| microsoft.sql/locations/deletevirtualnetworkorsubnets/action | admin |
| microsoft.sql/locations/deletedservers/recover/action | admin |
| microsoft.sql/locations/instancefailovergroups/delete | admin |
| microsoft.sql/locations/instancefailovergroups/failover/action | admin |
| microsoft.sql/locations/instancefailovergroups/forcefailoverallowdataloss/action | admin |
| microsoft.sql/locations/instancefailovergroups/write | admin |
| microsoft.sql/locations/longtermretentionservers/longtermretentiondatabases/longtermretentionbackups/delete | admin |
| microsoft.sql/locations/manageddatabaserestoreazureasyncoperation/completerestore/action | admin |
| microsoft.sql/managedinstances/administrators/delete | admin |
| microsoft.sql/managedinstances/administrators/write | admin |
| microsoft.sql/managedinstances/databases/delete | admin |
| microsoft.sql/managedinstances/databases/providers/microsoft.insights/diagnosticsettings/write | admin |
| microsoft.sql/managedinstances/databases/securityalertpolicies/write | admin |
| microsoft.sql/managedinstances/databases/transparentdataencryption/write | admin |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/delete | admin |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/rules/baselines/delete | admin |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/rules/baselines/write | admin |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/write | admin |
| microsoft.sql/managedinstances/databases/write | admin |
| microsoft.sql/managedinstances/delete | admin |
| microsoft.sql/managedinstances/encryptionprotector/write | admin |
| microsoft.sql/managedinstances/keys/delete | admin |
| microsoft.sql/managedinstances/keys/write | admin |
| microsoft.sql/managedinstances/providers/microsoft.insights/diagnosticsettings/write | admin |
| microsoft.sql/managedinstances/securityalertpolicies/write | admin |
| microsoft.sql/managedinstances/tdecertificates/action | admin |
| microsoft.sql/managedinstances/vulnerabilityassessments/delete | admin |
| microsoft.sql/managedinstances/vulnerabilityassessments/write | admin |
| microsoft.sql/managedinstances/write | admin |
| microsoft.sql/servers/administrators/delete | admin |
| microsoft.sql/servers/administrators/write | admin |
| microsoft.sql/servers/advisors/recommendedactions/write | admin |
| microsoft.sql/servers/advisors/write | admin |
| microsoft.sql/servers/auditingpolicies/write | admin |
| microsoft.sql/servers/auditingsettings/write | admin |
| microsoft.sql/servers/automatictuning/write | admin |
| microsoft.sql/servers/communicationlinks/delete | admin |
| microsoft.sql/servers/communicationlinks/write | admin |
| microsoft.sql/servers/connectionpolicies/write | admin |
| microsoft.sql/servers/databases/advisors/recommendedactions/write | admin |
| microsoft.sql/servers/databases/advisors/write | admin |
| microsoft.sql/servers/databases/auditingpolicies/write | admin |
| microsoft.sql/servers/databases/auditingsettings/write | admin |
| microsoft.sql/servers/databases/automatictuning/write | admin |
| microsoft.sql/servers/databases/backuplongtermretentionpolicies/write | admin |
| microsoft.sql/servers/databases/connectionpolicies/write | admin |
| microsoft.sql/servers/databases/datamaskingpolicies/rules/delete | admin |
| microsoft.sql/servers/databases/datamaskingpolicies/rules/write | admin |
| microsoft.sql/servers/databases/datamaskingpolicies/write | admin |
| microsoft.sql/servers/databases/delete | admin |
| microsoft.sql/servers/databases/export/action | admin |
| microsoft.sql/servers/databases/extendedauditingsettings/write | admin |
| microsoft.sql/servers/databases/extensions/write | admin |
| microsoft.sql/servers/databases/geobackuppolicies/write | admin |
| microsoft.sql/servers/databases/maintenancewindows/write | admin |
| microsoft.sql/servers/databases/move/action | admin |
| microsoft.sql/servers/databases/operations/cancel/action | admin |
| microsoft.sql/servers/databases/pause/action | admin |
| microsoft.sql/servers/databases/providers/microsoft.insights/diagnosticsettings/write | admin |
| microsoft.sql/servers/databases/querystore/write | admin |
| microsoft.sql/servers/databases/replicationlinks/delete | admin |
| microsoft.sql/servers/databases/replicationlinks/failover/action | admin |
| microsoft.sql/servers/databases/replicationlinks/forcefailoverallowdataloss/action | admin |
| microsoft.sql/servers/databases/replicationlinks/unlink/action | admin |
| microsoft.sql/servers/databases/replicationlinks/updatereplicationmode/action | admin |
| microsoft.sql/servers/databases/restorepoints/action | admin |
| microsoft.sql/servers/databases/restorepoints/delete | admin |
| microsoft.sql/servers/databases/resume/action | admin |
| microsoft.sql/servers/databases/schemas/tables/columns/sensitivitylabels/delete | admin |
| microsoft.sql/servers/databases/schemas/tables/columns/sensitivitylabels/write | admin |
| microsoft.sql/servers/databases/schemas/tables/recommendedindexes/write | admin |
| microsoft.sql/servers/databases/securityalertpolicies/write | admin |
| microsoft.sql/servers/databases/syncgroups/cancelsync/action | admin |
| microsoft.sql/servers/databases/syncgroups/delete | admin |
| microsoft.sql/servers/databases/syncgroups/refreshhubschema/action | admin |
| microsoft.sql/servers/databases/syncgroups/syncmembers/delete | admin |
| microsoft.sql/servers/databases/syncgroups/syncmembers/refreshschema/action | admin |
| microsoft.sql/servers/databases/syncgroups/syncmembers/write | admin |
| microsoft.sql/servers/databases/syncgroups/triggersync/action | admin |
| microsoft.sql/servers/databases/syncgroups/write | admin |
| microsoft.sql/servers/databases/transparentdataencryption/write | admin |
| microsoft.sql/servers/databases/upgradedatawarehouse/action | admin |
| microsoft.sql/servers/databases/vulnerabilityassessmentscans/action | admin |
| microsoft.sql/servers/databases/vulnerabilityassessmentsettings/write | admin |
| microsoft.sql/servers/databases/vulnerabilityassessments/delete | admin |
| microsoft.sql/servers/databases/vulnerabilityassessments/rules/baselines/delete | admin |
| microsoft.sql/servers/databases/vulnerabilityassessments/rules/baselines/write | admin |
| microsoft.sql/servers/databases/vulnerabilityassessments/scans/export/action | admin |
| microsoft.sql/servers/databases/vulnerabilityassessments/write | admin |
| microsoft.sql/servers/databases/write | admin |
| microsoft.sql/servers/delete | admin |
| microsoft.sql/servers/disasterrecoveryconfiguration/delete | admin |
| microsoft.sql/servers/disasterrecoveryconfiguration/failover/action | admin |
| microsoft.sql/servers/disasterrecoveryconfiguration/forcefailoverallowdataloss/action | admin |
| microsoft.sql/servers/disasterrecoveryconfiguration/write | admin |
| microsoft.sql/servers/elasticpoolestimates/write | admin |
| microsoft.sql/servers/elasticpools/advisors/recommendedactions/write | admin |
| microsoft.sql/servers/elasticpools/advisors/write | admin |
| microsoft.sql/servers/elasticpools/delete | admin |
| microsoft.sql/servers/elasticpools/operations/cancel/action | admin |
| microsoft.sql/servers/elasticpools/providers/microsoft.insights/diagnosticsettings/write | admin |
| microsoft.sql/servers/elasticpools/write | admin |
| microsoft.sql/servers/encryptionprotector/write | admin |
| microsoft.sql/servers/extendedauditingsettings/write | admin |
| microsoft.sql/servers/failovergroups/delete | admin |
| microsoft.sql/servers/failovergroups/failover/action | admin |
| microsoft.sql/servers/failovergroups/forcefailoverallowdataloss/action | admin |
| microsoft.sql/servers/failovergroups/write | admin |
| microsoft.sql/servers/firewallrules/delete | admin |
| microsoft.sql/servers/firewallrules/write | admin |
| microsoft.sql/servers/import/action | admin |
| microsoft.sql/servers/interfaceendpointprofiles/delete | admin |
| microsoft.sql/servers/interfaceendpointprofiles/write | admin |
| microsoft.sql/servers/keys/delete | admin |
| microsoft.sql/servers/keys/write | admin |
| microsoft.sql/servers/securityalertpolicies/write | admin |
| microsoft.sql/servers/syncagents/delete | admin |
| microsoft.sql/servers/syncagents/generatekey/action | admin |
| microsoft.sql/servers/syncagents/write | admin |
| microsoft.sql/servers/tdecertificates/action | admin |
| microsoft.sql/servers/virtualnetworkrules/delete | admin |
| microsoft.sql/servers/virtualnetworkrules/write | admin |
| microsoft.sql/servers/vulnerabilityassessments/delete | admin |
| microsoft.sql/servers/vulnerabilityassessments/write | admin |
| microsoft.sql/servers/write | admin |
| microsoft.sql/virtualclusters/write | admin |
| microsoft.resources/deployments/cancel/action | operator |
| microsoft.resources/deployments/delete | operator |
| microsoft.resources/deployments/validate/action | operator |
| microsoft.resources/deployments/write | operator |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/scans/export/action | operator |
| microsoft.sql/locations/syncagentoperationresults/read | readonly |
| microsoft.sql/locations/syncdatabaseids/read | readonly |
| microsoft.sql/locations/syncgroupoperationresults/read | readonly |
| microsoft.sql/locations/syncmemberoperationresults/read | readonly |
| microsoft.sql/locations/virtualnetworkrulesazureasyncoperation/read | readonly |
| microsoft.sql/locations/virtualnetworkrulesoperationresults/read | readonly |
| microsoft.sql/managedinstances/read | readonly |
| microsoft.sql/servers/administrators/read | readonly |
| microsoft.sql/servers/auditingpolicies/read | readonly |
| microsoft.sql/servers/connectionpolicies/read | readonly |
| microsoft.sql/servers/databases/topqueries/querytext/action | readonly |
| microsoft.sql/servers/firewallrules/read | readonly |
| microsoft.sql/servers/importexportoperationresults/read | readonly |
| microsoft.sql/servers/keys/read | readonly |
| microsoft.sql/servers/operationresults/read | readonly |
| microsoft.sql/servers/securityalertpolicies/operationresults/read | readonly |
| microsoft.sql/servers/securityalertpolicies/read | readonly |
| microsoft.sql/virtualclusters/read | readonly |
| microsoft.resources/deployments/operations/read | metadata |
| microsoft.resources/deployments/read | metadata |
| microsoft.resources/subscriptions/read | metadata |
| microsoft.resources/subscriptions/resourcegroups/read | metadata |
| microsoft.resources/subscriptions/resources/read | metadata |
| microsoft.sql/locations/auditingsettingsazureasyncoperation/read | metadata |
| microsoft.sql/locations/auditingsettingsoperationresults/read | metadata |
| microsoft.sql/locations/capabilities/read | metadata |
| microsoft.sql/locations/databaseazureasyncoperation/read | metadata |
| microsoft.sql/locations/databaseoperationresults/read | metadata |
| microsoft.sql/locations/deletedserverasyncoperation/read | metadata |
| microsoft.sql/locations/deletedserveroperationresults/read | metadata |
| microsoft.sql/locations/deletedservers/read | metadata |
| microsoft.sql/locations/elasticpoolazureasyncoperation/read | metadata |
| microsoft.sql/locations/elasticpooloperationresults/read | metadata |
| microsoft.sql/locations/extendedauditingsettingsazureasyncoperation/read | metadata |
| microsoft.sql/locations/extendedauditingsettingsoperationresults/read | metadata |
| microsoft.sql/locations/instancefailovergroups/read | metadata |
| microsoft.sql/locations/interfaceendpointprofileazureasyncoperation/read | metadata |
| microsoft.sql/locations/interfaceendpointprofileoperationresults/read | metadata |
| microsoft.sql/locations/longtermretentionbackups/read | metadata |
| microsoft.sql/locations/longtermretentionservers/longtermretentionbackups/read | metadata |
| microsoft.sql/locations/longtermretentionservers/longtermretentiondatabases/longtermretentionbackups/read | metadata |
| microsoft.sql/locations/managedtransparentdataencryptionazureasyncoperation/read | metadata |
| microsoft.sql/locations/managedtransparentdataencryptionoperationresults/read | metadata |
| microsoft.sql/locations/read | metadata |
| microsoft.sql/locations/usages/read | metadata |
| microsoft.sql/managedinstances/administrators/read | metadata |
| microsoft.sql/managedinstances/databases/providers/microsoft.insights/diagnosticsettings/read | metadata |
| microsoft.sql/managedinstances/databases/providers/microsoft.insights/logdefinitions/read | metadata |
| microsoft.sql/managedinstances/databases/read | metadata |
| microsoft.sql/managedinstances/databases/securityalertpolicies/read | metadata |
| microsoft.sql/managedinstances/databases/securityevents/read | metadata |
| microsoft.sql/managedinstances/databases/transparentdataencryption/read | metadata |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/read | metadata |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/rules/baselines/read | metadata |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/scans/initiatescan/action | metadata |
| microsoft.sql/managedinstances/databases/vulnerabilityassessments/scans/read | metadata |
| microsoft.sql/managedinstances/encryptionprotector/read | metadata |
| microsoft.sql/managedinstances/keys/read | metadata |
| microsoft.sql/managedinstances/metricdefinitions/read | metadata |
| microsoft.sql/managedinstances/metrics/read | metadata |
| microsoft.sql/managedinstances/providers/microsoft.insights/diagnosticsettings/read | metadata |
| microsoft.sql/managedinstances/providers/microsoft.insights/logdefinitions/read | metadata |
| microsoft.sql/managedinstances/providers/microsoft.insights/metricdefinitions/read | metadata |
| microsoft.sql/managedinstances/securityalertpolicies/read | metadata |
| microsoft.sql/managedinstances/vulnerabilityassessments/read | metadata |
| microsoft.sql/operations/read | metadata |
| microsoft.sql/servers/advisors/read | metadata |
| microsoft.sql/servers/advisors/recommendedactions/read | metadata |
| microsoft.sql/servers/auditingsettings/operationresults/read | metadata |
| microsoft.sql/servers/auditingsettings/read | metadata |
| microsoft.sql/servers/automatictuning/read | metadata |
| microsoft.sql/servers/communicationlinks/read | metadata |
| microsoft.sql/servers/databases/advisors/read | metadata |
| microsoft.sql/servers/databases/advisors/recommendedactions/read | metadata |
| microsoft.sql/servers/databases/auditrecords/read | metadata |
| microsoft.sql/servers/databases/auditingpolicies/read | metadata |
| microsoft.sql/servers/databases/auditingsettings/read | metadata |
| microsoft.sql/servers/databases/automatictuning/read | metadata |
| microsoft.sql/servers/databases/azureasyncoperation/read | metadata |
| microsoft.sql/servers/databases/backuplongtermretentionpolicies/read | metadata |
| microsoft.sql/servers/databases/connectionpolicies/read | metadata |
| microsoft.sql/servers/databases/datamaskingpolicies/read | metadata |
| microsoft.sql/servers/databases/datamaskingpolicies/rules/read | metadata |
| microsoft.sql/servers/databases/datawarehousequeries/datawarehousequerysteps/read | metadata |
| microsoft.sql/servers/databases/datawarehousequeries/read | metadata |
| microsoft.sql/servers/databases/datawarehouseuseractivities/read | metadata |
| microsoft.sql/servers/databases/extendedauditingsettings/read | metadata |
| microsoft.sql/servers/databases/extensions/read | metadata |
| microsoft.sql/servers/databases/geobackuppolicies/read | metadata |
| microsoft.sql/servers/databases/importexportoperationresults/read | metadata |
| microsoft.sql/servers/databases/maintenancewindowoptions/read | metadata |
| microsoft.sql/servers/databases/maintenancewindows/read | metadata |
| microsoft.sql/servers/databases/metricdefinitions/read | metadata |
| microsoft.sql/servers/databases/metrics/read | metadata |
| microsoft.sql/servers/databases/operationresults/read | metadata |
| microsoft.sql/servers/databases/operations/read | metadata |
| microsoft.sql/servers/databases/providers/microsoft.insights/diagnosticsettings/read | metadata |
| microsoft.sql/servers/databases/providers/microsoft.insights/logdefinitions/read | metadata |
| microsoft.sql/servers/databases/providers/microsoft.insights/metricdefinitions/read | metadata |
| microsoft.sql/servers/databases/querystore/querytexts/read | metadata |
| microsoft.sql/servers/databases/querystore/read | metadata |
| microsoft.sql/servers/databases/read | metadata |
| microsoft.sql/servers/databases/replicationlinks/read | metadata |
| microsoft.sql/servers/databases/restorepoints/read | metadata |
| microsoft.sql/servers/databases/schemas/read | metadata |
| microsoft.sql/servers/databases/schemas/tables/columns/read | metadata |
| microsoft.sql/servers/databases/schemas/tables/columns/sensitivitylabels/read | metadata |
| microsoft.sql/servers/databases/schemas/tables/read | metadata |
| microsoft.sql/servers/databases/schemas/tables/recommendedindexes/read | metadata |
| microsoft.sql/servers/databases/securityalertpolicies/read | metadata |
| microsoft.sql/servers/databases/securitymetrics/read | metadata |
| microsoft.sql/servers/databases/sensitivitylabels/read | metadata |
| microsoft.sql/servers/databases/servicetieradvisors/read | metadata |
| microsoft.sql/servers/databases/skus/read | metadata |
| microsoft.sql/servers/databases/syncgroups/hubschemas/read | metadata |
| microsoft.sql/servers/databases/syncgroups/logs/read | metadata |
| microsoft.sql/servers/databases/syncgroups/read | metadata |
| microsoft.sql/servers/databases/syncgroups/refreshhubschemaoperationresults/read | metadata |
| microsoft.sql/servers/databases/syncgroups/syncmembers/read | metadata |
| microsoft.sql/servers/databases/syncgroups/syncmembers/refreshschemaoperationresults/read | metadata |
| microsoft.sql/servers/databases/syncgroups/syncmembers/schemas/read | metadata |
| microsoft.sql/servers/databases/topqueries/read | metadata |
| microsoft.sql/servers/databases/topqueries/statistics/read | metadata |
| microsoft.sql/servers/databases/transparentdataencryption/operationresults/read | metadata |
| microsoft.sql/servers/databases/transparentdataencryption/read | metadata |
| microsoft.sql/servers/databases/usages/read | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessmentscans/operationresults/read | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessmentsettings/read | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessments/read | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessments/rules/baselines/read | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessments/scans/initiatescan/action | metadata |
| microsoft.sql/servers/databases/vulnerabilityassessments/scans/read | metadata |
| microsoft.sql/servers/disasterrecoveryconfiguration/read | metadata |
| microsoft.sql/servers/elasticpoolestimates/read | metadata |
| microsoft.sql/servers/elasticpools/advisors/read | metadata |
| microsoft.sql/servers/elasticpools/advisors/recommendedactions/read | metadata |
| microsoft.sql/servers/elasticpools/databases/read | metadata |
| microsoft.sql/servers/elasticpools/elasticpoolactivity/read | metadata |
| microsoft.sql/servers/elasticpools/elasticpooldatabaseactivity/read | metadata |
| microsoft.sql/servers/elasticpools/metricdefinitions/read | metadata |
| microsoft.sql/servers/elasticpools/metrics/read | metadata |
| microsoft.sql/servers/elasticpools/operations/read | metadata |
| microsoft.sql/servers/elasticpools/providers/microsoft.insights/diagnosticsettings/read | metadata |
| microsoft.sql/servers/elasticpools/providers/microsoft.insights/metricdefinitions/read | metadata |
| microsoft.sql/servers/elasticpools/read | metadata |
| microsoft.sql/servers/elasticpools/skus/read | metadata |
| microsoft.sql/servers/encryptionprotector/read | metadata |
| microsoft.sql/servers/extendedauditingsettings/read | metadata |
| microsoft.sql/servers/failovergroups/read | metadata |
| microsoft.sql/servers/interfaceendpointprofiles/read | metadata |
| microsoft.sql/servers/providers/microsoft.insights/metricdefinitions/read | metadata |
| microsoft.sql/servers/read | metadata |
| microsoft.sql/servers/recommendedelasticpools/databases/read | metadata |
| microsoft.sql/servers/recommendedelasticpools/read | metadata |
| microsoft.sql/servers/recoverabledatabases/read | metadata |
| microsoft.sql/servers/replicationlinks/read | metadata |
| microsoft.sql/servers/restorabledroppeddatabases/read | metadata |
| microsoft.sql/servers/serviceobjectives/read | metadata |
| microsoft.sql/servers/syncagents/linkeddatabases/read | metadata |
| microsoft.sql/servers/syncagents/read | metadata |
| microsoft.sql/servers/usages/read | metadata |
| microsoft.sql/servers/virtualnetworkrules/read | metadata |
| microsoft.sql/servers/vulnerabilityassessments/read | metadata |
| microsoft.storage/storageaccounts/read | metadata |
