services / Azure / Fleet TrafficManagerProfile (public DNS routing profile)
An AKS Fleet Manager TrafficManagerProfile resource representing an Azure Traffic Manager profile that performs DNS-based traffic routing for fleet services over a domain name.
Data-plane object controlling public DNS-based traffic routing for the fleet's externally exposed services; governs the routing method and endpoint set for a domain.
Microsoft.ContainerService/fleets/networking.fleet.azure.com/trafficManagerProfiles/delete
Deleting removes the DNS routing profile so the domain can no longer route to any backend, destroying the routing layer and denying public access to fronted services.
Risks
Scope: HIGH
This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog