Example roleManagementPolicies.json

RoleManagementPolicy for directory role with approver group

{
    "roleReference": "directory role name",
    "activationApprover": [
        {
            "reference": "Some group",
            "type": "group"
        }
    ],
    "scopeReference": "/",
    "scopeType": "directory",
    "ruleTemplate": "some rule template"
}

RoleManagementPolicy for directory role without approval

{
    "roleReference": "directory role name",
    "activationApprover": [],
    "scopeReference": "/",
    "scopeType": "directory",
    "ruleTemplate": "some rule template"
}

RoleManagementPolicy for AzureResource role on subscription level with approver

{
    "roleReference": "role name",
    "subscriptionReference": "subscription name",
    "scopeReference": "subscription name",
    "scopeType": "subscription",
    "activationApprover": [
        {
            "reference": "userPrincipalName",
            "type": "user"
        }
    ],
    "ruleTemplate": "some rule template"
}

RoleManagementPolicy for AzureResource role on resourceGroup level without approval

{
    "roleReference": "role name",
    "subscriptionReference": "subscription name",
    "scopeReference": "resourceGroup name",
    "scopeType": "resourceGroup",
    "activationApprover": [],
    "ruleTemplate": "some rule template"
}

RoleManagementPolicy for member role of an AADGroup

{
    "roleReference": "member",
    "groupReference": "group name",
    "scopeType": "group",
    "activationApprover": [],
    "ruleTemplate": "some rule template"
}

RoleManagementPolicy for owner role of an AADGroup with approvers

{
    "roleReference": "owner",
    "groupReference": "group name",
    "scopeType": "group",
    "activationApprover": [
        {
            "reference": "userPrincipalName",
            "type": "user"
        },
        {
            "reference": "Some group",
            "type": "group"
        }
    ],
    "ruleTemplate": "some rule template"
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

example.md

example.md

Example roleManagementPolicies.json

RoleManagementPolicy for directory role with approver group

RoleManagementPolicy for directory role without approval

RoleManagementPolicy for AzureResource role on subscription level with approver

RoleManagementPolicy for AzureResource role on resourceGroup level without approval

RoleManagementPolicy for member role of an AADGroup

RoleManagementPolicy for owner role of an AADGroup with approvers

Files

example.md

Latest commit

History

example.md

File metadata and controls

Example roleManagementPolicies.json

RoleManagementPolicy for directory role with approver group

RoleManagementPolicy for directory role without approval

RoleManagementPolicy for AzureResource role on subscription level with approver

RoleManagementPolicy for AzureResource role on resourceGroup level without approval

RoleManagementPolicy for member role of an AADGroup

RoleManagementPolicy for owner role of an AADGroup with approvers