DSCResources/MSFT_AADRoleManagementPolicyRule/settings.json

{
  "resourceName": "AADRoleManagementPolicyRule",
  "description": "This resource configures an Azure AD Role Management Policy Rule.",
  "permissions": {
    "graph": {
      "delegated": {
        "read": [
          {
            "name": "RoleManagementPolicy.Read.Directory"
          },
          {
            "name": "RoleManagement.Read.Directory"
          },
          {
            "name": "RoleManagement.Read.All"
          }
        ],
        "update": [
          {
            "name": "RoleManagementPolicy.ReadWrite.Directory"
          },
          {
            "name": "RoleManagement.ReadWrite.Directory"
          }
        ]
      },
      "application": {
        "read": [
          {
            "name": "RoleManagementPolicy.Read.Directory"
          },
          {
            "name": "RoleManagement.Read.Directory"
          },
          {
            "name": "RoleManagement.Read.All"
          }
        ],
        "update": [
          {
            "name": "RoleManagementPolicy.ReadWrite.Directory"
          },
          {
            "name": "RoleManagement.ReadWrite.Directory"
          }
        ]
      }
    }
  },
  "requiredModules": [
    "Microsoft.Graph.Authentication",
    "Microsoft.Graph.Beta.Identity.Governance",
    "Microsoft.Graph.Beta.Identity.SignIns"
  ]
}