similitud de la cara.
Microsoft.CognitiveServices/accounts/Face/findsimilars/action Dado el elemento faceId de un cara de la consulta, busca las caras similares en una matriz de elementos faceId, una lista de caras o una lista de caras de gran tamaño. faceId
Microsoft.CognitiveServices/accounts/Face/detectliveness/horizontal/action

Realiza la detección de actividad vital en una cara de destino en una secuencia de imágenes de profundidad, color o infrarrojos, y devuelve la clasificación de actividad vital de la cara de destino como "real face" (cara real), "spoof face" (cara suplantada) o "uncertain" (indeterminado) si no se puede realizar una clasificación con las entradas especificadas.

Microsoft.CognitiveServices/accounts/Face/detectliveness/singlemodal/action

Realiza la detección de actividad vital en una cara de destino en una secuencia de imágenes de la misma modalidad (por ejemplo, color o infrarrojos), y devuelve la clasificación de actividad vital de la cara de destino como "real face" (cara real), "spoof face" (cara suplantada) o "uncertain" (indeterminado) si no se puede realizar una clasificación con las entradas especificadas.

Microsoft.CognitiveServices/accounts/Face/detectlivenesswithverify/singlemodal/action Detecta la ejecución de una cara de destino en una secuencia de imágenes de la misma modalidad (por ejemplo, color) y, a continuación, compara con VerifyImage para devolver la puntuación de confianza para escenarios de identidad.
Microsoft.CognitiveServices/accounts/Face/*/sessions/action
Microsoft.CognitiveServices/accounts/Face/*/sessions/delete
Microsoft.CognitiveServices/accounts/Face/*/sessions/read
Microsoft.CognitiveServices/accounts/Face/*/sessions/audit/read
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you perform detect, verify, identify, group, and find similar operations on Face API. This role does not allow create or delete operations, which makes it well suited for endpoints that only need inferencing capabilities, following 'least privilege' best practices.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/9894cab4-e18a-44aa-828b-cb588cd6f2d7",
  "name": "9894cab4-e18a-44aa-828b-cb588cd6f2d7",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/Face/detect/action",
        "Microsoft.CognitiveServices/accounts/Face/verify/action",
        "Microsoft.CognitiveServices/accounts/Face/identify/action",
        "Microsoft.CognitiveServices/accounts/Face/group/action",
        "Microsoft.CognitiveServices/accounts/Face/findsimilars/action",
        "Microsoft.CognitiveServices/accounts/Face/detectliveness/multimodal/action",
        "Microsoft.CognitiveServices/accounts/Face/detectliveness/singlemodal/action",
        "Microsoft.CognitiveServices/accounts/Face/detectlivenesswithverify/singlemodal/action",
        "Microsoft.CognitiveServices/accounts/Face/*/sessions/action",
        "Microsoft.CognitiveServices/accounts/Face/*/sessions/delete",
        "Microsoft.CognitiveServices/accounts/Face/*/sessions/read",
        "Microsoft.CognitiveServices/accounts/Face/*/sessions/audit/read"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Face Recognizer",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario de Lector inmersivo de Cognitive Services

Proporciona acceso para crear sesiones de Lector inmersivo y llamar a las API

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/ImmersiveReader/getcontentmodelforreader/action Crea una sesión de Lector inmersivo.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Provides access to create Immersive Reader sessions and call APIs",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/b2de6794-95db-4659-8781-7e080d3f2b9d",
  "name": "b2de6794-95db-4659-8781-7e080d3f2b9d",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/ImmersiveReader/getcontentmodelforreader/action"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Immersive Reader User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Propietario de lenguaje de Cognitive Services

Tiene acceso a todas las funciones De lectura, prueba, escritura, implementación y eliminación en el portal de lenguaje

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.CognitiveServices/accounts/listkeys/action Enumeración de claves
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LanguageAuthoring/*
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*
Microsoft.CognitiveServices/accounts/Language/*
Microsoft.CognitiveServices/accounts/TextAnalytics/*
NotDataActions
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*
{
  "assignableScopes": [
    "/"
  ],
  "description": "Has access to all Read, Test, Write, Deploy and Delete functions under Language portal",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f07febfe-79bc-46b1-8b37-790e26e6e498",
  "name": "f07febfe-79bc-46b1-8b37-790e26e6e498",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.CognitiveServices/accounts/listkeys/action",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LanguageAuthoring/*",
        "Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*",
        "Microsoft.CognitiveServices/accounts/Language/*",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*"
      ]
    }
  ],
  "roleName": "Cognitive Services Language Owner",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de lenguaje de Cognitive Services

Tiene acceso a las funciones de lectura y prueba en el portal de lenguaje

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LanguageAuthoring/*/read
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*/read
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/export/action Desencadena un trabajo para exportar datos del proyecto en formato JSON.
Microsoft.CognitiveServices/accounts/Language/*/read
Microsoft.CognitiveServices/accounts/Language/*/projects/export/action
Microsoft.CognitiveServices/accounts/Language/query-text/action Texto de la respuesta.
Microsoft.CognitiveServices/accounts/Language/query-dataverse/action Permite consultar Dataverse.
Microsoft.CognitiveServices/accounts/Language/analyze-text/jobs/action Envía una colección de documentos de texto para su análisis. Especifica una o más tareas únicas que se van a ejecutar.
Microsoft.CognitiveServices/accounts/Language/analyze-text/action Envía una colección de documentos de texto para su análisis. Especifica una tarea única que se va a ejecutar inmediatamente.
Microsoft.CognitiveServices/accounts/Language/analyze-text/jobscancel/action Cancela un trabajo de análisis de texto de larga duración.
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/action Analiza la conversación de entrada.
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobscancel/action Cancela un trabajo de análisis de larga duración en la conversación.
Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobs/action Envía una conversación larga para su análisis. Especifica una o más tareas únicas que se van a ejecutar como operaciones de larga duración.
Microsoft.CognitiveServices/accounts/Language/query-knowledgebases/action Permite consultar la base de conocimientos.
Microsoft.CognitiveServices/accounts/Language/generate/action Generación de lenguajes.
Microsoft.CognitiveServices/accounts/TextAnalytics/*
NotDataActions
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*
{
  "assignableScopes": [
    "/"
  ],
  "description": "Has access to Read and Test functions under Language portal",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/7628b7b8-a8b2-4cdc-b46f-e9b35248918e",
  "name": "7628b7b8-a8b2-4cdc-b46f-e9b35248918e",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LanguageAuthoring/*/read",
        "Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*/read",
        "Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/export/action",
        "Microsoft.CognitiveServices/accounts/Language/*/read",
        "Microsoft.CognitiveServices/accounts/Language/*/projects/export/action",
        "Microsoft.CognitiveServices/accounts/Language/query-text/action",
        "Microsoft.CognitiveServices/accounts/Language/query-dataverse/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-text/jobs/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-text/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-text/jobscancel/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-conversations/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobscancel/action",
        "Microsoft.CognitiveServices/accounts/Language/analyze-conversations/jobs/action",
        "Microsoft.CognitiveServices/accounts/Language/query-knowledgebases/action",
        "Microsoft.CognitiveServices/accounts/Language/generate/action",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*"
      ]
    }
  ],
  "roleName": "Cognitive Services Language Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Escritor de lenguaje de Cognitive Services

Tiene acceso a todas las funciones de lectura, prueba y escritura en el Portal de lenguaje

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LanguageAuthoring/*
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*
Microsoft.CognitiveServices/accounts/Language/*
Microsoft.CognitiveServices/accounts/TextAnalytics/*
NotDataActions
Microsoft.CognitiveServices/accounts/LanguageAuthoring/projects/publish/action Desencadena el trabajo de publicación.
Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/deployments/write Desencadena un trabajo para crear una nueva implementación o reemplazar una implementación existente.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*
Microsoft.CognitiveServices/accounts/Language/*/projects/delete
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/write
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/delete
Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/swap/action
{
  "assignableScopes": [
    "/"
  ],
  "description": " Has access to all Read, Test, and Write functions under Language Portal",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f2310ca1-dc64-4889-bb49-c8e0fa3d47a8",
  "name": "f2310ca1-dc64-4889-bb49-c8e0fa3d47a8",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LanguageAuthoring/*",
        "Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/*",
        "Microsoft.CognitiveServices/accounts/Language/*",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/LanguageAuthoring/projects/publish/action",
        "Microsoft.CognitiveServices/accounts/ConversationalLanguageUnderstanding/projects/deployments/write",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnaMaker/*",
        "Microsoft.CognitiveServices/accounts/Language/*/projects/delete",
        "Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/write",
        "Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/delete",
        "Microsoft.CognitiveServices/accounts/Language/*/projects/deployments/swap/action"
      ]
    }
  ],
  "roleName": "Cognitive Services Language Writer",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Propietario de LUIS de Cognitive Services

Tiene acceso a todas las funciones De lectura, prueba, escritura, implementación y eliminación en LUIS

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.CognitiveServices/accounts/listkeys/action Enumeración de claves
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LUIS/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": " Has access to all Read, Test, Write, Deploy and Delete functions under LUIS",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f72c8140-2111-481c-87ff-72b910f6e3f8",
  "name": "f72c8140-2111-481c-87ff-72b910f6e3f8",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.CognitiveServices/accounts/listkeys/action",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LUIS/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services LUIS Owner",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de LUIS de Cognitive Services

Tiene acceso a las funciones de lectura y prueba en LUIS.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LUIS/*/read
Microsoft.CognitiveServices/accounts/LUIS/apps/testdatasets/write Actualiza los resultados de la última prueba de un conjunto de datos de prueba por lotes existente para una aplicación determinada.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Has access to Read and Test functions under LUIS.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/18e81cdc-4e98-4e29-a639-e7d10c5a6226",
  "name": "18e81cdc-4e98-4e29-a639-e7d10c5a6226",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LUIS/*/read",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/testdatasets/write"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services LUIS Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Escritor de LUIS de Cognitive Services

Tiene acceso a todas las funciones de lectura, prueba y escritura en LUIS

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/LUIS/*
NotDataActions
Microsoft.CognitiveServices/accounts/LUIS/apps/delete Elimina una aplicación.
Microsoft.CognitiveServices/accounts/LUIS/apps/move/action Mueve la aplicación a otro recurso de Azure de creación de LUIS.
Microsoft.CognitiveServices/accounts/LUIS/apps/publish/action Publica una versión específica de la aplicación.
Microsoft.CognitiveServices/accounts/LUIS/apps/settings/write Actualiza la configuración de la aplicación.
Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/action Asigna una cuenta de Azure a la aplicación.
Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/delete Obtiene las cuentas de Azure de LUIS del usuario que utiliza su token de Azure Resource Manager.
{
  "assignableScopes": [
    "/"
  ],
  "description": "Has access to all Read, Test, and Write functions under LUIS",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/6322a993-d5c9-4bed-b113-e49bbea25b27",
  "name": "6322a993-d5c9-4bed-b113-e49bbea25b27",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/LUIS/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/LUIS/apps/delete",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/move/action",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/publish/action",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/settings/write",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/action",
        "Microsoft.CognitiveServices/accounts/LUIS/apps/azureaccounts/delete"
      ]
    }
  ],
  "roleName": "Cognitive Services LUIS Writer",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Administrador de Metrics Advisor de Cognitive Services

Acceso total al proyecto, lo que incluye la configuración del nivel de sistema.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/MetricsAdvisor/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Full access to the project, including the system level configuration.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/cb43c632-a144-4ec5-977c-e80c4affc34a",
  "name": "cb43c632-a144-4ec5-977c-e80c4affc34a",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/MetricsAdvisor/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Metrics Advisor Administrator",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario de Metrics Advisor de Cognitive Services

Acceso al proyecto.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/MetricsAdvisor/*
NotDataActions
Microsoft.CognitiveServices/accounts/MetricsAdvisor/stats/*
{
  "assignableScopes": [
    "/"
  ],
  "description": "Access to the project.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/3b20f47b-3825-43cb-8114-4bd2201156a8",
  "name": "3b20f47b-3825-43cb-8114-4bd2201156a8",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/MetricsAdvisor/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/MetricsAdvisor/stats/*"
      ]
    }
  ],
  "roleName": "Cognitive Services Metrics Advisor User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador de OpenAI de Cognitive Services

Acceso completo, incluida la capacidad de ajustar, implementar y generar texto

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.CognitiveServices/accounts/deployments/write Escribe las implementaciones.
Microsoft.CognitiveServices/accounts/deployments/delete Elimina las implementaciones.
Microsoft.CognitiveServices/accounts/raiPolicies/read Obtiene todas las directivas aplicables en la cuenta, incluidas las directivas predeterminadas.
Microsoft.CognitiveServices/accounts/raiPolicies/write Cree o actualice una directiva de IA responsable personalizada.
Microsoft.CognitiveServices/accounts/raiPolicies/delete Elimina una directiva de IA responsable personalizada a la que no hace referencia una implementación existente.
Microsoft.CognitiveServices/accounts/commitmentplans/read Lee los planes de compromiso.
Microsoft.CognitiveServices/accounts/commitmentplans/write Administra los planes de compromiso.
Microsoft.CognitiveServices/accounts/commitmentplans/delete Elimina los planes de compromiso.
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/OpenAI/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Full access including the ability to fine-tune, deploy and generate text",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/a001fd3d-188f-4b5d-821b-7da978bf7442",
  "name": "a001fd3d-188f-4b5d-821b-7da978bf7442",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.CognitiveServices/accounts/deployments/write",
        "Microsoft.CognitiveServices/accounts/deployments/delete",
        "Microsoft.CognitiveServices/accounts/raiPolicies/read",
        "Microsoft.CognitiveServices/accounts/raiPolicies/write",
        "Microsoft.CognitiveServices/accounts/raiPolicies/delete",
        "Microsoft.CognitiveServices/accounts/commitmentplans/read",
        "Microsoft.CognitiveServices/accounts/commitmentplans/write",
        "Microsoft.CognitiveServices/accounts/commitmentplans/delete",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/OpenAI/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services OpenAI Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario de OpenAI de Cognitive Services

Acceso de lectura para ver archivos, modelos e implementaciones. La capacidad de crear llamadas de finalización e inserción.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/OpenAI/*/read
Microsoft.CognitiveServices/accounts/OpenAI/engines/completions/action Crea una finalización a partir de un modelo elegido.
Microsoft.CognitiveServices/accounts/OpenAI/engines/search/action Busca los documentos más importantes mediante el motor actual.
Microsoft.CognitiveServices/accounts/OpenAI/engines/generate/action (Diseñado solo para exploradores). Transmita el texto generado desde el modelo a través de la solicitud GET. Este método se proporciona porque el método EventSource nativo del explorador solo puede enviar solicitudes GET. Admite un conjunto más limitado de opciones de configuración que la variante POST.
Microsoft.CognitiveServices/accounts/OpenAI/deployments/audio/action Devuelve la transcripción o traducción de un archivo de audio determinado.
Microsoft.CognitiveServices/accounts/OpenAI/deployments/search/action Busca los documentos más importantes mediante el motor actual.
Microsoft.CognitiveServices/accounts/OpenAI/deployments/completions/action Permite crear una finalización a partir de un modelo elegido.
Microsoft.CognitiveServices/accounts/OpenAI/deployments/chat/completions/action Crea una finalización para el mensaje de chat
Microsoft.CognitiveServices/accounts/OpenAI/deployments/realtime/action Crea una conexión en tiempo real a la implementación.
Microsoft.CognitiveServices/accounts/OpenAI/deployments/extensions/chat/completions/action Crea una finalización para el mensaje de chat con extensiones
Microsoft.CognitiveServices/accounts/OpenAI/deployments/embeddings/action Devuelve las incrustaciones de un mensaje determinado.
Microsoft.CognitiveServices/accounts/OpenAI/images/generations/action Cree generaciones de imágenes.
Microsoft.CognitiveServices/accounts/OpenAI/assistants/*
NotDataActions
Microsoft.CognitiveServices/accounts/OpenAI/stored-completions/read Consulta de datos de finalizaciones mediante filtros o Obtención de datos de finalización única mediante identificador de finalización o Obtención de metadatos de tráfico para la cuenta especificada
{
  "assignableScopes": [
    "/"
  ],
  "description": "Ability to view files, models, deployments. Readers can't make any changes They can inference and create images",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/5e0bd9bd-7b93-4f28-af87-19fc36ad61bd",
  "name": "5e0bd9bd-7b93-4f28-af87-19fc36ad61bd",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/OpenAI/*/read",
        "Microsoft.CognitiveServices/accounts/OpenAI/engines/completions/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/engines/search/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/engines/generate/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/audio/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/search/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/completions/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/chat/completions/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/realtime/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/extensions/chat/completions/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/deployments/embeddings/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/images/generations/action",
        "Microsoft.CognitiveServices/accounts/OpenAI/assistants/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/OpenAI/stored-completions/read"
      ]
    }
  ],
  "roleName": "Cognitive Services OpenAI User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Editor de QnA Maker de Cognitive Services

Permite crear, editar, importar y exportar un knowledge base. No se puede publicar ni eliminar un knowledge base.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/create/write Operación asincrónica para crear una nueva base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/write Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/train/action Llama a Train para agregar sugerencias a la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/write Reemplaza los datos de las modificaciones.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/refreshkeys/action Vuelve a generar una clave de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/write Actualice la configuración del punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker/operations/read Obtiene los detalles de una operación de ejecución prolongada específica.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/create/write Operación asincrónica para crear una nueva base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/write Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/train/action Llama a Train para agregar sugerencias a la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/write Reemplaza los datos de las modificaciones.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/refreshkeys/action Vuelve a generar una clave de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/write Actualice la configuración del punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/operations/read Obtiene los detalles de una operación de ejecución prolongada específica.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/create/write Operación asincrónica para crear una nueva base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/write Operación asincrónica para modificar una base de conocimiento o reemplazar el contenido de la bases de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/train/action Llama a Train para agregar sugerencias a la base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/write Reemplaza los datos de las modificaciones.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/refreshkeys/action Vuelve a generar una clave de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/write Actualice la configuración del punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/operations/read Obtiene los detalles de una operación de ejecución prolongada específica.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Let's you create, edit, import and export a KB. You cannot publish or delete a KB.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f4cc2bf9-21be-47a1-bdf1-5c5804381025",
  "name": "f4cc2bf9-21be-47a1-bdf1-5c5804381025",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/create/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/train/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/alterations/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/refreshkeys/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker/operations/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/create/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/train/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/refreshkeys/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/write",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/operations/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/create/write",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/write",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/train/action",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/write",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/refreshkeys/action",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/write",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/operations/read"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services QnA Maker Editor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de QnA Maker de Cognitive Services

Permite leer y probar solo un knowledge base.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read Obtiene la lista de bases de conocimiento o detalles de una base de conocimiento específica.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read Descarga la base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action Llamada a GenerateAnswer para consultar la base de conocimiento.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read Descarga las modificaciones en el entorno de tiempo de ejecución.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read Obtiene las claves de punto de conexión de un punto de conexión.
Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read Obtiene la configuración de punto de conexión de un punto de conexión.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Let's you read and test a KB only.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/466ccd10-b268-4a11-b098-b4849f024126",
  "name": "466ccd10-b268-4a11-b098-b4849f024126",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker/alterations/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker/endpointsettings/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/alterations/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/QnAMaker.v2/endpointsettings/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/download/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/knowledgebases/generateanswer/action",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/alterations/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointkeys/read",
        "Microsoft.CognitiveServices/accounts/TextAnalytics/QnAMaker/endpointsettings/read"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services QnA Maker Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador de voz de Cognitive Services

Acceso total a proyectos de Voz, incluidas las tareas de lectura, escritura y eliminación de todas las entidades, para tareas de reconocimiento de voz en tiempo real y transcripción por lotes, síntesis de voz en tiempo real y tareas de audio largas, voz personalizada y voz personalizada.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/SpeechServices/*
Microsoft.CognitiveServices/accounts/CustomVoice/*
Microsoft.CognitiveServices/accounts/AudioContentCreation/*
Microsoft.CognitiveServices/accounts/VideoTranslation/*
Microsoft.CognitiveServices/accounts/CustomAvatar/*
Microsoft.CognitiveServices/accounts/BatchAvatar/*
Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Full access to Speech projects, including read, write and delete all entities, for real-time speech recognition and batch transcription tasks, real-time speech synthesis and long audio tasks, custom speech and custom voice.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/0e75ca1e-0464-4b4d-8b93-68208a576181",
  "name": "0e75ca1e-0464-4b4d-8b93-68208a576181",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/SpeechServices/*",
        "Microsoft.CognitiveServices/accounts/CustomVoice/*",
        "Microsoft.CognitiveServices/accounts/AudioContentCreation/*",
        "Microsoft.CognitiveServices/accounts/VideoTranslation/*",
        "Microsoft.CognitiveServices/accounts/CustomAvatar/*",
        "Microsoft.CognitiveServices/accounts/BatchAvatar/*",
        "Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Speech Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario de voz de Cognitive Services

Acceso a las API de reconocimiento de voz en tiempo real y transcripción por lotes, síntesis de voz en tiempo real y API de audio largas, así como para leer los datos, pruebas, modelos o puntos de conexión para los modelos personalizados, pero no puede crear, eliminar ni modificar los datos, pruebas, modelos o puntos de conexión para los modelos personalizados.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.Authorization/roleAssignments/read Obtiene información sobre una asignación de roles.
Microsoft.Authorization/roleDefinitions/read Obtiene información sobre una definición de roles.
NotActions
none
DataActions
Microsoft.CognitiveServices/accounts/SpeechServices/*/read
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/read
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/write
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/delete
Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/action
Microsoft.CognitiveServices/accounts/SpeechServices/*/frontend/action
Microsoft.CognitiveServices/accounts/SpeechServices/text-dependent/*/action
Microsoft.CognitiveServices/accounts/SpeechServices/text-independent/*/action
Microsoft.CognitiveServices/accounts/CustomVoice/*/read
Microsoft.CognitiveServices/accounts/CustomVoice/evaluations/*
Microsoft.CognitiveServices/accounts/CustomVoice/longaudiosynthesis/*
Microsoft.CognitiveServices/accounts/AudioContentCreation/*
Microsoft.CognitiveServices/accounts/VideoTranslation/*
Microsoft.CognitiveServices/accounts/CustomAvatar/*/read
Microsoft.CognitiveServices/accounts/BatchAvatar/*
Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*
NotDataActions
Microsoft.CognitiveServices/accounts/CustomVoice/datasets/files/read Obtiene los archivos del conjunto de datos identificado mediante el identificador especificado.
Microsoft.CognitiveServices/accounts/CustomVoice/datasets/utterances/read Obtiene expresiones del conjunto de entrenamiento especificado.
{
  "assignableScopes": [
    "/"
  ],
  "description": "Access to the real-time speech recognition and batch transcription APIs, real-time speech synthesis and long audio APIs, as well as to read the data/test/model/endpoint for custom models, but can't create, delete or modify the data/test/model/endpoint for custom models.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f2dc8367-1007-4938-bd23-fe263f013447",
  "name": "f2dc8367-1007-4938-bd23-fe263f013447",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.Authorization/roleAssignments/read",
        "Microsoft.Authorization/roleDefinitions/read"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/read",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/read",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/write",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/delete",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/transcriptions/action",
        "Microsoft.CognitiveServices/accounts/SpeechServices/*/frontend/action",
        "Microsoft.CognitiveServices/accounts/SpeechServices/text-dependent/*/action",
        "Microsoft.CognitiveServices/accounts/SpeechServices/text-independent/*/action",
        "Microsoft.CognitiveServices/accounts/CustomVoice/*/read",
        "Microsoft.CognitiveServices/accounts/CustomVoice/evaluations/*",
        "Microsoft.CognitiveServices/accounts/CustomVoice/longaudiosynthesis/*",
        "Microsoft.CognitiveServices/accounts/AudioContentCreation/*",
        "Microsoft.CognitiveServices/accounts/VideoTranslation/*",
        "Microsoft.CognitiveServices/accounts/CustomAvatar/*/read",
        "Microsoft.CognitiveServices/accounts/BatchAvatar/*",
        "Microsoft.CognitiveServices/accounts/BatchTextToSpeech/*"
      ],
      "notDataActions": [
        "Microsoft.CognitiveServices/accounts/CustomVoice/datasets/files/read",
        "Microsoft.CognitiveServices/accounts/CustomVoice/datasets/utterances/read"
      ]
    }
  ],
  "roleName": "Cognitive Services Speech User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de usos de Cognitive Services

Permiso mínimo para ver los usos de Cognitive Services.

Más información

Acciones Descripción
Microsoft.CognitiveServices/locations/usages/read Leer todos los datos de uso
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Minimal permission to view Cognitive Services usages.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/bba48692-92b0-4667-a9ad-c31c7b334ac2",
  "name": "bba48692-92b0-4667-a9ad-c31c7b334ac2",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/locations/usages/read"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services Usages Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Usuario de Cognitive Services

Le permite leer y mostrar las claves de Cognitive Services.

Más información

Acciones Descripción
Microsoft.CognitiveServices/*/read
Microsoft.CognitiveServices/accounts/listkeys/action Enumeración de claves
Microsoft.Insights/alertRules/read Lee una alerta de métrica clásica.
Microsoft.Insights/diagnosticSettings/read Lee la configuración de diagnóstico de un recurso.
Microsoft.Insights/logDefinitions/read Lee definiciones de registro
Microsoft.Insights/metricdefinitions/read Lee definiciones de métricas
Microsoft.Insights/metrics/read Lee métricas
Microsoft.ResourceHealth/availabilityStatuses/read Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado
Microsoft.Resources/deployments/operations/read Obtiene o enumera las operaciones de implementación.
Microsoft.Resources/subscriptions/operationresults/read Obtiene los resultados de la operación de suscripción.
Microsoft.Resources/subscriptions/read Obtiene la lista de suscripciones.
Microsoft.Resources/subscriptions/resourceGroups/read Obtiene o enumera los grupos de recursos.
Microsoft.Support/* Creación y actualización de una incidencia de soporte técnico
NotActions
none
DataActions
Microsoft.CognitiveServices/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you read and list keys of Cognitive Services.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/a97b65f3-24c7-4388-baec-2e87135dc908",
  "name": "a97b65f3-24c7-4388-baec-2e87135dc908",
  "permissions": [
    {
      "actions": [
        "Microsoft.CognitiveServices/*/read",
        "Microsoft.CognitiveServices/accounts/listkeys/action",
        "Microsoft.Insights/alertRules/read",
        "Microsoft.Insights/diagnosticSettings/read",
        "Microsoft.Insights/logDefinitions/read",
        "Microsoft.Insights/metricdefinitions/read",
        "Microsoft.Insights/metrics/read",
        "Microsoft.ResourceHealth/availabilityStatuses/read",
        "Microsoft.Resources/deployments/operations/read",
        "Microsoft.Resources/subscriptions/operationresults/read",
        "Microsoft.Resources/subscriptions/read",
        "Microsoft.Resources/subscriptions/resourceGroups/read",
        "Microsoft.Support/*"
      ],
      "notActions": [],
      "dataActions": [
        "Microsoft.CognitiveServices/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Cognitive Services User",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Administrador de Health Bot

Los usuarios con acceso de administrador pueden iniciar sesión, ver y editar todos los recursos del bot, escenarios y opciones de configuración, incluidas las claves y secretos de la instancia del bot.

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.HealthBot/healthBots/Admin/Action Inicie sesión en el portal de administración, vea y edite todos los recursos, escenarios del bot, opciones de configuración, claves de instancia y secretos.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Users with admin access can sign in, view and edit all of the bot resources, scenarios and configuration setting including the bot instance keys & secrets.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/f1082fec-a70f-419f-9230-885d2550fb38",
  "name": "f1082fec-a70f-419f-9230-885d2550fb38",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.HealthBot/healthBots/Admin/Action"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Health Bot Admin",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Editor de bots de mantenimiento

Los usuarios con acceso al editor pueden iniciar sesión, ver y editar todos los recursos del bot, escenarios y configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final (incluidos comentarios, expresiones no reconocidas y registros de conversación). Acceso de solo lectura a los canales y aptitudes del bot.

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.HealthBot/healthBots/Editor/Action Inicie sesión en el portal de administración, vea y edite todos los recursos del bot, escenarios y opciones de configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final. Acceso de solo lectura a los canales y aptitudes del bot.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Users with editor access can sign in, view and edit all the bot resources, scenarios and configuration setting except for the bot instance keys & secrets and the end-user inputs (including Feedback, Unrecognized utterances and Conversation logs). A read-only access to the bot skills and channels.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/af854a69-80ce-4ff7-8447-f1118a2e0ca8",
  "name": "af854a69-80ce-4ff7-8447-f1118a2e0ca8",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.HealthBot/healthBots/Editor/Action"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Health Bot Editor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de bots de mantenimiento

Los usuarios con acceso de lector pueden iniciar sesión, tener acceso de solo lectura a los recursos del bot, escenarios y configuración, excepto las claves y secretos de la instancia del bot (incluidas las claves de autenticación, conexión de datos y canales) y las entradas del usuario final (incluidos comentarios, expresiones no reconocidas y registros de conversación).

Más información

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.HealthBot/healthBots/Reader/Action Inicie sesión en el portal de administración, con acceso de solo lectura a los recursos, escenarios y opciones de configuración, excepto las claves y secretos de la instancia del bot y las entradas del usuario final.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Users with reader access can sign in, have read-only access to the bot resources, scenarios and configuration setting except for the bot instance keys & secrets (including Authentication, Data Connection and Channels keys) and the end-user inputs (including Feedback, Unrecognized utterances and Conversation logs).",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/eb5a76d5-50e7-4c33-a449-070e7c9c4cf2",
  "name": "eb5a76d5-50e7-4c33-a449-070e7c9c4cf2",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.HealthBot/healthBots/Reader/Action"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Health Bot Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador de datos de índice de búsqueda

Concede acceso total a los datos de índice de Azure Cognitive Search.

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.Search/searchServices/indexes/documents/*
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Grants full access to Azure Cognitive Search index data.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/8ebe5a00-799e-43f5-93ac-243d3dce84a7",
  "name": "8ebe5a00-799e-43f5-93ac-243d3dce84a7",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.Search/searchServices/indexes/documents/*"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Search Index Data Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Lector de datos de índice de búsqueda

Concede acceso de lectura a los datos de índice de Azure Cognitive Search.

Acciones Descripción
none
NotActions
none
DataActions
Microsoft.Search/searchServices/indexes/documents/read Lee documentos o los términos de consulta sugeridos de un índice.
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Grants read access to Azure Cognitive Search index data.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/1407120a-92aa-4202-b7e9-c0e197c71c8f",
  "name": "1407120a-92aa-4202-b7e9-c0e197c71c8f",
  "permissions": [
    {
      "actions": [],
      "notActions": [],
      "dataActions": [
        "Microsoft.Search/searchServices/indexes/documents/read"
      ],
      "notDataActions": []
    }
  ],
  "roleName": "Search Index Data Reader",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Colaborador del servicio Search

Permite administrar los servicios de Búsqueda, pero no acceder a ellos.

Más información

Acciones Descripción
Microsoft.Authorization/*/read Leer roles y asignaciones de roles
Microsoft.Insights/alertRules/* Creación y administración de una alerta de métricas clásica
Microsoft.ResourceHealth/availabilityStatuses/read Obtiene los estados de disponibilidad de todos los recursos en el ámbito especificado
Microsoft.Resources/deployments/* Creación y administración de una implementación
Microsoft.Resources/subscriptions/resourceGroups/read Obtiene o enumera los grupos de recursos.
Microsoft.Search/searchServices/* Crear y administrar servicios de búsqueda
Microsoft.Support/* Creación y actualización de una incidencia de soporte técnico
NotActions
none
DataActions
none
NotDataActions
none
{
  "assignableScopes": [
    "/"
  ],
  "description": "Lets you manage Search services, but not access to them.",
  "id": "/providers/Microsoft.Authorization/roleDefinitions/7ca78c08-252a-4471-8644-bb5ff32d4ba0",
  "name": "7ca78c08-252a-4471-8644-bb5ff32d4ba0",
  "permissions": [
    {
      "actions": [
        "Microsoft.Authorization/*/read",
        "Microsoft.Insights/alertRules/*",
        "Microsoft.ResourceHealth/availabilityStatuses/read",
        "Microsoft.Resources/deployments/*",
        "Microsoft.Resources/subscriptions/resourceGroups/read",
        "Microsoft.Search/searchServices/*",
        "Microsoft.Support/*"
      ],
      "notActions": [],
      "dataActions": [],
      "notDataActions": []
    }
  ],
  "roleName": "Search Service Contributor",
  "roleType": "BuiltInRole",
  "type": "Microsoft.Authorization/roleDefinitions"
}

Pasos siguientes