Hi all,
I want to create a set of users within my Azure subscription. I will use these users later as accounts with specific rights on automatic generated resource groups via DSC. I managed to create the users directly via PowerShell into the AD that comes with the subscription. I want this script to be able to run within any subscription. I want the script ONLY to manage the specific set of users and roles mentioned in my script any other users must be kept. Most importantly; the owner account of the subscription must remain unchanged.
In most Azure resources it is possible to go to the 'Automation' blade and copy the json that can be used for DSC. With the AD that comes with the subscription this does not seem possible, not for the AD as a whole, nor for the parts of the users or groups.
I was wondering what would happen if a create a DSC script for that specific AD and only supply the set of users and roles that I need to exist. Will it delete all other users? I'm a bit scared to try it out with my subscription :S
Thanks in advance,
Martijn