Get-AzKeyVaultRoleDefinition
Mencantumkan definisi peran HSM terkelola tertentu pada cakupan tertentu.
Sintaks
Get-AzKeyVaultRoleDefinition
[-HsmName] <String>
[-Scope <String>]
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>]
Get-AzKeyVaultRoleDefinition
[-HsmName] <String>
[-Scope <String>]
[-Custom]
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>]
Get-AzKeyVaultRoleDefinition
[-HsmName] <String>
[-Scope <String>]
-RoleDefinitionName <String>
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>]
Deskripsi
Mencantumkan definisi peran HSM terkelola tertentu pada cakupan tertentu.
Contoh
Contoh 1
Get-AzKeyVaultRoleDefinition -HsmName myHsm -Scope "/keys"
RoleName Description Permissions
-------- ----------- -----------
Managed HSM Administrator 1 permission(s)
Managed HSM Crypto Officer 1 permission(s)
Managed HSM Crypto User 1 permission(s)
Managed HSM Policy Administrator 1 permission(s)
Managed HSM Crypto Auditor 1 permission(s)
Managed HSM Crypto Service Encryption 1 permission(s)
Managed HSM Backup 1 permission(s)
Contohnya mencantumkan semua peran di cakupan "/keys".
Contoh 2
$backupRole = Get-AzKeyVaultRoleDefinition -HsmName myHsm -RoleDefinitionName "Managed HSM Backup User"
$backupRole.Permissions
Actions NotActions DataActions NotDataActions
------- ---------- ----------- --------------
0 action(s) 0 action(s) 3 action(s) 0 action(s)
$backupRole.Permissions.DataActions
Microsoft.KeyVault/managedHsm/backup/start/action
Microsoft.KeyVault/managedHsm/backup/status/action
Microsoft.KeyVault/managedHsm/keys/backup/action
Contohnya mendapatkan peran "Cadangan HSM Terkelola" dan memeriksa izinnya.
Contoh 3
Get-AzKeyVaultRoleDefinition -HsmName myHsm -Custom
Contoh ini mencantumkan semua definisi peran kustom milik "myHsm".
Parameter
-Custom
Jika ditentukan, hanya menampilkan peran kustom yang dibuat di direktori.
Jenis: | SwitchParameter |
Position: | Named |
nilai default: | None |
Diperlukan: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefaultProfile
Kredensial, akun, penyewa, dan langganan yang digunakan untuk komunikasi dengan Azure.
Jenis: | IAzureContextContainer |
Aliases: | AzContext, AzureRmContext, AzureCredential |
Position: | Named |
nilai default: | None |
Diperlukan: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-HsmName
Nama HSM.
Jenis: | String |
Position: | 1 |
nilai default: | None |
Diperlukan: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RoleDefinitionName
Nama definisi peran yang akan didapatkan.
Jenis: | String |
Aliases: | RoleName |
Position: | Named |
nilai default: | None |
Diperlukan: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Scope
Cakupan di mana penetapan peran atau definisi berlaku untuk, misalnya, '/' atau '/keys' atau '/keys/{keyName}'. '/' digunakan saat dihilangkan.
Jenis: | String |
Position: | Named |
nilai default: | None |
Diperlukan: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Input
None