The roleManagementPolicyAssignments resource type is an extension resource, which means you can apply it to another resource.
Use the scope
property on this resource to set the scope for this resource. See Set scope on extension resources in ARM templates.
Valid deployment scopes for the roleManagementPolicyAssignments resource are:
For a list of changed properties in each API version, see change log.
To create a Microsoft.Authorization/roleManagementPolicyAssignments resource, add the following JSON to your template.
{
"type": "Microsoft.Authorization/roleManagementPolicyAssignments",
"apiVersion": "2020-10-01",
"name": "string",
"scope": "string" or "/",
"properties": {
"policyId": "string",
"roleDefinitionId": "string",
"scope": "string"
}
}
Name | Description | Value |
---|---|---|
type | The resource type | 'Microsoft.Authorization/roleManagementPolicyAssignments' |
apiVersion | The resource api version | '2020-10-01' |
name | The resource name | string (required) |
scope | Use when creating an extension resource at a scope that is different than the deployment scope. | Target resource For JSON, set the value to the full name of the resource to apply the extension resource to. This resource type can also be applied to a tenant. For JSON, use "/" . |
properties | Role management policy properties. | RoleManagementPolicyAssignmentProperties |
Name | Description | Value |
---|---|---|
policyId | The policy id role management policy assignment. | string |
roleDefinitionId | The role definition of management policy assignment. | string |
scope | The role management policy scope. | string |