1. Packages
  2. Azure Native v2
  3. API Docs
  4. authorization
  5. RoleManagementPolicyAssignment
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi

azure-native-v2.authorization.RoleManagementPolicyAssignment

Explore with Pulumi AI

Role management policy Azure REST API version: 2020-10-01. Prior API version in Azure Native 1.x: 2020-10-01.

Other available API versions: 2020-10-01-preview, 2024-02-01-preview, 2024-09-01-preview.

Example Usage

PutRoleManagementPolicyAssignment

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var roleManagementPolicyAssignment = new AzureNative.Authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignment", new()
    {
        PolicyId = "/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9",
        RoleDefinitionId = "/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
        RoleManagementPolicyAssignmentName = "b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
        Scope = "providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368",
    });

});
Copy
package main

import (
	authorization "github.com/pulumi/pulumi-azure-native-sdk/authorization/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := authorization.NewRoleManagementPolicyAssignment(ctx, "roleManagementPolicyAssignment", &authorization.RoleManagementPolicyAssignmentArgs{
			PolicyId:                           pulumi.String("/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9"),
			RoleDefinitionId:                   pulumi.String("/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24"),
			RoleManagementPolicyAssignmentName: pulumi.String("b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24"),
			Scope:                              pulumi.String("providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.authorization.RoleManagementPolicyAssignment;
import com.pulumi.azurenative.authorization.RoleManagementPolicyAssignmentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var roleManagementPolicyAssignment = new RoleManagementPolicyAssignment("roleManagementPolicyAssignment", RoleManagementPolicyAssignmentArgs.builder()
            .policyId("/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9")
            .roleDefinitionId("/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24")
            .roleManagementPolicyAssignmentName("b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24")
            .scope("providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368")
            .build());

    }
}
Copy
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const roleManagementPolicyAssignment = new azure_native.authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignment", {
    policyId: "/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9",
    roleDefinitionId: "/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
    roleManagementPolicyAssignmentName: "b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
    scope: "providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368",
});
Copy
import pulumi
import pulumi_azure_native as azure_native

role_management_policy_assignment = azure_native.authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignment",
    policy_id="/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9",
    role_definition_id="/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
    role_management_policy_assignment_name="b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24",
    scope="providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368")
Copy
resources:
  roleManagementPolicyAssignment:
    type: azure-native:authorization:RoleManagementPolicyAssignment
    properties:
      policyId: /subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/b959d571-f0b5-4042-88a7-01be6cb22db9
      roleDefinitionId: /subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleDefinitions/a1705bd2-3a8f-45a5-8683-466fcfd5cc24
      roleManagementPolicyAssignmentName: b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24
      scope: providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368
Copy

Create RoleManagementPolicyAssignment Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new RoleManagementPolicyAssignment(name: string, args: RoleManagementPolicyAssignmentArgs, opts?: CustomResourceOptions);
@overload
def RoleManagementPolicyAssignment(resource_name: str,
                                   args: RoleManagementPolicyAssignmentArgs,
                                   opts: Optional[ResourceOptions] = None)

@overload
def RoleManagementPolicyAssignment(resource_name: str,
                                   opts: Optional[ResourceOptions] = None,
                                   scope: Optional[str] = None,
                                   policy_id: Optional[str] = None,
                                   role_definition_id: Optional[str] = None,
                                   role_management_policy_assignment_name: Optional[str] = None)
func NewRoleManagementPolicyAssignment(ctx *Context, name string, args RoleManagementPolicyAssignmentArgs, opts ...ResourceOption) (*RoleManagementPolicyAssignment, error)
public RoleManagementPolicyAssignment(string name, RoleManagementPolicyAssignmentArgs args, CustomResourceOptions? opts = null)
public RoleManagementPolicyAssignment(String name, RoleManagementPolicyAssignmentArgs args)
public RoleManagementPolicyAssignment(String name, RoleManagementPolicyAssignmentArgs args, CustomResourceOptions options)
type: azure-native:authorization:RoleManagementPolicyAssignment
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. RoleManagementPolicyAssignmentArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. RoleManagementPolicyAssignmentArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. RoleManagementPolicyAssignmentArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. RoleManagementPolicyAssignmentArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. RoleManagementPolicyAssignmentArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var roleManagementPolicyAssignmentResource = new AzureNative.Authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignmentResource", new()
{
    Scope = "string",
    PolicyId = "string",
    RoleDefinitionId = "string",
    RoleManagementPolicyAssignmentName = "string",
});
Copy
example, err := authorization.NewRoleManagementPolicyAssignment(ctx, "roleManagementPolicyAssignmentResource", &authorization.RoleManagementPolicyAssignmentArgs{
	Scope:                              "string",
	PolicyId:                           "string",
	RoleDefinitionId:                   "string",
	RoleManagementPolicyAssignmentName: "string",
})
Copy
var roleManagementPolicyAssignmentResource = new RoleManagementPolicyAssignment("roleManagementPolicyAssignmentResource", RoleManagementPolicyAssignmentArgs.builder()
    .scope("string")
    .policyId("string")
    .roleDefinitionId("string")
    .roleManagementPolicyAssignmentName("string")
    .build());
Copy
role_management_policy_assignment_resource = azure_native.authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignmentResource",
    scope=string,
    policy_id=string,
    role_definition_id=string,
    role_management_policy_assignment_name=string)
Copy
const roleManagementPolicyAssignmentResource = new azure_native.authorization.RoleManagementPolicyAssignment("roleManagementPolicyAssignmentResource", {
    scope: "string",
    policyId: "string",
    roleDefinitionId: "string",
    roleManagementPolicyAssignmentName: "string",
});
Copy
type: azure-native:authorization:RoleManagementPolicyAssignment
properties:
    policyId: string
    roleDefinitionId: string
    roleManagementPolicyAssignmentName: string
    scope: string
Copy

RoleManagementPolicyAssignment Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The RoleManagementPolicyAssignment resource accepts the following input properties:

Scope This property is required. string
The role management policy scope.
PolicyId string
The policy id role management policy assignment.
RoleDefinitionId string
The role definition of management policy assignment.
RoleManagementPolicyAssignmentName Changes to this property will trigger replacement. string
The name of format {guid_guid} the role management policy assignment to upsert.
Scope This property is required. string
The role management policy scope.
PolicyId string
The policy id role management policy assignment.
RoleDefinitionId string
The role definition of management policy assignment.
RoleManagementPolicyAssignmentName Changes to this property will trigger replacement. string
The name of format {guid_guid} the role management policy assignment to upsert.
scope This property is required. String
The role management policy scope.
policyId String
The policy id role management policy assignment.
roleDefinitionId String
The role definition of management policy assignment.
roleManagementPolicyAssignmentName Changes to this property will trigger replacement. String
The name of format {guid_guid} the role management policy assignment to upsert.
scope This property is required. string
The role management policy scope.
policyId string
The policy id role management policy assignment.
roleDefinitionId string
The role definition of management policy assignment.
roleManagementPolicyAssignmentName Changes to this property will trigger replacement. string
The name of format {guid_guid} the role management policy assignment to upsert.
scope This property is required. str
The role management policy scope.
policy_id str
The policy id role management policy assignment.
role_definition_id str
The role definition of management policy assignment.
role_management_policy_assignment_name Changes to this property will trigger replacement. str
The name of format {guid_guid} the role management policy assignment to upsert.
scope This property is required. String
The role management policy scope.
policyId String
The policy id role management policy assignment.
roleDefinitionId String
The role definition of management policy assignment.
roleManagementPolicyAssignmentName Changes to this property will trigger replacement. String
The name of format {guid_guid} the role management policy assignment to upsert.

Outputs

All input properties are implicitly available as output properties. Additionally, the RoleManagementPolicyAssignment resource produces the following output properties:

EffectiveRules List<object>
The readonly computed rule applied to the policy.
Id string
The provider-assigned unique ID for this managed resource.
Name string
The role management policy name.
PolicyAssignmentProperties Pulumi.AzureNative.Authorization.Outputs.PolicyAssignmentPropertiesResponse
Additional properties of scope, role definition and policy
Type string
The role management policy type.
EffectiveRules []interface{}
The readonly computed rule applied to the policy.
Id string
The provider-assigned unique ID for this managed resource.
Name string
The role management policy name.
PolicyAssignmentProperties PolicyAssignmentPropertiesResponse
Additional properties of scope, role definition and policy
Type string
The role management policy type.
effectiveRules List<Object>
The readonly computed rule applied to the policy.
id String
The provider-assigned unique ID for this managed resource.
name String
The role management policy name.
policyAssignmentProperties PolicyAssignmentPropertiesResponse
Additional properties of scope, role definition and policy
type String
The role management policy type.
effectiveRules (RoleManagementPolicyApprovalRuleResponse | RoleManagementPolicyAuthenticationContextRuleResponse | RoleManagementPolicyEnablementRuleResponse | RoleManagementPolicyExpirationRuleResponse | RoleManagementPolicyNotificationRuleResponse)[]
The readonly computed rule applied to the policy.
id string
The provider-assigned unique ID for this managed resource.
name string
The role management policy name.
policyAssignmentProperties PolicyAssignmentPropertiesResponse
Additional properties of scope, role definition and policy
type string
The role management policy type.
effective_rules Sequence[Any]
The readonly computed rule applied to the policy.
id str
The provider-assigned unique ID for this managed resource.
name str
The role management policy name.
policy_assignment_properties PolicyAssignmentPropertiesResponse
Additional properties of scope, role definition and policy
type str
The role management policy type.
effectiveRules List<Property Map | Property Map | Property Map | Property Map | Property Map>
The readonly computed rule applied to the policy.
id String
The provider-assigned unique ID for this managed resource.
name String
The role management policy name.
policyAssignmentProperties Property Map
Additional properties of scope, role definition and policy
type String
The role management policy type.

Supporting Types

ApprovalSettingsResponse
, ApprovalSettingsResponseArgs

ApprovalMode string
The type of rule
ApprovalStages List<Pulumi.AzureNative.Authorization.Inputs.ApprovalStageResponse>
The approval stages of the request.
IsApprovalRequired bool
Determines whether approval is required or not.
IsApprovalRequiredForExtension bool
Determines whether approval is required for assignment extension.
IsRequestorJustificationRequired bool
Determine whether requestor justification is required.
ApprovalMode string
The type of rule
ApprovalStages []ApprovalStageResponse
The approval stages of the request.
IsApprovalRequired bool
Determines whether approval is required or not.
IsApprovalRequiredForExtension bool
Determines whether approval is required for assignment extension.
IsRequestorJustificationRequired bool
Determine whether requestor justification is required.
approvalMode String
The type of rule
approvalStages List<ApprovalStageResponse>
The approval stages of the request.
isApprovalRequired Boolean
Determines whether approval is required or not.
isApprovalRequiredForExtension Boolean
Determines whether approval is required for assignment extension.
isRequestorJustificationRequired Boolean
Determine whether requestor justification is required.
approvalMode string
The type of rule
approvalStages ApprovalStageResponse[]
The approval stages of the request.
isApprovalRequired boolean
Determines whether approval is required or not.
isApprovalRequiredForExtension boolean
Determines whether approval is required for assignment extension.
isRequestorJustificationRequired boolean
Determine whether requestor justification is required.
approval_mode str
The type of rule
approval_stages Sequence[ApprovalStageResponse]
The approval stages of the request.
is_approval_required bool
Determines whether approval is required or not.
is_approval_required_for_extension bool
Determines whether approval is required for assignment extension.
is_requestor_justification_required bool
Determine whether requestor justification is required.
approvalMode String
The type of rule
approvalStages List<Property Map>
The approval stages of the request.
isApprovalRequired Boolean
Determines whether approval is required or not.
isApprovalRequiredForExtension Boolean
Determines whether approval is required for assignment extension.
isRequestorJustificationRequired Boolean
Determine whether requestor justification is required.

ApprovalStageResponse
, ApprovalStageResponseArgs

ApprovalStageTimeOutInDays int
The time in days when approval request would be timed out
EscalationApprovers List<Pulumi.AzureNative.Authorization.Inputs.UserSetResponse>
The escalation approver of the request.
EscalationTimeInMinutes int
The time in minutes when the approval request would be escalated if the primary approver does not approve
IsApproverJustificationRequired bool
Determines whether approver need to provide justification for his decision.
IsEscalationEnabled bool
The value determine whether escalation feature is enabled.
PrimaryApprovers List<Pulumi.AzureNative.Authorization.Inputs.UserSetResponse>
The primary approver of the request.
ApprovalStageTimeOutInDays int
The time in days when approval request would be timed out
EscalationApprovers []UserSetResponse
The escalation approver of the request.
EscalationTimeInMinutes int
The time in minutes when the approval request would be escalated if the primary approver does not approve
IsApproverJustificationRequired bool
Determines whether approver need to provide justification for his decision.
IsEscalationEnabled bool
The value determine whether escalation feature is enabled.
PrimaryApprovers []UserSetResponse
The primary approver of the request.
approvalStageTimeOutInDays Integer
The time in days when approval request would be timed out
escalationApprovers List<UserSetResponse>
The escalation approver of the request.
escalationTimeInMinutes Integer
The time in minutes when the approval request would be escalated if the primary approver does not approve
isApproverJustificationRequired Boolean
Determines whether approver need to provide justification for his decision.
isEscalationEnabled Boolean
The value determine whether escalation feature is enabled.
primaryApprovers List<UserSetResponse>
The primary approver of the request.
approvalStageTimeOutInDays number
The time in days when approval request would be timed out
escalationApprovers UserSetResponse[]
The escalation approver of the request.
escalationTimeInMinutes number
The time in minutes when the approval request would be escalated if the primary approver does not approve
isApproverJustificationRequired boolean
Determines whether approver need to provide justification for his decision.
isEscalationEnabled boolean
The value determine whether escalation feature is enabled.
primaryApprovers UserSetResponse[]
The primary approver of the request.
approval_stage_time_out_in_days int
The time in days when approval request would be timed out
escalation_approvers Sequence[UserSetResponse]
The escalation approver of the request.
escalation_time_in_minutes int
The time in minutes when the approval request would be escalated if the primary approver does not approve
is_approver_justification_required bool
Determines whether approver need to provide justification for his decision.
is_escalation_enabled bool
The value determine whether escalation feature is enabled.
primary_approvers Sequence[UserSetResponse]
The primary approver of the request.
approvalStageTimeOutInDays Number
The time in days when approval request would be timed out
escalationApprovers List<Property Map>
The escalation approver of the request.
escalationTimeInMinutes Number
The time in minutes when the approval request would be escalated if the primary approver does not approve
isApproverJustificationRequired Boolean
Determines whether approver need to provide justification for his decision.
isEscalationEnabled Boolean
The value determine whether escalation feature is enabled.
primaryApprovers List<Property Map>
The primary approver of the request.

PolicyAssignmentPropertiesResponse
, PolicyAssignmentPropertiesResponseArgs

policy Property Map
Details of the policy
roleDefinition Property Map
Details of role definition
scope Property Map
Details of the resource scope

PolicyAssignmentPropertiesResponsePolicy
, PolicyAssignmentPropertiesResponsePolicyArgs

LastModifiedBy This property is required. Pulumi.AzureNative.Authorization.Inputs.PrincipalResponse
The name of the entity last modified it
Id string
Id of the policy
LastModifiedDateTime string
The last modified date time.
LastModifiedBy This property is required. PrincipalResponse
The name of the entity last modified it
Id string
Id of the policy
LastModifiedDateTime string
The last modified date time.
lastModifiedBy This property is required. PrincipalResponse
The name of the entity last modified it
id String
Id of the policy
lastModifiedDateTime String
The last modified date time.
lastModifiedBy This property is required. PrincipalResponse
The name of the entity last modified it
id string
Id of the policy
lastModifiedDateTime string
The last modified date time.
last_modified_by This property is required. PrincipalResponse
The name of the entity last modified it
id str
Id of the policy
last_modified_date_time str
The last modified date time.
lastModifiedBy This property is required. Property Map
The name of the entity last modified it
id String
Id of the policy
lastModifiedDateTime String
The last modified date time.

PolicyAssignmentPropertiesResponseRoleDefinition
, PolicyAssignmentPropertiesResponseRoleDefinitionArgs

DisplayName string
Display name of the role definition
Id string
Id of the role definition
Type string
Type of the role definition
DisplayName string
Display name of the role definition
Id string
Id of the role definition
Type string
Type of the role definition
displayName String
Display name of the role definition
id String
Id of the role definition
type String
Type of the role definition
displayName string
Display name of the role definition
id string
Id of the role definition
type string
Type of the role definition
display_name str
Display name of the role definition
id str
Id of the role definition
type str
Type of the role definition
displayName String
Display name of the role definition
id String
Id of the role definition
type String
Type of the role definition

PolicyAssignmentPropertiesResponseScope
, PolicyAssignmentPropertiesResponseScopeArgs

DisplayName string
Display name of the resource
Id string
Scope id of the resource
Type string
Type of the resource
DisplayName string
Display name of the resource
Id string
Scope id of the resource
Type string
Type of the resource
displayName String
Display name of the resource
id String
Scope id of the resource
type String
Type of the resource
displayName string
Display name of the resource
id string
Scope id of the resource
type string
Type of the resource
display_name str
Display name of the resource
id str
Scope id of the resource
type str
Type of the resource
displayName String
Display name of the resource
id String
Scope id of the resource
type String
Type of the resource

PrincipalResponse
, PrincipalResponseArgs

DisplayName string
The name of the principal made changes
Email string
Email of principal
Id string
The id of the principal made changes
Type string
Type of principal such as user , group etc
DisplayName string
The name of the principal made changes
Email string
Email of principal
Id string
The id of the principal made changes
Type string
Type of principal such as user , group etc
displayName String
The name of the principal made changes
email String
Email of principal
id String
The id of the principal made changes
type String
Type of principal such as user , group etc
displayName string
The name of the principal made changes
email string
Email of principal
id string
The id of the principal made changes
type string
Type of principal such as user , group etc
display_name str
The name of the principal made changes
email str
Email of principal
id str
The id of the principal made changes
type str
Type of principal such as user , group etc
displayName String
The name of the principal made changes
email String
Email of principal
id String
The id of the principal made changes
type String
Type of principal such as user , group etc

RoleManagementPolicyApprovalRuleResponse
, RoleManagementPolicyApprovalRuleResponseArgs

Id string
The id of the rule.
Setting ApprovalSettingsResponse
The approval setting
Target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
setting ApprovalSettingsResponse
The approval setting
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id string
The id of the rule.
setting ApprovalSettingsResponse
The approval setting
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id str
The id of the rule.
setting ApprovalSettingsResponse
The approval setting
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
setting Property Map
The approval setting
target Property Map
The target of the current rule.

RoleManagementPolicyAuthenticationContextRuleResponse
, RoleManagementPolicyAuthenticationContextRuleResponseArgs

ClaimValue string
The claim value.
Id string
The id of the rule.
IsEnabled bool
The value indicating if rule is enabled.
Target Pulumi.AzureNative.Authorization.Inputs.RoleManagementPolicyRuleTargetResponse
The target of the current rule.
ClaimValue string
The claim value.
Id string
The id of the rule.
IsEnabled bool
The value indicating if rule is enabled.
Target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
claimValue String
The claim value.
id String
The id of the rule.
isEnabled Boolean
The value indicating if rule is enabled.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
claimValue string
The claim value.
id string
The id of the rule.
isEnabled boolean
The value indicating if rule is enabled.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
claim_value str
The claim value.
id str
The id of the rule.
is_enabled bool
The value indicating if rule is enabled.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
claimValue String
The claim value.
id String
The id of the rule.
isEnabled Boolean
The value indicating if rule is enabled.
target Property Map
The target of the current rule.

RoleManagementPolicyEnablementRuleResponse
, RoleManagementPolicyEnablementRuleResponseArgs

EnabledRules List<string>
The list of enabled rules.
Id string
The id of the rule.
Target Pulumi.AzureNative.Authorization.Inputs.RoleManagementPolicyRuleTargetResponse
The target of the current rule.
EnabledRules []string
The list of enabled rules.
Id string
The id of the rule.
Target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
enabledRules List<String>
The list of enabled rules.
id String
The id of the rule.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
enabledRules string[]
The list of enabled rules.
id string
The id of the rule.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
enabled_rules Sequence[str]
The list of enabled rules.
id str
The id of the rule.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
enabledRules List<String>
The list of enabled rules.
id String
The id of the rule.
target Property Map
The target of the current rule.

RoleManagementPolicyExpirationRuleResponse
, RoleManagementPolicyExpirationRuleResponseArgs

Id string
The id of the rule.
IsExpirationRequired bool
The value indicating whether expiration is required.
MaximumDuration string
The maximum duration of expiration in timespan.
Target Pulumi.AzureNative.Authorization.Inputs.RoleManagementPolicyRuleTargetResponse
The target of the current rule.
Id string
The id of the rule.
IsExpirationRequired bool
The value indicating whether expiration is required.
MaximumDuration string
The maximum duration of expiration in timespan.
Target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
isExpirationRequired Boolean
The value indicating whether expiration is required.
maximumDuration String
The maximum duration of expiration in timespan.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id string
The id of the rule.
isExpirationRequired boolean
The value indicating whether expiration is required.
maximumDuration string
The maximum duration of expiration in timespan.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id str
The id of the rule.
is_expiration_required bool
The value indicating whether expiration is required.
maximum_duration str
The maximum duration of expiration in timespan.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
isExpirationRequired Boolean
The value indicating whether expiration is required.
maximumDuration String
The maximum duration of expiration in timespan.
target Property Map
The target of the current rule.

RoleManagementPolicyNotificationRuleResponse
, RoleManagementPolicyNotificationRuleResponseArgs

Id string
The id of the rule.
IsDefaultRecipientsEnabled bool
Determines if the notification will be sent to the recipient type specified in the policy rule.
NotificationLevel string
The notification level.
NotificationRecipients List<string>
The list of notification recipients.
NotificationType string
The type of notification.
RecipientType string
The recipient type.
Target Pulumi.AzureNative.Authorization.Inputs.RoleManagementPolicyRuleTargetResponse
The target of the current rule.
Id string
The id of the rule.
IsDefaultRecipientsEnabled bool
Determines if the notification will be sent to the recipient type specified in the policy rule.
NotificationLevel string
The notification level.
NotificationRecipients []string
The list of notification recipients.
NotificationType string
The type of notification.
RecipientType string
The recipient type.
Target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
isDefaultRecipientsEnabled Boolean
Determines if the notification will be sent to the recipient type specified in the policy rule.
notificationLevel String
The notification level.
notificationRecipients List<String>
The list of notification recipients.
notificationType String
The type of notification.
recipientType String
The recipient type.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id string
The id of the rule.
isDefaultRecipientsEnabled boolean
Determines if the notification will be sent to the recipient type specified in the policy rule.
notificationLevel string
The notification level.
notificationRecipients string[]
The list of notification recipients.
notificationType string
The type of notification.
recipientType string
The recipient type.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id str
The id of the rule.
is_default_recipients_enabled bool
Determines if the notification will be sent to the recipient type specified in the policy rule.
notification_level str
The notification level.
notification_recipients Sequence[str]
The list of notification recipients.
notification_type str
The type of notification.
recipient_type str
The recipient type.
target RoleManagementPolicyRuleTargetResponse
The target of the current rule.
id String
The id of the rule.
isDefaultRecipientsEnabled Boolean
Determines if the notification will be sent to the recipient type specified in the policy rule.
notificationLevel String
The notification level.
notificationRecipients List<String>
The list of notification recipients.
notificationType String
The type of notification.
recipientType String
The recipient type.
target Property Map
The target of the current rule.

RoleManagementPolicyRuleTargetResponse
, RoleManagementPolicyRuleTargetResponseArgs

Caller string
The caller of the setting.
EnforcedSettings List<string>
The list of enforced settings.
InheritableSettings List<string>
The list of inheritable settings.
Level string
The assignment level to which rule is applied.
Operations List<string>
The type of operation.
TargetObjects List<string>
The list of target objects.
Caller string
The caller of the setting.
EnforcedSettings []string
The list of enforced settings.
InheritableSettings []string
The list of inheritable settings.
Level string
The assignment level to which rule is applied.
Operations []string
The type of operation.
TargetObjects []string
The list of target objects.
caller String
The caller of the setting.
enforcedSettings List<String>
The list of enforced settings.
inheritableSettings List<String>
The list of inheritable settings.
level String
The assignment level to which rule is applied.
operations List<String>
The type of operation.
targetObjects List<String>
The list of target objects.
caller string
The caller of the setting.
enforcedSettings string[]
The list of enforced settings.
inheritableSettings string[]
The list of inheritable settings.
level string
The assignment level to which rule is applied.
operations string[]
The type of operation.
targetObjects string[]
The list of target objects.
caller str
The caller of the setting.
enforced_settings Sequence[str]
The list of enforced settings.
inheritable_settings Sequence[str]
The list of inheritable settings.
level str
The assignment level to which rule is applied.
operations Sequence[str]
The type of operation.
target_objects Sequence[str]
The list of target objects.
caller String
The caller of the setting.
enforcedSettings List<String>
The list of enforced settings.
inheritableSettings List<String>
The list of inheritable settings.
level String
The assignment level to which rule is applied.
operations List<String>
The type of operation.
targetObjects List<String>
The list of target objects.

UserSetResponse
, UserSetResponseArgs

Description string
The description of the user.
Id string
The object id of the user.
IsBackup bool
The value indicating whether the user is a backup fallback approver
UserType string
The type of user.
Description string
The description of the user.
Id string
The object id of the user.
IsBackup bool
The value indicating whether the user is a backup fallback approver
UserType string
The type of user.
description String
The description of the user.
id String
The object id of the user.
isBackup Boolean
The value indicating whether the user is a backup fallback approver
userType String
The type of user.
description string
The description of the user.
id string
The object id of the user.
isBackup boolean
The value indicating whether the user is a backup fallback approver
userType string
The type of user.
description str
The description of the user.
id str
The object id of the user.
is_backup bool
The value indicating whether the user is a backup fallback approver
user_type str
The type of user.
description String
The description of the user.
id String
The object id of the user.
isBackup Boolean
The value indicating whether the user is a backup fallback approver
userType String
The type of user.

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:authorization:RoleManagementPolicyAssignment b959d571-f0b5-4042-88a7-01be6cb22db9_a1705bd2-3a8f-45a5-8683-466fcfd5cc24 /{scope}/providers/Microsoft.Authorization/roleManagementPolicyAssignments/{roleManagementPolicyAssignmentName} 
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
azure-native-v2 pulumi/pulumi-azure-native
License
Apache-2.0