Azure Portal management roles and permissions

Cloud Commander end of life (EOL)

Cloud Commander will be decommissioned and stop functioning on May 13, 2026. You can use the product until that date.

Review and update workflows to remove any dependencies before the product is decommissioned.

Support, bug fixes, and security patches will be available until April 13, 2026.

Role Permission Description
Azure Portal Management License Reader

Can read all Azure Portal Management License Command Blocks.

 command.category.read Can read all corresponding Command Block categories
command.cmdazureportallicense.read Can read all Azure Portal License Command Blocks and jobs
command.jobs.read Can read related Command Block jobs
command.read Can read all related Command Blocks
command.schedules.read Can read all schedules Command Blocks and jobs
organization.readbasic Can read all basic organization properties (list)
report.accesstoken.read Can read Power BI report access token (list)
report.read Can read Power BI reports (list)
user.read Can read all properties of a user (details)
user.readbasic Can read all basic user properties (list)
Azure Portal Management License Writer

Can read and execute all Azure Portal Management License Command Blocks.

 command.category.read Can read all corresponding Command Block categories
command.cmdazureportallicense.read Can read all Azure Portal License Command Blocks and jobs
command.cmdazureportallicense.write Can write all Azure Portal License Command Blocks and jobs
command.jobs.read Can read related Command Block jobs
command.read Can read all related Command Blocks
command.schedules.read Can read all schedules Command Blocks and jobs
command.schedules.write Can write all schedules Command Blocks and jobs
organization.readbasic Can read all basic organization properties (list)
report.accesstoken.read Can read Power BI report access token (list)
report.read Can read Power BI reports (list)
user.read Can read all properties of a user (details)
user.readbasic Can read all basic user properties (list)
Azure Portal Management User Settings and B2B Policies Reader

Can read all Azure Portal Management User Settings and B2B Policies Command Blocks.

 command.category.read Can read all corresponding Command Block categories
command.cmdazureportaluserandb2b.read Can read all Azure Portal User and B2B Command Blocks and jobs
command.jobs.read Can read related Command Block jobs
command.read Can read all related Command Blocks
command.schedules.read Can read all schedules Command Blocks and jobs
organization.readbasic Can read all basic organization properties (list)
report.accesstoken.read Can read Power BI report access token (list)
report.read Can read Power BI reports (list)
user.read Can read all properties of a user (details)
user.readbasic Can read all basic user properties (list)
Azure Portal Management User Settings and B2B Policies Writer

Can read and execute all Azure Portal Management User Settings and B2B Policies Command Blocks.

 command.category.read Can read all corresponding Command Block categories
command.cmdazureportaluserandb2b.read Can read all Azure Portal User and B2B Command Blocks and jobs
command.cmdazureportaluserandb2b.write Can write all Azure Portal User and B2B Command Blocks and jobs
command.jobs.read Can read related Command Block jobs
command.read Can read all related Command Blocks
command.schedules.read Can read all schedules Command Blocks and jobs
command.schedules.write Can write all schedules Command Blocks and jobs
organization.readbasic Can read all basic organization properties (list)
report.accesstoken.read Can read Power BI report access token (list)
report.read Can read Power BI reports (list)
user.read Can read all properties of a user (details)
user.readbasic Can read all basic user properties (list)

Related articles

Updated: Jan 09, 2026