你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
Add-AzureADScopedRoleMembership
将作用域内的角色成员身份添加到管理单元。
语法
Add-AzureADScopedRoleMembership
-ObjectId <String>
[-AdministrativeUnitObjectId <String>]
[-RoleObjectId <String>]
[-RoleMemberInfo <RoleMemberInfo>]
[<CommonParameters>]
说明
Add-AzureADScopedRoleMembership cmdlet 向管理单元添加作用域的角色成员身份。
示例
示例 1
$User = Get-AzureADUser -SearchString "The user that will be an admin on this unit"
$Role = Get-AzureADDirectoryRole | Where-Object -Property DisplayName -EQ -Value "User Account Administrator"
$Unit = Get-AzureADAdministrativeUnit | Where-Object -Property DisplayName -Eq -Value "<The display name of the unit"
$RoleMember = New-Object -TypeName Microsoft.Open.AzureAD.Model.RoleMemberInfo
$RoleMember.ObjectId = $User.ObjectID
Add-AzureADScopedRoleMembership -ObjectId $unit.ObjectId -RoleObjectId $Role.ObjectId -RoleMemberInfo $RoleMember
此 cmdlet 返回 Scope 角色成员身份对象:
AdministrativeUnitObjectId RoleObjectId
-------------------------- ------------
c9ab56cc-e349-4237-856e-cab03157a91e 526b7173-5a6e-49dc-88ec-b677a9093709
参数
-AdministrativeUnitObjectId
指定管理单元的 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ObjectId
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-RoleMemberInfo
指定 RoleMemberInfo 对象。
Type: | RoleMemberInfo |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RoleObjectId
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
相关链接
反馈
https://aka.ms/ContentUserFeedback。
即将发布:在整个 2024 年,我们将逐步淘汰作为内容反馈机制的“GitHub 问题”,并将其取代为新的反馈系统。 有关详细信息,请参阅:提交和查看相关反馈