governanceRoleDefinition resource type

Namespace: microsoft.graph


APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.


This version of the Privileged Identity Management (PIM) API for Azure resources will be deprecated soon. Please use the new Azure REST PIM API for Azure resource roles.

Represents the role definitions. For Azure resources, it can represent Azure RBAC roles, such as Owner, Reader, Contributor, etc.


Method Return Type Description
List governanceRoleDefinition collection List a collection of role definitions on a resource.
Get governanceRoleDefinition Read properties and relationships of a role definition entity specified by id.

No POST, PUT, PATCH, DELETE is supported on roleDefinitions entity set for now.


Property Type Description
id String The id of the role definition.
resourceId String Required. The id of the resource associated with the role definition.
externalId String The external id of the role definition.
displayName String The display name of the role definition.
templateId String


Relationship Type Description
resource governanceResource Read-only. The associated resource for the role definition.
roleSetting governanceRoleSetting The associated role setting for the role definition.

JSON representation

Here is a JSON representation of the resource.

  "id": "String (identifier)",
  "resourceId": "String",
  "externalId": "String",
  "displayName": "String",