azure-native.authorization.getPolicyDefinitionAtManagementGroup
Explore with Pulumi AI
This operation retrieves the policy definition in the given management group with the given name.
Uses Azure REST API version 2025-01-01.
Other available API versions: 2020-09-01, 2021-06-01, 2023-04-01, 2024-05-01, 2025-03-01. These can be accessed by generating a local SDK package using the CLI command pulumi package add azure-native authorization [ApiVersion]. See the version guide for details.
Using getPolicyDefinitionAtManagementGroup
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getPolicyDefinitionAtManagementGroup(args: GetPolicyDefinitionAtManagementGroupArgs, opts?: InvokeOptions): Promise<GetPolicyDefinitionAtManagementGroupResult>
function getPolicyDefinitionAtManagementGroupOutput(args: GetPolicyDefinitionAtManagementGroupOutputArgs, opts?: InvokeOptions): Output<GetPolicyDefinitionAtManagementGroupResult>def get_policy_definition_at_management_group(management_group_id: Optional[str] = None,
                                              policy_definition_name: Optional[str] = None,
                                              opts: Optional[InvokeOptions] = None) -> GetPolicyDefinitionAtManagementGroupResult
def get_policy_definition_at_management_group_output(management_group_id: Optional[pulumi.Input[str]] = None,
                                              policy_definition_name: Optional[pulumi.Input[str]] = None,
                                              opts: Optional[InvokeOptions] = None) -> Output[GetPolicyDefinitionAtManagementGroupResult]func LookupPolicyDefinitionAtManagementGroup(ctx *Context, args *LookupPolicyDefinitionAtManagementGroupArgs, opts ...InvokeOption) (*LookupPolicyDefinitionAtManagementGroupResult, error)
func LookupPolicyDefinitionAtManagementGroupOutput(ctx *Context, args *LookupPolicyDefinitionAtManagementGroupOutputArgs, opts ...InvokeOption) LookupPolicyDefinitionAtManagementGroupResultOutput> Note: This function is named LookupPolicyDefinitionAtManagementGroup in the Go SDK.
public static class GetPolicyDefinitionAtManagementGroup 
{
    public static Task<GetPolicyDefinitionAtManagementGroupResult> InvokeAsync(GetPolicyDefinitionAtManagementGroupArgs args, InvokeOptions? opts = null)
    public static Output<GetPolicyDefinitionAtManagementGroupResult> Invoke(GetPolicyDefinitionAtManagementGroupInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetPolicyDefinitionAtManagementGroupResult> getPolicyDefinitionAtManagementGroup(GetPolicyDefinitionAtManagementGroupArgs args, InvokeOptions options)
public static Output<GetPolicyDefinitionAtManagementGroupResult> getPolicyDefinitionAtManagementGroup(GetPolicyDefinitionAtManagementGroupArgs args, InvokeOptions options)
fn::invoke:
  function: azure-native:authorization:getPolicyDefinitionAtManagementGroup
  arguments:
    # arguments dictionaryThe following arguments are supported:
- ManagementGroup stringId 
- The ID of the management group.
- PolicyDefinition stringName 
- The name of the policy definition to get.
- ManagementGroup stringId 
- The ID of the management group.
- PolicyDefinition stringName 
- The name of the policy definition to get.
- managementGroup StringId 
- The ID of the management group.
- policyDefinition StringName 
- The name of the policy definition to get.
- managementGroup stringId 
- The ID of the management group.
- policyDefinition stringName 
- The name of the policy definition to get.
- management_group_ strid 
- The ID of the management group.
- policy_definition_ strname 
- The name of the policy definition to get.
- managementGroup StringId 
- The ID of the management group.
- policyDefinition StringName 
- The name of the policy definition to get.
getPolicyDefinitionAtManagementGroup Result
The following output properties are available:
- AzureApi stringVersion 
- The Azure API version of the resource.
- Id string
- The ID of the policy definition.
- Name string
- The name of the policy definition.
- SystemData Pulumi.Azure Native. Authorization. Outputs. System Data Response 
- The system metadata relating to this resource.
- Type string
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- Description string
- The policy definition description.
- DisplayName string
- The display name of the policy definition.
- Metadata object
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- Mode string
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- Parameters
Dictionary<string, Pulumi.Azure Native. Authorization. Outputs. Parameter Definitions Value Response> 
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- PolicyRule object
- The policy rule.
- PolicyType string
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- Version string
- The policy definition version in #.#.# format.
- Versions List<string>
- A list of available versions for this policy definition.
- AzureApi stringVersion 
- The Azure API version of the resource.
- Id string
- The ID of the policy definition.
- Name string
- The name of the policy definition.
- SystemData SystemData Response 
- The system metadata relating to this resource.
- Type string
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- Description string
- The policy definition description.
- DisplayName string
- The display name of the policy definition.
- Metadata interface{}
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- Mode string
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- Parameters
map[string]ParameterDefinitions Value Response 
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- PolicyRule interface{}
- The policy rule.
- PolicyType string
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- Version string
- The policy definition version in #.#.# format.
- Versions []string
- A list of available versions for this policy definition.
- azureApi StringVersion 
- The Azure API version of the resource.
- id String
- The ID of the policy definition.
- name String
- The name of the policy definition.
- systemData SystemData Response 
- The system metadata relating to this resource.
- type String
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- description String
- The policy definition description.
- displayName String
- The display name of the policy definition.
- metadata Object
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- mode String
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- parameters
Map<String,ParameterDefinitions Value Response> 
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- policyRule Object
- The policy rule.
- policyType String
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- version String
- The policy definition version in #.#.# format.
- versions List<String>
- A list of available versions for this policy definition.
- azureApi stringVersion 
- The Azure API version of the resource.
- id string
- The ID of the policy definition.
- name string
- The name of the policy definition.
- systemData SystemData Response 
- The system metadata relating to this resource.
- type string
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- description string
- The policy definition description.
- displayName string
- The display name of the policy definition.
- metadata any
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- mode string
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- parameters
{[key: string]: ParameterDefinitions Value Response} 
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- policyRule any
- The policy rule.
- policyType string
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- version string
- The policy definition version in #.#.# format.
- versions string[]
- A list of available versions for this policy definition.
- azure_api_ strversion 
- The Azure API version of the resource.
- id str
- The ID of the policy definition.
- name str
- The name of the policy definition.
- system_data SystemData Response 
- The system metadata relating to this resource.
- type str
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- description str
- The policy definition description.
- display_name str
- The display name of the policy definition.
- metadata Any
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- mode str
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- parameters
Mapping[str, ParameterDefinitions Value Response] 
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- policy_rule Any
- The policy rule.
- policy_type str
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- version str
- The policy definition version in #.#.# format.
- versions Sequence[str]
- A list of available versions for this policy definition.
- azureApi StringVersion 
- The Azure API version of the resource.
- id String
- The ID of the policy definition.
- name String
- The name of the policy definition.
- systemData Property Map
- The system metadata relating to this resource.
- type String
- The type of the resource (Microsoft.Authorization/policyDefinitions).
- description String
- The policy definition description.
- displayName String
- The display name of the policy definition.
- metadata Any
- The policy definition metadata. Metadata is an open ended object and is typically a collection of key value pairs.
- mode String
- The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
- parameters Map<Property Map>
- The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
- policyRule Any
- The policy rule.
- policyType String
- The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static.
- version String
- The policy definition version in #.#.# format.
- versions List<String>
- A list of available versions for this policy definition.
Supporting Types
ParameterDefinitionsValueResponse   
- AllowedValues List<object>
- The allowed values for the parameter.
- DefaultValue object
- The default value for the parameter if no value is provided.
- Metadata
Pulumi.Azure Native. Authorization. Inputs. Parameter Definitions Value Response Metadata 
- General metadata for the parameter.
- Schema object
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- Type string
- The data type of the parameter.
- AllowedValues []interface{}
- The allowed values for the parameter.
- DefaultValue interface{}
- The default value for the parameter if no value is provided.
- Metadata
ParameterDefinitions Value Response Metadata 
- General metadata for the parameter.
- Schema interface{}
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- Type string
- The data type of the parameter.
- allowedValues List<Object>
- The allowed values for the parameter.
- defaultValue Object
- The default value for the parameter if no value is provided.
- metadata
ParameterDefinitions Value Response Metadata 
- General metadata for the parameter.
- schema Object
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- type String
- The data type of the parameter.
- allowedValues any[]
- The allowed values for the parameter.
- defaultValue any
- The default value for the parameter if no value is provided.
- metadata
ParameterDefinitions Value Response Metadata 
- General metadata for the parameter.
- schema any
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- type string
- The data type of the parameter.
- allowed_values Sequence[Any]
- The allowed values for the parameter.
- default_value Any
- The default value for the parameter if no value is provided.
- metadata
ParameterDefinitions Value Response Metadata 
- General metadata for the parameter.
- schema Any
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- type str
- The data type of the parameter.
- allowedValues List<Any>
- The allowed values for the parameter.
- defaultValue Any
- The default value for the parameter if no value is provided.
- metadata Property Map
- General metadata for the parameter.
- schema Any
- Provides validation of parameter inputs during assignment using a self-defined JSON schema. This property is only supported for object-type parameters and follows the Json.NET Schema 2019-09 implementation. You can learn more about using schemas at https://json-schema.org/ and test draft schemas at https://www.jsonschemavalidator.net/.
- type String
- The data type of the parameter.
ParameterDefinitionsValueResponseMetadata    
- AssignPermissions bool
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- Description string
- The description of the parameter.
- DisplayName string
- The display name for the parameter.
- StrongType string
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
- AssignPermissions bool
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- Description string
- The description of the parameter.
- DisplayName string
- The display name for the parameter.
- StrongType string
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
- assignPermissions Boolean
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- description String
- The description of the parameter.
- displayName String
- The display name for the parameter.
- strongType String
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
- assignPermissions boolean
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- description string
- The description of the parameter.
- displayName string
- The display name for the parameter.
- strongType string
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
- assign_permissions bool
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- description str
- The description of the parameter.
- display_name str
- The display name for the parameter.
- strong_type str
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
- assignPermissions Boolean
- Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
- description String
- The description of the parameter.
- displayName String
- The display name for the parameter.
- strongType String
- Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
SystemDataResponse  
- CreatedAt string
- The timestamp of resource creation (UTC).
- CreatedBy string
- The identity that created the resource.
- CreatedBy stringType 
- The type of identity that created the resource.
- LastModified stringAt 
- The timestamp of resource last modification (UTC)
- LastModified stringBy 
- The identity that last modified the resource.
- LastModified stringBy Type 
- The type of identity that last modified the resource.
- CreatedAt string
- The timestamp of resource creation (UTC).
- CreatedBy string
- The identity that created the resource.
- CreatedBy stringType 
- The type of identity that created the resource.
- LastModified stringAt 
- The timestamp of resource last modification (UTC)
- LastModified stringBy 
- The identity that last modified the resource.
- LastModified stringBy Type 
- The type of identity that last modified the resource.
- createdAt String
- The timestamp of resource creation (UTC).
- createdBy String
- The identity that created the resource.
- createdBy StringType 
- The type of identity that created the resource.
- lastModified StringAt 
- The timestamp of resource last modification (UTC)
- lastModified StringBy 
- The identity that last modified the resource.
- lastModified StringBy Type 
- The type of identity that last modified the resource.
- createdAt string
- The timestamp of resource creation (UTC).
- createdBy string
- The identity that created the resource.
- createdBy stringType 
- The type of identity that created the resource.
- lastModified stringAt 
- The timestamp of resource last modification (UTC)
- lastModified stringBy 
- The identity that last modified the resource.
- lastModified stringBy Type 
- The type of identity that last modified the resource.
- created_at str
- The timestamp of resource creation (UTC).
- created_by str
- The identity that created the resource.
- created_by_ strtype 
- The type of identity that created the resource.
- last_modified_ strat 
- The timestamp of resource last modification (UTC)
- last_modified_ strby 
- The identity that last modified the resource.
- last_modified_ strby_ type 
- The type of identity that last modified the resource.
- createdAt String
- The timestamp of resource creation (UTC).
- createdBy String
- The identity that created the resource.
- createdBy StringType 
- The type of identity that created the resource.
- lastModified StringAt 
- The timestamp of resource last modification (UTC)
- lastModified StringBy 
- The identity that last modified the resource.
- lastModified StringBy Type 
- The type of identity that last modified the resource.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0