ralfk/zettelkasten
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'main' of http://portal.ralfkoop.de/ralfk/zettelkasten

Browse Source
This commit is contained in:
Ralf Koop 2023-11-06 21:57:23 +01:00
commit a952006272
1 changed files with 44 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

44
Eingang/Activate-roles.md Normal file
View File

@ -0,0 +1,44 @@
```
Einzelne Rolle, mehrere Rollen:
function pimga
{
Enable-DCAzureADPIMRole -RolesToActivate "Global Administrator" -UseMaximumTimeAllowed -Reason "Ich werde die Rolle benutzen, daher aktiviere ich sie am $(get-date)"
}
function pimall
{
Enable-DCAzureADPIMRole -RolesToActivate "Intune Administrator","Exchange Administrator","Insights Administrator","Compliance Administrator","Power Platform Administrator","Global Administrator","Power BI Administrator","SharePoint Administrator","Dynamics 365 Administrator","Windows 365 Administrator","Security Administrator","Billing Administrator" -UseMaximumTimeAllowed -Reason "Ich werde die Rollen benutzen, daher aktiviere ich sie am $(get-date)" -ErrorAction SilentlyContinue
}
[Gestern 13:40] Schachtschneider, Thomas
Azure:
function azrole
{
$managementgroupID = "bauer-caf" # Tenant Root Group
$guid = (New-Guid)
$startTime = Get-Date -Format o
$userObjectID = "c0ba4f65-286a-4481-97ff-6a1a09fcaeec"
$RoleDefinitionID = "8e3af657-a8ff-443c-a75c-2fe8c4bcb635" # Owner
$scope = "/providers/Microsoft.Management/managementGroups/$managementgroupID"
New-AzRoleAssignmentScheduleRequest -Name $guid -Scope $scope -ExpirationDuration PT8H -ExpirationType AfterDuration -PrincipalId $userObjectID -RequestType SelfActivate -RoleDefinitionId /providersproviders/Microsoft.Management/managementGroups/$managementgroupID/providers/Microsoft.Authorization/roleDefinitions/$roledefinitionId -ScheduleInfoStartDateTime $startTime -Justification get-date
}
```