Role Assignments - Create
Creates a role assignment.
PUT {vaultBaseUrl}/{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}?api-version=7.4URI Parameters
| Name | In | Required | Type | Description |
|---|---|---|---|---|
|
role
|
path | True |
string |
The name of the role assignment to create. It can be any valid GUID. |
|
scope
|
path | True |
string |
The scope of the role assignment to create. |
|
vault
|
path | True |
string |
The vault name, for example https://myvault.vault.azure.net. |
|
api-version
|
query | True |
string |
Client API version. |
Request Body
| Name | Required | Type | Description |
|---|---|---|---|
| properties | True |
Role assignment properties. |
Responses
| Name | Type | Description |
|---|---|---|
| 201 Created |
Created - Returns information about the role assignment. |
|
| Other Status Codes |
Key Vault error response describing why the operation failed. |
Examples
PutRoleAssignments
Sample Request
PUT https://myvault.vault.azure.net//keys/providers/Microsoft.Authorization/roleAssignments/roleAssignmentName?api-version=7.4
{
"properties": {
"roleDefinitionId": "/keys/providers/Microsoft.Authorization/roleDefinitions/roleDefinitionId",
"principalId": "principalId"
}
}
Sample Response
{
"properties": {
"roleDefinitionId": "/keys/providers/Microsoft.Authorization/roleDefinitions/roleDefinitionId",
"principalId": "principalId",
"scope": "/keys"
},
"id": "/keys/providers/Microsoft.Authorization/roleAssignments/roleAssignmentId",
"type": "Microsoft.Authorization/roleAssignments",
"name": "roleAssignmentId"
}Definitions
| Name | Description |
|---|---|
| Error |
The key vault server error. |
|
Key |
The key vault error exception. |
|
Role |
Role Assignments |
|
Role |
Role assignment create parameters. |
|
Role |
Role assignment properties. |
|
Role |
Role assignment properties with scope. |
|
Role |
The role scope. |
Error
The key vault server error.
| Name | Type | Description |
|---|---|---|
| code |
string |
The error code. |
| innererror |
The key vault server error. |
|
| message |
string |
The error message. |
KeyVaultError
The key vault error exception.
| Name | Type | Description |
|---|---|---|
| error |
The key vault server error. |
RoleAssignment
Role Assignments
| Name | Type | Description |
|---|---|---|
| id |
string |
The role assignment ID. |
| name |
string |
The role assignment name. |
| properties |
Role assignment properties. |
|
| type |
string |
The role assignment type. |
RoleAssignmentCreateParameters
Role assignment create parameters.
| Name | Type | Description |
|---|---|---|
| properties |
Role assignment properties. |
RoleAssignmentProperties
Role assignment properties.
| Name | Type | Description |
|---|---|---|
| principalId |
string |
The principal ID assigned to the role. This maps to the ID inside the Active Directory. It can point to a user, service principal, or security group. |
| roleDefinitionId |
string |
The role definition ID used in the role assignment. |
RoleAssignmentPropertiesWithScope
Role assignment properties with scope.
| Name | Type | Description |
|---|---|---|
| principalId |
string |
The principal ID. |
| roleDefinitionId |
string |
The role definition ID. |
| scope |
The role scope. |
RoleScope
The role scope.
| Name | Type | Description |
|---|---|---|
| / |
string |
Global scope |
| /keys |
string |
Keys scope |