| title | unifiedRbacApplication resource type |
|---|---|
| description | Represents a role management container for unified role definitions and role assignments for Microsoft 365 RBAC providers. |
| ms.localizationpriority | medium |
| author | cubika |
| ms.subservice | entra-directory-management |
| doc_type | resourcePageType |
| ms.date | 07/22/2024 |
Namespace: microsoft.graph
[!INCLUDE beta-disclaimer]
Represents a role management container for unified role definitions and role assignments for role-based access control (RBAC) providers in Microsoft 365. This is a shared entity meant to replace rbacApplication. Currently only Exchange RBAC applications are supported.
| Method | Return Type | Description |
|---|---|---|
| Create role assignment | unifiedRoleAssignment | Create a new unifiedRoleAssignment object. |
| List role assignment | unifiedRoleAssignment collection | Get a list of unifiedRoleAssignment objects for an RBAC provider. You can only query specific instances by filtering on roleDefinitionId, principalId or appScopeId. |
| List transitive role assignments | unifiedRoleAssignment collection | Get the list of direct and transitive unifiedRoleAssignment objects for a specific principal. This API requires the principalId in a request. |
| Create role definition | unifiedRoleDefinition | Create a new unifiedRoleDefinition object for an RBAC provider. |
| List role definitions | unifiedRoleDefinition collection | Get a list of unifiedRoleDefinition objects for an RBAC provider. |
| List | customAppScope collection | Get a list of customAppScope objects for an RBAC provider. |
None.
| Relationship | Type | Description |
|---|---|---|
| customAppScopes | customAppScope collection | Workload-specific scope object that represents the resources for which the principal has been granted access. |
| resourceNamespaces | unifiedRbacResourceNamespace collection | Resource that represents a collection of related actions. |
| roleAssignments | unifiedRoleAssignment collection | Resource to grant access to users or groups. |
| roleDefinitions | unifiedRoleDefinition collection | The roles allowed by RBAC providers and the permissions assigned to the roles. |
| transitiveRoleAssignments | unifiedRoleAssignment collection | Resource to grant access to users or groups that are transitive. |
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.unifiedRbacApplication"
}