Pim
A PIM (Privileged Identity Management) Role Eligibility Schedule. Role Eligibility Schedules are used to limit standing administrator access to privileged roles in Azure PIM. See here for details. A Role Eligibility Schedule is uniquely defined by scope, principal, and role. At present, only one instance of this resource can exist for a given scope|principal|role tuple. Note that this resource cannot be updated. Each change leads to a recreation. Internally, this resource uses the Role Eligibility Schedule Requests API to create and delete the schedules.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:authorization:PimRoleEligibilitySchedule 64caffb6-55c0-4deb-a585-68e948ea1ad6 /{scope}/providers/Microsoft.Authorization/roleEligibilityScheduleRequests/{roleEligibilityScheduleRequestName}Constructors
Properties
Version of the condition. Currently accepted value is '2.0'
Justification for the role eligibility
The principal ID.
The role definition ID.
Schedule info of the role eligibility schedule
The scope of the role eligibility schedule request to create. The scope can be any REST resource instance. For example, use '/subscriptions/{subscription-id}/' for a subscription, '/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}' for a resource group, and '/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}/providers/{resource-provider}/{resource-type}/{resource-name}' for a resource.
The resultant role eligibility schedule id or the role eligibility schedule id being updated
The role eligibility schedule instance id being updated
Ticket Info of the role eligibility