Edit

Share via

Get-EntraBetaPrivilegedResource

  • Reference
Module:
Microsoft.Entra.Beta

Get Microsoft Entra ID privileged resource.

Syntax

Get-EntraBetaPrivilegedResource
   -ProviderId <String>
   [-Top <Int32>]
   [-Filter <String>]
   [-Property <String[]>]
   [<CommonParameters>]
Get-EntraBetaPrivilegedResource
   -ProviderId <String>
   -Id <String>
   [-Property <String[]>]
   [<CommonParameters>]

Description

The Get-EntraBetaPrivilegedResource cmdlet get Microsoft Entra ID privileged resource.

Examples

Example 1: Get all resources

Connect-Entra -Scopes 'PrivilegedAccess.Read.AzureAD', 'PrivilegedAccess.Read.AzureResources' 'PrivilegedAccess.Read.AzureADGroup'
Get-EntraBetaPrivilegedResource -ProviderId 'aadRoles'

Id                                   DisplayName ExternalId                                                RegisteredDateTime RegisteredRoot Status Type
--                                   ----------- ----------                                                ------------------ -------------- ------ ----
aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb AdminUnitName         /administrativeUnits/aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb                                  Active administrativeUnits

This example demonstrates how to retrieve all resources for aadRoles provider.

  • -ProviderId Parameter specifies the ID of the specific provider.

Example 2: Get a specific privileged resource

Connect-Entra -Scopes 'PrivilegedAccess.Read.AzureAD', 'PrivilegedAccess.Read.AzureResources' 'PrivilegedAccess.Read.AzureADGroup'
$params = @{
    ProviderId = 'aadRoles'
    Id = 'aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb'
}
Get-EntraBetaPrivilegedResource @params

Id                                   DisplayName ExternalId                                                RegisteredDateTime RegisteredRoot Status Type
--                                   ----------- ----------                                                ------------------ -------------- ------ ----
aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb AdminUnitName         /administrativeUnits/aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb                                  Active administrativeUnits

This example retrieves a resource for aadRoles provider with ID aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb.

  • -ProviderId Parameter specifies the ID of the specific provider.
  • -Id Parameter specifies the unique identifier of the specific resource.

Example 3: Get a specific privileged resource by filter

Connect-Entra -Scopes 'PrivilegedAccess.Read.AzureAD', 'PrivilegedAccess.Read.AzureResources' 'PrivilegedAccess.Read.AzureADGroup'
$params = @{
    ProviderId = 'aadRoles'
    Filter = "DisplayName eq 'AdminUnitName'"
}
Get-EntraBetaPrivilegedResource @params

Id                                   DisplayName ExternalId                                                RegisteredDateTime RegisteredRoot Status Type
--                                   ----------- ----------                                                ------------------ -------------- ------ ----
aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb AdminUnitName         /administrativeUnits/aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb                                  Active administrativeUnits

This example retrieves a resource for aadRoles provider Filter.

  • -ProviderId Parameter specifies the ID of the specific provider.

Example 4: Get top privileged resources

Connect-Entra -Scopes 'PrivilegedAccess.ReadWrite.AzureAD', 'PrivilegedAccess.Read.AzureResources' 'PrivilegedAccess.Read.AzureADGroup'
$params = @{
    ProviderId = 'aadRoles'
}
Get-EntraBetaPrivilegedResource @params -Top 1

Id                                   DisplayName ExternalId                                                RegisteredDateTime RegisteredRoot Status Type
--                                   ----------- ----------                                                ------------------ -------------- ------ ----
aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb Test         /administrativeUnits/aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb                                  Active administrativeUnits

This example retrieves top resources for aadRoles provider. You can use -Limit as an alias for -Top.

  • -ProviderId Parameter specifies the ID of the specific provider.

Parameters

-Filter

Specifies an OData v4.0 filter statement. This parameter controls which objects are returned.

Type:System.String
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-Id

The unique identifier of the specific resource.

Type:System.String
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-Property

Specifies properties to be returned.

Type:System.String[]
Aliases:Select
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-ProviderId

The unique identifier of the specific provider.

Type:System.String
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-Top

The top result count.

Type:System.Int32
Aliases:Limit
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

Inputs

System.String

Outputs

System.Object