DSCResources/MSFT_IntuneRoleDefinition/MSFT_IntuneRoleDefinition.schema.mof

[ClassVersion("1.0.0.0"), FriendlyName("IntuneRoleDefinition")]
class MSFT_IntuneRoleDefinition : OMI_BaseResource
{
    [Write, Description("The unique idenfier for an entity. Read-only.")] String Id;
    [Write, Description("Description of the Role definition.")] String Description;
    [Key, Description("Display Name of the Role definition.")] String DisplayName;
    [Write, Description("Type of Role. Set to True if it is built-in, or set to False if it is a custom role definition.")] Boolean IsBuiltIn;
    [Write, Description("List of allowed resource actions")] String allowedResourceActions[];
    [Write, Description("List of not allowed resource actions")] String notAllowedResourceActions[];
    [Write, Description("Id of the Scope Tags to assign")] String roleScopeTagIds[];
    [Write, Description("Present ensures the Role exists, absent ensures it is removed."), ValueMap{"Present","Absent"}, Values{"Present","Absent"}] string Ensure;
    [Write, Description("Credentials of the Intune Admin"), EmbeddedInstance("MSFT_Credential")] string Credential;
    [Write, Description("Id of the Azure Active Directory application to authenticate with.")] String ApplicationId;
    [Write, Description("Id of the Azure Active Directory tenant used for authentication.")] String TenantId;
    [Write, Description("Secret of the Azure Active Directory tenant used for authentication."), EmbeddedInstance("MSFT_Credential")] String ApplicationSecret;
    [Write, Description("Thumbprint of the Azure Active Directory application's authentication certificate to use for authentication.")] String CertificateThumbprint;
    [Write, Description("Managed ID being used for authentication.")] Boolean ManagedIdentity;
};