Corrected custom role with correct permissions.

Trying to enable CMK with RBAC permissions enabled on a keyvault and the custom role having the permission "Microsoft.KeyVault/vaults/keys/read" as an action it failed. Found moving the permission to a dataAction allowed CMK to be enabled.

Author: jabster78

articles/azure-netapp-files/configure-customer-managed-keys.md

@@ -315,9 +315,10 @@ You can use an Azure Key Vault that is configured to use Azure role-based access
             ],
             "permissions": [
               {
-                "actions": ["Microsoft.KeyVault/vaults/keys/read"],
+                "actions": [],
                 "notActions": [],
                 "dataActions": [
+                    "Microsoft.KeyVault/vaults/keys/read",
                     "Microsoft.KeyVault/vaults/keys/encrypt/action",
                     "Microsoft.KeyVault/vaults/keys/decrypt/action"
                 ],