Remove-EntraDirectoryRoleDefinition
Delete a Microsoft Entra ID Directory roleDefinition object.
Syntax
Default (Default)
Remove-EntraDirectoryRoleDefinition
-UnifiedRoleDefinitionId <String>
[<CommonParameters>]
Description
Delete a Microsoft Entra ID Directory roleDefinition object by ID.
You can't delete built-in roles. This feature requires a Microsoft Entra ID P1 or P2 license.
In delegated scenarios, the signed-in user must have either a supported Microsoft Entra role or a custom role with the necessary permissions. The minimum roles required for this operation are:
- Privileged Role Administrator
Examples
Example 1: Remove a specified role definition
Connect-Entra -Scopes 'RoleManagement.ReadWrite.Directory'
$role = Get-EntraDirectoryRoleDefinition -Filter "DisplayName eq 'Contoso Custom Role Definition'"
Remove-EntraDirectoryRoleDefinition -UnifiedRoleDefinitionId $role.Id
This example demonstrates how to remove the specified role definition from Microsoft Entra ID.
-UnifiedRoleDefinitionIdparameter specifies the roleDefinition object ID.
Parameters
-UnifiedRoleDefinitionId
The unique identifier of an object in Microsoft Entra ID.
Parameter properties
| Type: | System.String |
| Default value: | None |
| Supports wildcards: | False |
| DontShow: | False |
| Aliases: | Id |
Parameter sets
(All)
| Position: | 0 |
| Mandatory: | True |
| Value from pipeline: | True |
| Value from pipeline by property name: | True |
| Value from remaining arguments: | False |
CommonParameters
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Inputs
System.String
Outputs
System.Object
Notes
Remove-EntraRoleDefinition is an alias for Remove-EntraDirectoryRoleDefintion.