Skip to content

Commit b0f10ed

Browse files
rolyonrolyon
committed
Descriptions update
1 parent 8ce8815 commit b0f10ed

File tree

2 files changed

+6
-6
lines changed

2 files changed

+6
-6
lines changed

articles/role-based-access-control/built-in-roles.md

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -161,9 +161,9 @@ The following table provides a brief description of each built-in role. Click th
161161
> | <a name='azure-arc-kubernetes-cluster-admin'></a>[Azure Arc Kubernetes Cluster Admin](./built-in-roles/containers.md#azure-arc-kubernetes-cluster-admin) | Lets you manage all resources in the cluster. | 8393591c-06b9-48a2-a542-1bd6b377f6a2 |
162162
> | <a name='azure-arc-kubernetes-viewer'></a>[Azure Arc Kubernetes Viewer](./built-in-roles/containers.md#azure-arc-kubernetes-viewer) | Lets you view all resources in cluster/namespace, except secrets. | 63f0a09d-1495-4db4-a681-037d84835eb4 |
163163
> | <a name='azure-arc-kubernetes-writer'></a>[Azure Arc Kubernetes Writer](./built-in-roles/containers.md#azure-arc-kubernetes-writer) | Lets you update everything in cluster/namespace, except (cluster)roles and (cluster)role bindings. | 5b999177-9696-4545-85c7-50de3797e5a1 |
164-
> | <a name='azure-container-storage-contributor'></a>[Azure Container Storage Contributor](./built-in-roles/containers.md#azure-container-storage-contributor) | Lets you install Azure Container Storage and manage its storage resources | 95dd08a6-00bd-4661-84bf-f6726f83a4d0 |
165-
> | <a name='azure-container-storage-operator'></a>[Azure Container Storage Operator](./built-in-roles/containers.md#azure-container-storage-operator) | Role required by a Managed Identity for Azure Container Storage operations | 08d4c71a-cc63-4ce4-a9c8-5dd251b4d619 |
166-
> | <a name='azure-container-storage-owner'></a>[Azure Container Storage Owner](./built-in-roles/containers.md#azure-container-storage-owner) | Lets you install Azure Container Storage and grants access to its storage resources | 95de85bd-744d-4664-9dde-11430bc34793 |
164+
> | <a name='azure-container-storage-contributor'></a>[Azure Container Storage Contributor](./built-in-roles/containers.md#azure-container-storage-contributor) | Install Azure Container Storage and manage its storage resources. Includes an ABAC condition to constrain role assignments. | 95dd08a6-00bd-4661-84bf-f6726f83a4d0 |
165+
> | <a name='azure-container-storage-operator'></a>[Azure Container Storage Operator](./built-in-roles/containers.md#azure-container-storage-operator) | Enable a managed identity to perform Azure Container Storage operations, such as manage virtual machines and manage virtual networks. | 08d4c71a-cc63-4ce4-a9c8-5dd251b4d619 |
166+
> | <a name='azure-container-storage-owner'></a>[Azure Container Storage Owner](./built-in-roles/containers.md#azure-container-storage-owner) | Install Azure Container Storage, grant access to its storage resources, and configure Azure Elastic storage area network (SAN). Includes an ABAC condition to constrain role assignments. | 95de85bd-744d-4664-9dde-11430bc34793 |
167167
> | <a name='azure-kubernetes-fleet-manager-contributor-role'></a>[Azure Kubernetes Fleet Manager Contributor Role](./built-in-roles/containers.md#azure-kubernetes-fleet-manager-contributor-role) | Grants read/write access to Azure resources provided by Azure Kubernetes Fleet Manager, including fleets, fleet members, fleet update strategies, fleet update runs, etc. | 63bb64ad-9799-4770-b5c3-24ed299a07bf |
168168
> | <a name='azure-kubernetes-fleet-manager-rbac-admin'></a>[Azure Kubernetes Fleet Manager RBAC Admin](./built-in-roles/containers.md#azure-kubernetes-fleet-manager-rbac-admin) | Grants read/write access to Kubernetes resources within a namespace in the fleet-managed hub cluster - provides write permissions on most objects within a namespace, with the exception of ResourceQuota object and the namespace object itself. Applying this role at cluster scope will give access across all namespaces. | 434fb43a-c01c-447e-9f67-c3ad923cfaba |
169169
> | <a name='azure-kubernetes-fleet-manager-rbac-cluster-admin'></a>[Azure Kubernetes Fleet Manager RBAC Cluster Admin](./built-in-roles/containers.md#azure-kubernetes-fleet-manager-rbac-cluster-admin) | Grants read/write access to all Kubernetes resources in the fleet-managed hub cluster. | 18ab4d3d-a1bf-4477-8ad9-8359bc988f69 |

articles/role-based-access-control/built-in-roles/containers.md

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -729,7 +729,7 @@ Lets you update everything in cluster/namespace, except (cluster)roles and (clus
729729

730730
## Azure Container Storage Contributor
731731

732-
Lets you install Azure Container Storage and manage its storage resources
732+
Install Azure Container Storage and manage its storage resources. Includes an ABAC condition to constrain role assignments.
733733

734734
> [!div class="mx-tableFixed"]
735735
> | Actions | Description |
@@ -808,7 +808,7 @@ Lets you install Azure Container Storage and manage its storage resources
808808

809809
## Azure Container Storage Operator
810810

811-
Role required by a Managed Identity for Azure Container Storage operations
811+
Enable a managed identity to perform Azure Container Storage operations, such as manage virtual machines and manage virtual networks.
812812

813813
> [!div class="mx-tableFixed"]
814814
> | Actions | Description |
@@ -881,7 +881,7 @@ Role required by a Managed Identity for Azure Container Storage operations
881881

882882
## Azure Container Storage Owner
883883

884-
Lets you install Azure Container Storage and grants access to its storage resources
884+
Install Azure Container Storage, grant access to its storage resources, and configure Azure Elastic storage area network (SAN). Includes an ABAC condition to constrain role assignments.
885885

886886
> [!div class="mx-tableFixed"]
887887
> | Actions | Description |

0 commit comments

Comments
 (0)