Reputation: 454
Retrieve App role assignments using Azure CLI
I'd like to retrieve a list of users from an Azure AD App role by means of the Azure CLI.
I am able to fetch some of my application's metadata by issuing
az ad app list --app-id <app-id>. The resulting JSON does include the appRole for which I want to fetch all assigned users.
From the az ad app docs I only understand that App roles can be used in conjunction with az ad app create or az ad app update, but this is not what I am looking for.
I also tried az ad group member list --group <group-id> but this command apparently only applies to AAD groups, not to App roles.
How can I simply retrieve a list of users assigned to a certain App role?
Upvotes: 2
Views: 2735
Answers (1)
Reputation: 1063
Unfortunately, we don’t have any CLI command to get the assignment list for an app role. Because the app role is something which belongs to tenant, and we don’t have tenant parameter for the command az role assignment list. Below is the official doc for your information.
We have only one way to fetch the assignment role list is through portal.
Upvotes: 2
Related Questions
- Where are the az role assignments listed
- AzureAD Powershell list all available roles rather than assigned roles
- Fetch Azure role assignments to AAD groups
- Using Azure AD and Getting App Role in C# Windows Application
- Getting the Azure AD App role name from a Group AppRole Assignment Using Azure Powershell
- Get assigned roles in Azure Web App with PHP
- Get all AppRole assignments in Azure Active Directory
- Azure AD Graph API - App Role Assignments List
- Retrieve application permissions of a service principal using the AzureAD module
- Get Azure Active Directory application users and roles