The jitRequests resource type can be deployed to: Resource groups.
To learn about resource group deployments, see ARM template.
For a list of changed properties in each API version, see change log.
To create a Microsoft.Solutions/jitRequests resource, add the following JSON to your template.
{
"type": "Microsoft.Solutions/jitRequests",
"apiVersion": "2021-07-01",
"name": "string",
"location": "string",
"tags": {
"tagName1": "tagValue1",
"tagName2": "tagValue2"
},
"properties": {
"applicationResourceId": "string",
"jitAuthorizationPolicies": [
{
"principalId": "string",
"roleDefinitionId": "string"
}
],
"jitSchedulingPolicy": {
"duration": "string",
"startTime": "string",
"type": "string"
}
}
}
Name | Description | Value |
---|---|---|
type | The resource type | 'Microsoft.Solutions/jitRequests' |
apiVersion | The resource api version | '2021-07-01' |
name | The resource name | string (required) |
location | Resource location | string |
tags | Resource tags | Dictionary of tag names and values. See Tags in templates |
properties | The JIT request properties. | JitRequestProperties |
Name | Description | Value |
---|---|---|
applicationResourceId | The parent application id. | string (required) |
jitAuthorizationPolicies | The JIT authorization policies. | JitAuthorizationPolicies[] (required) |
jitSchedulingPolicy | The JIT request properties. | JitSchedulingPolicy (required) |
Name | Description | Value |
---|---|---|
principalId | The the principal id that will be granted JIT access. | string (required) |
roleDefinitionId | The role definition id that will be granted to the Principal. | string (required) |
Name | Description | Value |
---|---|---|
duration | The required duration of the JIT request. | string (required) |
startTime | The start time of the request. | string (required) |
type | The type of JIT schedule. | 'NotSpecified' 'Once' 'Recurring' (required) |