| title | unifiedRoleManagementPolicyExpirationRule resource type |
|---|---|
| description | A type derived from the unifiedRoleManagementPolicyRule resource type that defines the maximum duration a role can be assigned to a principal (either through direct assignment or through activation of eligibility). |
| author | rkarim-ms |
| ms.localizationpriority | medium |
| ms.subservice | entra-id-governance |
| doc_type | resourcePageType |
| ms.date | 03/21/2024 |
Namespace: microsoft.graph
A type derived from the unifiedRoleManagementPolicyRule resource type that defines the maximum duration a role can be assigned to a principal (either through direct assignment or through activation of eligibility
None.
| Property | Type | Description |
|---|---|---|
| id | String | Identifier for the rule. Inherited from entity. |
| isExpirationRequired | Boolean | Indicates whether expiration is required or if it's a permanently active assignment or eligibility. |
| maximumDuration | Duration | The maximum duration allowed for eligibility or assignment that isn't permanent. Required when isExpirationRequired is true. |
| target | unifiedRoleManagementPolicyRuleTarget | Defines details of the scope that's targeted by the expiration rule. The details can include the principal type, the role assignment type, and actions affecting a role. Inherited from unifiedRoleManagementPolicyRule. Supports $filter (eq, ne). |
None.
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.unifiedRoleManagementPolicyExpirationRule",
"id": "String (identifier)",
"target": {
"@odata.type": "microsoft.graph.unifiedRoleManagementPolicyRuleTarget"
},
"isExpirationRequired": "Boolean",
"maximumDuration": "String (duration)"
}