Add-AzureADScopedRoleMembership
將限定範圍的角色成員資格新增至系統管理單位。
Syntax
Add-AzureADScopedRoleMembership
-ObjectId <String>
[-AdministrativeUnitObjectId <String>]
[-RoleObjectId <String>]
[-RoleMemberInfo <RoleMemberInfo>]
[<CommonParameters>]
Description
Add-AzureADScopedRoleMembership Cmdlet 會將範圍角色成員資格新增至管理單位。
範例
範例 1
$User = Get-AzureADUser -SearchString "The user that will be an admin on this unit"
$Role = Get-AzureADDirectoryRole | Where-Object -Property DisplayName -EQ -Value "User Account Administrator"
$Unit = Get-AzureADAdministrativeUnit | Where-Object -Property DisplayName -Eq -Value "<The display name of the unit"
$RoleMember = New-Object -TypeName Microsoft.Open.AzureAD.Model.RoleMemberInfo
$RoleMember.ObjectId = $User.ObjectID
Add-AzureADScopedRoleMembership -ObjectId $unit.ObjectId -RoleObjectId $Role.ObjectId -RoleMemberInfo $RoleMember
此 Cmdlet 會傳回 Scope 角色成員資格物件:
AdministrativeUnitObjectId RoleObjectId
-------------------------- ------------
c9ab56cc-e349-4237-856e-cab03157a91e 526b7173-5a6e-49dc-88ec-b677a9093709
參數
-AdministrativeUnitObjectId
指定系統管理單位的識別碼。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ObjectId
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-RoleMemberInfo
指定 RoleMemberInfo 物件。
Type: | RoleMemberInfo |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RoleObjectId
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
相關連結
意見反應
https://aka.ms/ContentUserFeedback。
即將登場:在 2024 年,我們將逐步淘汰 GitHub 問題作為內容的意見反應機制,並將它取代為新的意見反應系統。 如需詳細資訊,請參閱:提交並檢視相關的意見反應