英文:
Which RBAC role is required to approve a Private Endpoint Connection (on an Event Hub namespace)?
问题
Azure RBAC(内置)中需要的最低角色来批准挂起的私有端点连接(在事件中心命名空间上)是什么?到目前为止,我们已经使用事件中心命名空间上的 Contributor 来完成此操作,但我们想知道是否有一个授予更少权限但仍能正常工作的角色。
英文:
What is the minimum Azure RBAC (built-in) role required to approve a Pending Private Endpoint Connection (on an Event Hub namespace)? So far we managed to do it with Contributor on the Event Hub Namespace but we are wondering if there is a role which grants less permissions and still will work for this.
答案1
得分: 0
Azure RBAC(内置)要求的最低权限是什么,以批准事件中心命名空间上的待定私有终结点连接?
事件中心命名空间中有一个名为“Azure Event Hubs Data Owner”的内置角色,专门设计用于管理事件中心资源。此角色提供对事件中心资源的完全访问权限。
有关“Azure Event Hubs Data Owner”角色的更多信息,请参阅MS Doc。
要为“事件中心命名空间”中的批准私有终结点提供访问权限,您可以通过克隆“Azure Event Hubs Data Owner”角色并移除所有其他操作,仅选择“批准私有终结点连接”权限的方式创建一个自定义角色。
英文:
> What is the minimum Azure RBAC (built-in) role required to approve a Pending Private Endpoint Connection (on an Event Hub namespace)?
There is a built-in role called Azure Event Hubs Data Owner in the Event Hub namespace that is specifically designed for managing Event Hub resources. This role provides complete access to Event Hubs resources
Refer the this MS Doc for more about the Azure Event Hubs Data Owner Role.
Azure Event Hubs Data Owner
In order to provide access specifically for approving private endpoints in the Event Hub namespace, you can create a custom role by cloning the "Azure Event Hubs Data Owner" role and removing all other actions, selecting only the "Approve Private Endpoint Connection" permission
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论