Skip to content
/ AzureIAMRoles Public

A repo that contains role definition files for various Azure identity and access management (IAM) role types.

3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

thenikk/AzureIAMRoles

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
Entra Azure AD roles
Entra Azure AD roles
 
 
Intune roles
Intune roles
 
 
azure-pipelines.yml
azure-pipelines.yml
 
 
readme.md
readme.md
 
 

Repository files navigation

Azure IAM role definition

This repo contains one .json file for each built-in role within Azure IAM. Currently covering:

  • Entra Azure AD roles
  • Intune roles
  • Cloud PC roles (found in Intune)

The files in the folders contain corresponding infos of the role:

  • Description
  • Display name
  • Role permissions, which are the effective paths of allowedResourceActions.

Key features

  • View effective permissions of built-in AAD roles
  • Track changes and the history of the roles
  • Compare roles by their rolePermissions

Schedule

This repository is automatically filled by an Azure DevOps pipeline. A schedule performs an upload (if changes were made) on a daily basis.

Graph API

All the data is grabbed by Graph API calls to a Microsoft tenant.

Unsupported IAM role types

Not all role types are covered, currently missing:

  • Exchange
  • Entitlement Management
  • Enterprise Apps

Creators

@NiklasTinner @jannik_reinhard

About

A repo that contains role definition files for various Azure identity and access management (IAM) role types.

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published