You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/role-based-access-control/built-in-roles.md
+6-1Lines changed: 6 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -313,9 +313,14 @@ The following table provides a brief description of each built-in role. Click th
313
313
> | <aname='agfood-platform-service-admin'></a>[AgFood Platform Service Admin](./built-in-roles/ai-machine-learning.md#agfood-platform-service-admin)| Provides admin access to AgFood Platform Service | f8da80de-1ff9-4747-ad80-a19b7f6079e3 |
314
314
> | <aname='agfood-platform-service-contributor'></a>[AgFood Platform Service Contributor](./built-in-roles/ai-machine-learning.md#agfood-platform-service-contributor)| Provides contribute access to AgFood Platform Service | 8508508a-4469-4e45-963b-2518ee0bb728 |
315
315
> | <aname='agfood-platform-service-reader'></a>[AgFood Platform Service Reader](./built-in-roles/ai-machine-learning.md#agfood-platform-service-reader)| Provides read access to AgFood Platform Service | 7ec7ccdc-f61e-41fe-9aaf-980df0a44eba |
316
-
> | <aname='azure-ai-developer'></a>[Azure AI Developer](./built-in-roles/ai-machine-learning.md#azure-ai-developer)| Can perform all actions within an Azure AI resource besides managing the resource itself. | 64702f94-c441-49e6-a78b-ef80e0188fee |
316
+
> | <aname='azure-ai-account-owner'></a>[Azure AI Account Owner](./built-in-roles/ai-machine-learning.md#azure-ai-account-owner)| Grants full access to manage AI projects and accounts. Includes an ABAC condition to constrain role assignments. Grants conditional assignment of the Azure AI User role to other user principles. Applies for new Foundry resources. | e47c6f54-e4a2-4754-9501-8e0985b135e1 |
317
+
> | <aname='azure-ai-administrator'></a>[Azure AI Administrator](./built-in-roles/ai-machine-learning.md#azure-ai-administrator)| A Built-In Role that has all control plane permissions to work with Azure AI and its dependencies. Applies to Azure Machine Learning and Foundry hubs only. | b78c5d69-af96-48a3-bf8d-a8b4d589de94 |
318
+
> | <aname='azure-ai-developer'></a>[Azure AI Developer](./built-in-roles/ai-machine-learning.md#azure-ai-developer)| Can perform all actions within an Azure AI resource besides managing the resource itself. Applies to Azure Machine Learning and Foundry hubs only. | 64702f94-c441-49e6-a78b-ef80e0188fee |
317
319
> | <aname='azure-ai-enterprise-network-connection-approver'></a>[Azure AI Enterprise Network Connection Approver](./built-in-roles/ai-machine-learning.md#azure-ai-enterprise-network-connection-approver)| Can approve private endpoint connections to Azure AI common dependency resources | b556d68e-0be0-4f35-a333-ad7ee1ce17ea |
318
320
> | <aname='azure-ai-inference-deployment-operator'></a>[Azure AI Inference Deployment Operator](./built-in-roles/ai-machine-learning.md#azure-ai-inference-deployment-operator)| Can perform all actions required to create a resource deployment within a resource group. | 3afb7f49-54cb-416e-8c09-6dc049efa503 |
321
+
> | <aname='azure-ai-owner'></a>[Azure AI Owner](./built-in-roles/ai-machine-learning.md#azure-ai-owner)| Grants full to manage AI project and accounts. Grants reader access to AI projects, reader access to AI accounts, and data actions for an AI project. Applies for new Foundry resources. | c883944f-8b7b-4483-af10-35834be79c4a |
322
+
> | <aname='azure-ai-project-manager'></a>[Azure AI Project Manager](./built-in-roles/ai-machine-learning.md#azure-ai-project-manager)| Lets you perform developer actions and management actions on Foundry Projects. Includes an ABAC condition to constrain role assignments. Allows for making role assignments, but limited to Azure AI User role. Applies for new Foundry resources. | eadc314b-1a2d-4efa-be10-5d325db5065e |
323
+
> | <aname='azure-ai-user'></a>[Azure AI User](./built-in-roles/ai-machine-learning.md#azure-ai-user)| Grants reader access to AI projects, reader access to AI accounts, and data actions for an AI project. | 53ca6127-db72-4b80-b1b0-d745d6d5456d |
319
324
> | <aname='azureml-compute-operator'></a>[AzureML Compute Operator](./built-in-roles/ai-machine-learning.md#azureml-compute-operator)| Can access and perform CRUD operations on Machine Learning Services managed compute resources (including Notebook VMs). | e503ece1-11d0-4e8e-8e2c-7a6c3bf38815 |
320
325
> | <aname='azureml-data-scientist'></a>[AzureML Data Scientist](./built-in-roles/ai-machine-learning.md#azureml-data-scientist)| Can perform all actions within an Azure Machine Learning workspace, except for creating or deleting compute resources and modifying the workspace itself. | f6c7c914-8db3-469d-8ca1-694a8f32e121 |
321
326
> | <aname='azureml-metrics-writer-preview'></a>[AzureML Metrics Writer (preview)](./built-in-roles/ai-machine-learning.md#azureml-metrics-writer-preview)| Lets you write metrics to AzureML workspace | 635dd51f-9968-44d3-b7fb-6d9a6bd613ae |
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments