DSCResources/MSFT_IntuneAccountProtectionLocalUserGroupMembershipPolicy/MSFT_IntuneAccountProtectionLocalUserGroupMembershipPolicy.schema.mof

[ClassVersion("1.0.0.0")]
class MSFT_IntuneAccountProtectionLocalUserGroupMembershipPolicyAssignments
{
    [Write, Description("The type of the target assignment."), ValueMap{"#microsoft.graph.groupAssignmentTarget", "#microsoft.graph.allLicensedUsersAssignmentTarget", "#microsoft.graph.allDevicesAssignmentTarget", "#microsoft.graph.exclusionGroupAssignmentTarget", "#microsoft.graph.configurationManagerCollectionAssignmentTarget"}, Values{"#microsoft.graph.groupAssignmentTarget", "#microsoft.graph.allLicensedUsersAssignmentTarget", "#microsoft.graph.allDevicesAssignmentTarget", "#microsoft.graph.exclusionGroupAssignmentTarget", "#microsoft.graph.configurationManagerCollectionAssignmentTarget"}] String dataType;
    [Write, Description("The type of filter of the target assignment i.e. Exclude or Include. Possible values are:none, include, exclude."), ValueMap{"none", "include", "exclude"}, Values{"none", "include", "exclude"}] String deviceAndAppManagementAssignmentFilterType;
    [Write, Description("The Id of the filter for the target assignment.")] String deviceAndAppManagementAssignmentFilterId;
    [Write, Description("The group Id that is the target of the assignment.")] String groupId;
    [Write, Description("The collection Id that is the target of the assignment.(ConfigMgr)")] String collectionId;
};
 
[ClassVersion("1.0.0.0")]
class MSFT_IntuneAccountProtectionLocalUserGroupCollection
{
    [Write, Description("The action to use for adding / removing members."), ValueMap{"add_update", "remove_update", "add_replace"}, Values{"add_update", "remove_update", "add_replace"}] String Action;
    [Write, Description("The local groups to add / remove the members to / from. List of the following values: `administrators`, `users`, `guests`, `powerusers`, `remotedesktopusers`, `remotemanagementusers`")] String LocalGroups[];
    [Write, Description("The members to add / remove to / from the group. For AzureAD Users, use the format `AzureAD\\<UserPrincipalName>`. For groups, use the security identifier (SID).")] String Members[];
    [Write, Description("The type of the selection. Either users / groups from AzureAD, or by manual identifier."), ValueMap{"users", "manual"}, Values{"users", "manual"}] String UserSelectionType;
};
 
[ClassVersion("1.0.0.0"), FriendlyName("IntuneAccountProtectionLocalUserGroupMembershipPolicy")]
class MSFT_IntuneAccountProtectionLocalUserGroupMembershipPolicy : OMI_BaseResource
{
    [Key, Description("Identity of the account protection policy.")] String Identity;
    [Required, Description("Display name of the account protection rules policy.")] String DisplayName;
    [Write, Description("Description of the account protection rules policy.")] String Description;
    [Write, Description("Assignments of the Intune Policy."), EmbeddedInstance("MSFT_IntuneAccountProtectionLocalUserGroupMembershipPolicyAssignments")] String Assignments[];
    [Write, Description("Local User Group Collections of the Intune Policy."), EmbeddedInstance("MSFT_IntuneAccountProtectionLocalUserGroupCollection")] String LocalUserGroupCollection[];
    [Write, Description("Present ensures the site collection exists, absent ensures it is removed"), ValueMap{"Present", "Absent"}, Values{"Present", "Absent"}] string Ensure;
    [Write, Description("Credentials of the Intune Admin"), EmbeddedInstance("MSFT_Credential")] string Credential;
    [Write, Description("Id of the Azure Active Directory application to authenticate with.")] String ApplicationId;
    [Write, Description("Name of the Azure Active Directory tenant used for authentication. Format contoso.onmicrosoft.com")] String TenantId;
    [Write, Description("Secret of the Azure Active Directory tenant used for authentication."), EmbeddedInstance("MSFT_Credential")] String ApplicationSecret;
    [Write, Description("Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.")] String CertificateThumbprint;
    [Write, Description("Managed ID being used for authentication.")] Boolean ManagedIdentity;
};