AzPolicyAdvertizer

last sync: 2023-Jun-19 17:45:01 UTC

Community Policy definition

Allowed Role Definitions

Name Allowed Role Definitions
Community-Policy GitHub
Id allowed-role-definitions
Version n/a
details on versioning
Category undefined
Microsoft docs
Description This policy defines an allow list of role definitions that can be used in IAM
Mode All
Type Custom Community
Effect Default
Deny
Allowed
Deny, Disabled
Used RBAC Role none
Rule Aliases IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Authorization/roleAssignments/principalId Microsoft.Authorization roleAssignments properties.principalId false
Rule ResourceTypes IF (1)
Microsoft.Authorization/roleAssignments
JSON