Remove-CMSecurityRoleFromAdministrativeUser
Remove-CMSecurityRoleFromAdministrativeUser
Removes the association between a security role and an administrative user.
Syntax
Parameter Set: RemoveRoleFromAdminByName_Name
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserName <String> -RoleName <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminById_Id
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserId <Int32> -RoleId <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminById_Name
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserName <String> -RoleId <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminById_Object
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUser <IResultObject> -RoleId <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminByName_Id
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserId <Int32> -RoleName <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminByName_Object
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUser <IResultObject> -RoleName <String> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminByObject_Id
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserId <Int32> -Role <IResultObject> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminByObject_Name
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserName <String> -Role <IResultObject> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Parameter Set: RemoveRoleFromAdminByObject_Object
Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUser <IResultObject> -Role <IResultObject> [-Force] [-Confirm] [-WhatIf] [ <CommonParameters>]
Detailed Description
The Remove-CMSecurityRoleFromAdministrativeUser cmdlet removes the association between one or more security roles and an administrative user. After you remove the association of a security role with an administrative user, the administrative user cannot view the objects in Microsoft System Center 2012 Configuration Manager that are associated with the security role, and no longer has the permission to perform the tasks that are related to those objects.
Parameters
-AdministrativeUser<IResultObject>
Specifies a CMAdministrativeUser object. To obtain a CMAdministrativeUser object, use the Get-CMAdministrativeUser cmdlet.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-AdministrativeUserId<Int32>
Specifies the ID of an administrative user.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-AdministrativeUserName<String>
Specifies the name of an administrative user.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-Force
Removes the association between a security role and an administrative user without prompting you for confirmation. By default, the cmdlet prompts you for confirmation before it proceeds.
Aliases |
none |
Required? |
false |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-Role<IResultObject>
Specifies a CMSecurityRole object. To obtain a CMSecurityRole object, use the Get-CMSecurityRole cmdlet.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-RoleId<String>
Specifies the ID of a role.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-RoleName<String>
Specifies the name of a role.
Aliases |
none |
Required? |
true |
Position? |
named |
Default Value |
none |
Accept Pipeline Input? |
True (ByPropertyName) |
Accept Wildcard Characters? |
false |
-Confirm
Prompts you for confirmation before running the cmdlet.
Required? |
false |
Position? |
named |
Default Value |
false |
Accept Pipeline Input? |
false |
Accept Wildcard Characters? |
false |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Required? |
false |
Position? |
named |
Default Value |
false |
Accept Pipeline Input? |
false |
Accept Wildcard Characters? |
false |
<CommonParameters>
This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).
Inputs
The input type is the type of the objects that you can pipe to the cmdlet.
Outputs
The output type is the type of the objects that the cmdlet emits.
Examples
Example 1: Remove a security role from an administrative user
This command removes the association between the security role named Security Update Manager and the administrative user named Team04\TeamAdmin.
PS C:\> Remove-CMSecurityRoleFromAdministrativeUser -AdministrativeUserName "Team04\TeamAdmin" -RoleName "Security Update Manager"