Remove role entry from a role–RBAC

​Remove role entry from a role–RBAC
For eg, to remove set-casmailbox role entry from mail recipient role, you can follow these steps:
scenario: user wants to remove set-casmailbox role entry  from mail recipient role associated to a rolegroup called airwatch which has org client access, recipient policies and mail recipient roles
1. step 1
New-ManagementRole -name “Airwatch-Mail-Recipient-No-CASMailbox” -Parent “Mail Recipients”
2. Step 2
Get-ManagementRoleEntry “Airwatch-Mail-Recipient-No-Casmailbox*” | ?{$ -like “set-casmai
lbox”} | remove-managementroleentry -confirm:$false
3. Step 3
Add the new management role to existing role group. you can use the console to do this

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: