Hello,
With the Cmdlet below, I created a custom scope for a custom RBAC role.
New-ManagementScope -Name "MyCustomScope" -RecipientRestrictionFilter {Myfiltre}Here my filtre = "specifics users"
I created a custom scope so that users can write and read on that (and only) custom scope but I don't want them to be able to read outside this scope.
In other words, how to limit the read right on a specific scope?
When I created the role group limited to MyCustomscope with specific users, they still have the possibility to read outside the scope. The Get-User cmdlet still work outside the user's limited scope.
New-RoleGroup -Name "MyCustomRole" -Roles -Members USERGRPOUP -CustomRecipientWriteScope "MyCustomScope"
How can i limite this? is there any "CustomRecipientReadScope" parameter ?
Thank you.
ThimAnswers