< Back
New-RoleDefinitionObject
Post
NAME New-RoleDefinitionObject
SYNOPSIS
Creates a new object which represents a "microsoft.graph.roleDefinition" (or one of its derived types).
SYNTAX
New-RoleDefinitionObject -roleDefinition <SwitchParameter> [-description <string>] [-displayName <string>]
[-isBuiltIn <bool>] [-roleAssignments <object[]>] [-rolePermissions <object[]>] [<CommonParameters>]
New-RoleDefinitionObject -deviceAndAppManagementRoleDefinition <SwitchParameter> [-description <string>]
[-displayName <string>] [-isBuiltIn <bool>] [-roleAssignments <object[]>] [-rolePermissions <object[]>]
[<CommonParameters>]
DESCRIPTION
Creates a new object which represents a "microsoft.graph.roleDefinition" (or one of its derived types).
The Role Definition resource. The role definition is the foundation of role based access in Intune. The role
combines an Intune resource such as a Mobile App and associated role permissions such as Create or Read for the
resource. There are two types of roles, built-in and custom. Built-in roles cannot be modified. Both built-in
roles and custom roles must have assignments to be enforced. Create custom roles if you want to define a role that
allows any of the available resources and role permissions to be combined into a single role.
PARAMETERS
-roleDefinition <SwitchParameter>
A switch parameter for selecting the parameter set which corresponds to the "microsoft.graph.roleDefinition"
type.
Required? true
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-displayName <string>
The "displayName" property, of type "Edm.String".
This property is on the "microsoft.graph.roleDefinition" type.
Display Name of the Role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-description <string>
The "description" property, of type "Edm.String".
This property is on the "microsoft.graph.roleDefinition" type.
Description of the Role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-rolePermissions <object[]>
The "rolePermissions" property, of type "microsoft.graph.rolePermission".
This property is on the "microsoft.graph.roleDefinition" type.
List of Role Permissions this role is allowed to perform. These must match the actionName that is defined as
part of the rolePermission.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-isBuiltIn <bool>
The "isBuiltIn" property, of type "Edm.Boolean".
This property is on the "microsoft.graph.roleDefinition" type.
Type of Role. Set to True if it is built-in, or set to False if it is a custom role definition.
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-roleAssignments <object[]>
The "roleAssignments" property, of type "microsoft.graph.roleAssignment".
This property is on the "microsoft.graph.roleDefinition" type.
List of Role assignments for this role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-deviceAndAppManagementRoleDefinition <SwitchParameter>
A switch parameter for selecting the parameter set which corresponds to the
"microsoft.graph.deviceAndAppManagementRoleDefinition" type.
Required? true
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
RELATED LINKS
SYNOPSIS
Creates a new object which represents a "microsoft.graph.roleDefinition" (or one of its derived types).
SYNTAX
New-RoleDefinitionObject -roleDefinition <SwitchParameter> [-description <string>] [-displayName <string>]
[-isBuiltIn <bool>] [-roleAssignments <object[]>] [-rolePermissions <object[]>] [<CommonParameters>]
New-RoleDefinitionObject -deviceAndAppManagementRoleDefinition <SwitchParameter> [-description <string>]
[-displayName <string>] [-isBuiltIn <bool>] [-roleAssignments <object[]>] [-rolePermissions <object[]>]
[<CommonParameters>]
DESCRIPTION
Creates a new object which represents a "microsoft.graph.roleDefinition" (or one of its derived types).
The Role Definition resource. The role definition is the foundation of role based access in Intune. The role
combines an Intune resource such as a Mobile App and associated role permissions such as Create or Read for the
resource. There are two types of roles, built-in and custom. Built-in roles cannot be modified. Both built-in
roles and custom roles must have assignments to be enforced. Create custom roles if you want to define a role that
allows any of the available resources and role permissions to be combined into a single role.
PARAMETERS
-roleDefinition <SwitchParameter>
A switch parameter for selecting the parameter set which corresponds to the "microsoft.graph.roleDefinition"
type.
Required? true
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-displayName <string>
The "displayName" property, of type "Edm.String".
This property is on the "microsoft.graph.roleDefinition" type.
Display Name of the Role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-description <string>
The "description" property, of type "Edm.String".
This property is on the "microsoft.graph.roleDefinition" type.
Description of the Role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-rolePermissions <object[]>
The "rolePermissions" property, of type "microsoft.graph.rolePermission".
This property is on the "microsoft.graph.roleDefinition" type.
List of Role Permissions this role is allowed to perform. These must match the actionName that is defined as
part of the rolePermission.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-isBuiltIn <bool>
The "isBuiltIn" property, of type "Edm.Boolean".
This property is on the "microsoft.graph.roleDefinition" type.
Type of Role. Set to True if it is built-in, or set to False if it is a custom role definition.
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-roleAssignments <object[]>
The "roleAssignments" property, of type "microsoft.graph.roleAssignment".
This property is on the "microsoft.graph.roleDefinition" type.
List of Role assignments for this role definition.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-deviceAndAppManagementRoleDefinition <SwitchParameter>
A switch parameter for selecting the parameter set which corresponds to the
"microsoft.graph.deviceAndAppManagementRoleDefinition" type.
Required? true
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
RELATED LINKS