Remove-EntraPermissionGrantConditionSet
Delete a Microsoft Entra ID permission grant condition set by ID.
Syntax
Remove-EntraPermissionGrantConditionSet
-ConditionSetType <String>
-Id <String>
-PolicyId <String>
[<CommonParameters>] Description
Delete a Microsoft Entra ID permission grant condition set object by ID.
Examples
Example 1: Delete a permission grant condition set from a policy
Connect-Entra -Scopes 'Policy.ReadWrite.PermissionGrant'
$permissionGrantPolicy = Get-EntraPermissionGrantPolicy | Where-Object { $_.Id -eq 'my-custom-consent-policy' }
$conditionSet = Get-EntraPermissionGrantConditionSet -PolicyId $permissionGrantPolicy.Id -ConditionSetType 'includes' | Where-Object { $_.PermissionType -eq 'delegated' }
Remove-EntraPermissionGrantConditionSet -PolicyId $permissionGrantPolicy.Id -ConditionSetType 'includes' -Id $conditionSet.IdThis example demonstrates how to remove the Microsoft Entra ID permission grant condition set by ID.
-PolicyIdparameter specifies the unique identifier of a permission grant policy.-ConditionSetTypeparameter indicates whether the condition sets are included in the policy or excluded.-Idparameter specifies the unique identifier of a permission grant condition set object.
Parameters
-ConditionSetType
The value indicates whether the condition sets are included in the policy or excluded.
| Type: | System.String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-Id
The unique identifier of a Microsoft Entra ID permission grant condition set object.
| Type: | System.String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-PolicyId
The unique identifier of a Microsoft Entra ID permission grant policy object.
| Type: | System.String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
Inputs
String