Notification for Network contributor role

shiniizuka · web-flow · commit 5f01bf0eff0b · 2022-07-20T21:45:48.000+09:00
Current content seems saying Network contributor covers all the actions listed, but it does not cover some actions listed in Additional actions. To avoid confusion, I suggest adding a notification.
diff --git a/articles/network-watcher/required-rbac-permissions.md b/articles/network-watcher/required-rbac-permissions.md
@@ -18,6 +18,9 @@ ms.author: damendo
 
 Azure role-based access control (Azure RBAC) enables you to assign only the specific actions to members of your organization that they require to complete their assigned responsibilities. To use Network Watcher capabilities, the account you log into Azure with, must be assigned to the [Owner](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#owner), [Contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#contributor), or [Network contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#network-contributor) built-in roles, or assigned to a [custom role](../role-based-access-control/custom-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json) that is assigned the actions listed for each Network Watcher capability in the sections that follow. To learn more about Network Watcher's capabilities, see [What is Network Watcher?](network-watcher-monitoring-overview.md).
 
+> [!IMPORTANT]
+> [Network contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#network-contributor) does not cover Microsoft.Storage/* or Microsoft.Compute/* actions listed in Additional actions section.
+
 ## Network Watcher
 
 | Action                                                              | Description                                                           |
@@ -109,4 +112,4 @@ Network Watcher capabilities also require the following actions:
 | Microsoft.Compute/virtualMachineScaleSets/Read, </br> Microsoft.Compute/virtualMachineScaleSets/Write| Used to access virtual machine scale sets, do packet captures and upload them to storage account|
 | Microsoft.Compute/virtualMachineScaleSets/extensions/Read, </br> Microsoft.Compute/virtualMachineScaleSets/extensions/Write| Used to check if Network Watcher extension is present, and install if required |
 | Microsoft.Insights/alertRules/*                                     | Used to set up metric alerts                                     |
-| Microsoft.Support/*                                                 | Used to create and update support tickets from Network Watcher |
+| Microsoft.Support/*                                                 | Used to create and update support tickets from Network Watcher |
