New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment
Create a new delegatedAdminAccessAssignment object.
Note
To view the beta release of this cmdlet, view New-MgBetaTenantRelationshipDelegatedAdminRelationshipAccessAssignment
Syntax
New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment
-DelegatedAdminRelationshipId <String>
[-ResponseHeadersVariable <String>]
[-AccessContainer <IMicrosoftGraphDelegatedAdminAccessContainer>]
[-AccessDetails <IMicrosoftGraphDelegatedAdminAccessDetails>]
[-AdditionalProperties <Hashtable>]
[-CreatedDateTime <DateTime>]
[-Id <String>]
[-LastModifiedDateTime <DateTime>]
[-Status <String>]
[-Headers <IDictionary>]
[-ProgressAction <ActionPreference>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment
-DelegatedAdminRelationshipId <String>
-BodyParameter <IMicrosoftGraphDelegatedAdminAccessAssignment>
[-ResponseHeadersVariable <String>]
[-Headers <IDictionary>]
[-ProgressAction <ActionPreference>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment
-InputObject <IIdentityPartnerIdentity>
[-ResponseHeadersVariable <String>]
[-AccessContainer <IMicrosoftGraphDelegatedAdminAccessContainer>]
[-AccessDetails <IMicrosoftGraphDelegatedAdminAccessDetails>]
[-AdditionalProperties <Hashtable>]
[-CreatedDateTime <DateTime>]
[-Id <String>]
[-LastModifiedDateTime <DateTime>]
[-Status <String>]
[-Headers <IDictionary>]
[-ProgressAction <ActionPreference>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment
-InputObject <IIdentityPartnerIdentity>
-BodyParameter <IMicrosoftGraphDelegatedAdminAccessAssignment>
[-ResponseHeadersVariable <String>]
[-Headers <IDictionary>]
[-ProgressAction <ActionPreference>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Description
Create a new delegatedAdminAccessAssignment object.
Permissions
Permission type | Least privileged permissions | Higher privileged permissions |
---|---|---|
Delegated (work or school account) | DelegatedAdminRelationship.ReadWrite.All | Not available. |
Delegated (personal Microsoft account) | Not supported. | Not supported. |
Application | DelegatedAdminRelationship.ReadWrite.All | Not available. |
Examples
Example 1: Code snippet
Import-Module Microsoft.Graph.Identity.Partner
$params = @{
accessContainer = @{
accessContainerId = "869713c9-0b28-4d08-8949-ae07ae1bf528"
accessContainerType = "securityGroup"
}
accessDetails = @{
unifiedRoles = @(
@{
roleDefinitionId = "29232cdf-9323-42fd-ade2-1d097af3e4de"
}
@{
roleDefinitionId = "f2ef992c-3afb-46b9-b7cf-a126ee74c451"
}
@{
roleDefinitionId = "729827e3-9c14-49f7-bb1b-9608f156bbb8"
}
@{
roleDefinitionId = "3a2c62db-5318-420d-8d74-23affee5d9d5"
}
)
}
}
New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment -DelegatedAdminRelationshipId $delegatedAdminRelationshipId -BodyParameter $params
This example shows how to use the New-MgTenantRelationshipDelegatedAdminRelationshipAccessAssignment Cmdlet.
Parameters
-AccessContainer
delegatedAdminAccessContainer To construct, see NOTES section for ACCESSCONTAINER properties and create a hash table.
Type: | IMicrosoftGraphDelegatedAdminAccessContainer |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AccessDetails
delegatedAdminAccessDetails To construct, see NOTES section for ACCESSDETAILS properties and create a hash table.
Type: | IMicrosoftGraphDelegatedAdminAccessDetails |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-AdditionalProperties
Additional Parameters
Type: | Hashtable |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-BodyParameter
delegatedAdminAccessAssignment To construct, see NOTES section for BODYPARAMETER properties and create a hash table.
Type: | IMicrosoftGraphDelegatedAdminAccessAssignment |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-Confirm
Prompts you for confirmation before running the cmdlet.
Type: | SwitchParameter |
Aliases: | cf |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-CreatedDateTime
The date and time in ISO 8601 format and in UTC time when the access assignment was created. Read-only.
Type: | DateTime |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DelegatedAdminRelationshipId
The unique identifier of delegatedAdminRelationship
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Headers
Optional headers that will be added to the request.
Type: | IDictionary |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-Id
The unique identifier for an entity. Read-only.
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-InputObject
Identity Parameter To construct, see NOTES section for INPUTOBJECT properties and create a hash table.
Type: | IIdentityPartnerIdentity |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-LastModifiedDateTime
The date and time in ISO 8601 and in UTC time when this access assignment was last modified. Read-only.
Type: | DateTime |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ProgressAction
{{ Fill ProgressAction Description }}
Type: | ActionPreference |
Aliases: | proga |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ResponseHeadersVariable
Optional Response Headers Variable.
Type: | String |
Aliases: | RHV |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Status
delegatedAdminAccessAssignmentStatus
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Type: | SwitchParameter |
Aliases: | wi |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Inputs
Microsoft.Graph.PowerShell.Models.IIdentityPartnerIdentity
Microsoft.Graph.PowerShell.Models.IMicrosoftGraphDelegatedAdminAccessAssignment
System.Collections.IDictionary
Outputs
Microsoft.Graph.PowerShell.Models.IMicrosoftGraphDelegatedAdminAccessAssignment
Notes
COMPLEX PARAMETER PROPERTIES
To create the parameters described below, construct a hash table containing the appropriate properties. For information on hash tables, run Get-Help about_Hash_Tables.
ACCESSCONTAINER <IMicrosoftGraphDelegatedAdminAccessContainer>
: delegatedAdminAccessContainer
[(Any) <Object>]
: This indicates any property can be added to this object.[AccessContainerId <String>]
: The identifier of the access container (for example, a security group). For 'securityGroup' access containers, this must be a valid ID of a Microsoft Entra security group in the Microsoft partner's tenant.[AccessContainerType <String>]
: delegatedAdminAccessContainerType
ACCESSDETAILS <IMicrosoftGraphDelegatedAdminAccessDetails>
: delegatedAdminAccessDetails
[(Any) <Object>]
: This indicates any property can be added to this object.[UnifiedRoles <IMicrosoftGraphUnifiedRole-
[]>]
: The directory roles that the Microsoft partner is assigned in the customer tenant.[RoleDefinitionId <String>]
: The unified role definition ID of the directory role. Refer to unifiedRoleDefinition resource.
BODYPARAMETER <IMicrosoftGraphDelegatedAdminAccessAssignment>
: delegatedAdminAccessAssignment
[(Any) <Object>]
: This indicates any property can be added to this object.[Id <String>]
: The unique identifier for an entity. Read-only.[AccessContainer <IMicrosoftGraphDelegatedAdminAccessContainer>]
: delegatedAdminAccessContainer[(Any) <Object>]
: This indicates any property can be added to this object.[AccessContainerId <String>]
: The identifier of the access container (for example, a security group). For 'securityGroup' access containers, this must be a valid ID of a Microsoft Entra security group in the Microsoft partner's tenant.[AccessContainerType <String>]
: delegatedAdminAccessContainerType
[AccessDetails <IMicrosoftGraphDelegatedAdminAccessDetails>]
: delegatedAdminAccessDetails[(Any) <Object>]
: This indicates any property can be added to this object.[UnifiedRoles <IMicrosoftGraphUnifiedRole-
[]>]
: The directory roles that the Microsoft partner is assigned in the customer tenant.[RoleDefinitionId <String>]
: The unified role definition ID of the directory role. Refer to unifiedRoleDefinition resource.
[CreatedDateTime <DateTime?>]
: The date and time in ISO 8601 format and in UTC time when the access assignment was created. Read-only.[LastModifiedDateTime <DateTime?>]
: The date and time in ISO 8601 and in UTC time when this access assignment was last modified. Read-only.[Status <String>]
: delegatedAdminAccessAssignmentStatus
INPUTOBJECT <IIdentityPartnerIdentity>
: Identity Parameter
[DelegatedAdminAccessAssignmentId <String>]
: The unique identifier of delegatedAdminAccessAssignment[DelegatedAdminCustomerId <String>]
: The unique identifier of delegatedAdminCustomer[DelegatedAdminRelationshipId <String>]
: The unique identifier of delegatedAdminRelationship[DelegatedAdminRelationshipOperationId <String>]
: The unique identifier of delegatedAdminRelationshipOperation[DelegatedAdminRelationshipRequestId <String>]
: The unique identifier of delegatedAdminRelationshipRequest[DelegatedAdminServiceManagementDetailId <String>]
: The unique identifier of delegatedAdminServiceManagementDetail