Azure Access control (IAM) roles - Reader vs Resource specific Reader
The role definitions for each built-in role will help you identify exactly which role you want based on which component permissions it provides.
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#reader
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#log-analytics-reader