Here are a bunch of ways you can find which roles are built into Azure. This will come in super handy when you need to assign a role to a service principal or user with Azure CLI commands like this:
az role assignment create --assignee 3db3ad97-06be-4c28-aa96-f1bac93aeed3 --role "Azure Maps Data Reader"
Azure CLI
- Query the big honking json
az role definition list
- Query all, but only return Name and Id in a nice table
az role definition list --query "sort_by([].{Name:roleName,Id:name}, &Name)" --output table
- Filter by name contains:
This one filters for roles with “Map” in the name:
az role definition list --query "sort_by([?contains(roleName, 'Map')].{Name:roleName,Id:name}, &Name)" --output table
Azure PowerShell
https://docs.microsoft.com/en-us/powershell/module/az.resources/get-azroledefinition?view=azps-3.8.0
Get-AzRoleDefinition
Docs
This page has all the built in roles:
https://docs.microsoft.com/azure/role-based-access-control/built-in-roles
AzAdvertizer
Just found this site today by Julian Hayward. It’s a great way to find roles
https://www.azadvertizer.net/azrolesadvertizer_all.html
