Resource: azuread_access_package_catalog_role_assignment

Manages a single catalog role assignment within Azure Active Directory.

API Permissions

The following API permissions are required in order to use this resource.

When authenticated with a service principal, this resource requires one of the following application roles: EntitlementManagement.ReadWrite.All or Directory.ReadWrite.All

When authenticated with a user principal, this resource requires one of the following directory roles: Identity Governance administrator or Global Administrator

Example Usage

data "azuread_user" "example" {
  user_principal_name = "jdoe@hashicorp.com"
}

data "azuread_access_package_catalog_role" "example" {
  display_name = "Catalog owner"
}

resource "azuread_access_package_catalog" "example" {
  display_name = "example-access-package-catalog"
  description  = "Example access package catalog"
}

resource "azuread_access_package_catalog_role_assignment" "example" {
  role_id             = data.azuread_access_package_catalog_role.example.object_id
  principal_object_id = data.azuread_user.example.object_id
  catalog_id          = azuread_access_package_catalog.example.id
}

Argument Reference

The following arguments are supported:

Attributes Reference

In addition to all arguments above, the following attributes are exported:

No additional attributes are exported

Import

Catalog role assignments can be imported using the ID of the assignment, e.g.

terraform import azuread_access_package_catalog_role_assignment.example 00000000-0000-0000-0000-000000000000