Skip to content

New‐PIMEntraRoleActiveAssignment

Loïc MICHEL edited this page Mar 12, 2024 · 3 revisions

Description:

Create an active assignement for $rolename and the principal id $principalID

Samples:

🔷 Create an active assignment for the role Acrpush, starting at a specific date and using default duration (the maximum allowed duration from the role settings)

    PS> New-PIMEntraRoleActiveAssignment -tenantID $tenantID -rolename "AcrPush" -principalID 3604fe63-cb67-4b60-99c9-707d46ab9092 -startDateTime "2/2/2024 18:20"

🔷 Create a permanent active assignement for the role webmaster

   PS> New-PIMEntraRoleActiveAssignment -tenantID $tenantID -rolename "webmaster" -principalID 3604fe63-cb67-4b60-99c9-707d46ab9092 -justification 'TEST' -permanent

Parameters:

Parameter description
$TenantID Entra ID TenantID
$rolename Subscription ID
$PrincipalID ID of the principal
$duration Assignment duration
$startDateTime specify the starting date if not set it will use curent time
[switch]$permanent create a permanent without expiration (must be allowed in role settings)
$justification optional justification

📝 Documentation

Clone this wiki locally