rbacApplication resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Role management container for unified role definitions and role assignments for Microsoft 365 RBAC providers. Currently directory and entitlement management are the only RBAC applications supported.
Methods
| Method | Return Type | Description |
|---|---|---|
| Create unifiedRoleAssignment | unifiedRoleAssignment | Create a new unifiedRoleAssignment by posting to the roleAssignments collection. |
| List roleAssignments | unifiedRoleAssignment collection | Get a unifiedRoleAssignment object collection. Only specific instances can be queried, by filtering on roleDefitionId or principalId. |
| List transitiveRoleAssignments | unifiedRoleAssignment collection | Get direct and transitive unifiedRoleAssignments assigned to a specific principal. Specifying principalId is required. |
| Create unifiedRoleDefinition | unifiedRoleDefinition | Create a new unifiedRoleDefinition by posting to the roleDefinitions collection. |
| List roleDefinitions | unifiedRoleDefinition collection | Get a unifiedRoleDefinition object collection. |
| roleSchedules | unifiedRoleScheduleBase collection | Function to retrieve a collection of unifiedRoleScheduleBase objects. |
| roleScheduleInstances | unifiedRoleScheduleInstanceBase collection | Function to retrieve a collection of unifiedRoleScheduleInstanceBase objects. |
Properties
None
Relationships
| Relationship | Type | Description |
|---|---|---|
| resourceNamespaces | unifiedRbacResourceNamespace collection | Resource that represents a collection of related actions. |
| roleAssignments | unifiedRoleAssignment collection | Resource to grant access to users or groups. |
| roleDefinitions | unifiedRoleDefinition collection | Resource representing the roles allowed by RBAC providers and the permissions assigned to the roles. |
| roleAssignmentApprovals | approval collection | Decisions associated with a role assignment approval. |
| roleAssignmentScheduleInstances | unifiedRoleAssignmentScheduleInstance collection | Instances for active role assignments through Microsoft Entra Privileged Identity Management. |
| roleAssignmentScheduleRequests | unifiedRoleAssignmentScheduleRequest collection | Requests for active role assignments through Microsoft Entra Privileged Identity Management. |
| roleAssignmentSchedules | unifiedRoleAssignmentSchedule collection | Schedule for active role assignments through Microsoft Entra Privileged Identity Management. |
| roleEligibilityScheduleInstances | unifiedRoleEligibilityScheduleInstance collection | Instances of eligible role assignments through Microsoft Entra Privileged Identity Management. |
| roleEligibilityScheduleRequests | unifiedRoleEligibilityScheduleRequest collection | Requests for eligible role assignments through Microsoft Entra Privileged Identity Management. |
| roleEligibilitySchedules | unifiedRoleEligibilitySchedule collection | Schedule for eligible role assignments through Microsoft Entra Privileged Identity Management. |
| transitiveRoleAssignments | unifiedRoleAssignment collection | Resource to grant access to users or groups that are transitive. |
JSON representation
None
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for