RBAC questions


  • There is so much stuff about RBAC out there that it is difficult to find exactly what I am looking for.  Most of what I find is a repeat of what is out there.  I am trying to find two things specifically:

    1.  what management role groups have a specific role?  wouldn't think that would be so hard to find, but what I find seems to go into a big circle around all of that instead of getting to the point.

    2.  is there something that will tell me what mangement role a specific cmdlet belongs to?  for instance, if you do get-managementrole "name of role" | get-managementroleentry you end up with three columns, the far left column being a list of cmdlets.  but what if I want a specific cmdlet, and want to know what role it is in so I can determine what role to assign to a group?  for instance, we have a group that needs to be able to do something but can't run a particular cmdlet due to role restrictions.  i'd like to be able to find what role can perform that particular task.

    thanks for any help on this.

    Monday, June 11, 2012 10:54 PM


All replies