unifiedRoleManagementPolicyRuleTarget resource type

Namespace: microsoft.graph

A unifiedRoleManagementPolicyRuleTarget specifies the target associated with the role management policy.

Properties

Property Type Description
caller String The caller for the policy rule target. Allowed values are: None, Admin, EndUser.
enforcedSettings String collection The list of settings which are enforced and cannot be overridden by child scopes. Use All for all settings.
inheritableSettings String collection The list of settings which can be inherited by child scopes. Use All for all settings.
level String The level for the policy rule target. Allowed values are: Eligibility, Assignment.
operations String collection The operations for policy rule target. Allowed values are: All, Activate, Deactivate, Assign, Update, Remove, Extend, Renew.

Relationships

Relationship Type Description
targetObjects directoryObject collection The collection of users, groups and servicePrincipals which are in scope of the policy. If not specified, all objects are in scope of the policy.

JSON representation

The following is a JSON representation of the resource.

{
  "@odata.type": "#microsoft.graph.unifiedRoleManagementPolicyRuleTarget",
  "caller": "String",
  "operations": [
    "String"
  ],
  "level": "String",
  "inheritableSettings": [
    "String"
  ],
  "enforcedSettings": [
    "String"
  ]
}