Manages a Claims Mapping Policy Assignment within Azure Active Directory.
The following API permissions are required in order to use this resource.
When authenticated with a service principal, this resource requires the following application roles: Policy.ReadWrite.ApplicationConfiguration
and Policy.Read.All
When authenticated with a user principal, this resource requires one of the following directory roles: Application Administrator
or Global Administrator
resource "azuread_service_principal_claims_mapping_policy_assignment" "app" {
claims_mapping_policy_id = azuread_claims_mapping_policy.my_policy.id
service_principal_id = azuread_service_principal.my_principal.id
}
The following arguments are supported:
claims_mapping_policy_id
- (Required) The ID of the claims mapping policy to assign.service_principal_id
- (Required) The object ID of the service principal for the policy assignment.In addition to all arguments above, the following attributes are exported:
id
- The ID of the Claims Mapping Policy Assignment.Claims Mapping Policy can be imported using the id
, in the form service-principal-uuid/claimsMappingPolicy/claims-mapping-policy-uuid
, e.g:
terraform import azuread_service_principal_claims_mapping_policy_assignment.app 00000000-0000-0000-0000-000000000000/claimsMappingPolicy/11111111-0000-0000-0000-000000000000