services / Azure / Traffic Manager Realtime User Metrics key
A subscription-level key used to authenticate client-side Realtime (Real) User Metrics telemetry submission for Traffic Manager.
The key is a secret that authorizes RUM telemetry reporting; it does not by itself grant identity or data-plane access, so its blast radius is limited to the metrics/telemetry function.
Microsoft.Network/trafficManagerUserMetricsKeys/write
Creating/regenerating the subscription-level metrics key alters the telemetry-collection configuration and can invalidate the existing key, disrupting legitimate Realtime User Metrics reporting.
Risks
Scope: MEDIUM
This privilege may grant access to confidential data, or its exploit can incur operational cost.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog