unifiedRoleManagementPolicyAssignment resource type

Namespace: microsoft.graph

The assignment of a role management policy to a role definition object.

Inherits from entity.

Methods

Method Return type Description
List unifiedRoleManagementPolicyAssignments unifiedRoleManagementPolicyAssignment collection Get the details of all role management policy assignments including the policies and rules associated with the Microsoft Entra role.
Get unifiedRoleManagementPolicyAssignment unifiedRoleManagementPolicyAssignment Read the properties and relationships of an unifiedRoleManagementPolicyAssignment object.

Properties

Property Type Description
id String Unique identifier for the policy assignment. The ID is typically a concatenation of the unifiedRoleManagementPolicy ID and the roleDefinitionId separated by an underscore.
policyId String The id of the policy. Inherited from entity.
roleDefinitionId String For Microsoft Entra roles policy, it's the identifier of the role definition object where the policy applies. For PIM for groups membership and ownership, it's either member or owner. Supports $filter (eq).
scopeId String The identifier of the scope where the policy is assigned. Can be / for the tenant or a group ID. Required.
scopeType String The type of the scope where the policy is assigned. One of Directory, DirectoryRole, Group. Required.

Relationships

Relationship Type Description
policy unifiedRoleManagementPolicy The policy that's associated with a policy assignment. Supports $expand and a nested $expand of the rules and effectiveRules relationships for the policy.

JSON representation

The following is a JSON representation of the resource.

{
  "@odata.type": "#microsoft.graph.unifiedRoleManagementPolicyAssignment",
  "id": "String (identifier)",
  "policyId": "String",
  "scopeId": "String",
  "scopeType": "String",
  "roleDefinitionId": "String"
}