Share via

How can identify change in Azure role definitions?

Santhosh Kumar J 0 Reputation points
2023-06-21T17:06:51.77+00:00

we are trying to implement a process to identify the change in azure role definition for any azure built in role. does microsoft let the customer know that it's changing/adding/removing certain role definitions (operations) of a role?

I could see a REST api-version available to query azure role definition. but, when microsoft makes any changes in role definition of a role, will they return the new role definition as part of the current api-version? or will they release a new api-version ?

because, microsoft wont allow to query role definition api-version using "latest" tag. so, even if we setup a process to idenitify role definition changes using the current api-version, if they release a new version tomorrow, the process would fail to identify the change (because, we are still pointing to older api-version.)

Please let us know if anyone has built a solution around this?

Thank you.

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
945 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Dillon Silzer 57,826 Reputation points Volunteer Moderator
    2023-06-21T17:22:17.7966667+00:00

    The only place I see that actually shows full information is the documentation:

    https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles

    Unfortunately I don't see any change log (day-by-day) for these descriptions. You could however suggest this to Azure feedback portal:

    https://feedback.azure.com/d365community

    If this is helpful please accept answer.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.