Set-AzureADMSRoleDefinition

This article provides migration details from Set-AzureADMSRoleDefinition command to Microsoft Graph PowerShell.

Summary

• Azure AD Command: Set-AzureADMSRoleDefinition
• Azure AD Module: AzureAD
• Microsoft Graph Command: Update-MgRoleManagementDirectoryRoleDefinition (Community Examples)
• Graph Module: Microsoft.Graph.Identity.Governance
• Graph Endpoint: PATCH /roleManagement/directory/roleDefinitions/{unifiedRoleDefinition-id}

Permissions

Permission type	Least privileged permissions	Higher privileged permissions
Delegated (work or school account)	RoleManagement.ReadWrite.Directory	Directory.ReadWrite.All
Delegated (personal Microsoft account)	Not supported.	Not supported.
Application	RoleManagement.ReadWrite.Directory	Directory.ReadWrite.All

View more details on permissions.

Property Mapping

Azure AD Name	Microsoft Graph Name
Description	Description
DisplayName	DisplayName
Id	Id
IsEnabled	IsEnabled
ResourceScopes	ResourceScopes
RolePermissions	RolePermissions
TemplateId	TemplateId
Version	Version