Veeam Backup for Microsoft Azure 7.0 [Archived]
User Guide
Related documents
Search
This is an archive version of the document. To get the most up-to-date information, see the current version.

Cosmos DB Permissions

To allow Veeam Backup for Microsoft Azure to protect Cosmos DB accounts, the service account that will be used for backup and restore operations with these accounts must have the following permissions.

Cosmos DB Backup Permissions

{

"permissions": [

       {

       "actions": [

                   "Microsoft.Authorization/roleAssignments/read",

                   "microsoft.dbforpostgresql/servergroupsv2/*/read",

                   "Microsoft.DocumentDB/databaseAccounts/metrics/read",

                   "Microsoft.DocumentDB/databaseAccounts/read",

                   "Microsoft.DocumentDB/databaseAccounts/write",

                   "Microsoft.DocumentDB/locations/restorableDatabaseAccounts/*/read",

                   "Microsoft.DocumentDB/locations/restorableDatabaseAccounts/read",

                   "Microsoft.Insights/eventtypes/values/Read",

                   "Microsoft.Insights/Metrics/Read",

                   "Microsoft.Resources/subscriptions/resourceGroups/read"

       ],

       "notActions": [],

       "dataActions": [],

       "notDataActions": []

       }

   ]

}

Cosmos DB Restore Permissions

{

"permissions": [

       {

       "actions": [

               "Microsoft.Authorization/roleAssignments/read",

               "microsoft.dbforpostgresql/servergroupsv2/*/read",

               "microsoft.dbforpostgresql/servergroupsv2/*/write",

               "Microsoft.DocumentDB/databaseAccounts/delete",

               "Microsoft.DocumentDB/databaseAccounts/gremlinDatabases/graphs/read",

               "Microsoft.DocumentDB/databaseAccounts/gremlinDatabases/graphs/write",

               "Microsoft.DocumentDB/databaseAccounts/gremlinDatabases/read",

               "Microsoft.DocumentDB/databaseAccounts/gremlinDatabases/write",

               "Microsoft.DocumentDB/databaseAccounts/mongodbDatabases/collections/write",

               "Microsoft.DocumentDB/databaseAccounts/mongodbDatabases/collections/read",

               "Microsoft.DocumentDB/databaseAccounts/mongodbDatabases/read",

               "Microsoft.DocumentDB/databaseAccounts/mongodbDatabases/write",

               "Microsoft.DocumentDB/databaseAccounts/read",

               "Microsoft.DocumentDB/databaseAccounts/restore/action",

               "Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/read",

               "Microsoft.DocumentDB/databaseAccounts/sqlDatabases/read",

               "Microsoft.DocumentDB/databaseAccounts/sqlDatabases/write",

               "Microsoft.DocumentDB/databaseAccounts/tables/read",

               "Microsoft.DocumentDB/databaseAccounts/tables/write",

               "Microsoft.DocumentDB/databaseAccounts/write",

               "Microsoft.DocumentDB/locations/restorableDatabaseAccounts/*/read",

               "Microsoft.DocumentDB/locations/restorableDatabaseAccounts/read",

               "Microsoft.DocumentDB/locations/restorableDatabaseAccounts/restore/action",

               "Microsoft.Resources/subscriptions/resourceGroups/read"

 

       ],

       "notActions": [],

       "dataActions": [],

       "notDataActions": []

       }

   ]

}

View all results across Veeam
Back to document search