Add-AzureADMSServicePrincipalDelegatedPermissionClassification

Module:: AzureAD Module

Add a classification for a delegated permission.

Syntax

Default (Default)

Add-AzureADMSServicePrincipalDelegatedPermissionClassification
    -ServicePrincipalId <String>
    -Classification <ClassificationEnum>
    -PermissionId <String>
    -PermissionName <String>
    [<CommonParameters>]

Description

The Add-AzureADMSServicePrincipalDelegatedPermissionClassification cmdlet creates a delegated permission classification for the given permission on service principal.

Examples

Example 1: Create Delegated Permission Classification

PS C:\> Add-AzureADMSServicePrincipalDelegatedPermissionClassification -ServicePrincipalId "aaaaaaaa-bbbb-cccc-1111-222222222222" -PermissionId "b340eb25-3456-403f-be2f-af7a0d370277" -Classification Low -PermissionName "User.ReadBasic.All"

Classification : Low
Id             : 5XBeIKarUkypdm0tRsSAQwE
PermissionId   : b340eb25-3456-403f-be2f-af7a0d370277
PermissionName : User.ReadBasic.All

This command creates a delegated permission classification for the given permission on the service principal.

Parameters

-Classification

The classification for a delegated permission. This parameter can take one of the following values:

"Low" - Specifies a classification for a permission as low impact.
"Medium" - Specifies a classification for a permission as medium impact.
"High" - Specifies a classification for a permission as high impact.

Parameter properties

Type:	ClassificationEnum
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

(All)

Position:	Named
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-PermissionId

The id for a delegated permission.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

(All)

Position:	Named
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-PermissionName

The name for a delegated permission.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

(All)

Position:	Named
Mandatory:	True
Value from pipeline:	False
Value from pipeline by property name:	False
Value from remaining arguments:	False

-ServicePrincipalId

The unique identifier of a service principal object in Azure Active Directory.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

(All)

Position:	Named
Mandatory:	True
Value from pipeline:	True
Value from pipeline by property name:	True
Value from remaining arguments:	False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Outputs

Microsoft.Online.Administration.DelegatedPermissionClassification

Notes

See the migration guide for Add-AzureADMSServicePrincipalDelegatedPermissionClassification to the Microsoft Graph PowerShell.

Share via

Add-AzureADMSServicePrincipalDelegatedPermissionClassification

Syntax

Default (Default)

Description

Examples

Example 1: Create Delegated Permission Classification

Parameters

-Classification

Parameter properties

Parameter sets

-PermissionId

Parameter properties

Parameter sets

-PermissionName

Parameter properties

Parameter sets

-ServicePrincipalId

Parameter properties

Parameter sets

CommonParameters

Outputs

Microsoft.Online.Administration.DelegatedPermissionClassification

Notes

Feedback