Azure | AWS |
"Microsoft.Authorization/locks/write", "Microsoft.Authorization/locks/delete", |
Azure | AWS |
"Microsoft.Compute/disks/delete", "Microsoft.Compute/disks/beginGetAccess/action", "Microsoft.Compute/virtualMachines/delete", "Microsoft.Compute/sshPublicKeys/read", "Microsoft.CostManagement/query/read", "Microsoft.Network/networkInterfaces/delete", "Microsoft.Network/networkSecurityGroups/read", "Microsoft.Network/networkSecurityGroups/join/action", "Microsoft.Network/publicIPAddresses/delete", "Microsoft.Network/publicIPAddresses/read", "Microsoft.Network/publicIPAddresses/write", "Microsoft.Network/publicIPAddresses/join/action", "Microsoft.Network/privateDNSZones/read", "Microsoft.Network/privateDNSZones/write", "Microsoft.Network/privateDNSZones/delete", "Microsoft.Network/privateEndpoints/read", "Microsoft.Network/privateEndpoints/write", "Microsoft.Network/privateEndpoints/delete", "Microsoft.Sql/servers/privateEndpointConnectionsApproval/action", "Microsoft.Network/privateDnsZones/A/write", "Microsoft.Network/privateDnsZones/A/delete", "Microsoft.Network/virtualNetworks/subnets/joinViaServiceEndpoint/action", "Microsoft.Sql/servers/virtualNetworkRules/delete", "Microsoft.Sql/servers/virtualNetworkRules/write", "Microsoft.Sql/servers/virtualNetworkRules/read", "Microsoft.Storage/storageAccounts/listkeys/action", "Microsoft.Storage/storageAccounts/managementPolicies/read", "Microsoft.Storage/storageAccounts/managementPolicies/write" "Microsoft.Storage/storageAccounts/blobServices/containers/blobs/move/action", "Microsoft.Storage/storageAccounts/blobServices/containers/blobs/tags/read", "Microsoft.Storage/storageAccounts/blobServices/containers/blobs/tags/write" | "iam:ListInstanceProfiles", "ec2:DescribeInstanceTypeOfferings", "redshift:DeleteTags", "redshift:DeleteCluster", "redshift:AuthorizeSnapshotAccess", "redshift:RevokeSnapshotAccess" "elasticfilesystem:TagResource", "elasticfilesystem:DescribeMountTargets", "elasticfilesystem:CreateMountTarget", "elasticfilesystem:DescribeAccessPoints", "elasticfilesystem:CreateAccessPoint", "elasticfilesystem:DescribeMountTargetSecurityGroups", "fsx:CopyBackup", "ssm:ListCommandInvocations" "secretsmanager:GetSecretValue" |