Update-AutomationRunAsAccountRoleAssignments

1.0.1

Use this script to restrict the permissions of your Azure Automation RunAs accounts. You can:
- Create a new custom role definition that excludes specified resources. If you use this script as-is, it will exclude Azure Key Vault; however,
you can exclude any resource type as required in your organization.
- Assign an existing custom role definition to your RunAs accounts.
- Add more subscriptions to the scope of your custom role definition.
- Change the role assignment of your RunAs account. For example, if your RunAs account has the original built-in "Contributor" role
assigned to it, you can reassign it to your custom role definition.
The script will update all automation accounts in all provided subscriptions.

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Script -Name Update-AutomationRunAsAccountRoleAssignments

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More