ADOPermissionGroupSettings¶
Parameters¶
| Parameter | Attribute | DataType | Description | Allowed Values |
|---|---|---|---|---|
| GroupName | Key | String | Name of the group. | |
| OrganizationName | Write | String | Name of the DevOPS Organization. | |
| Descriptor | Write | String | Descriptor for the group. | |
| AllowPermissions | Write | MSFT_ADOPermission[] | Allow permissions. | |
| DenyPermissions | Write | MSFT_ADOPermission[] | Deny permissions | |
| Credential | Write | PSCredential | Credentials of the workload's Admin | |
| ApplicationId | Write | String | Id of the Azure Active Directory application to authenticate with. | |
| TenantId | Write | String | Id of the Azure Active Directory tenant used for authentication. | |
| CertificateThumbprint | Write | String | Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication. | |
| ManagedIdentity | Write | Boolean | Managed ID being used for authentication. | |
| AccessTokens | Write | StringArray[] | Access token used for authentication. |
MSFT_ADOPermission¶
Parameters¶
| Parameter | Attribute | DataType | Description | Allowed Values |
|---|---|---|---|---|
| NamespaceId | Write | String | Id of the associate security namespace. | |
| DisplayName | Write | String | Display name of the permission scope. | |
| Bit | Write | UInt32 | Bit mask for the permission | |
| Token | Write | String | Token value |
Description¶
Manages permissions in Azure DevOPS.
Permissions¶
Microsoft Graph¶
To authenticate with the Microsoft Graph API, this resource required the following permissions:
Delegated permissions¶
-
Read
- None
-
Update
- None
Application permissions¶
-
Read
- None
-
Update
- None
Examples¶
Example 1¶
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline.
Configuration Example
{
param(
[Parameter()]
[PSCredential]
$Credential
)
Import-DscResource -ModuleName Microsoft365DSC
node localhost
{
ADOPermissionGroupSettings "ADOPermissionGroupSettings-O365DSC-DEV"
{
AllowPermissions = @(
MSFT_ADOPermission {
NamespaceId = '5a27515b-ccd7-42c9-84f1-54c998f03866'
DisplayName = 'Edit identity information'
Bit = '2'
Token = 'f6492b10-7ae8-4641-8208-ff5c364a6154\dbe6034e-8fbe-4d6e-a7f3-07a7e70816c9'
}
);
Credential = $Credential;
DenyPermissions = @();
Descriptor = "vssgp.Uy0xLTktMTU1MTM3NDI0NS0yNzEyNzI0MzgtMzkwMDMyNjIxNC0yMTgxNjI3NzQwLTkxMDg0NDI0NC0xLTgyODcyNzAzNC0yOTkzNjA0MTcxLTI5MjUwMjk4ODgtNTY0MDg1OTcy";
GroupName = "[O365DSC-DEV]\My Test Group";
OrganizationName = "O365DSC-DEV";
}
}
}