DSCResources/MSFT_AADRoleSetting/settings.json
|
{
"resourceName": "AADRoleSetting", "description": "This resource configures an Azure Role.", "roles": { "read": [], "update": [ "Privileged Role Administrator" ] }, "permissions": { "graph": { "delegated": { "read": [ { "name": "Group.Read.All" }, { "name": "RoleManagementPolicy.Read.Directory" }, { "name": "User.Read.All" } ], "update": [ { "name": "Group.Read.All" }, { "name": "RoleManagement.ReadWrite.Directory" }, { "name": "User.Read.All" } ] }, "application": { "read": [ { "name": "Group.Read.All" }, { "name": "RoleManagement.Read.Directory" }, { "name": "User.Read.All" }, { "name": "RoleManagementPolicy.Read.Directory" } ], "update": [ { "name": "Group.Read.All" }, { "name": "RoleManagement.ReadWrite.Directory" }, { "name": "User.Read.All" }, { "name": "RoleManagementPolicy.ReadWrite.Directory" } ] } } }, "requiredModules": [ "Microsoft.Graph.Authentication", "Microsoft.Graph.Beta.Identity.Governance", "Microsoft.Graph.Beta.Identity.SignIns", "Microsoft.Graph.Groups", "Microsoft.Graph.Users" ], "supportedEnvironments": [ "Global", "USGov" ], "mode": "Data", "commands": [ { "module": "Microsoft.Graph.Beta.Identity.Governance", "cmdlets": [ "Get-MgBetaRoleManagementDirectoryRoleDefinition" ] }, { "module": "Microsoft.Graph.Beta.Identity.SignIns", "cmdlets": [ "Get-MgBetaIdentityConditionalAccessAuthenticationContextClassReference", "Get-MgBetaPolicyRoleManagementPolicy", "Get-MgBetaPolicyRoleManagementPolicyAssignment", "Get-MgBetaPolicyRoleManagementPolicyRule", "Update-MgBetaPolicyRoleManagementPolicyRule" ] }, { "module": "Microsoft.Graph.Groups", "cmdlets": [ "Get-MgGroup" ] }, { "module": "Microsoft.Graph.Users", "cmdlets": [ "Get-MgUser" ] } ] } |