我有一个用于部署服务总线的 ARM 模板。该模板可以在这里找到: https://learn.microsoft.com/en-us/azure/service-bus-messaging/service-bus-resource-manager-overview
我正在尝试将特定用户组添加为贡献者,但不确定如何执行此操作。
谢谢
最佳答案
您需要阅读this文章。基本上这是您感兴趣的片段:
{
"type": "Microsoft.Authorization/roleAssignments",
"apiVersion": "2017-05-01",
"name": "[parameters('roleNameGuid')]", << generate a guid for this value
"properties": {
"roleDefinitionId": "[variables(parameters('builtInRoleType'))]", << role id
"principalId": "[parameters('principalId')]", << need to pass in group objectId
"scope": "[variables('scope')]" << your scope
}
}
贡献者角色定义 "Contributor": "[concat(subscription().Id, '/providers/Microsoft.Authorization/roleDefinitions/b24988ac-6180-42a0-ab88-20f7382dd24c')]",
关于azure - 在ARM模板中设置IAM规则,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/53302171/