New-AzureADMSRoleDefinition
This article provides migration details from New-AzureADMSRoleDefinition command to Microsoft Graph PowerShell.
Summary
- Azure AD Command: New-AzureADMSRoleDefinition
- Azure AD Module: AzureAD
- Microsoft Graph Command: New-MgRoleManagementDirectoryRoleDefinition (Community Examples)
- Graph Module: Microsoft.Graph.Applications
- Graph Endpoint: POST /roleManagement/directory/roleDefinitions
Permissions
| Permission type | Least privileged permissions | Higher privileged permissions |
|---|---|---|
| Delegated (work or school account) | RoleManagement.ReadWrite.Directory | Directory.ReadWrite.All |
| Delegated (personal Microsoft account) | Not supported. | Not supported. |
| Application | RoleManagement.ReadWrite.Directory | Directory.ReadWrite.All |
View more details on permissions.
Property Mapping
| Azure AD Name | Microsoft Graph Name |
|---|---|
| Description | Description |
| DisplayName | DisplayName |
| IsEnabled | IsEnabled |
| ResourceScopes | ResourceScopes |
| RolePermissions | RolePermissions |
| TemplateId | TemplateId |
| Version | Version |