Get-AzureADDirectoryRole
This article provides migration details from Get-AzureADDirectoryRole command to Microsoft Graph PowerShell.
Summary
- Azure AD Command: Get-AzureADDirectoryRole
- Azure AD Module: AzureAD
- Microsoft Graph Command: Get-MgDirectoryRole (Community Examples)
- Graph Module: Microsoft.Graph.Identity.DirectoryManagement
- Graph Endpoint: GET /directoryRoles | /directoryRoles/{directoryRole-id}
Permissions
| Permission type | Least privileged permissions | Higher privileged permissions |
|---|---|---|
| Delegated (work or school account) | RoleManagement.Read.Directory | Directory.Read.All, Directory.ReadWrite.All, RoleManagement.ReadWrite.Directory |
| Delegated (personal Microsoft account) | Not supported. | Not supported. |
| Application | RoleManagement.Read.Directory | Directory.Read.All, Directory.ReadWrite.All, RoleManagement.ReadWrite.Directory |
View more details on permissions.
Property Mapping
| Azure AD Name | Microsoft Graph Name |
|---|---|
| Filter | Filter |
| ObjectId | DirectoryRoleId |