Read Directory Roles

Reads the properties and relationships of directory role objects in Azure Active Directory.

The Read Directory Roles action card only reads directory roles that are activated in an Azure Active Directory tenant. Also, the card only reads default system roles. It doesn't read custom roles.

Output

Field Definition Type
ID Unique identifier for the directory role. String
Display Name Display name for the directory role. String
Description Description for the directory role. String
Role Template ID ID of the directoryRoleTemplate on which this role is based. The property must be specified when activating a directory role in a tenant with a POST operation. After the directory role has been activated, the property is read only. String

For example:

Copy
{
"@odata.id": "https://graph.microsoft.com/v2/28d029a7-1d11-4ce0-85f5-d9502f2cd5b1/directoryObjects/06265c7a-1373-4033-8d26-3a9a04226e15/Microsoft.DirectoryServices.DirectoryRole",
"id": "06265c7a-1373-4033-8d26-3a9a04226e15",
"deletedDateTime": null,
"description": "Can reset passwords for non-administrators and Helpdesk Administrators.",
"displayName": "Helpdesk Administrator",
"roleTemplateId": "729827e3-9c14-49f7-bb1b-9608f156bbb8"
}

Related topics

Azure Active Directory connector

Workflow elements

Guidance for Azure Active Directory connector

Azure Active Directory Management API overview