You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/network-watcher/required-rbac-permissions.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -6,7 +6,7 @@ author: halkazwini
6
6
ms.author: halkazwini
7
7
ms.service: azure-network-watcher
8
8
ms.topic: concept-article
9
-
ms.date: 06/11/2025
9
+
ms.date: 06/12/2025
10
10
11
11
#CustomerIntent: As an Azure administrator, I want to know the required Azure role-based access control (Azure RBAC) permissions to use each of the Network Watcher capabilities, so I can assign them correctly to users using any of those capabilities.
12
12
---
@@ -25,7 +25,7 @@ To use Azure Network Watcher capabilities, the account you log into Azure with,
25
25
26
26
To learn how to check roles assigned to a user for a subscription, see [List Azure role assignments using the Azure portal](../role-based-access-control/role-assignments-list-portal.yml?toc=/azure/network-watcher/toc.json). If you can't see the role assignments, contact the respective subscription admin.
27
27
28
-
The following sections list the minimum required permissions to use Network Watcher and its capabilities. For a full list of related Azure permissions, see [Microsoft.Network permissions](/azure/role-based-access-control/permissions/networking#microsoftnetwork), [Microsoft.Compute permissions](/azure/role-based-access-control/permissions/compute#microsoftcompute), [Microsoft.Storage permissions](/azure/role-based-access-control/permissions/storage#microsoftstorage), [Microsoft.Insights permissions](/azure/role-based-access-control/permissions/monitor#microsoftinsights), and [Microsoft.OperationalInsights permissions](/azure/role-based-access-control/permissions/monitor#microsoftoperationalinsights).
28
+
The following sections list the minimum required permissions to use Network Watcher and its capabilities. For a full list of related Azure permissions, see [Microsoft.Network permissions](/azure/role-based-access-control/permissions/networking?toc=/azure/network-watcher/toc.json#microsoftnetwork), [Microsoft.Compute permissions](/azure/role-based-access-control/permissions/compute?toc=/azure/network-watcher/toc.json#microsoftcompute), [Microsoft.Storage permissions](/azure/role-based-access-control/permissions/storage?toc=/azure/network-watcher/toc.json#microsoftstorage), [Microsoft.Insights permissions](/azure/role-based-access-control/permissions/monitor?toc=/azure/network-watcher/toc.json#microsoftinsights), and [Microsoft.OperationalInsights permissions](/azure/role-based-access-control/permissions/monitor?toc=/azure/network-watcher/toc.json#microsoftoperationalinsights).
29
29
30
30
## Network Watcher
31
31
@@ -90,7 +90,7 @@ Since traffic analytics is enabled as part of the flow log resource, the followi
90
90
> | Microsoft.Insights/dataCollectionEndpoints/write <sup>1</sup> | Create or update a data collection endpoint |
91
91
> | Microsoft.Insights/dataCollectionEndpoints/delete <sup>1</sup> | Delete a data collection endpoint |
92
92
93
-
<sup>1</sup> Only required when using traffic analytics to analyze virtual network flow logs. For more information, see [Data collection rules in Azure Monitor](/azure/azure-monitor/essentials/data-collection-rule-overview?toc=/azure/network-watcher/toc.json) and [Data collection endpoints in Azure Monitor](/azure/azure-monitor/essentials/data-collection-endpoint-overview?toc=/azure/network-watcher/toc.json).
93
+
<sup>1</sup> Required on the Log Analytics workspace subscription when using traffic analytics with virtual network flow logs.
Copy file name to clipboardExpand all lines: includes/network-watcher-traffic-analytics-resources.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,8 +3,8 @@ author: halkazwini
3
3
ms.author: halkazwini
4
4
ms.service: azure-network-watcher
5
5
ms.topic: include
6
-
ms.date: 04/17/2025
6
+
ms.date: 06/12/2025
7
7
ms.custom: include file
8
8
---
9
9
> [!CAUTION]
10
-
> Traffic analytics creates and manages data collection rule and data collection endpoint resources in the same resource group as the workspace, prefixed with `NWTA`. If you perform any operation on these resources, traffic analytics might not function as expected.
10
+
> Traffic analytics creates and manages [data collection rule (DCR)](/azure/azure-monitor/essentials/data-collection-rule-overview?toc=/azure/network-watcher/toc.json)and [data collection endpoint (DCE)](/azure/azure-monitor/essentials/data-collection-endpoint-overview?toc=/azure/network-watcher/toc.json)resources in the same resource group as the Log Analytics workspace, prefixed with `NWTA`. If you perform any operation on these resources, traffic analytics might not function as expected.
0 commit comments