| author | b-ahibbard |
|---|---|
| ms.service | azure-netapp-files |
| ms.topic | include |
| ms.date | 01/26/2026 |
| ms.author | anfdocs |
| ms.custom | include file |
If you're using a custom RBAC role or the built-in Contributor role and managing availability zones in the Azure portal, you might not be able to access network features and Availability Zone options in the Azure portal. To ensure you have the appropriate access, add the Microsoft.NetApp/locations/* permission. The wildcard encompasses the following permissions:
Microsoft.NetApp/locations/{location}/checkNameAvailabilityMicrosoft.NetApp/locations/{location}/checkFilePathAvailabilityMicrosoft.NetApp/locations/{location}/checkQuotaAvailabilityMicrosoft.NetApp/locations/{location}/quotaLimitsMicrosoft.NetApp/locations/{location}/quotaLimits/{quotaLimitName}Microsoft.NetApp/locations/{location}/regionInfoMicrosoft.NetApp/locations/{location}/elasticRegionInfoMicrosoft.NetApp/locations/{location}/queryNetworkSiblingSetMicrosoft.NetApp/locations/{location}/updateNetworkSiblingSet
-
In your Azure NetApp Files subscription, select Access control (IAM).
-
Select Roles then choose the custom role you want to modify. Select the three dots (
...) then Edit. -
To update the custom role, select JSON. Modify the JSON file to include the locations wild card permission (
Microsoft.NetApp/locations/*). For example:{ "properties": { "roleName": "", "description": "", "assignableScopes": ["/subscription/<subscriptionID>" ], "permissions": [ { "actions": [ "Microsoft.NetApp/locations/*", "Microsoft.NetApp/netAppAccounts/read", "Microsoft.NetApp/netAppAccounts/renewCredentials/action", "Microsoft.NetApp/netAppAccounts/capacityPools/read" ], "notActions": [], "dataActions": [], "notDataActions": [] }] } } -
Select Review + update.
-
Sign out of your Azure account, and then log back in to confirm that the permissions are in effect and the options are visible.