Azure PowerShell Reference: Identity
This section provides comprehensive documentation for Azure PowerShell cmdlets related to identity management. Manage users, groups, roles, and permissions within your Azure environment.
Get-AzADUser
Retrieves information about Azure Active Directory users.
Syntax
Get-AzADUser -ObjectId [-Filter ] [-All ] [-Count ] [-IncludeNullScope ] [-InformationAction ] [-InformationVariable ] [-DefaultProfile ] [] Parameters
| Parameter | Type | Description |
|---|---|---|
| -ObjectId | String | The unique identifier (GUID) of the user. |
| -Filter | String | A string to filter the results of the cmdlet. Supports OData syntax. |
| -All | Switch | Retrieves all users that match the filter. |
Example
Get-AzADUser -Filter "userType eq 'Member'"Get-AzADGroup
Retrieves information about Azure Active Directory groups.
Syntax
Get-AzADGroup -ObjectId [-Filter ] [-All ] [-Count ] [-InformationAction ] [-InformationVariable ] [-DefaultProfile ] [] Parameters
| Parameter | Type | Description |
|---|---|---|
| -ObjectId | String | The unique identifier (GUID) of the group. |
| -Filter | String | A string to filter the results of the cmdlet. Supports OData syntax. |
| -All | Switch | Retrieves all groups that match the filter. |
Example
Get-AzADGroup -Filter "DisplayName eq 'Sales Team'"Get-AzRoleAssignment
Gets role assignments for Azure resources.
Syntax
Get-AzRoleAssignment [-ObjectId ] [-ApplicationId ] [-Assignee ] [-CanDelegate ] [-ObjectType ] [-RoleDefinitionName ] [-Scope ] [-SignInName ] [-ResourceType ] [-ResourceGroup ] [-ResourceName ] [-ExpandPrincipal ] [-Filter ] [-ApiVersion ] [-DefaultProfile ] [] Parameters
| Parameter | Type | Description |
|---|---|---|
| -Assignee | String | The principal ID (user, group, or service principal) to which the role is assigned. |
| -Scope | String | The scope of the role assignment. |
| -RoleDefinitionName | String | The name of the role definition. |
Example
Get-AzRoleAssignment -RoleDefinitionName "Reader" -Scope "/subscriptions/YOUR_SUBSCRIPTION_ID/resourceGroups/MyResourceGroup"Get-AzRoleDefinition
Gets Azure role definitions.
Syntax
Get-AzRoleDefinition [-Name ] [-Id ] [-FallbackToDefault] [-ResourceGroupName ] [-ResourceName ] [-Scope ] [-Filter ] [-ApiVersion ] [-DefaultProfile ] [] Parameters
| Parameter | Type | Description |
|---|---|---|
| -Name | String | The name of the role definition to retrieve. |
| -Scope | String | The scope of the role definition. |
Example
Get-AzRoleDefinition -Name "Contributor" -Scope "/subscriptions/YOUR_SUBSCRIPTION_ID"