Merge pull request #115672 from shashishailaj/patch-91

PRMerger8 · web-flow · commit a618994e2731 · 2020-05-21T09:09:57.000-07:00
(Azure CXP) Add technical note.
diff --git a/articles/active-directory/users-groups-roles/roles-create-custom.md b/articles/active-directory/users-groups-roles/roles-create-custom.md
@@ -135,6 +135,9 @@ $roleAssignment = New-AzureADMSRoleAssignment -ResourceScope $resourceScope -Rol
    }
     ```
 
+  > [!Note]
+  > The "templateId": "GUID" is an optional parameter being sent in the body depending on requirement. If you have a requirement for creating multiple different custom role with common parameters , it is best to create a template and define a templateId . You can generate a templateId beforehand using the powershell cmdlet (New-Guid).Guid . 
+
 1. Create the role assignment.
 
     HTTP request to create a custom role definition.
@@ -155,6 +158,7 @@ $roleAssignment = New-AzureADMSRoleAssignment -ResourceScope $resourceScope -Rol
    }
     ```
 
+
 ## Assign a custom role scoped to a resource
 
 Like built-in roles, custom roles are assigned by default at the default organization-wide scope to grant access permissions over all app registrations in your organization. But unlike built-in roles, custom roles can also be assigned at the scope of a single Azure AD resource. This allows you to give the user the permission to update credentials and basic properties of a single app without having to create a second custom role.

Original file line number	Diff line number	Diff line change
`@@ -135,6 +135,9 @@ $roleAssignment = New-AzureADMSRoleAssignment -ResourceScope $resourceScope -Rol`
`135`	`135`	`}`
`136`	`136`	```
`137`	`137`
	`138`	`+ > [!Note]`
	`139`	`+ > The "templateId": "GUID" is an optional parameter being sent in the body depending on requirement. If you have a requirement for creating multiple different custom role with common parameters , it is best to create a template and define a templateId . You can generate a templateId beforehand using the powershell cmdlet (New-Guid).Guid .`
	`140`	`+`
`138`	`141`	`1. Create the role assignment.`
`139`	`142`
`140`	`143`	`HTTP request to create a custom role definition.`
`@@ -155,6 +158,7 @@ $roleAssignment = New-AzureADMSRoleAssignment -ResourceScope $resourceScope -Rol`
`155`	`158`	`}`
`156`	`159`	```
`157`	`160`
	`161`	`+`
`158`	`162`	`## Assign a custom role scoped to a resource`
`159`	`163`
`160`	`164`	`Like built-in roles, custom roles are assigned by default at the default organization-wide scope to grant access permissions over all app registrations in your organization. But unlike built-in roles, custom roles can also be assigned at the scope of a single Azure AD resource. This allows you to give the user the permission to update credentials and basic properties of a single app without having to create a second custom role.`