Adding Excluded Objects

In this article

    You can exclude objects from the scope of a restore operator role with the specified ID. Restore operators will not be able to explore and restore data from backups created by Veeam Backup for Microsoft 365 for these objects.

    Request

    POST https://<hostname>:4443/v6/RbacRoles/{roleId}/excludedItems

    Request Headers

    The request header must contain an authorization token of the current session.

    Request Parameters

    The following parameter must be specified in the URL of the request:

    Parameter

    Type

    Description

    roleId

    string

    Specifies the identification number of the restore operator role. For more information on how to get this parameter, see Getting Restore Operator Roles.

    Request Body

    The request body must contain the following properties:

    Property

    Type

    Description

    type

    string

    Specifies the type of an object that you want to exclude from the restore operator role scope. The following types are available:

    • User
    • Site
    • Group

    user

    User

    Specifies one or more users that you want to exclude from the restore operator role scope.

    site

    Site

    Specifies one or more sites that you want to exclude from the restore operator role scope.

    group

    Group

    Specifies one or more groups that you want to exclude from the restore operator role scope.

    Request Example

    Request:

    POST https://abc.tech.local:4443/v6/RbacRoles/97edf1c9-74a1-480d-8b60-29b9ef331bd9/excludedItems

     

    Request Header:

    Authorization: Bearer <Access-Token>

     

    Request Body:

    [

      {

       "type": "User",

       "user": {

         "id": "88b14a1f-c0bd-435a-9d18-7c703ff1fb1400000000-0000-0000-0000-000000000000",

         "displayName": "Administrator",

         "name": "admin@abc.onmicrosoft.com",

         "type": "User"

         }

        },

      {

         "type":"Group",

         "group": {

           "id": "acbf8c6c-dd8b-4a4c-8256-dd9a63077fa900000000-0000-0000-0000-000000000000",

           "displayName": "Excluded Objects",

           "name": "excluded@abc.onmicrosoft.com",

           "type": "Security"

         }

      }

    ]

    Response

    The server returns the following response to the client.

    Response Codes

    A successfully completed operation returns a response code 200 OK.

    Response Headers

    The response to this request contains the following headers. The response may also include additional standard HTTPS headers.

    Header

    Description

    Content-length

    The length of the response body.

    Content-type

    The media type and syntax of the response body message: application/json; charset=utf-8

    Response Body

    None.