Azure CLI Command Center

Understand an Azure CLI command before you run it

Search an az command, command group, or Azure task. AzureGlossary shows what the command touches, how risky it is, which concepts explain it, and what safer checks and generated safe-first paths to run first.

Map a command Browse command groups

Microsoft Learn remains the official Azure CLI reference. This page is the plain-English command map for safety, context, operator review, and safe-first command paths.

5,357 indexed az commands 630 command groups 3,504 read-only checks 1,853 commands needing review
Command group service map

az storage fs access

az storage fs access commands for Storage; browse safety labels, operation lanes, mapped Azure concepts, and safe-first examples.

24 commands28 mapped termsStorage
Open in Command CenterMicrosoft Learn
Safety mix
read-only: 9mutating: 6security-impacting: 6destructive: 3
Operation mix
discover: 9secure: 6operate: 5remove: 3configure: 1
Command group map

Start with these commands in az storage fs access

destructiveaz storage fs access remove-recursive --account-name <storage-account> --file-system <file-system> --path <path> --acl "user:<object-id>" --auth-mode login

Delete or remove storage fs access with the Azure CLI; verify scope and backup/rollback before running.

removeremove-recursive
destructiveaz storage fs access remove-recursive --account-name <storage-account> --file-system <filesystem> --path <directory> --acl "user:<object-id>" --auth-mode login

Delete or remove storage fs access with the Azure CLI; verify scope and backup/rollback before running.

removeremove-recursive
destructiveaz storage fs access remove-recursive --account-name <storage-account> --file-system <filesystem> --path <path> --acl <acl> --auth-mode login

Delete or remove storage fs access with the Azure CLI; verify scope and backup/rollback before running.

removeremove-recursive
mutatingaz storage fs access set --account-name <storage-account> --file-system <file-system> --path <path> --acl "user::rwx,group::r-x,other::---" --auth-mode login

Create, update, or operate storage fs access with the Azure CLI.

configureset
security-impactingaz storage fs access set --account-name <storage-account> --file-system <filesystem> --path <path> --acl <acl> --auth-mode login

Set Data Lake ACLs on a path.

secureset
security-impactingaz storage fs access set --file-system <filesystem> --path <path> --permissions <permissions> --account-name <storage-account>

Set ACLs for a Data Lake path.

secureset
mutatingaz storage fs access set-recursive --account-name <storage-account> --file-system <filesystem> --path <directory> --acl "user:<object-id>:rwx" --auth-mode login

Create, update, or operate storage fs access with the Azure CLI.

operateset-recursive
security-impactingaz storage fs access set-recursive --account-name <storage-account> --file-system <filesystem> --path <directory> --acl <acl> --auth-mode login

Change identity, access, policy, or security-sensitive configuration for storage fs access.

secureset-recursive
mutatingaz storage fs access set-recursive --account-name <storage-account> --file-system <filesystem> --path <path> --acl <acl> --auth-mode login

Create, update, or operate storage fs access with the Azure CLI.

operateset-recursive
read-onlyaz storage fs access show --account-name <storage-account> --file-system <file-system> --path <path> --auth-mode login

Inspect or list storage fs access with the Azure CLI before making changes.

discovershow
read-onlyaz storage fs access show --account-name <storage-account> --file-system <file-system> --path <path> --auth-mode login --output json

Inspect or list storage fs access with the Azure CLI before making changes.

discovershow
read-onlyaz storage fs access show --account-name <storage-account> --file-system <filesystem> --path <directory> --auth-mode login

Inspect or list storage fs access with the Azure CLI before making changes.

discovershow
Command Center

Which Azure CLI command are you trying to understand?

Start with a command, group, or messy task. The Command Center gives you a briefing before you copy anything: risk, touched services, safe-first paths, related concepts, and the official Microsoft Learn reference.

Results load after you search or choose a command job. The page does not dump every command on first load.

Advanced filtersCommand group, safety, operation lane, service area, and relationship type
0 matching commandsSearch for a command, choose a command job, or browse a command group
Service maps

Browse by the Azure surface the command touches

Search for a command or choose a command job

Try a real command such as az role assignment list, a group such as az aks, or a task such as private endpoint. Results open as command briefing cards.

Command briefings

Mapped command results

Each card explains the command, what it touches, whether it is safe for discovery, and the safe-first path to run before risky changes.

Starter command flowsOptional guided examples for resource groups, web apps, storage, AKS, SQL, and Key Vault.

AKS operations path

Inspect AKS state, credentials, node pools, upgrades, monitoring, and destructive operations from one lane.

Data platform lifecycle

Navigate database, analytics, messaging, and AI commands from discovery to controlled mutation.

Identity and access change path

Inspect identities and assignments before making privileged RBAC, managed identity, or credential changes.

Resource group lifecycle

Start with read-only discovery, create only after context checks, then clean up deliberately.

Storage hardening and access

Discover storage accounts, then check network, identity, lifecycle, container, and destructive cleanup commands.

Web app release operations

Move from App Service discovery through deployment, slot checks, diagnostics, and guarded rollback.

Safety and operation legendReference definitions for labels used on command briefing cards.

Safety labels

Operation lanes