Skip to content

Commit feb41bd

Browse files
Merge pull request #273034 from rolyon/rolyon-rbac-constrained-delegation-role-assignment-remove
[Azure RBAC] Remove role using PowerShell example
2 parents 50f1e64 + 98f18be commit feb41bd

File tree

1 file changed

+9
-1
lines changed

1 file changed

+9
-1
lines changed

articles/role-based-access-control/role-assignments-remove.yml

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ metadata:
66
author: rolyon
77
ms.author: rolyon
88
manager: amycolannino
9-
ms.date: 01/02/2024
9+
ms.date: 04/23/2024
1010
ms.service: role-based-access-control
1111
ms.topic: how-to
1212
ms.custom:
@@ -84,6 +84,14 @@ procedureSection:
8484
-Scope "/providers/Microsoft.Management/managementGroups/marketing-group"
8585
```
8686
87+
Removes the [User Access Administrator](built-in-roles.md#user-access-administrator) role with ID 18d7d88d-d35e-4fb5-a5c3-7773c20a72d9 from the principal with ID 33333333-3333-3333-3333-333333333333 at subscription scope with ID 00000000-0000-0000-0000-000000000000.
88+
89+
```azurepowershell
90+
PS C:\> Remove-AzRoleAssignment -ObjectId 33333333-3333-3333-3333-333333333333 `
91+
-RoleDefinitionId 18d7d88d-d35e-4fb5-a5c3-7773c20a72d9 `
92+
-Scope /subscriptions/00000000-0000-0000-0000-000000000000
93+
```
94+
8795
If you get the error message: "The provided information does not map to a role assignment", make sure that you also specify the `-Scope` or `-ResourceGroupName` parameters. For more information, see [Troubleshoot Azure RBAC](troubleshooting.md#symptom---role-assignments-with-identity-not-found).
8896
- title: |
8997
Azure CLI

0 commit comments

Comments
 (0)