DenySettings Constructors
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Overloads
| DenySettings() |
Initializes a new instance of the DenySettings class. |
| DenySettings(String, IList<String>, IList<String>, Nullable<Boolean>) |
Initializes a new instance of the DenySettings class. |
DenySettings()
Initializes a new instance of the DenySettings class.
public DenySettings ();Public Sub New ()Applies to
DenySettings(String, IList<String>, IList<String>, Nullable<Boolean>)
Initializes a new instance of the DenySettings class.
public DenySettings (string mode, System.Collections.Generic.IList<string> excludedPrincipals = default, System.Collections.Generic.IList<string> excludedActions = default, bool? applyToChildScopes = default);new Microsoft.Azure.Management.Resources.Models.DenySettings : string * System.Collections.Generic.IList<string> * System.Collections.Generic.IList<string> * Nullable<bool> -> Microsoft.Azure.Management.Resources.Models.DenySettingsPublic Sub New (mode As String, Optional excludedPrincipals As IList(Of String) = Nothing, Optional excludedActions As IList(Of String) = Nothing, Optional applyToChildScopes As Nullable(Of Boolean) = Nothing)Parameters
- mode
- String
denySettings Mode that defines denied actions. Possible values include: 'denyDelete', 'denyWriteAndDelete', 'none'
List of AAD principal IDs excluded from the lock. Up to 5 principals are permitted.
List of role-based management operations that are excluded from the denySettings. Up to 200 actions are permitted. If the denySetting mode is set to 'denyWriteAndDelete', then the following actions are automatically appended to 'excludedActions': '*/read' and 'Microsoft.Authorization/locks/delete'. If the denySetting mode is set to 'denyDelete', then the following actions are automatically appended to 'excludedActions': 'Microsoft.Authorization/locks/delete'. Duplicate actions will be removed.
DenySettings will be applied to child resource scopes of every managed resource with a deny assignment.