Role Management Policies - Get

Odwołanie

Usługa:: Authorization

Wersja interfejsu API:: 2020-10-01

Pobieranie określonych zasad zarządzania rolami dla zakresu zasobów

GET https://management.azure.com/{scope}/providers/Microsoft.Authorization/roleManagementPolicies/{roleManagementPolicyName}?api-version=2020-10-01

Parametry identyfikatora URI

Nazwa	W	Wymagane	Typ	Opis
roleManagementPolicyName	path	True	string	Nazwa (guid) zasad zarządzania rolami do pobrania.
scope	path	True	string	Zakres zasad zarządzania rolami.
api-version	query	True	string	Wersja interfejsu API do użycia dla tej operacji.

Odpowiedzi

Nazwa	Typ	Opis
200 OK	RoleManagementPolicy	OK — zwraca informacje o zasadach zarządzania rolami.
Other Status Codes	CloudError	Odpowiedź na błąd opisująca, dlaczego operacja nie powiodła się.

Zabezpieczenia

azure_auth

Przepływ OAuth2 usługi Azure Active Directory

Typ: oauth2
Flow: implicit
Adres URL autoryzacji: https://login.microsoftonline.com/common/oauth2/authorize

Zakresy

Nazwa	Opis
user_impersonation	personifikacja konta użytkownika

Przykłady

GetRoleManagementPolicyByName

Przykładowe żądanie

GET https://management.azure.com/providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/570c3619-7688-4b34-b290-2b8bb3ccab2a?api-version=2020-10-01


/**
 * Samples for RoleManagementPolicies Get.
 */
public final class Main {
    /*
     * x-ms-original-file:
     * specification/authorization/resource-manager/Microsoft.Authorization/stable/2020-10-01/examples/
     * GetRoleManagementPolicyByName.json
     */
    /**
     * Sample code: GetRoleManagementPolicyByName.
     * 
     * @param azure The entry point for accessing resource management APIs in Azure.
     */
    public static void getRoleManagementPolicyByName(com.azure.resourcemanager.AzureResourceManager azure) {
        azure.accessManagement().roleAssignments().manager().roleServiceClient().getRoleManagementPolicies()
            .getWithResponse("providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368",
                "570c3619-7688-4b34-b290-2b8bb3ccab2a", com.azure.core.util.Context.NONE);
    }
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

package armauthorization_test

import (
	"context"
	"log"

	"github.com/Azure/azure-sdk-for-go/sdk/azidentity"
	"github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/authorization/armauthorization/v2"
)

// Generated from example definition: https://github.com/Azure/azure-rest-api-specs/blob/53b1affe357b3bfbb53721d0a2002382a046d3b0/specification/authorization/resource-manager/Microsoft.Authorization/stable/2020-10-01/examples/GetRoleManagementPolicyByName.json
func ExampleRoleManagementPoliciesClient_Get() {
	cred, err := azidentity.NewDefaultAzureCredential(nil)
	if err != nil {
		log.Fatalf("failed to obtain a credential: %v", err)
	}
	ctx := context.Background()
	clientFactory, err := armauthorization.NewClientFactory("<subscription-id>", cred, nil)
	if err != nil {
		log.Fatalf("failed to create client: %v", err)
	}
	res, err := clientFactory.NewRoleManagementPoliciesClient().Get(ctx, "providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368", "570c3619-7688-4b34-b290-2b8bb3ccab2a", nil)
	if err != nil {
		log.Fatalf("failed to finish the request: %v", err)
	}
	// You could use response here. We use blank identifier for just demo purposes.
	_ = res
	// If the HTTP response code is 200 as defined in example definition, your response structure would look as follows. Please pay attention that all the values in the output are fake values for just demo purposes.
	// res.RoleManagementPolicy = armauthorization.RoleManagementPolicy{
	// 	Name: to.Ptr("570c3619-7688-4b34-b290-2b8bb3ccab2a"),
	// 	Type: to.Ptr("Microsoft.Authorization/RoleManagementPolicies"),
	// 	ID: to.Ptr("/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/570c3619-7688-4b34-b290-2b8bb3ccab2a"),
	// 	Properties: &armauthorization.RoleManagementPolicyProperties{
	// 		EffectiveRules: []armauthorization.RoleManagementPolicyRuleClassification{
	// 			&armauthorization.RoleManagementPolicyEnablementRule{
	// 				ID: to.Ptr("Enablement_Admin_Eligibility"),
	// 				RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 				Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 					Caller: to.Ptr("Admin"),
	// 					Level: to.Ptr("Eligibility"),
	// 					Operations: []*string{
	// 						to.Ptr("All")},
	// 					},
	// 					EnabledRules: []*armauthorization.EnablementRules{
	// 					},
	// 				},
	// 				&armauthorization.RoleManagementPolicyExpirationRule{
	// 					ID: to.Ptr("Expiration_Admin_Eligibility"),
	// 					RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 					Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 						Caller: to.Ptr("Admin"),
	// 						Level: to.Ptr("Eligibility"),
	// 						Operations: []*string{
	// 							to.Ptr("All")},
	// 						},
	// 						IsExpirationRequired: to.Ptr(true),
	// 						MaximumDuration: to.Ptr("P90D"),
	// 					},
	// 					&armauthorization.RoleManagementPolicyNotificationRule{
	// 						ID: to.Ptr("Notification_Admin_Admin_Eligibility"),
	// 						RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 						Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 							Caller: to.Ptr("Admin"),
	// 							Level: to.Ptr("Eligibility"),
	// 							Operations: []*string{
	// 								to.Ptr("All")},
	// 							},
	// 							IsDefaultRecipientsEnabled: to.Ptr(false),
	// 							NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 							NotificationRecipients: []*string{
	// 								to.Ptr("admin_admin_eligible@test.com")},
	// 								NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 								RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 							},
	// 							&armauthorization.RoleManagementPolicyNotificationRule{
	// 								ID: to.Ptr("Notification_Requestor_Admin_Eligibility"),
	// 								RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 								Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 									Caller: to.Ptr("Admin"),
	// 									Level: to.Ptr("Eligibility"),
	// 									Operations: []*string{
	// 										to.Ptr("All")},
	// 									},
	// 									IsDefaultRecipientsEnabled: to.Ptr(false),
	// 									NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 									NotificationRecipients: []*string{
	// 										to.Ptr("requestor_admin_eligible@test.com")},
	// 										NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 										RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 									},
	// 									&armauthorization.RoleManagementPolicyNotificationRule{
	// 										ID: to.Ptr("Notification_Approver_Admin_Eligibility"),
	// 										RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 										Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 											Caller: to.Ptr("Admin"),
	// 											Level: to.Ptr("Eligibility"),
	// 											Operations: []*string{
	// 												to.Ptr("All")},
	// 											},
	// 											IsDefaultRecipientsEnabled: to.Ptr(false),
	// 											NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 											NotificationRecipients: []*string{
	// 												to.Ptr("approver_admin_eligible@test.com")},
	// 												NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 												RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 											},
	// 											&armauthorization.RoleManagementPolicyEnablementRule{
	// 												ID: to.Ptr("Enablement_Admin_Assignment"),
	// 												RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 												Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 													Caller: to.Ptr("Admin"),
	// 													Level: to.Ptr("Assignment"),
	// 													Operations: []*string{
	// 														to.Ptr("All")},
	// 													},
	// 													EnabledRules: []*armauthorization.EnablementRules{
	// 														to.Ptr(armauthorization.EnablementRulesMultiFactorAuthentication),
	// 														to.Ptr(armauthorization.EnablementRulesJustification)},
	// 													},
	// 													&armauthorization.RoleManagementPolicyExpirationRule{
	// 														ID: to.Ptr("Expiration_Admin_Assignment"),
	// 														RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 														Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 															Caller: to.Ptr("Admin"),
	// 															Level: to.Ptr("Assignment"),
	// 															Operations: []*string{
	// 																to.Ptr("All")},
	// 															},
	// 															IsExpirationRequired: to.Ptr(false),
	// 															MaximumDuration: to.Ptr("P90D"),
	// 														},
	// 														&armauthorization.RoleManagementPolicyNotificationRule{
	// 															ID: to.Ptr("Notification_Admin_Admin_Assignment"),
	// 															RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 															Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																Caller: to.Ptr("Admin"),
	// 																Level: to.Ptr("Assignment"),
	// 																Operations: []*string{
	// 																	to.Ptr("All")},
	// 																},
	// 																IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																NotificationRecipients: []*string{
	// 																	to.Ptr("admin_admin_member@test.com")},
	// 																	NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																	RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 																},
	// 																&armauthorization.RoleManagementPolicyNotificationRule{
	// 																	ID: to.Ptr("Notification_Requestor_Admin_Assignment"),
	// 																	RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																	Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																		Caller: to.Ptr("Admin"),
	// 																		Level: to.Ptr("Assignment"),
	// 																		Operations: []*string{
	// 																			to.Ptr("All")},
	// 																		},
	// 																		IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																		NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																		NotificationRecipients: []*string{
	// 																			to.Ptr("requestor_admin_member@test.com")},
	// 																			NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																			RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 																		},
	// 																		&armauthorization.RoleManagementPolicyNotificationRule{
	// 																			ID: to.Ptr("Notification_Approver_Admin_Assignment"),
	// 																			RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																			Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																				Caller: to.Ptr("Admin"),
	// 																				Level: to.Ptr("Assignment"),
	// 																				Operations: []*string{
	// 																					to.Ptr("All")},
	// 																				},
	// 																				IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																				NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																				NotificationRecipients: []*string{
	// 																					to.Ptr("approver_admin_member@test.com")},
	// 																					NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																					RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 																				},
	// 																				&armauthorization.RoleManagementPolicyApprovalRule{
	// 																					ID: to.Ptr("Approval_EndUser_Assignment"),
	// 																					RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyApprovalRule),
	// 																					Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																						Caller: to.Ptr("EndUser"),
	// 																						Level: to.Ptr("Assignment"),
	// 																						Operations: []*string{
	// 																							to.Ptr("All")},
	// 																						},
	// 																						Setting: &armauthorization.ApprovalSettings{
	// 																							ApprovalMode: to.Ptr(armauthorization.ApprovalModeSingleStage),
	// 																							ApprovalStages: []*armauthorization.ApprovalStage{
	// 																								{
	// 																									ApprovalStageTimeOutInDays: to.Ptr[int32](1),
	// 																									EscalationTimeInMinutes: to.Ptr[int32](0),
	// 																									IsApproverJustificationRequired: to.Ptr(true),
	// 																									IsEscalationEnabled: to.Ptr(false),
	// 																									PrimaryApprovers: []*armauthorization.UserSet{
	// 																										{
	// 																											Description: to.Ptr("amansw_new_group"),
	// 																											ID: to.Ptr("2385b0f3-5fa9-43cf-8ca4-b01dc97298cd"),
	// 																											IsBackup: to.Ptr(false),
	// 																											UserType: to.Ptr(armauthorization.UserTypeGroup),
	// 																										},
	// 																										{
	// 																											Description: to.Ptr("amansw_group"),
	// 																											ID: to.Ptr("2f4913c9-d15b-406a-9946-1d66a28f2690"),
	// 																											IsBackup: to.Ptr(false),
	// 																											UserType: to.Ptr(armauthorization.UserTypeGroup),
	// 																									}},
	// 																							}},
	// 																							IsApprovalRequired: to.Ptr(true),
	// 																							IsApprovalRequiredForExtension: to.Ptr(false),
	// 																							IsRequestorJustificationRequired: to.Ptr(true),
	// 																						},
	// 																					},
	// 																					&armauthorization.RoleManagementPolicyAuthenticationContextRule{
	// 																						ID: to.Ptr("AuthenticationContext_EndUser_Assignment"),
	// 																						RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyAuthenticationContextRule),
	// 																						Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																							Caller: to.Ptr("EndUser"),
	// 																							Level: to.Ptr("Assignment"),
	// 																							Operations: []*string{
	// 																								to.Ptr("All")},
	// 																							},
	// 																							ClaimValue: to.Ptr(""),
	// 																							IsEnabled: to.Ptr(false),
	// 																						},
	// 																						&armauthorization.RoleManagementPolicyEnablementRule{
	// 																							ID: to.Ptr("Enablement_EndUser_Assignment"),
	// 																							RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 																							Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																								Caller: to.Ptr("EndUser"),
	// 																								Level: to.Ptr("Assignment"),
	// 																								Operations: []*string{
	// 																									to.Ptr("All")},
	// 																								},
	// 																								EnabledRules: []*armauthorization.EnablementRules{
	// 																									to.Ptr(armauthorization.EnablementRulesMultiFactorAuthentication),
	// 																									to.Ptr(armauthorization.EnablementRulesJustification),
	// 																									to.Ptr(armauthorization.EnablementRulesTicketing)},
	// 																								},
	// 																								&armauthorization.RoleManagementPolicyExpirationRule{
	// 																									ID: to.Ptr("Expiration_EndUser_Assignment"),
	// 																									RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 																									Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																										Caller: to.Ptr("EndUser"),
	// 																										Level: to.Ptr("Assignment"),
	// 																										Operations: []*string{
	// 																											to.Ptr("All")},
	// 																										},
	// 																										IsExpirationRequired: to.Ptr(true),
	// 																										MaximumDuration: to.Ptr("PT7H"),
	// 																									},
	// 																									&armauthorization.RoleManagementPolicyNotificationRule{
	// 																										ID: to.Ptr("Notification_Admin_EndUser_Assignment"),
	// 																										RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																										Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																											Caller: to.Ptr("EndUser"),
	// 																											Level: to.Ptr("Assignment"),
	// 																											Operations: []*string{
	// 																												to.Ptr("All")},
	// 																											},
	// 																											IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																											NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																											NotificationRecipients: []*string{
	// 																												to.Ptr("admin_enduser_member@test.com")},
	// 																												NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																												RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 																											},
	// 																											&armauthorization.RoleManagementPolicyNotificationRule{
	// 																												ID: to.Ptr("Notification_Requestor_EndUser_Assignment"),
	// 																												RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																												Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																													Caller: to.Ptr("EndUser"),
	// 																													Level: to.Ptr("Assignment"),
	// 																													Operations: []*string{
	// 																														to.Ptr("All")},
	// 																													},
	// 																													IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																													NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																													NotificationRecipients: []*string{
	// 																														to.Ptr("requestor_enduser_member@test.com")},
	// 																														NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																														RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 																													},
	// 																													&armauthorization.RoleManagementPolicyNotificationRule{
	// 																														ID: to.Ptr("Notification_Approver_EndUser_Assignment"),
	// 																														RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																														Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																															Caller: to.Ptr("EndUser"),
	// 																															Level: to.Ptr("Assignment"),
	// 																															Operations: []*string{
	// 																																to.Ptr("All")},
	// 																															},
	// 																															IsDefaultRecipientsEnabled: to.Ptr(true),
	// 																															NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																															NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																															RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 																													}},
	// 																													IsOrganizationDefault: to.Ptr(false),
	// 																													LastModifiedBy: &armauthorization.Principal{
	// 																														DisplayName: to.Ptr("Admin"),
	// 																													},
	// 																													LastModifiedDateTime: to.Ptr(func() time.Time { t, _ := time.Parse(time.RFC3339Nano, "2021-03-17T02:54:27.167Z"); return t}()),
	// 																													PolicyProperties: &armauthorization.PolicyProperties{
	// 																														Scope: &armauthorization.PolicyPropertiesScope{
	// 																															Type: to.Ptr("subscription"),
	// 																															DisplayName: to.Ptr("Pay-As-You-Go"),
	// 																															ID: to.Ptr("/subscriptions/129ff972-28f8-46b8-a726-e497be039368"),
	// 																														},
	// 																													},
	// 																													Rules: []armauthorization.RoleManagementPolicyRuleClassification{
	// 																														&armauthorization.RoleManagementPolicyEnablementRule{
	// 																															ID: to.Ptr("Enablement_Admin_Eligibility"),
	// 																															RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 																															Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																Caller: to.Ptr("Admin"),
	// 																																Level: to.Ptr("Eligibility"),
	// 																																Operations: []*string{
	// 																																	to.Ptr("All")},
	// 																																},
	// 																																EnabledRules: []*armauthorization.EnablementRules{
	// 																																},
	// 																															},
	// 																															&armauthorization.RoleManagementPolicyExpirationRule{
	// 																																ID: to.Ptr("Expiration_Admin_Eligibility"),
	// 																																RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 																																Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																	Caller: to.Ptr("Admin"),
	// 																																	Level: to.Ptr("Eligibility"),
	// 																																	Operations: []*string{
	// 																																		to.Ptr("All")},
	// 																																	},
	// 																																	IsExpirationRequired: to.Ptr(true),
	// 																																	MaximumDuration: to.Ptr("P90D"),
	// 																																},
	// 																																&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																	ID: to.Ptr("Notification_Admin_Admin_Eligibility"),
	// 																																	RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																	Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																		Caller: to.Ptr("Admin"),
	// 																																		Level: to.Ptr("Eligibility"),
	// 																																		Operations: []*string{
	// 																																			to.Ptr("All")},
	// 																																		},
	// 																																		IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																		NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																		NotificationRecipients: []*string{
	// 																																			to.Ptr("admin_admin_eligible@test.com")},
	// 																																			NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																			RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 																																		},
	// 																																		&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																			ID: to.Ptr("Notification_Requestor_Admin_Eligibility"),
	// 																																			RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																			Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																				Caller: to.Ptr("Admin"),
	// 																																				Level: to.Ptr("Eligibility"),
	// 																																				Operations: []*string{
	// 																																					to.Ptr("All")},
	// 																																				},
	// 																																				IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																				NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																				NotificationRecipients: []*string{
	// 																																					to.Ptr("requestor_admin_eligible@test.com")},
	// 																																					NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																					RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 																																				},
	// 																																				&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																					ID: to.Ptr("Notification_Approver_Admin_Eligibility"),
	// 																																					RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																					Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																						Caller: to.Ptr("Admin"),
	// 																																						Level: to.Ptr("Eligibility"),
	// 																																						Operations: []*string{
	// 																																							to.Ptr("All")},
	// 																																						},
	// 																																						IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																						NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																						NotificationRecipients: []*string{
	// 																																							to.Ptr("approver_admin_eligible@test.com")},
	// 																																							NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																							RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 																																						},
	// 																																						&armauthorization.RoleManagementPolicyEnablementRule{
	// 																																							ID: to.Ptr("Enablement_Admin_Assignment"),
	// 																																							RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 																																							Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																								Caller: to.Ptr("Admin"),
	// 																																								Level: to.Ptr("Assignment"),
	// 																																								Operations: []*string{
	// 																																									to.Ptr("All")},
	// 																																								},
	// 																																								EnabledRules: []*armauthorization.EnablementRules{
	// 																																									to.Ptr(armauthorization.EnablementRulesMultiFactorAuthentication),
	// 																																									to.Ptr(armauthorization.EnablementRulesJustification)},
	// 																																								},
	// 																																								&armauthorization.RoleManagementPolicyExpirationRule{
	// 																																									ID: to.Ptr("Expiration_Admin_Assignment"),
	// 																																									RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 																																									Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																										Caller: to.Ptr("Admin"),
	// 																																										Level: to.Ptr("Assignment"),
	// 																																										Operations: []*string{
	// 																																											to.Ptr("All")},
	// 																																										},
	// 																																										IsExpirationRequired: to.Ptr(false),
	// 																																										MaximumDuration: to.Ptr("P90D"),
	// 																																									},
	// 																																									&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																										ID: to.Ptr("Notification_Admin_Admin_Assignment"),
	// 																																										RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																										Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																											Caller: to.Ptr("Admin"),
	// 																																											Level: to.Ptr("Assignment"),
	// 																																											Operations: []*string{
	// 																																												to.Ptr("All")},
	// 																																											},
	// 																																											IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																											NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																											NotificationRecipients: []*string{
	// 																																												to.Ptr("admin_admin_member@test.com")},
	// 																																												NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																												RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 																																											},
	// 																																											&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																												ID: to.Ptr("Notification_Requestor_Admin_Assignment"),
	// 																																												RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																												Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																													Caller: to.Ptr("Admin"),
	// 																																													Level: to.Ptr("Assignment"),
	// 																																													Operations: []*string{
	// 																																														to.Ptr("All")},
	// 																																													},
	// 																																													IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																													NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																													NotificationRecipients: []*string{
	// 																																														to.Ptr("requestor_admin_member@test.com")},
	// 																																														NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																														RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 																																													},
	// 																																													&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																														ID: to.Ptr("Notification_Approver_Admin_Assignment"),
	// 																																														RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																														Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																															Caller: to.Ptr("Admin"),
	// 																																															Level: to.Ptr("Assignment"),
	// 																																															Operations: []*string{
	// 																																																to.Ptr("All")},
	// 																																															},
	// 																																															IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																															NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																															NotificationRecipients: []*string{
	// 																																																to.Ptr("approver_admin_member@test.com")},
	// 																																																NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																																RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 																																															},
	// 																																															&armauthorization.RoleManagementPolicyApprovalRule{
	// 																																																ID: to.Ptr("Approval_EndUser_Assignment"),
	// 																																																RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyApprovalRule),
	// 																																																Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																	Caller: to.Ptr("EndUser"),
	// 																																																	Level: to.Ptr("Assignment"),
	// 																																																	Operations: []*string{
	// 																																																		to.Ptr("All")},
	// 																																																	},
	// 																																																	Setting: &armauthorization.ApprovalSettings{
	// 																																																		ApprovalMode: to.Ptr(armauthorization.ApprovalModeSingleStage),
	// 																																																		ApprovalStages: []*armauthorization.ApprovalStage{
	// 																																																			{
	// 																																																				ApprovalStageTimeOutInDays: to.Ptr[int32](1),
	// 																																																				EscalationTimeInMinutes: to.Ptr[int32](0),
	// 																																																				IsApproverJustificationRequired: to.Ptr(true),
	// 																																																				IsEscalationEnabled: to.Ptr(false),
	// 																																																				PrimaryApprovers: []*armauthorization.UserSet{
	// 																																																					{
	// 																																																						Description: to.Ptr("amansw_new_group"),
	// 																																																						ID: to.Ptr("2385b0f3-5fa9-43cf-8ca4-b01dc97298cd"),
	// 																																																						IsBackup: to.Ptr(false),
	// 																																																						UserType: to.Ptr(armauthorization.UserTypeGroup),
	// 																																																					},
	// 																																																					{
	// 																																																						Description: to.Ptr("amansw_group"),
	// 																																																						ID: to.Ptr("2f4913c9-d15b-406a-9946-1d66a28f2690"),
	// 																																																						IsBackup: to.Ptr(false),
	// 																																																						UserType: to.Ptr(armauthorization.UserTypeGroup),
	// 																																																				}},
	// 																																																		}},
	// 																																																		IsApprovalRequired: to.Ptr(true),
	// 																																																		IsApprovalRequiredForExtension: to.Ptr(false),
	// 																																																		IsRequestorJustificationRequired: to.Ptr(true),
	// 																																																	},
	// 																																																},
	// 																																																&armauthorization.RoleManagementPolicyAuthenticationContextRule{
	// 																																																	ID: to.Ptr("AuthenticationContext_EndUser_Assignment"),
	// 																																																	RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyAuthenticationContextRule),
	// 																																																	Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																		Caller: to.Ptr("EndUser"),
	// 																																																		Level: to.Ptr("Assignment"),
	// 																																																		Operations: []*string{
	// 																																																			to.Ptr("All")},
	// 																																																		},
	// 																																																		ClaimValue: to.Ptr(""),
	// 																																																		IsEnabled: to.Ptr(false),
	// 																																																	},
	// 																																																	&armauthorization.RoleManagementPolicyEnablementRule{
	// 																																																		ID: to.Ptr("Enablement_EndUser_Assignment"),
	// 																																																		RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyEnablementRule),
	// 																																																		Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																			Caller: to.Ptr("EndUser"),
	// 																																																			Level: to.Ptr("Assignment"),
	// 																																																			Operations: []*string{
	// 																																																				to.Ptr("All")},
	// 																																																			},
	// 																																																			EnabledRules: []*armauthorization.EnablementRules{
	// 																																																				to.Ptr(armauthorization.EnablementRulesMultiFactorAuthentication),
	// 																																																				to.Ptr(armauthorization.EnablementRulesJustification),
	// 																																																				to.Ptr(armauthorization.EnablementRulesTicketing)},
	// 																																																			},
	// 																																																			&armauthorization.RoleManagementPolicyExpirationRule{
	// 																																																				ID: to.Ptr("Expiration_EndUser_Assignment"),
	// 																																																				RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyExpirationRule),
	// 																																																				Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																					Caller: to.Ptr("EndUser"),
	// 																																																					Level: to.Ptr("Assignment"),
	// 																																																					Operations: []*string{
	// 																																																						to.Ptr("All")},
	// 																																																					},
	// 																																																					IsExpirationRequired: to.Ptr(true),
	// 																																																					MaximumDuration: to.Ptr("PT7H"),
	// 																																																				},
	// 																																																				&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																																					ID: to.Ptr("Notification_Admin_EndUser_Assignment"),
	// 																																																					RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																																					Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																						Caller: to.Ptr("EndUser"),
	// 																																																						Level: to.Ptr("Assignment"),
	// 																																																						Operations: []*string{
	// 																																																							to.Ptr("All")},
	// 																																																						},
	// 																																																						IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																																						NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																																						NotificationRecipients: []*string{
	// 																																																							to.Ptr("admin_enduser_member@test.com")},
	// 																																																							NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																																							RecipientType: to.Ptr(armauthorization.RecipientTypeAdmin),
	// 																																																						},
	// 																																																						&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																																							ID: to.Ptr("Notification_Requestor_EndUser_Assignment"),
	// 																																																							RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																																							Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																								Caller: to.Ptr("EndUser"),
	// 																																																								Level: to.Ptr("Assignment"),
	// 																																																								Operations: []*string{
	// 																																																									to.Ptr("All")},
	// 																																																								},
	// 																																																								IsDefaultRecipientsEnabled: to.Ptr(false),
	// 																																																								NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																																								NotificationRecipients: []*string{
	// 																																																									to.Ptr("requestor_enduser_member@test.com")},
	// 																																																									NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																																									RecipientType: to.Ptr(armauthorization.RecipientTypeRequestor),
	// 																																																								},
	// 																																																								&armauthorization.RoleManagementPolicyNotificationRule{
	// 																																																									ID: to.Ptr("Notification_Approver_EndUser_Assignment"),
	// 																																																									RuleType: to.Ptr(armauthorization.RoleManagementPolicyRuleTypeRoleManagementPolicyNotificationRule),
	// 																																																									Target: &armauthorization.RoleManagementPolicyRuleTarget{
	// 																																																										Caller: to.Ptr("EndUser"),
	// 																																																										Level: to.Ptr("Assignment"),
	// 																																																										Operations: []*string{
	// 																																																											to.Ptr("All")},
	// 																																																										},
	// 																																																										IsDefaultRecipientsEnabled: to.Ptr(true),
	// 																																																										NotificationLevel: to.Ptr(armauthorization.NotificationLevelCritical),
	// 																																																										NotificationType: to.Ptr(armauthorization.NotificationDeliveryMechanismEmail),
	// 																																																										RecipientType: to.Ptr(armauthorization.RecipientTypeApprover),
	// 																																																								}},
	// 																																																								Scope: to.Ptr("/subscriptions/129ff972-28f8-46b8-a726-e497be039368"),
	// 																																																							},
	// 																																																						}
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

const { AuthorizationManagementClient } = require("@azure/arm-authorization");
const { DefaultAzureCredential } = require("@azure/identity");

/**
 * This sample demonstrates how to Get the specified role management policy for a resource scope
 *
 * @summary Get the specified role management policy for a resource scope
 * x-ms-original-file: specification/authorization/resource-manager/Microsoft.Authorization/stable/2020-10-01/examples/GetRoleManagementPolicyByName.json
 */
async function getRoleManagementPolicyByName() {
  const subscriptionId =
    process.env["AUTHORIZATION_SUBSCRIPTION_ID"] || "00000000-0000-0000-0000-000000000000";
  const scope =
    "providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368";
  const roleManagementPolicyName = "570c3619-7688-4b34-b290-2b8bb3ccab2a";
  const credential = new DefaultAzureCredential();
  const client = new AuthorizationManagementClient(credential, subscriptionId);
  const result = await client.roleManagementPolicies.get(scope, roleManagementPolicyName);
  console.log(result);
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

using Azure;
using Azure.ResourceManager;
using System;
using System.Threading.Tasks;
using Azure.Core;
using Azure.Identity;
using Azure.ResourceManager.Authorization;

// Generated from example definition: specification/authorization/resource-manager/Microsoft.Authorization/stable/2020-10-01/examples/GetRoleManagementPolicyByName.json
// this example is just showing the usage of "RoleManagementPolicies_Get" operation, for the dependent resources, they will have to be created separately.

// get your azure access token, for more details of how Azure SDK get your access token, please refer to https://learn.microsoft.com/en-us/dotnet/azure/sdk/authentication?tabs=command-line
TokenCredential cred = new DefaultAzureCredential();
// authenticate your client
ArmClient client = new ArmClient(cred);

// this example assumes you already have this ArmResource created on azure
// for more information of creating ArmResource, please refer to the document of ArmResource

// get the collection of this RoleManagementPolicyResource
string scope = "providers/Microsoft.Subscription/subscriptions/129ff972-28f8-46b8-a726-e497be039368";
ResourceIdentifier scopeId = new ResourceIdentifier(string.Format("/{0}", scope));
RoleManagementPolicyCollection collection = client.GetRoleManagementPolicies(scopeId);

// invoke the operation
string roleManagementPolicyName = "570c3619-7688-4b34-b290-2b8bb3ccab2a";
NullableResponse<RoleManagementPolicyResource> response = await collection.GetIfExistsAsync(roleManagementPolicyName);
RoleManagementPolicyResource result = response.HasValue ? response.Value : null;

if (result == null)
{
    Console.WriteLine($"Succeeded with null as result");
}
else
{
    // the variable result is a resource, you could call other operations on this instance as well
    // but just for demo, we get its data from this resource instance
    RoleManagementPolicyData resourceData = result.Data;
    // for demo we just print out the id
    Console.WriteLine($"Succeeded on id: {resourceData.Id}");
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

Przykładowa odpowiedź

Kod stanu:: 200

{
  "properties": {
    "scope": "/subscriptions/129ff972-28f8-46b8-a726-e497be039368",
    "displayName": null,
    "description": null,
    "isOrganizationDefault": false,
    "lastModifiedDateTime": "2021-03-17T02:54:27.167+00:00",
    "lastModifiedBy": {
      "id": null,
      "displayName": "Admin",
      "type": null,
      "email": null
    },
    "rules": [
      {
        "enabledRules": [],
        "id": "Enablement_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": true,
        "maximumDuration": "P90D",
        "id": "Expiration_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_admin_eligible@test.com"
        ],
        "id": "Notification_Admin_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_admin_eligible@test.com"
        ],
        "id": "Notification_Requestor_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "approver_admin_eligible@test.com"
        ],
        "id": "Notification_Approver_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "enabledRules": [
          "MultiFactorAuthentication",
          "Justification"
        ],
        "id": "Enablement_Admin_Assignment",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": false,
        "maximumDuration": "P90D",
        "id": "Expiration_Admin_Assignment",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_admin_member@test.com"
        ],
        "id": "Notification_Admin_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_admin_member@test.com"
        ],
        "id": "Notification_Requestor_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "approver_admin_member@test.com"
        ],
        "id": "Notification_Approver_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "setting": {
          "isApprovalRequired": true,
          "isApprovalRequiredForExtension": false,
          "isRequestorJustificationRequired": true,
          "approvalMode": "SingleStage",
          "approvalStages": [
            {
              "approvalStageTimeOutInDays": 1,
              "isApproverJustificationRequired": true,
              "escalationTimeInMinutes": 0,
              "primaryApprovers": [
                {
                  "id": "2385b0f3-5fa9-43cf-8ca4-b01dc97298cd",
                  "description": "amansw_new_group",
                  "isBackup": false,
                  "userType": "Group"
                },
                {
                  "id": "2f4913c9-d15b-406a-9946-1d66a28f2690",
                  "description": "amansw_group",
                  "isBackup": false,
                  "userType": "Group"
                }
              ],
              "isEscalationEnabled": false,
              "escalationApprovers": null
            }
          ]
        },
        "id": "Approval_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyApprovalRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isEnabled": false,
        "claimValue": "",
        "id": "AuthenticationContext_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyAuthenticationContextRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "enabledRules": [
          "MultiFactorAuthentication",
          "Justification",
          "Ticketing"
        ],
        "id": "Enablement_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": true,
        "maximumDuration": "PT7H",
        "id": "Expiration_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_enduser_member@test.com"
        ],
        "id": "Notification_Admin_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_enduser_member@test.com"
        ],
        "id": "Notification_Requestor_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": true,
        "notificationLevel": "Critical",
        "notificationRecipients": null,
        "id": "Notification_Approver_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      }
    ],
    "effectiveRules": [
      {
        "enabledRules": [],
        "id": "Enablement_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": true,
        "maximumDuration": "P90D",
        "id": "Expiration_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_admin_eligible@test.com"
        ],
        "id": "Notification_Admin_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_admin_eligible@test.com"
        ],
        "id": "Notification_Requestor_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "approver_admin_eligible@test.com"
        ],
        "id": "Notification_Approver_Admin_Eligibility",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Eligibility",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "enabledRules": [
          "MultiFactorAuthentication",
          "Justification"
        ],
        "id": "Enablement_Admin_Assignment",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": false,
        "maximumDuration": "P90D",
        "id": "Expiration_Admin_Assignment",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_admin_member@test.com"
        ],
        "id": "Notification_Admin_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_admin_member@test.com"
        ],
        "id": "Notification_Requestor_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "approver_admin_member@test.com"
        ],
        "id": "Notification_Approver_Admin_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "Admin",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "setting": {
          "isApprovalRequired": true,
          "isApprovalRequiredForExtension": false,
          "isRequestorJustificationRequired": true,
          "approvalMode": "SingleStage",
          "approvalStages": [
            {
              "approvalStageTimeOutInDays": 1,
              "isApproverJustificationRequired": true,
              "escalationTimeInMinutes": 0,
              "primaryApprovers": [
                {
                  "id": "2385b0f3-5fa9-43cf-8ca4-b01dc97298cd",
                  "description": "amansw_new_group",
                  "isBackup": false,
                  "userType": "Group"
                },
                {
                  "id": "2f4913c9-d15b-406a-9946-1d66a28f2690",
                  "description": "amansw_group",
                  "isBackup": false,
                  "userType": "Group"
                }
              ],
              "isEscalationEnabled": false,
              "escalationApprovers": null
            }
          ]
        },
        "id": "Approval_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyApprovalRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isEnabled": false,
        "claimValue": "",
        "id": "AuthenticationContext_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyAuthenticationContextRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "enabledRules": [
          "MultiFactorAuthentication",
          "Justification",
          "Ticketing"
        ],
        "id": "Enablement_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyEnablementRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "isExpirationRequired": true,
        "maximumDuration": "PT7H",
        "id": "Expiration_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyExpirationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Admin",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "admin_enduser_member@test.com"
        ],
        "id": "Notification_Admin_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Requestor",
        "isDefaultRecipientsEnabled": false,
        "notificationLevel": "Critical",
        "notificationRecipients": [
          "requestor_enduser_member@test.com"
        ],
        "id": "Notification_Requestor_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      },
      {
        "notificationType": "Email",
        "recipientType": "Approver",
        "isDefaultRecipientsEnabled": true,
        "notificationLevel": "Critical",
        "notificationRecipients": null,
        "id": "Notification_Approver_EndUser_Assignment",
        "ruleType": "RoleManagementPolicyNotificationRule",
        "target": {
          "caller": "EndUser",
          "operations": [
            "All"
          ],
          "level": "Assignment",
          "targetObjects": null,
          "inheritableSettings": null,
          "enforcedSettings": null
        }
      }
    ],
    "policyProperties": {
      "scope": {
        "id": "/subscriptions/129ff972-28f8-46b8-a726-e497be039368",
        "displayName": "Pay-As-You-Go",
        "type": "subscription"
      }
    }
  },
  "name": "570c3619-7688-4b34-b290-2b8bb3ccab2a",
  "id": "/subscriptions/129ff972-28f8-46b8-a726-e497be039368/providers/Microsoft.Authorization/roleManagementPolicies/570c3619-7688-4b34-b290-2b8bb3ccab2a",
  "type": "Microsoft.Authorization/RoleManagementPolicies"
}

Definicje

Nazwa	Opis
CloudError	Odpowiedź błędu z usługi.
CloudErrorBody	Odpowiedź błędu z usługi.
PolicyProperties	Rozwinięte informacje o zakresie zasobów
Principal	Nazwa jednostki, która została ostatnio zmodyfikowana
RoleManagementPolicy	Zasady zarządzania rolami
Scope	Szczegóły zakresu zasobów

CloudError

Odpowiedź błędu z usługi.

Nazwa	Typ	Opis
error	CloudErrorBody	Odpowiedź błędu z usługi.

CloudErrorBody

Odpowiedź błędu z usługi.

Nazwa	Typ	Opis
code	string	Identyfikator błędu. Kody są niezmienne i mają być używane programowo.
message	string	Komunikat opisujący błąd, który ma być odpowiedni do wyświetlania w interfejsie użytkownika.

PolicyProperties

Rozwinięte informacje o zakresie zasobów

Nazwa	Typ	Opis
scope	Scope	Szczegóły zakresu zasobów

Principal

Nazwa jednostki, która została ostatnio zmodyfikowana

Nazwa	Typ	Opis
displayName	string	Nazwa podmiotu zabezpieczeń wprowadzonych zmian
email	string	Email podmiotu zabezpieczeń
id	string	Identyfikator podmiotu zabezpieczeń wprowadzonych zmian
type	string	Typ podmiotu zabezpieczeń, takiego jak użytkownik , grupa itp.

RoleManagementPolicy

Zasady zarządzania rolami

Nazwa	Typ	Opis
id	string	Identyfikator zasad zarządzania rolami.
name	string	Nazwa zasad zarządzania rolami.
properties.description	string	Opis zasad zarządzania rolami.
properties.displayName	string	Nazwa wyświetlana zasad zarządzania rolami.
properties.effectiveRules	RoleManagementPolicyRule[]	Reguła obliczana do odczytu zastosowana do zasad.
properties.isOrganizationDefault	boolean	Zasady zarządzania rolami są domyślnymi zasadami.
properties.lastModifiedBy	Principal	Nazwa jednostki, która została ostatnio zmodyfikowana
properties.lastModifiedDateTime	string	Data ostatniej modyfikacji.
properties.policyProperties	PolicyProperties	Dodatkowe właściwości zakresu
properties.rules	RoleManagementPolicyRule[]	Reguła zastosowana do zasad.
properties.scope	string	Zakres zasad zarządzania rolami.
type	string	Typ zasad zarządzania rolami.

Scope

Szczegóły zakresu zasobów

Nazwa	Typ	Opis
displayName	string	Nazwa wyświetlana zasobu
id	string	Identyfikator zakresu zasobu
type	string	Typ zasobu

Udostępnij za pośrednictwem

Role Management Policies - Get

Parametry identyfikatora URI

Odpowiedzi

Zabezpieczenia

azure_auth

Zakresy

Przykłady

GetRoleManagementPolicyByName

Przykładowe żądanie

Przykładowa odpowiedź

Definicje

CloudError

CloudErrorBody

PolicyProperties

Principal

RoleManagementPolicy

Scope

Dodatkowe zasoby