Microsoft365DSC

1.25.1015.1

DSCResources/MSFT_AADAdministrativeUnit/settings.json

                                {

  "resourceName": "AADAdministrativeUnit",

  "description": "This resource configures an Azure Active Directory administrative unit.",

  "roles": {

    "read": [

      "Security Reader"

    ],

    "update": [

      "Privileged Role Administrator"

    ]

  },

  "permissions": {

    "graph": {

      "delegated": {

        "read": [

          {

            "name": "AdministrativeUnit.Read.All"

          },

          {

            "name": "RoleManagement.Read.Directory"

          }

        ],

        "update": [

          {

            "name": "AdministrativeUnit.ReadWrite.All"

          },

          {

            "name": "Application.Read.All"

          },

          {

            "name": "Device.Read.All"

          },

          {

            "name": "Group.Read.All"

          },

          {

            "name": "RoleManagement.Read.Directory"

          },

          {

            "name": "User.Read.All"

          }

        ]

      },

      "application": {

        "read": [

          {

            "name": "AdministrativeUnit.Read.All"

          },

          {

            "name": "RoleManagement.Read.Directory"

          }

        ],

        "update": [

          {

            "name": "AdministrativeUnit.ReadWrite.All"

          },

          {

            "name": "Application.Read.All"

          },

          {

            "name": "Device.Read.All"

          },

          {

            "name": "Group.Read.All"

          },

          {

            "name": "RoleManagement.Read.Directory"

          },

          {

            "name": "User.Read.All"

          }

        ]

      }

    }

  },

  "requiredModules": [

    "Microsoft.Graph.Applications",

    "Microsoft.Graph.Authentication",

    "Microsoft.Graph.Groups",

    "Microsoft.Graph.Identity.DirectoryManagement",

    "Microsoft.Graph.Users",

    "MSCloudLoginAssistant"

  ],

  "supportedEnvironments": [

    "Global",

    "USGov"

  ],

  "mode": "Configuration",

  "commands": [

    {

      "module": "Microsoft.Graph.Applications",

      "cmdlets": [

        "Get-MgServicePrincipal"

      ]

    },

    {

      "module": "Microsoft.Graph.Groups",

      "cmdlets": [

        "Get-MgGroup"

      ]

    },

    {

      "module": "Microsoft.Graph.Identity.DirectoryManagement",

      "cmdlets": [

        "Get-MgDevice",

        "Get-MgDirectoryAdministrativeUnit",

        "Get-MgDirectoryAdministrativeUnitMember",

        "Get-MgDirectoryAdministrativeUnitScopedRoleMember",

        "Get-MgDirectoryRole",

        "Get-MgDirectoryRoleTemplate",

        "New-MgDirectoryAdministrativeUnit",

        "New-MgDirectoryAdministrativeUnitMemberByRef",

        "New-MgDirectoryAdministrativeUnitScopedRoleMember",

        "New-MgDirectoryRole",

        "Remove-MgDirectoryAdministrativeUnit",

        "Remove-MgDirectoryAdministrativeUnitMemberDirectoryObjectByRef",

        "Remove-MgDirectoryAdministrativeUnitScopedRoleMember",

        "Update-MgDirectoryAdministrativeUnit"

      ]

    },

    {

      "module": "Microsoft.Graph.Users",

      "cmdlets": [

        "Get-MgUser"

      ]

    }

  ]

}