Docs update tracker

Service	Microsoft Docs article	Related commit history on GitHub	Change details
v1.0	Accesspackageassignmentpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-get.md	Content-type: application/json } ``` +### Example 3: Retrieve the custom extension stage settings for a policy + +#### Request + +The following is an example of a request to retrieve the collection of custom extension stage settings that are defined for a policy and their associated access package custom workflow extension. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentpolicy_expand_customextensionstagesettings" +}--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197?$expand=customExtensionStageSettings($expand=customExtension) +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++++ +#### Response + +The following is an example of the response. + +> Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} --> +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "id": "4540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with custom access package workflow extension", + "description": "Run specified custom access package workflow extension at different stages.", + "canExtend": true, + "durationInDays": 0, + "expirationDateTime": null, + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "accessReviewSettings": null, + "requestorSettings": { + "scopeType": "AllExistingDirectorySubjects", + "acceptRequests": true, + "allowedRequestors": [] + }, + "requestApprovalSettings": { + "isApprovalRequired": false, + "isApprovalRequiredForExtension": false, + "isRequestorJustificationRequired": false, + "approvalMode": "NoApproval", + "approvalStages": [] + }, + "customExtensionStageSettings": [ + { + "id": "5a38d27a-b702-48d9-ac72-dcf158ba1b0d", + "stage": "assignmentRequestCreated", + "customExtension": { + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8", + "displayName": "test_action_1", + "description": "Test logic app", + "createdDateTime": "2022-01-11T05:19:16.97Z", + "lastModifiedDateTime": "2022-01-11T05:19:16.97Z", + "endpointConfiguration": { + "@odata.type": "#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId": "38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName": "resourcegroup", + "logicAppWorkflowName": "customextension_test", + "url": "https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration": { + "@odata.type": "#microsoft.graph.azureAdPopTokenAuthentication" + } + } + } + ] +} +``` + <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 2019-02-04 14:57:30 UTC --> <!-- {
v1.0	Accesspackageassignmentpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-update.md	Content-Type: application/json "accessReviewSettings": null } ``` +### Example 3: Remove the customExtensionStageSettings from a policy + +To remove the collection of customExtensionStageSettings and their associated custom workflow extension objects from a policy, assign an empty collection to the customExtensionStageSettings object. + +#### Request ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentpolicy_delete_customExtensionStageSettings" +} +--> + +```http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197 +Content-Type: application/json + +{ + "id": "5540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with access package custom workflow extension", + "description": "Run specified access package custom workflow extension at different stages.", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [] + }, + "accessReviewSettings": null, + "customExtensionHandlers": [] +} +``` + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++++ +#### Response +> Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "id": "4540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with access package custom workflow extension", + "description": "Run specified access package custom workflow extension at different stages.", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [] + }, + "accessReviewSettings": null +} +``` <!-- {
v1.0	Accesspackageassignmentrequest Resume	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequest-resume.md	+ + Title: "accessPackageAssignmentRequest: resume" +description: "Resume accessPackageAssignmentRequest objects." +ms.localizationpriority: medium +++ +# accessPackageAssignmentRequest: resume +Namespace: microsoft.graph ++ +In [Azure AD entitlement management](../resources/entitlementmanagement-overview.md), when an access package policy has been enabled to call out a custom extension and the request processing is waiting for the callback from the customer, the customer can initiate a resume action. It is performed on an [accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) object whose requestStatus is in a `WaitingForCallback` state. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\| Delegated (work or school account) \| EntitlementManagement.ReadWrite.All \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +POST /identityGovernance/entitlementManagement/accessPackageAssignmentRequests/{accessPackageAssignmentRequestId}/resume +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body +In the request body, supply a JSON representation of the parameters. + +The following table shows the parameters that can be used with this action. + +\|Parameter\|Type\|Description\| +\|:\|:\|:\| +\|source\|String\|Source from where customer is trying to resume the request, which can be stored in service and will be helpful for auditing.\| +\|type\|String\|Indicate at which stage the custom callout extension was executed. The possible values are: `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestApproved`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestGranted`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestRemoved`\| +\|data\|[accessPackageAssignmentRequestCallbackData](../resources/accesspackageassignmentrequestcallbackdata.md)\| Contains information about the instance of the callout that was made to the customer endpoint. \| +++ +## Response + +If successful, this action returns a `204 No Content` response code. + +## Examples + +### Example 1: Resume an access package assignment request + +#### Request +The following is an example of a call to resume an access package assignment request that's waiting for a callback. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "accesspackageassignmentrequestthis.resume" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/0e60f18c-b2a0-4887-9da8-da2e30a39d99/resume +Content-Type: application/json + +{ + "source": "Contoso.SodCheckProcess", + "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated", + "data": { + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData", + "stage": "assignmentRequestCreated", + "customExtensionStageInstanceId": "957d0c50-466b-4840-bb5b-c92cea7141ff", + "customExtensionStageInstanceDetail": "This user is all verified" + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) ++++ +#### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` + +### Example 2: Resume and deny an access package assignment request + +#### Request +The following is an example to resume the processing of an access package assignment request by denying the request that's waiting for a callback. A request cannot be denied at the `assignmentRequestCreated` stage of the callout. +<!-- { + "blockType": "request" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/9e60f18c-b2a0-4887-9da8-da2e30a39d99/resume +Content-Type: application/json + +{ + "source": "Contoso.SodCheckProcess", + "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated", + "data": { + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData", + "stage": "AssignmentRequestCreated", + "customExtensionStageInstanceId": "857d0c50-466b-4840-bb5b-c92cea7141ff", + "state": "denied", + "customExtensionStageInstanceDetail": "Potential risk user based on the SOD check" + } +} +``` ++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-delete.md	+ + Title: "Delete accessPackageAssignmentRequestWorkflowExtension" +description: "Delete an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Delete accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Delete an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies: +1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`. +2. Use the access package catalog ID and retrieve the ID of the accessPackageCustomWorkflowExtension object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation. +3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy). + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "delete_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/E3D4CE35-B16A-4E19-ADF2-616B64D336DC +``` ++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-get.md	+ + Title: "Get accessPackageAssignmentRequestWorkflowExtension" +description: "Read the properties and relationships of an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Get accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Read the properties and relationships of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId} +``` + +## Optional query parameters +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-update.md	+ + Title: "Update accessPackageAssignmentRequestWorkflowExtension" +description: "Update the properties of an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Update accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Update the properties of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body ++ +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|description\|String\|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|displayName\|String\|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The timeout duration for callback. Optional.\| +++ +## Response + +If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "displayName": "test_action_0124_email", + "description": "this is for graph testing only" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description": "this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` +
v1.0	Accesspackageassignmentworkflowextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-delete.md	+ + Title: "Delete accessPackageAssignmentWorkflowExtension" +description: "Delete an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Delete accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Delete an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies: +1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`. +2. Use the access package catalog ID and retrieve the ID of the accessPackageCustomWorkflowExtension object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation. +3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy). + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "delete_accesspackageassignmentworkflowextension" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/5FD6D8D5-E8F1-4B54-A1E6-1D0FE0B6E6EC +``` ++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentworkflowextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-get.md	+ + Title: "Get accessPackageAssignmentWorkflowExtension" +description: "Read the properties and relationships of an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Get accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Read the properties and relationships of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId} +``` + +## Optional query parameters +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentworkflowextension" +} +--> +``` http +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackageassignmentworkflowextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-update.md	+ + Title: "Update accessPackageAssignmentWorkflowExtension" +description: "Update the properties of an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Update accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Update the properties of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body ++ +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|description\|String\|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|displayName\|String\|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The timeout duration for callback. Optional.\| +++ +## Response + +If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentworkflowextension" +} +--> +``` http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "displayName": "test_action_0124_email", + "description": "this is for graph testing only" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description": "this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackagecatalog List Accesspackagecustomworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md	+ + Title: "List accessPackagecustomWorkflowExtensions" +description: "Get a list of the accessPackageCustomWorkflowExtension objects and their properties." + +ms.localizationpriority: medium ++ +# List accessPackageCustomWorkflowExtensions +Namespace: microsoft.graph ++ +Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects and their properties. The resulting list includes all the customAccessPackageWorkflowExtension objects for the catalog that the caller has access to read. Each object includes an `@odata.type` property that indicates whether the object is an accessPackageAssignmentRequestWorkflowExtension or an accessPackageAssignmentWorkflowExtension. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions +``` + +## Optional query parameters +This method supports the `$select` and `$filter` OData query parameters to help customize the response. For example, to search for access packages with a particular name, include a filter such as `$filter=contains(tolower(displayName),'team')` in the query. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects in the response body. + +## Examples + +### Request + +<!-- { + "blockType": "request", + "name": "list_accesspackagecustomworkflowextension" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions +``` + +### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.customCalloutExtension)" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions", + "value":[ + { + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + }, + { + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/9ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } + ] +} +```
v1.0	Accesspackagecatalog Post Accesspackagecustomworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md	+ + Title: "Create accessPackageCustomWorkflowExtension" +description: "Create a new accessPackageCustomWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Create accessPackageCustomWorkflowExtension +Namespace: microsoft.graph ++ +Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object and add it to an existing [accessPackageCatalog](../resources/accesspackagecatalog.md) object. + +You must explicitly provide an `@odata.type` property that indicates whether the object is an accessPackageAssignmentRequestWorkflowExtension or an accessPackageAssignmentWorkflowExtension. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body +In the request body, supply a JSON representation of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object. + +You can specify the following properties when creating a accessPackageCustomWorkflowExtension. + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|description\|String\|Description for the customAccessPackageWorkflowExtension object.\| +\|displayName\|String\|Display name for the customAccessPackageWorkflowExtension.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow.\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The callback configuration for a custom extension. This is suppoted for `accessPackageAssignmentRequestWorkflowExtension`. \| + +You must also supply an @odata.type property with a value of the specific access package workflow extension type. For example, `"@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension"`. + +## Response + +If successful, this method returns a `201 Created` response code and a [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object in the response body. + +## Examples + +### Example 1: Create a custom extension for use with an access package assignment request +The following is an example of a access package assignment request custom workflow extension. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accessPackageAssignmentRequestWorkflowExtension" +} +--> + +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++++ +#### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.customCalloutExtension" +} +--> +``` http +HTTP/1.1 201 Created +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` + +### Example 2: Create a custom extension for use with an access package assignment +The following is an example of a access package assignment custom workflow extension. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accessPackageAssignmentWorkflowExtension" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++++ +#### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.customCalloutExtension" +} +--> +``` http +HTTP/1.1 201 Created +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackagecatalog Post Customaccesspackageworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-customaccesspackageworkflowextensions.md	If successful, this method returns a `201 Created` response code and a [customAc # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "create_customaccesspackageworkflowextension_from_" + "name": "create_customaccesspackageworkflowextension_" } --> ``` http Content-Type: application/json ``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Appmanagementpolicy Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-delete.md	Delete an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request The following is an example of the request. "name": "delete_appManagementPolicy" }--> -```msgraph-interactive +```http DELETE https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} ```
v1.0	Appmanagementpolicy List Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-list-appliesTo.md	List application and service principal objects assigned an [appManagementPolicy] One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| \| Delegated (work or school account) \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| +\| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request The following is an example of the request. "name": "list_appManagementPolicyAppliesTo" }--> -```msgraph-interactive +```http GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}/appliesTo ``` The following is an example of the request using $select query option. "name": "list_appManagementPolicyAppliesTo_select" }--> -```msgraph-interactive +```http GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}/appliesTo?$select=id,appId,displayName,createdDateTime ```
v1.0	Appmanagementpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-update.md	Update an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request In the request body, supply the values for relevant fields from the [appManageme Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed. -\| Property \| Type \| Description \| -\|:\|:-\|:--\| -\| displayName \| String \| The display name of the policy. Inherited from [policyBase](../resources/policybase.md). \| -\| description \| String \| The description of the policy. Inherited from [policyBase](../resources/policybase.md). \| -\| isEnabled \| Boolean \| Denotes whether the policy is enabled. \| -\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. \| +\| Property \| Type \| Description \| +\| :-- \| :-- \| : \| +\| displayName \| String \| The display name of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| description \| String \| The description of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. \| ## Response The following is an example of the request. "name": "update_appManagementPolicy" }--> -```msgraph-interactive +```http PATCH https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} {
v1.0	Application Delete Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-delete-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/{id}/$ref +DELETE https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/$ref ``` # [C#](#tab/csharp) DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/ The following is an example of the response. -> Note: The response object shown here might be shortened for readability. - <!-- { "blockType": "response", "truncated": true
v1.0	Application List Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-list-tokenlifetimepolicies.md	The following is an example of the request. }--> ```msgraph-interactive -GET https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies +GET https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies ``` # [C#](#tab/csharp) HTTP/1.1 200 OK Content-type: application/json { - "value": [ - { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" - } - ] + "@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(microsoft.graph.tokenLifetimePolicy)", + "value": [ + { + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true + } + ] } ```
v1.0	Application Post Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-post-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -POST https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies +POST https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/$ref Content-Type: application/json { - "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/cd3d9b57-0aee-4f25-8ee3-ac74ef5986a9" + "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4" } ``` Content-Type: application/json [!INCLUDE [sample-code](../includes/snippets/go/create-tokenlifetimepolicy-from-application-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +# [PowerShell](#tab/powershell) + # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/create-tokenlifetimepolicy-from-application-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Appmanagementpolicy Delete Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-delete-appliesto.md	+ + Title: "Remove appliesTo" +description: "Remove an appManagementPolicy from an application or service principal object." +ms.localizationpriority: medium +++ +# Remove appliesTo + +Namespace: microsoft.graph ++ +Remove an [appManagementPolicy](../resources/appManagementPolicy.md) policy object from an application or service principal object. When you remove the appManagementPolicy, the application or service principal adopts the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| +\| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +DELETE /applications/{id}/appManagementPolicies/$ref +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body + +In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection. + +## Response + +If successful, this method returns `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Example 1: Remove an appManagementPolicy from an application object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from an application. ++ +<!-- { + "blockType": "request", + "name": "remove_appliesTo" +}--> + +```http +DELETE https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref +Content-type: application/json + +{ + "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}" +} +``` + +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +### Example 2: Remove an appManagementPolicy from a service principal object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from a service principal. +++ +<!-- { + "blockType": "request", + "name": "remove_appliesTo" +}--> + +``` http +DELETE https://graph.microsoft.com/beta/servicePrincipals/{id}/appManagementPolicies/$ref + +{ + "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}" +} +``` ++ +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "list resources for appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-get.md	Read the properties of an [appManagementPolicy](../resources/appManagementPolicy One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| +\| Permission type \| Permissions (from least to most privileged) \| \| :- \| : \| \| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| \| Delegated (personal Microsoft account) \| Not supported. \| The following is an example of the request. From the response, the app manageme "name": "get_appManagementPolicy" }--> -```msgraph-interactive +```http GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} ```
v1.0	Appmanagementpolicy List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-list.md	Retrieve a list of [appManagementPolicy](../resources/appManagementPolicy.md) ob One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| +\| Permission type \| Permissions (from least to most privileged) \| \| :- \| : \| \| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| \| Delegated (personal Microsoft account) \| Not supported. \| The following is an example of the request. "name": "list_appManagementPolicies" }--> -```msgraph-interactive +```http GET https://graph.microsoft.com/beta/policies/appManagementPolicies ```
v1.0	Appmanagementpolicy Post Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post-appliesto.md	Assign an [appManagementPolicy](../resources/appManagementPolicy.md) policy obje One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| \| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| +\| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request POST /applications/{id}/appManagementPolicies/$ref ## Request headers \| Name \| Description \| -\|:--\|:-\| +\| : \| :-- \| \| Authorization \| Bearer {token}. Required. \| \| Content-Type \| application/json. Required. \| The following is an example of the request to assign an appManagementPolicy to a "name": "ApplicationsAppManagementPolicies" }--> -```msgraph-interactive +```http POST https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref Content-type: application/json
v1.0	Appmanagementpolicy Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post.md	Create an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request POST /policies/appManagementPolicies \| Authorization \| Bearer {token}. Required. \| \| Content-Type \| application/json. Required. \| +> [!IMPORTANT] +> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. ## Request body -In the request body, provide a JSON representation of an [appManagementPolicy](../resources/appManagementPolicy.md). +In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object. + +You can specify the following properties when creating an appManagementPolicy. + +\| Property \| Type \| Description \| +\| :-- \| :- \| : \| +\| displayName \| String \| The display name of the policy. Required. \| +\| description \| String \| The description of the policy. Required. \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. Optional. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. Optional. \| ## Response -If successful, this method returns a `201 Created` response code with the new [appManagementPolicy ](../resources/appmanagementpolicy.md) object in the response payload. +If successful, this method returns a `201 Created` response code with the new [appManagementPolicy](../resources/appmanagementpolicy.md) object in the response payload. ## Examples
v1.0	Authentication List Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication List Methods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-methods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Authentication List Passwordmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-passwordmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Authentication List Softwareoathmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-softwareoathmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global Reader -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Authentication List Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-temporaryaccesspassmethods.md	One of the following permissions is required to call this API. To learn more, in \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Phonemethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-phonemethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-temporaryaccesspassmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authenticationmethod Resetpassword	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethod-resetpassword.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authenticationmethodspolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-get.md	Title: "Get authenticationMethodsPolicy" description: "Read the properties and relationships of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Authenticationmethodspolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-update.md	Title: "Update authenticationMethodsPolicy" description: "Update the properties of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Authenticationoperation Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationoperation-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| \| Application \| Not supported. \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authorizationpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authorizationpolicy-get.md	One of the following permissions is required to call this API. To learn more, in <!-- { "blockType": "ignored" } --> ```http -GET /policies/authorizationPolicy/authorizationPolicy +GET /policies/authorizationPolicy ``` ## Request headers If successful, this method returns a `200 OK` response code and the single [auth The following is an example of the request. ```msgraph-interactive -GET https://graph.microsoft.com/beta/policies/authorizationPolicy/authorizationPolicy +GET https://graph.microsoft.com/beta/policies/authorizationPolicy ```
v1.0	Calendar List Events	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/calendar-list-events.md	Retrieve a list of events in a calendar. The calendar can be one for a [user](. To get expanded event instances, you can [get the calendar view](calendar-list-calendarview.md), or [get the instances of an event](event-list-instances.md). +> [!NOTE] +> If your target mailbox calendar contains any private items, the caller must either: +> * Be granted `FullAccess` mailbox permissions over the target mailbox (via the [Add-MailboxPermission](/powershell/module/exchange/add-mailboxpermission) cmdlet). +> * Be granted the `Delegate` + `CanViewPrivateItems` flags (similar to the previous option, but through the [Add-MailboxFolderPermission](/powershell/module/exchange/add-mailboxfolderpermission) cmdlet). This option routes all meeting requests to the delegate mailbox. For a workaround, see [SharingPermissionFlags](/powershell/module/exchange/add-mailboxfolderpermission?view=exchange-ps#-sharingpermissionflags). +> +> Failure to meet these conditions will result in a `The specified object was not found in the store` response. + ## Permissions Depending on the type of calendar that the events are in and the permission type (delegated or application) requested, one of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Callrecords Callrecord Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/callrecords-callrecord-get.md	There are two ways to get the id of a callRecord: * Subscribe to [change notifications](/graph/api/resources/webhooks) to the `/communications/callRecords` endpoint. * Use the callChainId property of a [call](../resources/call.md). The call record is available only after the associated call is completed. +> [!WARNING] +> +> A call record is created after a call or meeting ends and will remain available for 30 days. Requests for call records older than 30 days will receive a `404 Not Found` response. + ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. +If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. A request for a call record older than 30 days will receive a `404 Not Found` response. ## Examples GET https://graph.microsoft.com/beta/communications/callRecords/{id}?$expand=ses #### Response -The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. +The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. The default page size for sessions is 60 entries. > Note: The response object shown here might be shortened for readability.
v1.0	Cloudpc Getcloudpclaunchinfo	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getcloudpclaunchinfo.md	If successful, this function returns a `200 OK` response code and a [cloudPcLaun # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "cloudpcthis.getcloudpclaunchinfo" + "name": "cloudpc.getcloudpclaunchinfo" } --> ``` http
v1.0	Cloudpc Getshiftworkcloudpcaccessstate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getshiftworkcloudpcaccessstate.md	+ + Title: "cloudPC: getShiftWorkCloudPcAccessState" +description: "Get the access state of a shift work Cloud PC. Callers can get the latest shift work Cloud PC accessState and determine if the shift work Cloud PC is accessible to the user." + +ms.localizationpriority: medium ++ +# cloudPC: getShiftWorkCloudPcAccessState +Namespace: microsoft.graph ++ +Get the [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) of a shift work Cloud PC. + +This API only supports shared-use licenses. For more information, see [cloudPcProvisioningPolicy](../resources/cloudpcprovisioningpolicy.md#cloudpcprovisioningtype-values). Shared-use licenses allow three users per license, with one user signed in at a time. Callers can get the latest shift work Cloud PC accessState and determine whether the shift work Cloud PC is accessible to the user. + +If a web client needs to connect to a shift work Cloud PC, the sharedCloudPcAccessState validates the bookmark scenario. If sharedCloudPcAccessState is not active/activating/hibernated, the web client shows a "bad bookmark". + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|CloudPC.Read.All, CloudPC.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Not supported.\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) object in the response body. + +If the Cloud PC has been provisioned as a dedicated device, this method returns `400 Bad request`. + +## Examples + +### Request +<!-- { + "blockType": "request", + "name": "cloudpc.getShiftWorkCloudPcAccessState" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState +``` + +### Response +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "string" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#Edm.String", + "value": "noLicensesAvailable" +} +``` +
v1.0	Directory Deleteditems List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-list.md	The OData cast type is a required part of the URI and calling `GET /directory/de ## Optional query parameters -This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: +This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. This API returns 100 objects by default and supports returning up to 999 objects per page using `$top`. + +Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: ```msgraph-interactive https://graph.microsoft.com/beta/directory/deletedItems/microsoft.graph.group?&$count=true&$orderBy=deletedDateTime desc&$select=id,displayName,deletedDateTime
v1.0	Directoryobject Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryobject-delta.md	GET https://graph.microsoft.com/beta/directoryObjects/delta?filter=isof('microso - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=isof('{resource type}')`. Note the presence of the _members@delta_ property which includes the ids of member objects in the group. GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=id eq '87d34 - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=id eq '{id}'`. GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=isof('micros - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization. Note that both properties are included in the response and it is not known which ones have changed since the `@odata.deltaLink` was obtained.
v1.0	Dynamics Companies Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/dynamics-companies-get.md	Title: Get companies -description: Gets a company object in Dynamics 365 Business Central. -- + Title: "Get companies" +description: "Get a companies object in Dynamics 365 Business Central." + +documentationcenter: "" + ms.localizationpriority: medium ms.prod: "dynamics-365-business-central" doc_type: apiPageType Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve the properties and relationships of a companies object for Dynamics 365 Business Central. +Get a [companies](../resources/dynamics-companies.md) object in Dynamics 365 Business Central. ## Permissions+ One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). \|Permission type \|Permissions (from least to most privileged)\| One of the following permissions is required to call this API. To learn more, in \|Application\|Financials.ReadWrite.All\| ## HTTP request+ +<!-- { "blockType": "ignored" } --> ```http GET /financials/companies ``` ## Optional query parameters -This method supports the [OData Query Parameters](/graph/query-parameters) to help customize the response. + +This method supports the [OData query parameters](/graph/query-parameters) to help customize the response. ## Request headers+ \|Header\|Value\| \|\|--\| \|Authorization \|Bearer {token}. Required. \| ## Request body+ Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a companies object in the response body. + +If successful, this method returns a `200 OK` response code and a [companies](../resources/dynamics-companies.md) object in the response body. ## Example -Request +### Request + +The following is an example of the request. + +<!-- { + "blockType": "ignored", + "name": "get_companies" +}--> -Here is an example of the request. ```http GET https://graph.microsoft.com/beta/financials/companies ``` -Response +### Response -Here is an example of the response. +The following is an example of the response. > Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "ignored", + "truncated": true, + "@odata.type": "microsoft.graph.companies" +} --> + ```json +HTTP/1.1 200 OK +Content-Type: application/json + { "id": "id-value", "systemVersion": "17806", Here is an example of the response. "businessProfileId": "" } ```--
v1.0	Emailauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication admin ## HTTP request
v1.0	Emailauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Emailauthenticationmethod Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-update.md	Update a user's email address associated with an [email Authentication Method](. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### Permissions acting on self - -\|Permission type \| Permissions (from least to most privileged) \| -\|:\|:-\| -\| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Permissions acting on other users - \|Permission type \| Permissions (from least to most privileged) \| \|:\|:-\| \| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator +Users without one of the supported Azure AD roles cannot update their own email authentication method. ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Entitlementmanagement Post Accesspackageassignmentpolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/entitlementmanagement-post-accesspackageassignmentpolicies.md	Content-type: application/json } ``` -- ### Example 4: Create a policy and specify the stages to trigger pre-defined custom workflow extensions #### Request Content-type: application/json } ``` +### Example 5: Create a policy and specify the stages to trigger pre-defined access package custom extensions + +#### Request + +In the following example, the pre-defined accessPackageCustomWorkflowExtension object is triggered when an access package assignment request is created and when it's granted. The identifier provided within the customExtension field is the accessPackageCustomWorkflowExtension object's ID. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accesspackageassignmentpolicy_accessPackageCustomWorkflowExtension" +}--> ++ +```msgraph-interactive +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies +Content-type: application/json + +{ + "displayName": "extension-policy", + "description": "test", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "canExtend": false, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [], + "isOnBehalfAllowed": false + }, + "accessReviewSettings": null, + "questions": [], + "customExtensionStageSettings": [ + { + "stage": "assignmentRequestCreated", + "customExtension": { + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8" + } + }, + { + "stage": "assignmentRequestGranted", + "customExtension": { + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8" + } + } + ] +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++++ +#### Response + +The following is an example of the response. The customExtensionStageSettings object isn't returned by default. To retrieve this object, use the GET method with `$expand`. For more information, see [Retrieve the custom extension stage settings for a policy](accesspackageassignmentpolicy-get.md#example-3-retrieve-the-custom-extension-stage-settings-for-a-policy) + +> Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} --> + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "d0324cbb-24a2-4edb-acca-fee5384c6a5e", + "displayName": "extension-policy", + "description": "test", + "canExtend": false, + "durationInDays": 0, + "expirationDateTime": null, + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "accessReviewSettings": null, + "questions": [], + "requestorSettings": { + "scopeType": "AllExistingDirectorySubjects", + "acceptRequests": true, + "allowedRequestors": [] + }, + "requestApprovalSettings": { + "isApprovalRequired": false, + "isApprovalRequiredForExtension": false, + "isRequestorJustificationRequired": false, + "approvalMode": "NoApproval", + "approvalStages": [] + } +} +``` + <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 2019-02-04 14:57:30 UTC --> <!-- {
v1.0	Fido2authenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| \| Application \| Not applicable. \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Fido2authenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Fido2authenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Group Post Groups	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-post-groups.md	The following table shows the properties that are required when you create the [ \| :-- \| : \| :-- \| \| displayName \| string \| The name to display in the address book for the group. Maximum length is 256 characters. Required. \| \| mailEnabled \| boolean \| Set to `true` for mail-enabled groups. Required. \| -\| mailNickname \| string \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : . <> , SPACE`. Required. \| +\| mailNickname \| string \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : <> , SPACE`. Required. \| \| securityEnabled \| boolean \| Set to `true` for security-enabled groups, including Microsoft 365 groups. Required. Note: Groups created using the Microsoft Azure portal always have securityEnabled initially set to `true`. \| > [!IMPORTANT]
v1.0	Identitygovernance Customtaskextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_delete_customtaskextension" The following is an example of a request. DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions/2af4670b-47d3-460f-ad16-fc7d4c511d33 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response <!-- {
v1.0	Identitygovernance Customtaskextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_customtaskextension" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions/ffcc4c85-5a14-448e-a390-77abf2700369 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Customtaskextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-update.md	One of the following permissions is required to call this API. To learn more, in > [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: Logic App contributor, Contributor, or Owner. -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_update_customtaskextension" Content-length: 588 } ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response <!-- {
v1.0	Identitygovernance Deleteditemcontainer Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deletedItemcontainer-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_delete_deleteditems" The following is an example of a request. DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/{workflowId} ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response <!-- {
v1.0	Identitygovernance Deleteditemcontainer Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deleteditemcontainer-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_deleteditemcontainer" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/4557805a-1af5-4c29-b271-2cd7fb5de9bf ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_deleteditemcontainer_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/952b23c5-cc25-48c9-8848-95da4dd9dc6d?$select=id,category,displayName,description,version,executionConditions ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Lifecyclemanagementsettings Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_lifecyclemanagementsettings" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/settings ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) -- ### Response Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity", - "workflowScheduleIntervalInHours": 1 + "workflowScheduleIntervalInHours": 1, + "emailSettings": { + "senderDomain": "ContosoIndustries.net", + "useCompanyBranding": true + } } ```
v1.0	Identitygovernance Lifecyclemanagementsettings Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request PATCH /identityGovernance/lifecycleWorkflows/settings \|Property\|Type\|Description\| \|:\|:\|:\| \|workflowScheduleIntervalInHours\|Int32\|The workflow schedule interval. Required.\| +\|emailSettings\|[microsoft.graph.emailSettings](../resources/emailsettings.md)\|The settings for emails sent from email-specific tasks within a workflow. Required.\| ## Response If successful, this action returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_update_lifecyclemanagementsettings" Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity", - "workflowScheduleIntervalInHours": 3 + "workflowScheduleIntervalInHours": 3, + "emailSettings": { + "senderDomain": "ContosoIndustries.net", + "useCompanyBranding": true + } } ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response <!-- { "blockType": "response",
v1.0	Identitygovernance Lifecycleworkflowscontainer List Customtaskextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-customtaskextensions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_customtaskextension" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Lifecycleworkflowscontainer List Deleteditems	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-deleteditems.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_deleteditemcontainer" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) -- #### Response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_deleteditemcontainer_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows?$select=id,category,displayName,description,version&$filter=category eq 'leaver' ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Lifecycleworkflowscontainer List Taskdefinitions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-taskdefinitions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskdefinition" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. Because the category is a flagged enumeration that can be one of `joiner`, `joiner,leaver`, or `leaver`, the `has` operator checks tasks where the category includes "joiner". - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskdefinition_filter_category" The following is an example of a request. Because the category is a flagged GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions?$filter=category has 'joiner' ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Lifecycleworkflowscontainer List Workflows	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflows.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) -- #### Response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows?$filter=category eq 'leaver'&$select=id,category,displayName,isEnabled,isSchedulingEnabled ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response <!-- {
v1.0	Identitygovernance Lifecycleworkflowscontainer List Workflowtemplates	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflowtemplates.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowtemplate" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowtemplate_filter_category" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates?$filter=category eq 'leaver' ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response <!-- {
v1.0	Identitygovernance Lifecycleworkflowscontainer Post Customtaskextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-customtaskextensions.md	One of the following permissions is required to call this API. To learn more, in > [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: Logic App contributor, Contributor, or Owner. -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_create_customtaskextension_from_" Content-length: 588 } ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Lifecycleworkflowscontainer Post Workflows	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-workflows.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request The following is an example of a request that creates a workflow with the follow + It runs for new users that are based in Australia, on their employeeHireDate. + Two tasks are carried out when the workflow runs: the user's account is enabled and a "Welcome" email is sent to the user. -# [HTTP](#tab/http) + <!-- { "blockType": "request", "name": "lifecycleworkflows_create_workflow_from_" Content-Type: application/json } ``` -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Run Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow_run" The following is an example of a request. GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow_run" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2?$select=id,failedTasksCount,failedUsersCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,totalUsersCount ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response
v1.0	Identitygovernance Run List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_taskprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/a977dbe8-0f3f-4ae6-b3a7-29e1010ac4cc/runs/33bf1a9c-2b26-49b6-996f-ca416c518341/taskProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response Content-Type: application/json The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_taskprocessingresult_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/a977dbe8-0f3f-4ae6-b3a7-29e1010ac4cc/runs/33bf1a9c-2b26-49b6-996f-ca416c518341/taskProcessingResults?$select=id,failureReason,processingStatus,subject ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Run List Userprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-userprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_taskprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d/userProcessingResults/ ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_taskprocessingresult_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,subject ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Run Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_runthis.summary" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/summary(startDateTime=2022-08-01T00:00:00Z,endDateTime=2022-08-31T00:00:00Z) ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Task Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request to get a task from a workflow version. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowVersion_task", The following is an example of a request to get a task from a workflow version. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/2/tasks/4d9d41d7-a8e1-4f2f-8c8c-a883bc02e6ee ``` -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) --- #### Response The following is an example of the response of a request to get a task from a workflow version.
v1.0	Identitygovernance Task Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `204 No Content` response code. The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_update_task" Content-length: 454 } ``` -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) -- ### Response
v1.0	Identitygovernance Taskdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskdefinition-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_taskdefinition" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions/1dfdfcc7-52fa-4c2e-bf3a-e3919cc12950 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Taskprocessingresult Resume	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskprocessingresult-resume.md	If successful, this action returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_taskprocessingresultthis.resume" Content-length: 155 } ``` -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) --- ### Response The following is an example of the response.
v1.0	Identitygovernance Taskreport List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_taskprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports/3a3bea11-99ca-462d-86fb-d283db8d734a/taskProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_taskprocessingresult_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/taskReports/443c7611-45df-48c0-bf5e-dc6068c402f0/taskProcessingResults?$select=id,failureReason,processingStatus,subject,task ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Taskreport Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_taskreport.summary" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports/summary(startDateTime=2022-08-19T00:00:00.000Z,endDateTime=2022-08-25T00:33:31.533Z) ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Userprocessingresult Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_userprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_userprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,subject ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Userprocessingresult List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9/taskProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresult_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2/taskProcessingResults?$select=id,processingStatus,failureReason,subject,task ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response Content-Type: application/json ### Example 3: Get the task processing results for a user processing result in a run report for a workflow - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresults" Content-Type: application/json GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/72885f91-2cf0-44b1-b3ed-bd145af0192c/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9/taskProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. -- -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresults_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2/taskProcessingResults?$select=id,failureReason,processingStatus,subject,task ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Userprocessingresult Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_userprocessingresultthis.summary" The following is an example of a request. GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/userProcessingResults/summary(startDateTime=2022-07-20T00:00:00Z,endDateTime=2022-07-23T00:00:00Z) ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Workflow Activate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-activate.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.activate" Content-Type: application/json } ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PHP](#tab/php) --- ### Response <!-- {
v1.0	Identitygovernance Workflow Createnewversion	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-createnewversion.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `200 OK` response code and a [microsoft.gra ## Examples -### Request +### Example 1: Create a new version of a workflow + +#### Request The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.createnewversion" Content-length: 631 { "workflow":{ + "category": "joiner", "description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true, Content-length: 631 } ``` -# [JavaScript](#tab/javascript) -# [Java](#tab/java) +#### Response -# [Go](#tab/go) +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.identityGovernance.workflow" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json -# [PHP](#tab/php) - +{ + "workflow":{ + "category": "joiner", + "description": "Configure new hire tasks for onboarding employees on their first day", + "displayName": "Global onboard new hire employee", + "isEnabled": true, + "isSchedulingEnabled": false, + "executionConditions": { + "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions", + "scope": { + "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet", + "rule": "(department eq 'Marketing')" + }, + "trigger": { + "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger", + "timeBasedAttribute": "employeeHireDate", + "offsetInDays": 1 + } + }, + "tasks": [ + { + "continueOnError": false, + "description": "Enable user account in the directory", + "displayName": "Enable User Account", + "isEnabled": true, + "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc", + "arguments": [] + }, + { + "continueOnError": false, + "description": "Send welcome email to new hire", + "displayName": "Send Welcome Email", + "isEnabled": true, + "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea", + "arguments": [] + } + ] + } +} +``` + +### Example 2: Create a new version of a task with customized email + +#### Request + +The following is an example of a request. + +<!-- { + "blockType": "request", + "name": "lifecycleworkflows_workflowthis.createnewversion_customemail" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/{workflowId}/createNewVersion +Content-Type: application/json +Content-length: 631 + +{ + "workflow":{ + "category": "joiner", + "description": "Configure new hire tasks for onboarding employees on their first day", + "displayName": "Global onboard new hire employee", + "isEnabled": true, + "isSchedulingEnabled": false, + "executionConditions": { + "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions", + "scope": { + "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet", + "rule": "(department eq 'Marketing')" + }, + "trigger": { + "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger", + "timeBasedAttribute": "employeeHireDate", + "offsetInDays": 1 + } + }, + "tasks": [ + { + "continueOnError": false, + "description": "Enable user account in the directory", + "displayName": "Enable User Account", + "isEnabled": true, + "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc", + "arguments": [] + }, + { + "continueOnError": false, + "description": "Send welcome email to new hire", + "displayName": "Send Welcome Email", + "isEnabled": true, + "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea", + "arguments": [ + { + "name": "cc", + "value": "1baa57fa-3c4e-4526-ba5a-db47a9df95f0" + }, + { + "name": "customSubject", + "value": "Welcome to the organization {{userDisplayName}}!" + }, + { + "name": "customBody", + "value": "Welcome to our organization {{userGivenName}}!" + }, + { + "name": "locale", + "value": "en-us" + } + ] + } + ] + } +} +``` + +#### Response -### Response The following is an example of the response >Note: The response object shown here might be shortened for readability. Content-Type: application/json { "workflow":{ + "category": "joiner", "description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true, Content-Type: application/json "displayName": "Send Welcome Email", "isEnabled": true, "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea", - "arguments": [] + "arguments": [ + { + "name": "cc", + "value": "b47471b9-af8f-4a5a-bfa2-b78e82398f6e, a7a23ce0-909b-40b9-82cf-95d31f0aaca2" + }, + { + "name": "customSubject", + "value": "Welcome to the organization {{userDisplayName}}!" + }, + { + "name": "customBody", + "value": "Welcome to our organization {{userGivenName}} {{userSurname}}. \nFor more information, reach out to your manager {{managerDisplayName}} at {{managerEmail}}." + }, + { + "name": "locale", + "value": "en-us" + }, + ] } ] }
v1.0	Identitygovernance Workflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_delete_workflow" The following is an example of a request. DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/4c9c57b9-e1e9-4bed-a936-4fad9d8f5638 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response <!-- {
v1.0	Identitygovernance Workflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json } ``` - ### Example 2: Retrieve specific properties of a workflow #### Request
v1.0	Identitygovernance Workflow List Runs	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-runs.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_run" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/ ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs?$select=id,failedTasksCount,failedUsersCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,totalUsersCount,id ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Workflow List Task	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-task.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow List Taskreports	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-taskreports.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/taskReports?$select=id,failedUsersCount,processingStatus,successfulUsersCount,totalUsersCount,unprocessedUsersCount,taskDefinition,taskProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response
v1.0	Identitygovernance Workflow List Userprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-userprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_userprocessingresult" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/userProcessingResults ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_userprocessingresult_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/userProcessingResults?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,workflowExecutionType,subject ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response >Note: The response object shown here might be shortened for readability.
v1.0	Identitygovernance Workflow List Versions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-versions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion_select" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/versions?$select=category,displayName,versionNumber ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response <!-- {
v1.0	Identitygovernance Workflow Restore	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-restore.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.restore" The following is an example of a request. POST https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/4c9c57b9-e1e9-4bed-a936-4fad9d8f5638/restore ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Workflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `204 No Content` response code. The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_update_workflow" Content-length: 454 } ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) -- ### Response
v1.0	Identitygovernance Workflowtemplate Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowtemplate-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowtemplate" The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates/77179007-8114-41b5-922e-2e22109df41f ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- ### Response The following is an example of the response
v1.0	Identitygovernance Workflowversion Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowversion", The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/3 ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response The following is an example of the response Content-Type: application/json The following is an example of a request. - -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowversion_select", The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/versions/2?$select=category,displayName,versionNumber,executionConditions&$expand=tasks ``` -# [C#](#tab/csharp) - -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) - -# [Go](#tab/go) - -# [PowerShell](#tab/powershell) - -# [PHP](#tab/php) --- #### Response <!-- { "blockType": "response",
v1.0	Identitygovernance Workflowversion List Tasks	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-list-tasks.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. -# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion_task", The following is an example of a request. GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/2/tasks ``` -# [JavaScript](#tab/javascript) - -# [Java](#tab/java) --- ### Response The following is an example of the response
v1.0	Industrydata Azuredatalakeconnector Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_azuredatalakeconnector", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_azuredatalakeconnector", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Getuploadsession	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-getuploadsession.md	If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "azuredatalakeconnectorthis.getuploadsession", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271/microsoft.graph.industryData.azureDataLakeConnector/getUploadSession ``` +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_azuredatalakeconnector" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_azureDataLakeConnector_from_dataConnectors" Content-length: 104 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_azuredatalakeconnector", Content-type: application/json } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Filevalidateoperation Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_fileValidateOperation", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/operations/581b2ef8-dda2-4a3e-bb62-df13fd4a5808 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Filevalidateoperation List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_fileValidateOperation" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/operations ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_inboundflow" The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_inboundflow", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_inboundflow" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_inboundfileflow_from_inboundflows" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_inboundfileflow" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_inboundflow", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_inboundflow", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_inboundflow" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_inboundflow_from_inboundFlows" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_inboundfileflow" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_azuredatalakeconnector", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_azuredatalakeconnector", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_azuredatalakeconnector" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_industrydataconnector_from_dataConnectors" Content-length: 104 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Validate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-validate.md	If successful, this action returns a `202 Accepted` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "industrydataconnectorthis.validate", The following is an example of a request. POST https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93/validate ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_industrydatarun", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun Getstatistics	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-getstatistics.md	If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "industrydatarunthis.getstatistics", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534/getStatistics ``` +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_industrydatarun" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Referencedefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_referencedefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions/RefAcademicSubject-01 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Referencedefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_referencedefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Rolegroup Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_rolegroup", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/roleGroups/students ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Rolegroup List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_rolegroup" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/roleGroups ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/sourceSystems/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_sourcesystemdefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/sourceSystems/0190210e-8827-4747-6f2b-08dacc885e72 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_sourcesystemdefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/sourceSystems ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_sourceSystems" Content-length: 250 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_sourcesystemdefinition", Content-length: 250 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_yearTimePeriodDefinition_from_", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/years/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_yeartimeperioddefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/years/ebf18762-ab92-487e-21d1-08daddab28bb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_yearTimePeriodDefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/years ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_yeartimeperioddefinition_from_years" Content-length: 242 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_yeartimeperioddefinition", Content-length: 242 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Microsoftauthenticatorauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Oauth2permissiongrant List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/oauth2permissiongrant-list.md	GET https://graph.microsoft.com/beta/oauth2PermissionGrants [!INCLUDE [sample-code](../includes/snippets/go/list-oauth2permissiongrants-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/list-oauth2permissiongrants-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Organization Activateservice	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organization-activateservice.md	- Title: "organization: activateService" -description: "Activates a service for an organization." - -doc_type: apiPageType -- -# organization: activateService (deprecated) - -Namespace: microsoft.graph -- -> [!CAUTION] -> The activateService API is deprecated and will stop returning data on June 30, 2022. - -Activate a service for an organization. - -## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). - -In order to activate a service for an organization the requestor needs to have the _Company Administrator_ role with the following permissions. - -\|Permission type\|Permissions (from least to most privileged)\| -\| : \| : \| -\| Delegated (work or school account) \| Directory.ReadWrite.All\| -\| Delegated (personal Microsoft account) \| Not Supported. \| -\| Application \| Directory.ReadWrite.All\| -- -## HTTP request - -<!-- { - "blockType": "ignored" -} > -``` http -POST /organization/{organizationId}/activateService -``` - -## Request headers -\|Name\|Description\| -\|:\|:\| -\|Authorization\|Bearer {token}. Required.\| -\|Content-Type\|application/json. Required.\| - -## Request body -In the request body, supply a JSON representation of the [activateService](../resources/activateService.md) object. -You must define service or (servicePlanId _and_ skuId) for this action to be valid. - -\| Property \| Type \| Description \| -\| -- \| \| - \| -\| service\| String \| The name of the service to activate. \| -\| servicePlanId \| Guid \| The plan identifier of the service plan to activate. \| -\| skuId \| Guid \| The SKU identifier of the service plan. \| - -## Response - -If successful, this action returns a `204 No Content` response code. - -## Examples - -### Request - -# [HTTP](#tab/http) -<!-- { - "blockType": "request", - "name": "organization_activateservice" -} > -``` http -POST https://graph.microsoft.com/beta/organization/{:organizationId}/activateService -Content-Type: application/json - -{ - "skuId": "6fd2c87f-b296-42f0-b197-1e91e994b900", - "servicePlanId": "a23b959c-7ce8-4e57-9140-b90eb88a9e97" -} -``` - -# [JavaScript](#tab/javascript) --- -### Response -<!-- { - "blockType": "response", - "truncated": true -} > -``` http -HTTP/1.1 204 No Content -```
v1.0	Organizationalbranding Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbranding-get.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Organization.Read.All \|
v1.0	Organizationalbranding List Localizations	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbranding-list-localizations.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Organization.Read.All \|
v1.0	Organizationalbrandinglocalization Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbrandinglocalization-get.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Organization.Read.All \|
v1.0	Passwordauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Not supported.\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Not supported.\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Not supported.\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Phoneauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Disablesmssignin	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-disablesmssignin.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Enablesmssignin	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-enablesmssignin.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Phoneauthenticationmethod Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-update.md	If a user is enabled by policy to use SMS to sign in and the `mobile` number is One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### Permissions acting on self - -\|Permission type \| Permissions (from least to most privileged) \| -\|:\|:-\| -\| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Permissions acting on other users - \|Permission type \| Permissions (from least to most privileged) \| \|:\|:-\| \| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator + +Users without one of the supported Azure AD roles cannot update their own phone authentication method. ## HTTP request <!-- { "blockType": "ignored" } --> ```http -PATCH /me/authentication/phoneMethods/{id} PATCH /users/{id \| userPrincipalName}/authentication/phoneMethods/{id} ``` The value of `id` corresponding to the phoneType to update is one of the following:
v1.0	Plannerbucket Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerbucket-delta.md	+ + Title: "plannerBucket: delta" +description: "Get newly created, updated, or deleted buckets in a Planner plan without having to perform a full read of the entire resource collection." + +ms.localizationpriority: medium ++ +# plannerBucket: delta + +Namespace: microsoft.graph ++ +Get newly created, updated, or deleted [buckets](../resources/plannerbucket.md) in a Planner [plan](../resources/plannerplan.md) without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Tasks.Read \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Tasks.Read.All \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +GET /planner/plans/{plan-id}/buckets/delta +``` + +## Query parameters + +Tracking changes incurs a round of one or more delta function calls. If you use any query parameter (other than `$deltaToken` and `$skipToken`), you must specify it in the initial delta request. Microsoft Graph automatically encodes any specified parameters into the token portion of the `@odata.nextLink` or `@odata.deltaLink` URL provided in the response. You only need to specify any query parameters once upfront. In subsequent requests, copy and apply the `@odata.nextLink` or `@odata.deltaLink` URL from the previous response. That URL already includes the encoded parameters. + +\| Query parameter \| Type \| Description \| +\| :-- \| :-- \| :-- \| +\| $deltaToken \| string \| A [state token](/graph/delta-query-overview) returned in the `@odata.deltaLink` URL of the previous delta function call for the same resource collection, indicating the completion of that round of change tracking. Save and apply the entire `@odata.deltaLink` URL, including this token in the first request of the next round of change tracking for that collection. \| +\| $skipToken \| string \| A [state token](/graph/delta-query-overview) returned in the `@odata.nextLink` URL of the previous delta function call, indicating there are further changes to be tracked in the same resource collection. \| + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) collection in the response body. The response also includes a `@odata.nextLink` or a `@odata.deltaLink` URL. + +- A `@odata.nextLink` URL in the response object indicates additional pages of data to be retrieved in the session. The application continues making requests using the `@odata.nextLink` URL until a `@odata.deltaLink` URL is included in the response. + +- A `@odata.deltaLink` URL in the response object indicates that no more data about the existing state of the resource is returned. Persist and use the `@odata.deltaLink` URL to learn about changes to the resource in the future. + +For more details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview). For an example that shows how to track changes to users, see [Get incremental changes for users](/graph/delta-query-users). + +## Examples + +The following example shows a request for delta on plannerBucket objects contained by a plannerPlan. + +### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "plannerbucketthis.delta", + "sampleKeys": ["-W4K7hIak0WlAwgJCn1sEWQABgjH"] +} +--> + +```http +GET https://graph.microsoft.com/beta/planner/plans/-W4K7hIak0WlAwgJCn1sEWQABgjH/buckets/delta +``` + +### Response + +The following is an example of the response. + +>Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.plannerBucket)" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket", + "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/buckets?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4", + "value": [ + { + "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"", + "id": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH", + "name": "This is a bucket", + "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH", + "orderHint": "8585371316800245114P\\" + } + ] +} +```
v1.0	Plannerbucket Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerbucket-get.md	Title: "Get plannerBucket" -description: "Retrieve the properties and relationships of plannerBucket object." +description: "Retrieve the properties and relationships of a plannerBucket object." ms.localizationpriority: medium ms.prod: "planner" Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve the properties and relationships of plannerBucket object. +Retrieve the properties and relationships of a [plannerBucket](../resources/plannerbucket.md) object. + ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [plannerBucket](../resources/plannerbucket.md) object in the response body. +If successful, this method returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) object in the response body. This method can return any of the [HTTP status codes](/graph/errors). The most common errors that apps should handle for this method are the 403 and 404 responses. For more information about these errors, see [Common Planner error conditions](../resources/planner-overview.md#common-planner-error-conditions). ## Example -##### Request -Here is an example of the request. +### Request +The following is an example of the request. # [HTTP](#tab/http) <!-- { GET https://graph.microsoft.com/beta/planner/buckets/hsOf2dhOJkqyYYZEtdzDe2QAIUC -##### Response -Here is an example of the response. Note: The response object shown here might be shortened for readability. +### Response +The following is an example of the response. +>Note: The response object shown here might be shortened for readability. <!-- { "blockType": "response", "truncated": true, Content-type: application/json ] } -->--
v1.0	Plannerplan Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerplan-delta.md	+ + Title: "plannerPlan: delta" +description: "Get newly created, updated, or deleted Planner plans in either a group or a Planner roster without having to perform a full read of the entire resource collection." + +ms.localizationpriority: medium ++ +# plannerPlan: delta + +Namespace: microsoft.graph ++ +Get newly created, updated, or deleted Planner [plans](../resources/plannerplan.md) in either a [group](../resources/group.md) or a Planner [roster](../resources/plannerroster.md) without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Tasks.Read \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Tasks.Read.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +```http +GET /planner/rosters/{plannerRosterId}/plans/delta +GET /groups/{group-id}/planner/plans/delta +``` + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [plannerPlan](../resources/plannerplan.md) collection in the response body. + +## Examples + +### Example 1: Get delta on plans in a plannerRoster + +The following example shows a request for delta on plannerPlan objects contained by a plannerRoster. + +#### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "plannerplanthis.delta", + "sampleKeys": ["-W4K7hIak0WlAwgJCn1sEWQABgjH"] +} +--> + +```http +GET https://graph.microsoft.com/beta/planner/rosters/-W4K7hIak0WlAwgJCn1sEWQABgjH/plans/delta +``` + +#### Response + +The following is an example of the response. + +>Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.plannerPlan)" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket", + "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/rosters/('-W4K7hIak0WlAwgJCn1sEWQABgjH')/plans?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4", + "value": [ + { + "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"", + "id": "xqQg5FS2LkCp935s-FIFm2QAFkHM", + "title": "Test plan", + "container": { + "@odata.type": "microsoft.graph.plannerPlanContainer", + "url": "https://graph.microsoft.com/beta/planner/rosters/-W4K7hIak0WlAwgJCn1sEWQABgjH", + "containerId": "-W4K7hIak0WlAwgJCn1sEWQABgjH", + "type": "roster" + } + } + ] +} +``` + +### Example 2: Get delta on plans in a group + +The following example shows a request for delta on plannerPlan objects contained by a group. + +#### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "plannerplanthis.delta", + "sampleKeys": ["ebf3b108-5234-4e22-b93d-656d7dae5874"] +} +--> + +```http +GET https://graph.microsoft.com/beta/groups/ebf3b108-5234-4e22-b93d-656d7dae5874/planner/plans/delta +``` + +#### Response + +The following is an example of the response. + +>Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.plannerPlan)" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket", + "@odata.deltaLink": "https://graph.microsoft.com/beta/groups/('ebf3b108-5234-4e22-b93d-656d7dae5874')/planner/plans?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4", + "value": [ + { + "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"", + "id": "xqQg5FS2LkCp935s-FIFm2QAFkHM", + "title": "Test plan", + "container": { + "@odata.type": "microsoft.graph.plannerPlanContainer", + "url": "https://graph.microsoft.com/beta/groups/ebf3b108-5234-4e22-b93d-656d7dae5874", + "containerId": "ebf3b108-5234-4e22-b93d-656d7dae5874", + "type": "group" + } + } + ] +} +```
v1.0	Plannertask Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannertask-delta.md	+ + Title: "plannerTask: delta" +description: "Get newly created, updated, or deleted tasks in either a Planner plan or assigned to the signed-in user without having to perform a full read of the entire resource collection." + +ms.localizationpriority: medium ++ +# plannerTask: delta + +Namespace: microsoft.graph ++ +Get newly created, updated, or deleted [tasks](../resources/plannertask.md) in either a Planner [plan](../resources/plannerplan.md) or assigned to the signed-in user without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Tasks.Read \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Tasks.Read.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +```http +GET /planner/tasks/delta +GET /me/planner/tasks/delta +``` + +## Query parameters + +Tracking changes incurs a round of one or more delta function calls. If you use any query parameter (other than `$deltaToken` and `$skipToken`), you must specify it in the initial delta request. Microsoft Graph automatically encodes any specified parameters into the token portion of the `@odata.nextLink` or `@odata.deltaLink` URL provided in the response. You only need to specify any query parameters once upfront. In subsequent requests, copy and apply the `@odata.nextLink` or `@odata.deltaLink` URL from the previous response. That URL already includes the encoded parameters. + +\| Query parameter \| Type \| Description \| +\| :-- \| :-- \| :-- \| +\| $deltaToken \| string \| A [state token](/graph/delta-query-overview) returned in the `@odata.deltaLink` URL of the previous delta function call for the same resource collection, indicating the completion of that round of change tracking. Save and apply the entire `@odata.deltaLink` URL, including this token in the first request of the next round of change tracking for that collection. \| +\| $skipToken \| string \| A [state token](/graph/delta-query-overview) returned in the `@odata.nextLink` URL of the previous delta function call, indicating there are further changes to be tracked in the same resource collection. \| + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [plannerTask](../resources/plannertask.md) collection in the response body. + +## Examples + +### Example 1: Get delta on tasks in a plannerPlan + +The following example shows a request for the delta on plannerTask objects in a plannerPlan. + +#### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "plannertaskthis.delta" +} +--> + +```http +GET https://graph.microsoft.com/beta/planner/tasks/delta +``` + +#### Response + +The following is an example of the response. + +> Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.plannerTask)" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerTask", + "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks?%24expand=details&%24deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4", + "value": [ + { + "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"", + "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "createdByApp": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3", + "createdByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + }, + "application": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3" + } + }, + "userContentLastModifiedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "userContentLastModifiedByApp": null, + "userContentLastModifiedByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + }, + "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH", + "bucketId": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH", + "title": "Testing", + "orderHint": "8585371316800245114P\\", + "assigneePriority": "8585371316123370883", + "focusDateTime": null, + "percentComplete": 0, + "startDateTime": null, + "createdDateTime": "2022-09-29T18:14:25.6091874Z", + "userContentLastModifiedDate": "2022-09-29T18:14:33.1404924Z", + "dueDateTime": null, + "recurrence": null, + "hasDescription": false, + "previewType": "automatic", + "completedDateTime": null, + "completedBy": null, + "completedByApp": null, + "completedByAsIdentitySet": null, + "referenceCount": 0, + "checklistItemCount": 0, + "activeChecklistItemCount": 0, + "appliedCategories": {}, + "assignments": { + "b40c85a0-1a66-4fa3-932f-cc9249ce8c29": { + "@odata.type": "#microsoft.taskServices.assignment", + "assignedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "assignedByAppId": null, + "assignedByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + }, + "assignedDateTime": "2022-09-29T18:14:33.1404924Z", + "orderHint": "8585371316723527019PX", + "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "createdByAppId": null, + "createdByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + } + } + }, + "conversationThreadId": null, + "priority": 5, + "creationSource": { + "publication": null, + "externalSource": null + }, + "creationSourceInfo": null, + "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l", + "version": "1-Task @@@@@@@@@@@@@@@H", + "details@odata.context": "https://tasks.officeppe.com/taskApi/V3.0/$metadata#plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks('aSOQ0mveu06bTSkfnJQay2QAIn_l')/details/$entity", + "details": { + "@odata.etag": "W/\"JzEtVGFza0RldGFpbHMgQEBAQEBAQEBAQEBAQEBARCc=\"", + "description": "", + "notes": null, + "previewType": "automatic", + "references": {}, + "checklist": {}, + "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l", + "version": "1-TaskDetails @@@@@@@@@@@@@@@D" + } + } + ] +} +``` + +### Example 2: Get delta on tasks assigned to a user + +The following example shows a request for the delta on plannerTask objects assigned to a user. + +#### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "plannertaskthis.delta" +} +--> + +```http +GET https://graph.microsoft.com/beta/me/planner/tasks/delta +``` + +#### Response + +The following is an example of the response. + +> Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.plannerTask)" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerTask", + "@odata.deltaLink": "https://graph.microsoft.com/beta/me/planner/tasks/delta?%24expand=details&%24deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4", + "value": [ + { + "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"", + "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "createdByApp": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3", + "createdByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + }, + "application": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3" + } + }, + "userContentLastModifiedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "userContentLastModifiedByApp": null, + "userContentLastModifiedByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + }, + "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH", + "bucketId": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH", + "title": "Testing", + "orderHint": "8585371316800245114P\\", + "assigneePriority": "8585371316123370883", + "focusDateTime": null, + "percentComplete": 0, + "startDateTime": null, + "createdDateTime": "2022-09-29T18:14:25.6091874Z", + "userContentLastModifiedDate": "2022-09-29T18:14:33.1404924Z", + "dueDateTime": null, + "recurrence": null, + "hasDescription": false, + "previewType": "automatic", + "completedDateTime": null, + "completedBy": null, + "completedByApp": null, + "completedByAsIdentitySet": null, + "referenceCount": 0, + "checklistItemCount": 0, + "activeChecklistItemCount": 0, + "appliedCategories": {}, + "assignments": { + "b40c85a0-1a66-4fa3-932f-cc9249ce8c29": { + "@odata.type": "#microsoft.taskServices.assignment", + "assignedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "assignedByAppId": null, + "assignedByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + }, + "assignedDateTime": "2022-09-29T18:14:33.1404924Z", + "orderHint": "8585371316723527019PX", + "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29", + "createdByAppId": null, + "createdByAsIdentitySet": { + "user": { + "@odata.type": "#microsoft.taskServices.identity", + "displayName": null, + "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29" + } + } + } + }, + "conversationThreadId": null, + "priority": 5, + "creationSource": { + "publication": null, + "externalSource": null + }, + "creationSourceInfo": null, + "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l", + "version": "1-Task @@@@@@@@@@@@@@@H", + "details@odata.context": "https://tasks.officeppe.com/taskApi/V3.0/$metadata#plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks('aSOQ0mveu06bTSkfnJQay2QAIn_l')/details/$entity", + "details": { + "@odata.etag": "W/\"JzEtVGFza0RldGFpbHMgQEBAQEBAQEBAQEBAQEBARCc=\"", + "description": "", + "notes": null, + "previewType": "automatic", + "references": {}, + "checklist": {}, + "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l", + "version": "1-TaskDetails @@@@@@@@@@@@@@@D" + } + }, + ] +} +```
v1.0	Reportroot Getteamsteamcounts	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/reportroot-getteamsteamcounts.md	+ + Title: "reportRoot: getTeamsTeamCounts" +description: "Get the number of teams of a particular type in an instance of Microsoft Teams." +ms.localizationpriority: medium +++ +# reportRoot: getTeamsTeamCounts + +Namespace: microsoft.graph ++ +Get the number of teams of a particular type in an instance of Microsoft Teams. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Reports.Read.All \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Reports.Read.All \| + +> Note: For delegated permissions to allow apps to read service usage reports on behalf of a user, the tenant administrator must have assigned the user the appropriate Azure Active Directory limited administrator role. For more details, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization). +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +GET /reports/getTeamsTeamCounts(period='{period_value}') +``` + +## Function parameters + +In the request URL, provide the following parameters with a valid value. + +\| Parameter \| Type \| Description \| +\| :-- \| :-- \| : \| +\| period \| string \| Specifies the length of time over which the report is aggregated. The supported values for {period_value} are: `D7`, `D30`, `D90`, and `D180`. These values follow the format Dn, where n represents the number of days over which the report is aggregated. Required. \| + +> Note: You need to set either period or date in the request URL. +## Optional query parameters + +This method supports the `$format` [OData query parameter](/graph/query-parameters) to customize the response. The default output type is `text/csv`. However, if you want to specify the output type, you can use the OData `$format` query parameter to set the default output to `text/csv` or `application/json`. + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| + +## Request body + +Do not supply a request body for this method. + +## Response + +### CSV + +If successful, this method returns a `302 Found` response that redirects to a pre-authenticated download URL for the report. That URL can be found in the `Location` header in the response. + +Pre-authenticated download URLs are only valid for a short period (a few minutes) and do not require an `Authorization` header. + +The CSV file has the following headers for columns: + +- Report Refresh Date +- Report Date +- Public Teams +- Active Public Teams +- Private Teams +- Active Private Teams + +### JSON + +If successful, this method returns a `200 OK` response code and a JSON object in the response body. + +## Examples + +### Example 1: CSV output + +The following is an example that outputs CSV. + +#### Request + +The following is an example of a request. + +<!-- { + "blockType": "ignored", + "name": "reportroot_getteamsteamcounts_csv" +}--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=text/csv +``` ++ +#### Response + +The following is an example of the response. + +<!-- { "blockType": "ignored" } --> + +```http +HTTP/1.1 302 Found +Content-Type: text/plain +Location: https://reports.office.com/data/download/JDFKdf2_eJXKS034dbc7e0t__XDe +``` + +Follow the 302 redirection and the CSV file that downloads will have the following schema. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "stream" +} --> + +```http +HTTP/1.1 200 OK +Content-Type: application/octet-stream +Report Refresh Date,Report Date,Public Teams,Active Public Teams,Private Teams,Active Private Teams, +``` + +### Example 2: JSON output + +The following is an example that returns JSON. + +#### Request + +The following is an example of a request. + +<!-- { + "blockType": "ignored", + "name": "reportroot_getteamsteamcounts_json" +}--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=application/json +``` ++ +#### Response + +The following is an example of the response. + +> Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "stream" +} --> +```http +HTTP/1.1 200 OK +Content-Type: application/json +Content-Length: 641 +{ + "@odata.context": "https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=application/json&$skiptoken=D07uj", + "value": [ + { + "reportRefreshDate": "2021-09-01", + "reportPeriod":7, + "teamsTeamUsageByDate": [ + { + "reportDate": "2022-08-01", + "publicTeams": 26, + "privateTeams": 17, + "activePublicTeams": 20, + "activePrivateTeams": 12 + } + ] + } + ] +} +``` +<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 +2015-10-25 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "Example", + "keywords": "", + "section": "documentation", + "tocPath": "", + "suppressions": [ + ] +}-->
v1.0	Riskyserviceprincipal List History	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/riskyserviceprincipal-list-history.md	GET https://graph.microsoft.com/beta/identityProtection/riskyServicePrincipals/{ [!INCLUDE [sample-code](../includes/snippets/go/list-riskyserviceprincipalhistoryitem-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/list-riskyserviceprincipalhistoryitem-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Search Query	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/search-query.md	If successful, this method returns an `HTTP 200 OK` response code and a collecti ## Examples -### Request +### Example 1: Basic call to perform a search request + +The following example shows how to perform a search to get expected connector items. + +#### Request -The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "search_query" + "name": "query" }--> ```HTTP Content-type: application/json ``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] ### Response -The following is an example of the response. +The following example shows the response. > Note: The response object shown here might be shortened for readability. Content-type: application/json } ``` +### Example 2: Basic call to use queryTemplate + +The following example shows how to use the queryable property createdBy to retrieve all files created by a user. + +#### Request + +```HTTP +POST https://graph.microsoft.com/beta/search/query +Content-type: application/json + +{ + "requests": [ + { + "entityTypes": [ + "listItem" + ], + "query": { + "queryString": "contoso", + "queryTemplate":"{searchTerms} CreatedBy:Bob" + }, + "from": 0, + "size": 25 + } + ] +} +``` + +### Response + +The following example shows the response. + +```HTTP +HTTP/1.1 200 OK +Content-type: application/json + +{ + "value": [ + { + "searchTerms": [ + "contoso" + ], + "hitsContainers": [ + { + "hits": [ + { + "hitId": "1", + "rank": 1, + "summary": "_summary-value", + "resource": { + "@odata.type": "#microsoft.graph.listItem", + "id": "c23c7035-73d6-4bad-8901-9e2930d4be8e", + "createdBy": { + "user": { + "displayName": "Bob", + "email": "Bob@contoso.com" + } + }, + "createdDateTime": "2021-11-19T17:04:18Z", + "lastModifiedDateTime": "2023-03-09T18:52:26Z" + } + } + ], + "total": 1, + "moreResultsAvailable": false + } + ] + } + ] +} +``` + ## See also - Search [mail messages](/graph/search-concept-messages) Content-type: application/json - Search [person](/graph/search-concept-person) - Search content in SharePoint and OneDrive ([files, lists and sites](/graph/search-concept-files)) - Search [custom types (Graph Connectors)](/graph/search-concept-custom-types) data +- Search with [queryTemplate](/graph/search-concept-query-template) - [Sort](/graph/search-concept-sort) search results - Use [aggregations](/graph/search-concept-aggregation) to refine search results - Enable [spell corrections](/graph/search-concept-speller) in search results
v1.0	Security Ediscoveryexportoperation Getdownloadurl	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryexportoperation-getdownloadurl.md	Title: "ediscoveryExportOperation: getDownloadUrl" -description: "return a downloadUrl from where the export content is delivered as a stream" + Title: "ediscoveryExportOperation: getDownloadUrl (deprecated)" +description: "Return a download URL from where the export content is delivered as a stream." ms.localizationpriority: medium ms.prod: "ediscovery" doc_type: "apiPageType" -# ediscoveryExportOperation: getDownloadUrl +# ediscoveryExportOperation: getDownloadUrl (deprecated) + Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -If a Azure blob url is not provided in export action, the export operation exports the files to an internal store. Contents of this store can be fetched by calling into this function. This will return a downloadUrl where the zipped content is delivered as a stream. +> [!CAUTION] +> The getDownloadUrl function is deprecated and will stop returning data on April 30th, 2023. Please use the new exportFileMetadata property returned by the [Get caseOperation](../api/security-ediscoverycase-get.md) API instead. + +If an Azure blob URL is not provided in export action, the export operation exports the files to an internal store. Contents of this store can be fetched by calling into this function. This returns a download URL where the zipped content is delivered as a stream. ## Permissions
v1.0	Security Ediscoveryreviewset Export	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryreviewset-export.md	The following table shows the parameters that can be used with this action. \|Parameter\|Type\|Description\| \|:\|:\|:\| -\|outputName\|String\| Name of the export. Required. \| -\|description\|String\| Description of the export \| -\|azureBlobContainer\|String\| when you export to your own Azure storage account, this is the container URL. \| -\|azureBlobToken\|String\| when you export to your own Azure storage account, SAS token for the container URL. \| -\|exportOptions\|String\|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.\| +\|description\|String\| Description of the export. \| +\|exportOptions\|String\|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included.\| \|exportStructure\|String\| Options that control file structure and packaging of the export. Possible values are: `none`, `directory`, `pst`.\| +\|outputName\|String\| Name of the export. Required. \| +\|azureBlobContainer (deprecated)\|String\| When you export to your own Azure storage account, this is the container URL. The azureBlobContainer property is deprecated and will stop returning data on April 30th, 2023. \| +\|azureBlobToken (deprecated)\|String\| When you export to your own Azure storage account, SAS token for the container URL. The azureBlobToken property is deprecated and will stop returning data on April 30th, 2023. \| + ## Response If the export has started successfully, this action returns a `202 Accepted` response code. The response will also contain a `Location` header, which contains the location of the [Export operation](../resources/security-ediscoveryexportoperation.md) that was created to handle the export.
v1.0	Security Ediscoveryreviewsetquery Export	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryreviewsetquery-export.md	The following table shows the parameters that can be used with this action. \|Parameter\|Type\|Description\| \|:\|:\|:\| -\|outputName\|String\| Name of the export. Required. \| -\|description\|String\| Description of the export \| -\|azureBlobContainer\|String\| when you export to your own Azure storage account, this is the container URL. \| -\|azureBlobToken\|String\| when you export to your own Azure storage account, SAS token for the container URL. \| -\|exportOptions\|String\|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.\| +\|description\|String\| Description of the export. \| +\|exportOptions\|String\|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo` (deprecated), `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included.\| \|exportStructure\|String\| Options that control file structure and packaging of the export. Possible values are: `none`, `directory`, `pst`.\|- +\|outputName\|String\| Name of the export. Required. \| +\|azureBlobContainer (deprecated) \|String\| When you export to your own Azure storage account, this is the container URL. The azureBlobContainer property is deprecated and will stop returning data on April 30th, 2023. \| +\|azureBlobToken (deprecated) \|String\| When you export to your own Azure storage account, SAS token for the container URL. The azureBlobToken property is deprecated and will stop returning data on April 30th, 2023. \| ## Response
v1.0	Servicestoragequotabreakdown Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/servicestoragequotabreakdown-get.md	+ + Title: "Get serviceStorageQuotaBreakdown" +description: "Read the properties and relationships of a serviceStorageQuotaBreakdown object." + +ms.localizationpriority: medium ++ +# Get serviceStorageQuotaBreakdown +Namespace: microsoft.graph ++ +Read the properties and relationships of a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| Not supported. \| +\|Delegated (personal Microsoft account)\| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All \| +\|Application\| Not supported. \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /me/settings/storage/quota/services/{serviceStorageQuotaBreakdownId} +GET /users/{usersId}/settings/storage/quota/services/{serviceStorageQuotaBreakdownId} +``` + +## Optional query parameters +This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "get_servicestoragequotabreakdown" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/settings/storage/quota/services/OneDrive +``` ++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.serviceStorageQuotaBreakdown" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "displayName": "OneDrive", + "id": "OneDrive", + "used": 102633320226, + "manageWebUrl": "String" +} +``` +
v1.0	Sitepage Getwebpartsbyposition	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/sitepage-getwebpartsbyposition.md	The following is an example of a request. <!-- { "blockType": "request", - "name": "list_webpart" + "name": "get_webparts_by_position" } --> The following is an example of a request. GET https://graph.microsoft.com/beta/sites/{siteId}/pages/{sitePageId}/getWebPartsByPosition(horizontalSectionId={horizontalSectionId},columnId={columnId},webPartIndex={webPartIndex},isInVerticalSection={isInVerticalSection}) ``` - ### Response The following is an example of the response
v1.0	Smsauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Smsauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Smsauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/s \|Content-Type\|application/json. Required.\| ## Request body -In the request body, supply a JSON representation of the [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed. - -The following table shows the properties that are required when you update the [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object. \|Property\|Type\|Description\| \|:\|:\|:\| -\|id\|String\|The authentication method policy identifier.\| +\|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| \|state\|authenticationMethodState\|Possible values are: `enabled`, `disabled`.\| >Note: The `@odata.type` property with a value of `#microsoft.graph.smsAuthenticationMethodConfiguration` must be included in the body.
v1.0	Softwareoathauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Softwareoathauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global Reader -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Softwareoathauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Softwareoathauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Softwareoathauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Team Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/team-post.md	Content-Type: application/json [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')/operations('3a6fdce1-c2 Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375') Content-Length: 0 ``` +### Example 7: Create a team with a localized non-standard base template type +Base template types can be localized to your preferred language choice, which enables you to create templates in your preferred language. -### Example 7: Create a team with a non-standard base template type with extended properties +Choose your team template from the defintion list returned by the [List definitions](/graph/api/teamtemplate-list-definitions) operation. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "convert_team_from_non_standard_localized" +}--> + +```http +POST https://graph.microsoft.com/beta/teams +Content-Type: application/json + +{ + +┬á ┬á "templateDefinition@odata.bind": "https://graph.microsoft.com/betC50ZWFtcy50ZW1wbGF0ZS5NYW5hZ2VBUHJvamVjdCMjUHVibGljIyNhci1TQQ==", + +┬á ┬á "displayName": "My Sample Team", + +┬á ┬á "description": "My Sample TeamΓÇÖs Description" + +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response +<!-- { + "blockType": "response", + "name": "convert_team_from_non_standard_localized" +}--> +```http +HTTP/1.1 202 Accepted +Content-Type: application/json +Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')/operations('3a6fdce1-c261-48bc-89de-1cfef658c0d5') +Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375') +Content-Length: 0 +``` + +### Example 8: Create a team with a non-standard base template type with extended properties Base template types can be extended with additional properties, enabling you to build on an existing base template with additional team settings, channels, apps, or tabs. Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375') Content-Length: 0 ``` -### Example 8: Create a team in migration mode +### Example 9: Create a team in migration mode #### Request
v1.0	Teamtemplatedefinition Get Teamdefinition	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/teamtemplatedefinition-get-teamdefinition.md	Namespace: microsoft.graph Get the properties of the [team](../resources/team.md) associated with a [teamTemplateDefinition](../resources/teamstemplate.md) object. +> Note: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/). ++ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Teamtemplatedefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/teamtemplatedefinition-get.md	Namespace: microsoft.graph Read the properties and relationships of a [teamTemplateDefinition](../resources/teamtemplatedefinition.md) object. +> Note: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/). ++ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Temporaryaccesspassauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Temporaryaccesspassauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Temporaryaccesspassauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Temporaryaccesspassauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Tenantappmanagementpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tenantappmanagementpolicy-update.md	PATCH /policies/defaultAppManagementPolicy \| Authorization \| Bearer {token}. Required. \| \| Content-Type \| application/json. Required. \| +> [!IMPORTANT] +> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. + ## Request body In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, do not include unchanged values in the request payload. In the request body, supply the values for relevant fields from the [tenantAppMa \| isEnabled \| Boolean \| Denotes if the policy is enabled. Default value is false. \| \| servicePrincipalRestrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply as default to all service principal objects in the tenant. \| +> [!IMPORTANT] +> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. + ## Response If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.
v1.0	Tokenlifetimepolicy Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-delete.md	The following is an example of the request. }--> ```http -DELETE https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id} +DELETE https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4 ``` # [C#](#tab/csharp)
v1.0	Tokenlifetimepolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-get.md	The following is an example of the request. }--> ```msgraph-interactive -GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id} +GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4 ``` # [C#](#tab/csharp) HTTP/1.1 200 OK Content-type: application/json { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" + "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies/$entity", + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true } ```
v1.0	Tokenlifetimepolicy List Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-list-appliesto.md	The following is an example of the request. }--> ```msgraph-interactive -GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id}/appliesTo +GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/appliesTo ``` # [JavaScript](#tab/javascript) HTTP/1.1 200 OK Content-type: application/json { - "value": [ - { - "id": "id-value", - "deletedDateTime": "datetime-value" - } - ] + "@odata.context": "https://graph.microsoft.com/beta/$metadata#directoryObjects", + "value": [ + { + "@odata.type": "#microsoft.graph.application", + "id": "3ccc9971-9ae7-45d6-8de8-263fd25fe116", + "appId": "6e4a2285-a438-4bcc-9d76-6c45fb91d4b0", + "applicationTemplateId": "8adf8e6e-67b2-4cf2-a259-e3dc5476c621", + "displayName": "Contoso IWA App", + "publisherDomain": "Contoso.com", + "signInAudience": "AzureADMyOrg" + } + ] } ```
v1.0	Tokenlifetimepolicy List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-list.md	HTTP/1.1 200 OK Content-type: application/json { - "value": [ - { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" - } - ] + "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies", + "value": [ + { + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true + } + ] } ```
v1.0	Tokenlifetimepolicy Post Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-post-tokenlifetimepolicies.md	If successful, this method returns a `201 Created` response code and a new [toke ### Request -The following is an example of the request. +The following is an example of a request that creates a token lifetime policy that sets the access and ID token lifetime to eight hours. # [HTTP](#tab/http) <!-- { POST https://graph.microsoft.com/beta/policies/tokenLifetimePolicies Content-type: application/json { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true } ``` HTTP/1.1 201 Created Content-type: application/json { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" + "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies/$entity", + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true } ```
v1.0	Tokenlifetimepolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-update.md	In the request body, supply the values for relevant fields that should be update \| Property \| Type \| Description \| \|:-\|:\|:\| -\|definition\|String collection\| A string collection containing a JSON string that defines the rules and settings for this policy. Required.\| +\|definition\|String collection\| A string collection containing a JSON string that defines the rules and settings for this policy. For more information about the JSON schema for this property, see [Properties of a token lifetime policy definition](../resources/tokenlifetimepolicy.md#properties-of-a-token-lifetime-policy-definition). Required.\| \|description\|String\| Description for this policy.\| \|displayName\|String\| Display name for this policy. Required.\| -\|isOrganizationDefault\|Boolean\|If set to true, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is false.\| +\|isOrganizationDefault\|Boolean\|If set to `true`, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is `false`.\| ## Response The following is an example of the request. }--> ```http -PATCH https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id} +PATCH https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4 Content-type: application/json { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true } ``` Content-type: application/json The following is an example of the response. -> Note: The response object shown here might be shortened for readability. - <!-- { - "blockType": "response", - "truncated": true, - "@odata.type": "microsoft.graph.tokenLifetimePolicy" + "blockType": "response" } --> ```http HTTP/1.1 204 No Content -Content-type: application/json - -{ - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" -} ``` <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
v1.0	Unifiedstoragequota Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/unifiedstoragequota-get.md	+ + Title: "Get unifiedStorageQuota" +description: "Read the properties and relationships of a unifiedStorageQuota object." + +ms.localizationpriority: medium ++ +# Get unifiedStorageQuota +Namespace: microsoft.graph ++ +Read the properties and relationships of a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| Not supported. \| +\|Delegated (personal Microsoft account)\| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All \| +\|Application\| Not supported. \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /me/settings/storage/quota +GET /users/{user-id}/settings/storage/quota +``` + +## Optional query parameters +This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object in the response body. + +## Examples + +### Example 1: Get the unified quota information for the current user +#### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "get_unifiedstoragequota" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/settings/storage/quota +``` ++ +#### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.unifiedStorageQuota" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.unifiedStorageQuota", + "manageWebUrl": "String", + "remaining": 1066671526110, + "state": "normal", + "total": 1169304846336, + "used": 102633320226 + } +} +``` + +### Example 2: Get the unified quota information for the current user +#### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "get_unifiedstoragequotabyuserid" +} +--> +``` http +GET https://graph.microsoft.com/beta/users/1234BBS1121YY95/settings/storage/quota +``` ++ +#### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.unifiedStorageQuota" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.unifiedStorageQuota", + "manageWebUrl": "String", + "remaining": 1066671526110, + "state": "normal", + "total": 1169304846336, + "used": 102633320226 + } +} +``` + +### Example 3: Get the unified quota information, along with the service breakdowns, for the current user +#### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "get_unifiedstoragequotaandservices" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/settings/storage/quota?$expand=services +``` ++ +#### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.unifiedStorageQuota" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.unifiedStorageQuota", + "manageWebUrl": "String", + "remaining": 1066671526110, + "state": "normal", + "total": 1169304846336, + "used": 102633320226, + "services": [ + { + "displayName": "OneDrive", + "id": "OneDrive", + "used": 102633320226 + }, + { + "displayName": "Outlook (Attachments)", + "id": "Outlook", + "used": 123 + } + ] + } +} +```
v1.0	Unifiedstoragequota List Services	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/unifiedstoragequota-list-services.md	+ + Title: "List serviceStorageQuotaBreakdown" +description: "Get a list of serviceStorageQuotaBreakdown objects and their properties." + +ms.localizationpriority: medium ++ +# List serviceStorageQuotaBreakdown +Namespace: microsoft.graph ++ +Get a list of [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) objects and their properties. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| Not supported. \| +\|Delegated (personal Microsoft account)\| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All \| +\|Application\| Not supported. \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /me/settings/storage/quota/services +GET /users/{usersId}/settings/storage/quota/services +``` + +## Optional query parameters +This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) objects in the response body. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "list_servicestoragequotabreakdown" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/settings/storage/quota/services +``` ++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.serviceStorageQuotaBreakdown)" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "displayName": "OneDrive", + "id": "OneDrive", + "used": 102633320226 + }, + { + "displayName": "Outlook (Attachments)", + "id": "Outlook", + "used": 123456 + } + ] +} +``` +
v1.0	User Activateserviceplan	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-activateserviceplan.md	- Title: "user: activateServicePlan" -description: "Activate a service plan with a given `servicePlanId` and `skuId` for a given user." - -doc_type: apiPageType -- -# user: activateServicePlan (deprecated) - -Namespace: microsoft.graph -- -> [!CAUTION] -> The activateServicePlan API is deprecated and will stop returning data on June 30, 2022. - -Activate a service plan with a given `servicePlanId` and `skuId` for a given user. - -## Permissions - -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). - -\|Permission type\|Permissions (from most to least privileged)\| -\| : \| : \| -\| Delegated (work or school account) \| Directory.ReadWrite.All \| -\| Delegated (personal Microsoft account) \| Not Supported. \| -\| Application \| Directory.ReadWrite.All \| - -## HTTP request - -<!-- { - "blockType": "ignored" -} >- -``` http -POST /users/{id \| userPrincipalName}/activateServicePlan -``` - -## Request headers - -\| Name \| Description \| -\| : \| : \| -\| Authorization \| Bearer {token}. Required. \| -\| Content-Type \| application/json. Required. \| - -## Request body - -In the request body, provide a JSON object with the following parameter: - -\| Parameter \| Type \| Description \| -\| : \| : \| : \| -\| servicePlanId \| Guid \| PlanId of the ServicePlan to activate. \| -\| skuId \| Guid \| SkuId of SKU the service plan is on. \| - -## Response - -If successful, this action returns a `204 No Content` response code. - -## Examples - -### Request -- -# [HTTP](#tab/http) -<!-- { - "blockType": "request", - "name": "user_activateserviceplan" -} >- -``` http -POST https://graph.microsoft.com/beta/me/activateServicePlan -Content-type: application/json - -{ - "servicePlanId": "28f42d6f-8034-4a0f-9d8a-a218a63b3299", - "skuId": "465a2a90-5e59-456d-a7b8-127b9fb2e484" -} -``` - -# [JavaScript](#tab/javascript) --- -### Response - -<!-- { - "blockType": "response", - "truncated": true -} >- -``` http -HTTP/1.1 204 No Content -```
v1.0	User List Transitivememberof	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-list-transitivememberof.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \| :- \| : \| -\| Delegated (work or school account) \| User.Read, GroupMember.Read.All, Directory.Read.All, Directory.ReadWrite.All \| +\| Delegated (work or school account) \| User.Read, User.Read.All, GroupMember.Read.All, Group.Read.All, Directory.Read.All, Directory.ReadWrite.All \| \| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Directory.Read.All, Directory.ReadWrite.All \| +\| Application \| User.Read.All, GroupMember.Read.All, Group.Read.All, Directory.Read.All, Directory.ReadWrite.All \| ## HTTP request <!-- { "blockType": "ignored" } --> ```http +GET /me/transitiveMemberOf GET /users/{id \| userPrincipalName}/transitiveMemberOf ```
v1.0	User Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-update.md	In the request body, supply the values for relevant fields that should be update \|identities\|[objectIdentity](../resources/objectidentity.md) collection\| Represents the identities that can be used to sign in to this user account. An identity can be provided by Microsoft, by organizations, or by social identity providers such as Facebook, Google, and Microsoft, and tied to a user account. Any update to identities will replace the entire collection and you must supply the userPrincipalName signInType identity in the collection.\| \|interests\|String collection\|A list for the user to describe their interests.\| \|jobTitle\|String\|The userΓÇÖs job title.\| -\|mail\|String\|The SMTP address for the user, for example, `jeff@contoso.onmicrosoft.com`. For Azure AD B2C accounts, this property can be updated up to only ten times with unique SMTP addresses. Changes to this property will also update the user's proxyAddresses collection to include the value as a SMTP address.\| +\|mail\|String\|The SMTP address for the user, for example, `jeff@contoso.onmicrosoft.com`. For Azure AD B2C accounts, this property can be updated up to only ten times with unique SMTP addresses. Changes to this property will also update the user's proxyAddresses collection to include the value as a SMTP address. Cannot be updated to `null`.\| \|mailNickname\|String\|The mail alias for the user. This property must be specified when a user is created.\| \|mobilePhone\|String\|The primary cellular telephone number for the user.\| \|mySite\|String\|The URL for the user's personal site.\|
v1.0	Virtualendpoint Post Onpremisesconnections	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/virtualendpoint-post-onpremisesconnections.md	Title: "Create cloudPcOnPremisesConnection" description: "Create an Azure network connection for provisioning Cloud PCs."-+ ms.localizationpriority: medium ms.prod: "cloud-pc" doc_type: apiPageType POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/onPremise Content-Type: application/json { - "@odata.type": "#microsoft.graph.cloudPcOnPremisesConnection", "displayName": "test-canary-02", "type": "hybridAzureADJoin", "subscriptionId": "0ac520ee-14c0-480f-b6c9-0a90c585ffff", - "subscriptionName": "CPC customer 001 test subscription", "adDomainName": "contoso001.com", "adDomainUsername": "dcadmin", "organizationalUnit": "OU=Domain Controllers, DC=contoso001, DC=com",
v1.0	Voiceauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Voiceauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Voiceauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/v \|Content-Type\|application/json. Required.\| ## Request body -In the request body, supply a JSON representation of the [voiceAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed. -For the list of properties, see [voiceAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md). +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| +\|isOfficePhoneAllowed\|Boolean\|`true` if users can register office phones, otherwise, `false`.\| +\|state\|authenticationMethodState\|Possible values are: `enabled`, `disabled`.\| >Note: The `@odata.type` property with a value of `#microsoft.graph.voiceAuthenticationMethodConfiguration` must be included in the body.
v1.0	Webpart List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/webpart-list.md	Content-Type: application/json "innerHtml": "<h2>How do you get started?</h2>" }, { - "@odata.type": "#microsoft.graph.textWebPart", + "@odata.type": "#microsoft.graph.standardWebPart", "id": "6346d908-f20d-4528-902f-3c2a9c8c2442", "webPartType": "d1d91016-032f-456d-98a4-721247c305e8", "data": { + "audiences": [], "dataVersion": "1.9", "description": "Show an image on your page", "title": "Image", Content-Type: application/json "alignment": "Center" }, "serverProcessedContent": { + "componentDependencies": [], + "htmlStrings": [], + "links": [], + "searchablePlainTexts": [], "imageSources": [ { + "@odata.type": "#microsoft.graph.metaDataKeyStringPair", "key": "imageSource", "value": "/_LAYOUTS/IMAGES/VISUALTEMPLATEIMAGE1.JPG" } ], "customMetadata": [ { + "@odata.type": "#microsoft.graph.metaDataKeyValuePair", "key": "imageSource", "value": { "siteid": "0264cabe-6b92-450a-b162-b0c3d54fe5e8",
v1.0	Windowshelloforbusinessauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Windowshelloforbusinessauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Windowshelloforbusinessauthenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Windowsupdates Catalog List Entries	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowsupdates-catalog-list-entries.md	GET /admin/windows/updates/catalog/entries ## Optional query parameters This method supports some of the [OData query parameters](/graph/query-parameters) to help customize the response, including `$count`, `$filter`, `$orderBy`, `$select`, `$skip`, and `$top`. -To use a query parameter on a property that is not inherited from catalogEntry, include the full resource type for the property. For example, to filter on the version property of [featureUpdateCatalogEntry](../resources/windowsupdates-featureupdatecatalogentry.md) that equals 'Windows 11, version 22H2' , use `?$filter=microsoft.graph.windowsUpdates.featureUpdateCatalogEntry/version eq 'Windows 11, version 22H2''. +To use a query parameter on a property that is not inherited from catalogEntry, include the full resource type for the property. For example, to filter on the version property of [featureUpdateCatalogEntry](../resources/windowsupdates-featureupdatecatalogentry.md) that equals 'Windows 11, version 22H2' , use `?$filter=microsoft.graph.windowsUpdates.featureUpdateCatalogEntry/version eq 'Windows 11, version 22H2'`. ## Request headers \|Name\|Description\| Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of catalogEntry objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [catalogEntry](../resources/windowsupdates-catalogentry.md) objects in the response body. ## Examples ### Request +The following is an example of a request. + # [HTTP](#tab/http) <!-- { "blockType": "request", GET https://graph.microsoft.com/beta/admin/windows/updates/catalog/entries ### Response +The following is an example of the response. + <!-- { "blockType": "response", "truncated": true, Content-Type: application/json ] } ```-
v1.0	Workflow List Executionscope	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/workflow-list-executionscope.md	Namespace: microsoft.graph.identityGovernance [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Lists the users who are in the scope of the execution conditions of a [workflow](../resources/identitygovernance-workflow.md). Users who initially fall in the scope of the execution conditions, but are updated to no longer meet the conditions after it's scheduled to run, will remain on the list for a short period of time before being removed. If the execution scope is changed, users who initially met it's conditions, but no longer do so will be cleared from the list after a short period of time. New users who meet the conditions for the workflow will then be listed. +List the users that meet the [execution conditions](../resources/identitygovernance-workflowexecutionconditions.md) regardless of whether they have already been processed by the [workflow](../resources/identitygovernance-workflow.md). -This API call requires workflow scheduling to be enabled. +The workflow engine periodically evaluates the users that meet the execution conditions. The results will not be up to date if the execution conditions have been changed recently, relevant attributes on the user have been changed recently or the [time based trigger](../resources/identitygovernance-timebasedattributetrigger.md) has been reached recently. + +The API is only supported for workflows with [trigger and scope based](../resources/identitygovernance-triggerandscopebasedconditions.md) [execution conditions](../resources/identitygovernance-workflowexecutionconditions.md). Furthermore, results are only returned if the workflows schedule (isSchedulingEnabled) is enabled. ## Permissions One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	X509certificateauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	X509certificateauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	X509certificateauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/x ## Request body [!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] -The following properties can be updated. - -\|Property\|Type\|Description\| -\|:\|:\|:\| -\|state\|authenticationMethodState\|The possible values are: `enabled`, `disabled`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).\| -\|certificateUserBindings\|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection\|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The priority of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. \| -\|authenticationModeConfiguration\|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)\|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. \| >Note: The `@odata.type` property with a value of `#microsoft.graph.x509CertificateAuthenticationMethodConfiguration` must be included in the body.
v1.0	Accesspackageassignment	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignment.md	In [Azure AD Entitlement Management](entitlementmanagement-overview.md), an acce \|assignmentState\|String\|The state of the access package assignment. Possible values are `Delivering`, `Delivered`, or `Expired`. Read-only. Supports `$filter` (`eq`).\| \|assignmentStatus\|String\|More information about the assignment lifecycle. Possible values include `Delivering`, `Delivered`, `NearExpiry1DayNotificationTriggered`, or `ExpiredNotificationTriggered`. Read-only.\| \|catalogId\|String\|The identifier of the catalog containing the access package. Read-only.\| +\|customExtensionCalloutInstances\|[customExtensionCalloutInstance](customextensioncalloutinstance.md) collection\|Information about all the custom extension calls that were made during the access package assignment workflow.\| \|expiredDateTime\|DateTimeOffset\|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`\| \|id\|String\| Read-only.\| \|isExtended\|Boolean\|Indicates whether the access package assignment is extended. Read-only.\| The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "optionalProperties": [ - - ], + "keyProperty": "id", "@odata.type": "microsoft.graph.accessPackageAssignment", - "keyProperty": "id" -}--> - -```json + "openType": false +} +--> +``` json { - "id":"9bdae7b4-6ece-487b-9eb8-9679dbd67aa2", - "catalogId":"cc30dc98-6d3c-4fa0-bed8-fd76d0efd993", - "accessPackageId":"e3f47362-993f-4fcb-8a38-532ffca16150", - "assignmentPolicyId":"63ebd106-8116-40e7-a0ab-01ae475d11bb", - "targetId":"ab4291f6-66b7-42bf-b597-a05b29414f5c", - "assignmentStatus":"ExpiredNotificationTriggered", - "assignmentState":"Expired", - "isExtended":false, - "expiredDateTime":"2019-04-25T23:45:40.42Z" + "@odata.type": "#microsoft.graph.accessPackageAssignment", + "id": "String (identifier)", + "catalogId": "String", + "accessPackageId": "String", + "assignmentPolicyId": "String", + "targetId": "String", + "assignmentStatus": "String", + "assignmentState": "String", + "isExtended": "Boolean", + "expiredDateTime": "String (timestamp)", + "schedule": { + "@odata.type": "microsoft.graph.requestSchedule" + }, + "customExtensionCalloutInstances": [ + { + "@odata.type": "microsoft.graph.customExtensionCalloutInstance" + } + ] } ```
v1.0	Accesspackageassignmentpolicy	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentpolicy.md	To assign a user to an access package, [create an accessPackageAssignmentRequest \|:-\|:\|:\| \|accessPackage\|[accessPackage](accesspackage.md)\| The access package with this policy. Read-only. Nullable. Supports `$expand`.\| \|customExtensionHandlers\|[customExtensionHandler](../resources/customextensionhandler.md) collection\| The collection of stages when to execute one or more custom access package workflow extensions. Supports `$expand`.\| +\|customExtensionStageSettings\|[customExtensionStageSetting](../resources/customextensionstagesetting.md) collection\|The collection of stages when to execute one or more custom access package workflow extensions. Supports `$expand`.\| The following is a JSON representation of the resource. ```json { - "@odata.type": "#microsoft.graph.accessPackageAssignmentPolicy", - "id": "String (identifier)", - "accessPackageId": "String", - "displayName": "String", - "description": "String", - "canExtend": "Boolean", - "durationInDays": "Integer", - "expirationDateTime": "String (timestamp)", - "createdBy": "String", - "createdDateTime": "String (timestamp)", - "modifiedBy": "String", - "modifiedDateTime": "String (timestamp)", - "questions": [ - { - "@odata.type": "microsoft.graph.accessPackageQuestion" - } - ], - "requestorSettings": { - "@odata.type": "microsoft.graph.requestorSettings" - }, - "requestApprovalSettings": { - "@odata.type": "microsoft.graph.approvalSettings" - }, - "accessReviewSettings": { - "@odata.type": "microsoft.graph.assignmentReviewSettings" - } + "@odata.type":"#microsoft.graph.accessPackageAssignmentPolicy", + "id":"String (identifier)", + "accessPackageId":"String", + "displayName":"String", + "description":"String", + "canExtend":"Boolean", + "durationInDays":"Integer", + "expirationDateTime":"String (timestamp)", + "createdBy":"String", + "createdDateTime":"String (timestamp)", + "modifiedBy":"String", + "modifiedDateTime":"String (timestamp)", + "questions":[ + { + "@odata.type":"microsoft.graph.accessPackageQuestion" + } + ], + "requestorSettings":{ + "@odata.type":"microsoft.graph.requestorSettings" + }, + "requestApprovalSettings":{ + "@odata.type":"microsoft.graph.approvalSettings" + }, + "accessReviewSettings":{ + "@odata.type":"microsoft.graph.assignmentReviewSettings" + } } ```
v1.0	Accesspackageassignmentrequest	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequest.md	In [Azure AD Entitlement Management](entitlementmanagement-overview.md), an acce \|:-\|:\|:\| \|completedDate\|DateTimeOffset\|The date of the end of processing, either successful or failure, of a request. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.\| \|createdDateTime\|DateTimeOffset\|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.\| -\|customExtensionHandlerInstances\|[customExtensionHandlerInstance](../resources/customextensionhandlerinstance.md) collection\| A collection of [custom workflow extension](customaccesspackageworkflowextension.md) instances being run on an assignment request. Read-only. \| +\|customExtensionCalloutInstances\|[customExtensionCalloutInstance](../resources/customextensioncalloutinstance.md) collection\|Information about all the custom extension calls that were made during the access package assignment request workflow.\| +\|customExtensionHandlerInstances\|[customExtensionHandlerInstance](../resources/customextensionhandlerinstance.md) collection\| A collection of [custom workflow extension](customaccesspackageworkflowextension.md) instances being run on an assignment request. Read-only.\| \|id\|String\| Read-only.\| \|isValidationOnly\|Boolean\|True if the request is not to be processed for assignment.\| \|justification\|String\|The requestor's supplied justification.\| The following is a JSON representation of the resource. { "@odata.type": "microsoft.graph.customExtensionHandlerInstance" } + ], + "customExtensionCalloutInstances": [ + { + "@odata.type": "microsoft.graph.customExtensionCalloutInstance" + } ] } ```
v1.0	Accesspackageassignmentrequestcallbackdata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequestcallbackdata.md	+ + Title: "accessPackageAssignmentRequestCallbackData resource type" +description: "Access package assignment request workflow calllback back that custom extension endpoint callback." + +ms.localizationpriority: medium ++ +# accessPackageAssignmentRequestCallbackData resource type + +Namespace: microsoft.graph ++ +Access package assignment request workflow calllback back that custom extension endpoint callback, derived from [customextensiondata](../resources/customextensiondata.md) ++ +Inherits from [customExtensionData](../resources/customextensiondata.md). + +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|customExtensionStageInstanceId\|String\|Unique identifier of the callout to the custom extension.\| +\|customExtensionStageInstanceDetail\|String\|Details for the callback.\| +\|stage\|accessPackageCustomExtensionStage\|Indicates the stage at which the custom callout extension will be executed. The possible values are: `assignmentRequestCreated`, `assignmentRequestApproved`, `assignmentRequestGranted`, `assignmentRequestRemoved`, `assignmentFourteenDaysBeforeExpiration`, `assignmentOneDayBeforeExpiration`, `unknownFutureValue`.\| +\|state\|String\|Allow the extension to be able to deny or cancel the request submitted by the requestor. The supported values are `Denied` and `Canceled`. This property can only be set for an `assignmentRequestCreated` stage.\| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData" +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestCallbackData", + "stage": "String", + "customExtensionStageInstanceId": "String", + "customExtensionStageInstanceDetail": "String", + "state": "String" +} +``` +
v1.0	Accesspackageassignmentrequestworkflowextension	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequestworkflowextension.md	+ + Title: "accessPackageAssignmentRequestWorkflowExtension resource type" +description: "Defines the attributes of a logic app that can be called at various stages of an access package request cycle." + +ms.localizationpriority: medium ++ +# accessPackageAssignmentRequestWorkflowExtension resource type + +Namespace: microsoft.graph ++ +Defines the attributes of a logic app that can be called at various stages of an access package request cycle. You can integrate logic apps with entitlement management to broaden your governance workflows beyond the core entitlement management use cases. + +The following use cases can be integrated with logic apps using [access package assignment request](accesspackageassignmentrequest.md) workflow: +- When an [access package is requested](accesspackageassignmentrequest.md) +- When an [access package request is approved](accesspackageassignmentrequest.md) +- When an [access package request is granted](accesspackageassignmentrequest.md) +- When an [access package assignment expires](accesspackageassignmentrequest.md) ++ +Inherits from [customCalloutExtension](../resources/customcalloutextension.md). + +## Methods +\|Method\|Return type\|Description\| +\|:\|:\|:\| +\|[List accessPackageAssignmentRequestWorkflowExtension](../api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md)\|[customCalloutExtension](../resources/accesspackageassignmentrequestworkflowextension.md) collection\|Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) objects and their properties.\| +\|[Create accessPackageAssignmentRequestWorkflowExtension](../api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)\| Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.\| +\|[Get accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-get.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)\|Read the properties and relationships of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.\| +\|[Update accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-update.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)\|Update the properties of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.\| +\|[Delete accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-delete.md)\|None\|Delete an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.\| + +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The callback configuration for a custom extension.\| +\|createdBy\|String\|The userPrincipalName of the user or identity of the subject that created this resource. Read-only.\| +\|createdDateTime\|DateTimeOffset\|When the object was created.\| +\|description\|String\|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|displayName\|String\|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|id\|String\|Read-only.\| +\|lastModifiedBy\|String\|The userPrincipalName of the identity that last modified the object. \| +\|lastModifiedDateTime\|DateTimeOffset\|When the object was last modified.\| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "keyProperty": "id", + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "baseType": "microsoft.graph.customCalloutExtension", + "openType": false +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id": "String (identifier)", + "authenticationConfiguration": { + "@odata.type": "microsoft.graph.customExtensionAuthenticationConfiguration" + }, + "description": "String", + "displayName": "String", + "endpointConfiguration": { + "@odata.type": "microsoft.graph.customExtensionEndpointConfiguration" + }, + "createdBy": "String", + "lastModifiedBy": "String", + "createdDateTime": "String (timestamp)", + "lastModifiedDateTime": "String (timestamp)", + "callbackConfiguration": { + "@odata.type": "microsoft.graph.customExtensionCallbackConfiguration" + } +} +``` +
v1.0	Accesspackageassignmentworkflowextension	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentworkflowextension.md	+ + Title: "accessPackageAssignmentWorkflowExtension resource type" +description: "Defines the attributes of a logic app that can be called at various stages of an access package assignment cycle." + +ms.localizationpriority: medium ++ +# accessPackageAssignmentWorkflowExtension resource type + +Namespace: microsoft.graph ++ +Defines the attributes of a logic app that can be called at various stages of an access package request cycle. You can integrate logic apps with entitlement management to broaden your governance workflows beyond the core entitlement management use cases. + +The following use cases can be integrated with logic apps in the [access package assignment](accesspackageassignment.md) workflow: +- When an [access package assignment will expire in fourteen days](accesspackageassignment.md) +- When an [access package assignment will expire in one day](accesspackageassignment.md) + +Inherits from [customCalloutExtension](../resources/customcalloutextension.md). + +## Methods +\|Method\|Return type\|Description\| +\|:\|:\|:\| +\|[List accessPackageAssignmentWorkflowExtensions](../api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md)\|[customCalloutExtension](../resources/accesspackageassignmentworkflowextension.md) collection\|Get a list of the [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) objects and their properties.\| +\|[Create accessPackageAssignmentWorkflowExtension](../api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md)\|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)\|Create a new [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.\| +\|[Get accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-get.md)\|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)\|Read the properties and relationships of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.\| +\|[Update accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-update.md)\|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)\|Update the properties of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.\| +\|[Delete accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-delete.md)\|None\|Delete an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.\| + +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The callback configuration for a custom extension.\| +\|createdBy\|String\|The userPrincipalName of the user or identity of the subject that created this resource. Read-only.\| +\|createdDateTime\|DateTimeOffset\|When the entity was created.\| +\|description\|String\|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|displayName\|String\|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).\| +\|id\|String\|Read-only.\| +\|lastModifiedBy\|String\|The userPrincipalName of the identity that last modified the entity. \| +\|lastModifiedDateTime\|DateTimeOffset\|When the entity was last modified.\| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "keyProperty": "id", + "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension", + "baseType": "microsoft.graph.customCalloutExtension", + "openType": false +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id": "String (identifier)", + "authenticationConfiguration": { + "@odata.type": "microsoft.graph.customExtensionAuthenticationConfiguration" + }, + "clientConfiguration": { + "@odata.type": "microsoft.graph.customExtensionClientConfiguration" + }, + "description": "String", + "displayName": "String", + "endpointConfiguration": { + "@odata.type": "microsoft.graph.customExtensionEndpointConfiguration" + }, + "createdBy": "String", + "lastModifiedBy": "String", + "createdDateTime": "String (timestamp)", + "lastModifiedDateTime": "String (timestamp)", + "callbackConfiguration": { + "@odata.type": "microsoft.graph.customExtensionCallbackConfiguration" + } +} +``` +
v1.0	Accesspackagecatalog	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackagecatalog.md	An access package catalog might also have linked resources that are used in thos \| [List accessPackageCatalog resources](../api/accesspackagecatalog-list-accesspackageresources.md) \| [accessPackageResource](accesspackageresource.md) collection \| Retrieve a list of accessPackageResource objects in a catalog. \| \| Access package resource roles\| \| \| \| [List accessPackageCatalog resource roles](../api/accesspackagecatalog-list-accesspackageresourceroles.md) \| [accessPackageResourceRole](accesspackageresourcerole.md) collection \| Retrieve a list of accessPackageResourceRole objects for resources in a catalog. \| +\| Access package custom package workflow extensions\| \| \| +\|[List accessPackageCustomWorkflowExtensions](../api/accesspackagecatalog-list-accessPackageCustomWorkflowExtensions.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) collection\|Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects and their properties.\| +\|[Create accessPackageCustomWorkflowExtensions](../api/accesspackagecatalog-post-accessPackageCustomWorkflowExtensions.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)\|Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.\| +\|[Get accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-get.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md)\|Read the properties and relationships of a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.\| +\|[Update accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-update.md)\|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md)\|Update the properties of a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.\| +\|[Delete accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-delete.md)\|None\|Deletes a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.\| +\|[Get accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-get.md)\|[accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)\|Read the properties and relationships of a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.\| +\|[Update accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-update.md)\|[accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)\|Update the properties of a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.\| +\|[Delete accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-delete.md)\|None\|Deletes a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.\| \| Custom access package package workflow extensions\| \| \| \|[List customAccessPackageWorkflowExtensions](../api/accesspackagecatalog-list-customaccesspackageworkflowextensions.md)\|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection\|Get a list of the [customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) objects and their properties.\| \|[Create customAccessPackageWorkflowExtensions](../api/accesspackagecatalog-post-customaccesspackageworkflowextensions.md)\|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md)\|Create a new [customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) object.\| An access package catalog might also have linked resources that are used in thos \| Relationship \| Type \| Description \| \|:-\|:\|:\| \|accessPackages\|[accessPackage](accesspackage.md) collection\| The access packages in this catalog. Read-only. Nullable. Supports `$expand`.\| +\|accessPackageCustomWorkflowExtensions\|[customCalloutExtension](../resources/customcalloutextension.md) collection\|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. \| \|accessPackageResources\|[accessPackageResource](accesspackageresource.md) collection\| Read-only. Nullable.\| \|accessPackageResourceRoles\|[accessPackageResourceRole](accesspackageresourcerole.md) collection\|The roles in each resource in a catalog. Read-only.\| \|accessPackageResourceScopes\|[accessPackageResourceScope](accesspackageresourcescope.md) collection\|Read-only.\| -\|customAccessPackageWorkflowExtension\|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection\|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. \| +\|customAccessPackageWorkflowExtension \|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection\|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. \| ## JSON representation
v1.0	Activateservice	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/activateservice.md	- Title: "activateService resource type" -description: "Represents a service to be activated." - -doc_type: apiPageType -- -# activateService resource type (deprecated) - -Namespace: microsoft.graph -- -Represents a service to be activated. - -## Properties - -\| Property \| Type \| Description \| -\| -- \| \| - \| -\| service\| String \| The name of the service to activate. \| -\| servicePlanId \| Guid \| The plan identifier of the service plan to activate. \| -\| skuId \| Guid \| The SKU identifier of the service plan. \| - -## JSON representation - -Here is a JSON representation of the resource. - -<!-- { - "blockType": "resource", - "optionalProperties": [ - - ], - "@odata.type": "microsoft.graph.activateService" -}--> - -```json -{ - "service": "String", - "skuId": "Guid", - "servicePlanId": "Guid" -} - -``` - -<!-- uuid: 20fd7863-9545-40d4-ae8f-fee2d115a690 -2015-10-25 14:57:30 UTC --> -<!-- -{ - "type": "#page.annotation", - "description": "activateService", - "keywords": "", - "section": "documentation", - "tocPath": "", - "suppressions": [] -} >
v1.0	Applicationauthenticationmethodpolicy	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/applicationauthenticationmethodpolicy.md	ms.prod: "identity-and-sign-in" doc_type: "conceptualPageType" -# Azure AD application authentication methods API overview (preview) +# Azure AD application authentication methods API overview Namespace: microsoft.graph
v1.0	Authenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/authenticationmethodconfiguration.md	The following authentication methods are derived from the **authenticationMethod + [emailAuthenticationMethodConfiguration](emailauthenticationmethodconfiguration.md) + [fido2AuthenticationMethodConfiguration](fido2authenticationmethodconfiguration.md) + [microsoftAuthenticatorAuthenticationMethodConfiguration](microsoftauthenticatorauthenticationmethodconfiguration.md)++ [voiceAuthenticationMethodConfiguration](voiceauthenticationmethodconfiguration.md) + [smsAuthenticationMethodConfiguration](smsauthenticationmethodconfiguration.md)++ [softwareOathAuthenticationMethodConfiguration](softwareoathauthenticationmethodconfiguration.md) + [temporaryAccessPassAuthenticationMethodConfiguration](smsauthenticationmethodconfiguration.md) + [x509CertificateAuthenticationMethodConfiguration](x509certificateauthenticationmethodconfiguration.md) The following is a JSON representation of the resource. { "@odata.type": "#microsoft.graph.authenticationMethodConfiguration", "id": "String (identifier)", - "state": "String" + "state": "String", + "excludeTargets": [ + { + "@odata.type": "microsoft.graph.excludeTarget" + } + ] } ```
v1.0	Authenticationmethodspolicies Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/authenticationmethodspolicies-overview.md	The authentication method policies APIs are used to manage policy settings. For \|Authentication method policy \| Description \| \|:\|:\| -\|[smsAuthenticationMethodConfiguration](smsAuthenticationMethodConfiguration.md)\| Define users who can use Text Message on the Azure AD tenant.\| +\|[emailauthenticationmethodconfiguration](emailauthenticationmethodconfiguration.md)\|Define users who can use email OTP on the Azure AD tenant.\| \|[fido2authenticationmethodconfiguration](fido2authenticationmethodconfiguration.md)\| Define FIDO2 security key restrictions and users who can use them to sign in to Azure AD.\| \|[microsoftauthenticatorauthenticationmethodconfiguration](microsoftauthenticatorauthenticationmethodconfiguration.md)\|Define users who can use Microsoft Authenticator on the Azure AD tenant.\| -\|[emailauthenticationmethodconfiguration](emailauthenticationmethodconfiguration.md)\|Define users who can use email OTP on the Azure AD tenant.\| \|[passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration](passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration.md) (deprecated)\|Define users who can use Passwordless Phone Sign-in to sign in to Azure AD.\| +\|[smsAuthenticationMethodConfiguration](smsAuthenticationMethodConfiguration.md)\| Define users who can use Text Message on the Azure AD tenant.\| +\|[softwareOathAuthenticationMethodConfiguration](softwareOathAuthenticationMethodConfiguration.md)\|Define users who can use a third-party software OATH authentication method.\| \|[temporaryaccesspassauthenticationmethodconfiguration](temporaryaccesspassauthenticationmethodconfiguration.md)\|Define users who can use Temporary Access Pass to sign in to Azure AD.\| +\|[voiceAuthenticationMethodConfiguration](voiceAuthenticationMethodConfiguration.md)\|Define users or groups that are enabled to use the voice call authentication method.\| \|[x509CertificateAuthenticationMethodConfiguration](x509CertificateAuthenticationMethodConfiguration.md)\|Define users who can use X.509 certificate to sign in to Azure AD.\| ## Policies available to push users to set up authentication methods:
v1.0	Azureadpoptokenauthentication	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/azureadpoptokenauthentication.md	+ + Title: "azureAdPopTokenAuthentication resource type" +description: "Defines the Azure AD Proof Of Possession (PoP) used to authenticate with a workflow extension." + +ms.localizationpriority: medium ++ +# azureAdPopTokenAuthentication resource type + +Namespace: microsoft.graph ++ +Defines the Proof Of Possession (PoP) token authentication model to authenticate a logic app with a [accessPackageAssignmentRequestWorkflowExtensions](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or a [accessPackageAssignmentWorkflowExtensions](../resources/accessPackageAssignmentWorkflowExtension.md) object. + +Inherits from [customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md). + +## Properties +None. + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "baseType": "microsoft.graph.customExtensionAuthenticationConfiguration", + "@odata.type": "microsoft.graph.azureAdPopTokenAuthentication" +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.azureAdPopTokenAuthentication" +} +```
v1.0	Callrecords Api Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/callrecords-api-overview.md	Title: "Working with the call records API in Microsoft Graph" description: "The Microsoft Graph call records API allows you to retrieve usage and diagnostics data for calls and online meetings within your organization."-+ doc_type: conceptualPageType ms.prod: cloud-communications ms.localizationpriority: high ms.localizationpriority: high [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Call records provide usage and diagnostic information about the calls and online meetings that occur within your organization when using Microsoft Teams or Skype for Business. You can use the call records APIs to subscribe to call records and look up call records by IDs. +Call records provide usage and diagnostic information about the calls and online meetings that occur within your organization when using Microsoft Teams or Skype for Business. You can use the call records APIs to subscribe to call records and look up call records by IDs. A call record is created after a call or meeting ends and the record is retained for 30 days. The call records API is defined in the OData sub-namespace, `microsoft.graph.callRecords`.
v1.0	Callrecords Callrecord	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/callrecords-callrecord.md	Title: "callRecord resource type" description: "Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting." ms.localizationpriority: medium-+ ms.prod: "cloud-communications" doc_type: "resourcePageType" Namespace: microsoft.graph.callRecords [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting. +Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting. A call record is created after a call or meeting ends. ## Methods
v1.0	Cloudpc	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpc.md	Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into \|[List for user](../api/user-list-cloudpcs.md)\|[cloudPC](../resources/cloudpc.md) collection\|List the [cloudPC](../resources/cloudpc.md) devices that are attributed to the signed-in user.\| \|[Get launch info for user](../api/cloudpc-getcloudpclaunchinfo.md)\|[cloudPCLaunchInfo](../resources/cloudpclaunchinfo.md)\|Get the [cloudPCLaunchInfo](../resources/cloudpclaunchinfo.md) for the signed-in user.\| \|[Get connectivity history](../api/cloudpc-getcloudpcconnectivityhistory.md)\|[cloudPcConnectivityEvent](../resources/cloudpcconnectivityevent.md) collection\|Get the Cloud PC connectivity history.\| +\|[Get shift work access state](../api/cloudpc-getshiftworkcloudpcaccessstate.md)\|[shiftWorkCloudPcAccessState](#shiftworkcloudpcaccessstate-values)\|Get the access state of the shift work Cloud PC. The possible values are: {unassigned, noLicensesAvailable, activationFailed, active, activating, waitlisted, unknownFutureValue, hibernated}. Note that you must use the `Prefer: include-unknown-enum-members` request header to get the following value in this [shiftWorkCloudPcAccessState](#shiftworkcloudpcaccessstate-values): {hibernated}.\| \|[Get supported remote actions](../api/cloudpc-getsupportedcloudpcremoteactions.md)\|[cloudPcRemoteActionCapability](../resources/cloudpcremoteactioncapability.md) collection\|Get a list of supported Cloud PC remote actions for a specific Cloud PC device, including the action names and capabilities.\| \|[Retry partner agent installation](../api/cloudpc-retrypartneragentinstallation.md)\|None\|Retry installation for the partner agents which failed to install on the [cloudPC](../resources/cloudpc.md).\| Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into \|Property\|Type\|Description\| \|:\|:\|:\| \|aadDeviceId\|String\|The Azure Active Directory (Azure AD) device ID of the Cloud PC.\| -\|connectivityResult\|[cloudPcConnectivityResult](../resources/cloudpcconnectivityresult.md)\|The connectivity health check result of a Cloud PC, including the updated timestamp and whether the Cloud PC is able to be connected or not.\| +\|connectivityResult\|[cloudPcConnectivityResult](../resources/cloudpcconnectivityresult.md)\|The connectivity health check result of a Cloud PC, including the updated timestamp and whether the Cloud PC can be connected.\| \|diskEncryptionState\|[cloudPcDiskEncryptionState](#cloudpcdiskencryptionstate-values)\|The disk encryption applied to the Cloud PC. Possible values: `notAvailable`, `notEncrypted`, `encryptedUsingPlatformManagedKey`, `encryptedUsingCustomerManagedKey`, and `unknownFutureValue`.\| \|displayName\|String\|The display name of the Cloud PC.\| \|gracePeriodEndDateTime\|DateTimeOffset\|The date and time when the grace period ends and reprovisioning/deprovisioning happens. Required only if the status is `inGracePeriod`. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.\| Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into \|restoring\|The Cloud PC is restoring.\| \|unknownFutureValue\|Evolvable enumeration sentinel value. Do not use.\| +### shiftWorkCloudPcAccessState values +The following table lists the members of an [evolvable enumeration](#shiftworkcloudpcaccessstate-values). You must use the `Prefer: include-unknown-enum-members` request header to get the following values in this evolvable enum: `hibernated`. + +\|Member\|Description\| +\|:\|:\| +\|unassigned\|Set to unassigned if the Cloud PC is not consuming any shared-use licenses. The default value is unassigned.\| +\|noLicensesAvailable\|Indicates that all shared-use licenses are in use.\| +\|activationFailed\|Indicates that the shift work Cloud PC activation failed after the user requested a shift work Cloud PC.\| +\|active\|Indicates that the shift work Cloud PC is in an active state with a shared-use license assigned, and the user can connect to the Cloud PC.\| +\|activating\|Indicates that a user requested to connect the Cloud PC and the service is starting.\| +\|waitlisted (deprecated)\|Indicates that the shift work Cloud PC is in waitlisted state after the user requests to connect this Cloud PC and all shared use licenses are being actively used. This value is deprecated and will stop returning on May 17, 2023. \| +\|unknownFutureValue\|Evolvable enumeration sentinel value. Do not use.\| +\|hibernated\|Indicates that the shift work Cloud PC is in the hibernated state before it's shut down and deallocated. A shift work Cloud PC in hibernated state is still accessible by the user.\| + ## Relationships None.
v1.0	Cloudpcdeviceimage	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcdeviceimage.md	Represents the image resource on a Cloud PC. \|Property\|Type\|Description\| \|:\|:\|:\| -\|displayName\|String\|The image's display name.\| +\|displayName\|String\|The display name of the image.\| \|expirationDate\|Date\|The date the image became unavailable.\| \|id\|String\|Unique identifier for the image resource on the Cloud PC. Read-only.\| -\|lastModifiedDateTime\|DateTimeOffset\|The data and time that the image was last modified. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as '2014-01-01T00:00:00Z'.\| -\|operatingSystem\|String\|The image's operating system. For example: Windows 10 Enterprise.\| -\|osBuildNumber\|String\|The image's OS build version. For example: 1909.\| +\|lastModifiedDateTime\|DateTimeOffset\|The data and time that the image was last modified. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as `2014-01-01T00:00:00Z`.\| +\|operatingSystem\|String\|The operating system of the image. For example, `Windows 10 Enterprise`.\| +\|osBuildNumber\|String\|The OS build version of the image. For example, `1909`.\| \|osStatus\|[cloudPcDeviceImageOsStatus](#cloudpcdeviceimageosstatus-values)\|The OS status of this image. Possible values are: `supported`, `supportedWithWarning`, `unknownFutureValue`.\| -\|sourceImageResourceId\|String\|The ID of the source image resource on Azure. Required format: "/subscriptions/{subscription-id}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/images/{imageName}".\| +\|sourceImageResourceId\|String\|The ID of the source image resource on Azure. Required format: `/subscriptions/{subscription-id}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/images/{imageName}`.\| \|status\|[cloudPcDeviceImageStatus](#cloudpcdeviceimagestatus-values)\|The status of the image on Cloud PC. Possible values are: `pending`, `ready`, `failed`.\| -\|statusDetails\|cloudPcDeviceImageStatusDetails\|The details of the image's status, which indicates why the upload failed, if applicable. Possible values are: `internalServerError`, `sourceImageNotFound`, `osVersionNotSupported`, `sourceImageInvalid`, and `sourceImageNotGeneralized`.\| -\|version\|String\|The image version. For example: 0.0.1, 1.5.13.\| +\|statusDetails\|cloudPcDeviceImageStatusDetails\|The details of the status of the image that indicates why the upload failed, if applicable. Possible values are: `internalServerError`, `sourceImageNotFound`, `osVersionNotSupported`, `sourceImageInvalid`, and `sourceImageNotGeneralized`.\| +\|version\|String\|The image version. For example, `0.0.1` and `1.5.13`.\| ### cloudPcDeviceImageStatus values The following is a JSON representation of the resource. ``` json { "@odata.type": "#microsoft.graph.cloudPcDeviceImage", - "id": "String (identifier)", "displayName": "String", + "expirationDate": "String (timestamp)", + "id": "String (identifier)", + "lastModifiedDateTime": "String (timestamp)", "operatingSystem": "String", "osBuildNumber": "String", - "version": "String", - "lastModifiedDateTime": "String (timestamp)", + "osStatus": "String", + "sourceImageResourceId": "String", "status": "String", "statusDetails": "String", - "sourceImageResourceId": "String", - "expirationDate":"String (timestamp)", - "osStatus":"String" + "version": "String" } ```
v1.0	Cloudpcgalleryimage	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcgalleryimage.md	Title: "cloudPcGalleryImage resource type" -description: "Represents the gallery image resource of the current organization." +description: "Represents the gallery image resource of the current organization that can be used to provision a Cloud PC." ms.localizationpriority: medium ms.prod: "cloud-pc" Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents the gallery image resource of the current organization which can be used to provision a Cloud PC. +Represents the gallery image resource of the current organization that can be used to provision a Cloud PC. ## Methods Represents the gallery image resource of the current organization which can be u \|Property\|Type\|Description\| \|:\|:\|:\| \|displayName\|String\|The official display name of the gallery image. Read-only.\| -\|endDate\|Date\|The date in which this image is no longer within long-term support. The Cloud PC will continue to provide short-term support. Read-only.\| +\|endDate\|Date\|The date in which this image is no longer within long-term support. The Cloud PC continues to provide short-term support. Read-only.\| \|expirationDate\|Date\|The date when the image is no longer available. Read-only.\| \|id\|String\|Unique identifier for the gallery image resource on the Cloud PC. Read-only.\| -\|offer\|String\|The offer name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.\| -\|offerDisplayName\|String\|The official display offer name of the gallery image. For example, Windows 10 Enterprise + OS Optimizations. Read-only.\| -\|publisher\|String\|The publisher name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.\| +\|offer\|String\|The offer name of the gallery image. This value is passed to Azure to get the image resource. Read-only.\| +\|offerDisplayName\|String\|The official display offer name of the gallery image. For example, `Windows 10 Enterprise + OS Optimizations`. Read-only.\| +\|publisher\|String\|The publisher name of the gallery image. This value is passed to Azure to get the image resource. Read-only.\| \|recommendedSku\|String\|Recommended Cloud PC SKU for this gallery image. Read-only.\| \|sizeInGB\|Int32\|The size of this image in gigabytes. Read-only.\| -\|sku\|String\|The SKU name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.\| -\|skuDisplayName\|String\|The official display stock keeping unit (SKU) name of this gallery image. For example, 2004. Read-only.\| +\|sku\|String\|The SKU name of the gallery image. This value is passed to Azure to get the image resource. Read-only.\| +\|skuDisplayName\|String\|The official display stock keeping unit (SKU) name of this gallery image. For example, `2004`. Read-only.\| \|startDate\|Date\|The date when the image becomes available. Read-only.\| \|status\|cloudPcGalleryImageStatus\|The status of the gallery image on the Cloud PC. Possible values are: `supported`, `supportedWithWarning`, `notSupported`, `unknownFutureValue`. Read-only.\| The following is a JSON representation of the resource. ``` json { "@odata.type": "#microsoft.graph.cloudPcDeviceImage", + "displayName": "String", + "endDate": "String (Date)", + "expiredDate": "String (Date)", "id": "String (identifier)", - "displayName":"String", - "offerDisplayName":"String", - "skuDisplayName":"String", - "publisher":"String", - "offer":"String", - "sku":"String", - "recommendedSku":"String", - "status":"String", - "sizeInGB":"Int32", - "startDate":"String (Date)", - "endDate":"String (Date)", - "expiredDate":"String (Date)" + "offer": "String", + "offerDisplayName": "String", + "publisher": "String", + "recommendedSku": "String", + "sizeInGB": "Int32", + "sku": "String", + "skuDisplayName": "String", + "startDate": "String (Date)", + "status": "String" } ```
v1.0	Cloudpcserviceplan	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcserviceplan.md	Title: "cloudPcServicePlan resource type" -description: "Represents a Windows 365 service plan configured for a Cloud PC." +description: "Represents a Windows 365 service plan that can be purchased and configured for a Cloud PC." ms.localizationpriority: medium ms.prod: "cloud-pc" Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents a Windows 365 service plan configured for a Cloud PC. +Represents a Windows 365 service plan that can be purchased and configured for a Cloud PC. -For examples of currently available service plans, see [Windows 365 compare plans and pricing](https://www.microsoft.com/windows-365/business/compare-plans-pricing). Currently, Microsoft Graph API is available for Windows 365 Enterprise. +For examples of currently available service plans, see [Windows 365 compare plans and pricing](https://www.microsoft.com/windows-365/business/compare-plans-pricing). Currently, the Microsoft Graph API is available for Windows 365 Enterprise. ## Methods For examples of currently available service plans, see [Windows 365 compare plan \|type\|[cloudPcServicePlanType](#cloudpcserviceplantype-values)\|The type of the service plan. Possible values are: `enterprise`, `business`, `unknownFutureValue`. Read-only.\| \|userProfileInGB\|Int32\|The size of the user profile disk in GB. Read-only.\| \|vCpuCount\|Int32\|The number of vCPUs. Read-only.\| +\|supportedSolution\|[cloudPcManagementService](../resources/cloudpconpremisesconnection.md#cloudpcmanagementservice-values)\|The supported service or solution for the region. The possible values are: `windows365`, `devBox`, `rpaBox`, `unknownFutureValue`. Read-only.\| +\|provisioningType\|[cloudPcProvisioningType](../resources/cloudpcprovisioningpolicy.md#cloudpcprovisioningtype-values)\|Specifies the type of license used when provisioning Cloud PCs. By default, the license type is `dedicated`. Possible values are: `dedicated`, `shared`, `unknownFutureValue`.\| ### cloudPcServicePlanType values The following is a JSON representation of the resource. ``` json { "@odata.type": "#microsoft.graph.cloudPcServicePlan", - "id": "String (identifier)", "displayName": "String", - "type": "String", - "vCpuCount": "Int32", + "id": "String (identifier)", + "provisioningType": "String", "ramInGB": "Int32", "storageInGB": "Int32", - "userProfileInGB": "Int32" + "supportedSolution": "String", + "type": "String", + "userProfileInGB": "Int32", + "vCpuCount": "Int32" } ```
v1.0	Cloudpcsnapshot	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcsnapshot.md	Inherits from [entity](../resources/entity.md). \|createdDateTime\|DateTimeOffset\|The date and time at which the snapshot was taken. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.\| \|id\|String\|The unique identifier for the snapshot of the Cloud PC device at a specific point in time. Inherited from [entity](../resources/entity.md).\| \|lastRestoredDateTime\|DateTimeOffset\|The date and time at which the snapshot was last used to restore the Cloud PC device. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.\| -\|snapshotType\| [cloudPcSnapshotType](#cloudpcsnapshottype-values) \| The type of snapshot. indicates how the snapshot is to be created. Possible values are `automatic`, `manual`. Default value is `automatic`.\| +\|snapshotType\| [cloudPcSnapshotType](#cloudpcsnapshottype-values) \| The type of snapshot that indicates how to create the snapshot. Possible values are `automatic`, `manual`. Default value is `automatic`.\| \|status\|[cloudPcSnapshotStatus](#cloudpcsnapshotstatus-values)\|The status of the Cloud PC snapshot. The possible values are: `ready`, `unknownFutureValue`.\| -\|expirationDateTime\|DateTimeOffset\| The date and time when the snapshot expires. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as'2014-01-01T00:00:00Z'.\| +\|expirationDateTime\|DateTimeOffset\| The date and time when the snapshot expires. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.\| ### cloudPcSnapshotStatus values The following is a JSON representation of the resource. "@odata.type": "#microsoft.graph.cloudPcSnapshot", "cloudPcId": "String", "createdDateTime": "String (timestamp)", + "expirationDateTime": "String (timestamp)", "id": "String (identifier)", "lastRestoredDateTime": "String (timestamp)", - "status": "String", "snapshotType": "String", - "expirationDateTime": "String (timestamp)", + "status": "String" } ```
v1.0	Customcalloutextension	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customcalloutextension.md	Title: "customCalloutExtension resource type" description: "An abstract type that defines the configuration for logic apps that can be integrated with the customer's entitlement management use cases to implement broader governance workflows. This abstract type is inherited by the customAccessPackageWorkflowExtension resource type"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType This abstract type is inherited by: - [customAccessPackageWorkflowExtension](customaccesspackageworkflowextension.md) - [customTaskExtension](../resources/identitygovernance-customtaskextension.md) +- [accessPackageAssignmentRequestWorkflowExtension](accesspackageassignmentrequestworkflowextension.md) +- [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) Inherits from [entity](entity.md).
v1.0	Customextensionauthenticationconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensionauthenticationconfiguration.md	Title: "customExtensionAuthenticationConfiguration resource type" description: "Abstract base type that exposes the configuration for the authenticationConfiguration property of the derived types that inherit from the customCalloutExtension abstract type"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Abstract base type that exposes the configuration for the authenticationConfiguration property of the derived types that inherit from the [customCalloutExtension](customcalloutextension.md) abstract type. This abstract type is inherited by the [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md) resource type. +Abstract base type that exposes the configuration for the authenticationConfiguration property of the derived types that inherit from the [customCalloutExtension](customcalloutextension.md) abstract type. + +This abstract type is inherited by the following resource types: +- [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md) +- [azureAdPopTokenAuthentication](../resources/azureAdPopTokenAuthentication.md) + +The type of token authentication used depends on the token security. If the token security value is normal, you will use the [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md) resource type. If the value is Proof of Possession, you will use the [azureAdPopTokenAuthentication](../resources/azureAdPopTokenAuthentication.md) resource type. ## Properties The following is a JSON representation of the resource. ``` json { - "@odata.type": "#microsoft.graph.customExtensionAuthenticationConfiguration " + "@odata.type": "#microsoft.graph.customExtensionAuthenticationConfiguration" } -``` +```
v1.0	Customextensioncallbackconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensioncallbackconfiguration.md	Title: "customExtensionCallbackConfiguration resource type" -description: "The callback configuration for a custom task extension that's linked to an Azure Logic App." - +description: "Callback settings that define how long Azure AD can wait for a resume signal for the callout that it made to the logic app." + ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -This is an abstract type describing the callback configuration of a [custom callout extension](../resources/customcalloutextension.md). -This abstract type is inherited by: -+ [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md) +Callback settings that define how long Azure AD can wait for a resume signal for the callout that it made to the logic app. This is an abstract type that's inherited by [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md). ## Properties \|Property\|Type\|Description\| \|:\|:\|:\| -\|timeoutDuration\|Duration\|Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours.\| +\|timeoutDuration\|Duration\|The maximum duration in ISO 8601 format that Azure AD will wait for a resume action for the callout it sent to the logic app. The valid range for custom extensions in lifecycle workflows is five minutes to three hours. The valid range for custom extensions in entitlement management is between 5 minutes and 14 days. For example, `PT3H` refers to three hours, `P3D` refers to three days, `PT10M` refers to ten minutes.\| -## Relationships +## Relationships None. ## JSON representation- The following is a JSON representation of the resource. <!-- { "blockType": "resource", The following is a JSON representation of the resource. "timeoutDuration": "String (duration)" } ```+
v1.0	Customextensioncalloutinstance	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensioncalloutinstance.md	+ + Title: "customExtensionCalloutInstance resource type" +description: "Defines the calls that were made by an instance of a custom extension callout." + +ms.localizationpriority: medium ++ +# customExtensionCalloutInstance resource type + +Namespace: microsoft.graph ++ +Defines the calls that were made by an instance of a custom extension callout. + +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|customExtensionId\|String\|Identification of the custom extension that was triggered at this instance.\| +\|detail\|String\|Details provided by the logic app during the callback of the request instance.\| +\|externalCorrelationId\|String\|The unique run identifier for the logic app.\| +\|id\|String\|Unique identifier for the callout instance. Read-only.\| +\|status\|customExtensionCalloutInstanceStatus\| The status of the request to the custom extension. The possible values are: `calloutSent`, `callbackReceived`, `calloutFailed`, `callbackTimedOut`, `waitingForCallback`, `unknownFutureValue`.\| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "@odata.type": "microsoft.graph.customExtensionCalloutInstance" +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.customExtensionCalloutInstance", + "id": "String (identifier)", + "customExtensionId": "String", + "externalCorrelationId": "String", + "detail": "String", + "status": "String" +} +``` +
v1.0	Customextensiondata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensiondata.md	Title: "customExtensionData resource type" description: "An abstract type noting the data being sent and received as part of extensibility scenarios based on custom callout extensions"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] This is an abstract type noting the data being sent and received as part of extensibility scenarios based on [custom callout extensions](../resources/customcalloutextension.md). The following types are derived from this abstract type: -+ [customTaskExtensionCalloutData](../resources/identitygovernance-customtaskextensioncalloutdata.md) -+ [customTaskExtensionCallbackData](../resources/identitygovernance-customtaskextensioncallbackdata.md) +- [accessPackageAssignmentRequestCallbackData](../resources/accesspackageassignmentrequestcallbackdata.md) +- [customTaskExtensionCalloutData](../resources/identitygovernance-customtaskextensioncalloutdata.md) +- [customTaskExtensionCallbackData](../resources/identitygovernance-customtaskextensioncallbackdata.md) ## Properties- None. ## Relationships- None. ## JSON representation- The following is a JSON representation of the resource. <!-- { "blockType": "resource",
v1.0	Customextensionstagesetting	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensionstagesetting.md	+ + Title: "customExtensionStageSetting resource type" +description: "Defines when to execute an access package custom workflow extension." + +ms.localizationpriority: medium ++ +# customExtensionStageSetting resource type + +Namespace: microsoft.graph ++ +Defines when to execute a [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object. ++ +Inherits from [entity](../resources/entity.md). + +To read the customExtensionStageSettings objects on a policy, append `?$expand=customExtensionStageSettings` to a [GET accessPackageAssignmentPolicy](../api/accesspackageassignmentpolicy-get.md) request. For example, `GET https://graph.microsoft.com/bet#example-2-retrieve-the-custom-extension-handlers-for-a-policy). + +To delete the customExtensionStageSettings objects from a policy, call the [Update accessPackageAssignmentPolicy](../api/accesspackageassignmentpolicy-update.md) and specify the customExtensionHandlers property as an empty collection. For more details, see [Example 2: Remove the customExtensionStageSettings from a policy](../api/accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy). + +## Methods +None ++ +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|id\|String\| Identifier of the stage. Inherited from [entity](../resources/entity.md).\| +\|stage\|accessPackageCustomExtensionStage\|Indicates the stage of the access package assignment request workflow when the access package custom extension runs. The possible values are: `assignmentRequestCreated`, `assignmentRequestApproved`, `assignmentRequestGranted`, `assignmentRequestRemoved`, `assignmentFourteenDaysBeforeExpiration`, `assignmentOneDayBeforeExpiration`, `unknownFutureValue`.\| + +## Relationships +\|Relationship\|Type\|Description\| +\|:\|:\|:\| +\|customExtension\|[customCalloutExtension](../resources/customcalloutextension.md)\|Indicates the custom workflow extension that will be executed at this stage. Nullable. Supports `$expand`.\| + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "keyProperty": "id", + "@odata.type": "microsoft.graph.customExtensionStageSetting", + "baseType": "microsoft.graph.entity", + "openType": false +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.customExtensionStageSetting", + "id": "String (identifier)", + "stage": "String" +} +``` +
v1.0	Dynamics Graph Reference	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/dynamics-graph-reference.md	Use the Azure AD v2.0 endpoint to authenticate Dynamics 365 Business Central API ## Common Dynamics 365 Business Central scenarios The Dynamics 365 Business Central API allows you to read and modify business data through apps that are connected and integrated through a single endpoint. Use the API to, for example, get access to [customer](../resources/dynamics-customer.md) and [vendor](../resources/dynamics-vendor.md) information, or [view overdue payments](../resources/dynamics-agedaccountspayable.md). +## Environment +To enable the Dynamics 365 Business Central API, you must ensure that the Environment Name in the Business Central Admin Center is Production. +++ ## What's new Find out about the [latest new features and updates](/graph/whats-new-overview) for this API set.
v1.0	Emailauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/emailauthenticationmethodconfiguration.md	Namespace: microsoft.graph Represents this tenant's email OTP authentication methods policy. Authentication methods policies define configuration settings and users or groups who are enabled to use the authentication method. Email OTP may be used by the tenant's cloud-native users for self-service password reset, or by external users for authentication during invitation redemption and self-service sign-up for specific apps in user flows. +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). + ## Methods \|Method\|Return type\|Description\| Represents this tenant's email OTP authentication methods policy. Authentication \|Property\|Type\|Description\| \|:\|:\|:\| +\|allowExternalIdToUseEmailOtp\|externalEmailOtpState\|Determines whether email OTP is usable by external users for authentication. Possible values are: `default`, `enabled`, `disabled`, `unknownFutureValue`. Tenants in the `default` state who did not use public preview will automatically have email OTP enabled beginning in October 2021.\| \|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| \|id\|String\|The authentication method policy identifier. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).\| \|state\|authenticationMethodState\|Indicates whether this authentication method is enabled or not. Possible values are: `enabled`, `disabled`.\| -\|allowExternalIdToUseEmailOtp\|externalEmailOtpState\|Determines whether email OTP is usable by external users for authentication. Possible values are: `default`, `enabled`, `disabled`, `unknownFutureValue`. Tenants in the `default` state who did not use public preview will automatically have email OTP enabled beginning in October 2021.\| ## Relationships The following is a JSON representation of the resource. ```json { "@odata.type": "#microsoft.graph.emailAuthenticationMethodConfiguration", - "id": "String (identifier)", - "state": "String", - "excludeTargets": [ + "allowExternalIdToUseEmailOtp": "String", + "excludeTargets": [ { "@odata.type": "microsoft.graph.excludeTarget" } ], - "allowExternalIdToUseEmailOtp": "String", - "includeTargets": [ { "@odata.type": "microsoft.graph.authenticationMethodTarget" } ] + "id": "String (identifier)", + "includeTargets": [ { "@odata.type": "microsoft.graph.authenticationMethodTarget" } ], + "state": "String" } -``` +```
v1.0	Emailsettings	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/emailsettings.md	+ + Title: "emailSettings resource type" +description: "Defines the settings for emails sent using Lifecycle Workflows." + +ms.localizationpriority: medium ++ +# emailSettings resource type + +Namespace: microsoft.graph ++ +Defines the settings for emails sent from Lifecycle workflow [tasks](identitygovernance-task.md). Allows you to use a verified custom [domain](domain.md) and [organizationalBranding](organizationalbranding.md) with emails sent out via workflow tasks. + +## Properties + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|senderDomain\|String\|Specifies the [domain](domain.md) that should be used when sending email notifications. This domain must be [verified](../api/domain-verify.md) in order to be used.\| +\|useCompanyBranding\|Boolean\|Specifies if the organizationΓÇÖs banner logo should be included in email notifications. The banner logo will replace the Microsoft logo at the top of the email notification. If `true` the banner logo will be taken from the tenantΓÇÖs [branding settings](organizationalbranding.md). This value can only be set to `true` if the [organizationalBranding](organizationalbranding.md) bannerLogo property is set. \| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "@odata.type": "microsoft.graph.emailSettings" +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.emailSettings", + "senderDomain": "String", + "useCompanyBranding": "Boolean" +} +```
v1.0	Enums	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/enums.md	Namespace: microsoft.graph +### usqState values + +\| Member \| +\|:-\| +\| norma. \| +\| nearing \| +\| critical \| +\| full \| +\| overLimit \| + ### userPurpose values \| Member \| Namespace: microsoft.graph \|requestReceived\| \|unknownFutureValue\| +### customExtensionCalloutInstanceStatus values + +\|Member\| +\|:\| +\|calloutSent\| +\|callbackReceived\| +\|calloutFailed\| +\|callbackTimedOut\| +\|waitingForCallback\| +\|unknownFutureValue\| + ### accessPackageCustomExtensionStage values \|Member\| Possible values for user account types (group membership), per Windows definitio \|premigration\| \|migrationInProgress\| \|migrationComplete\| +\|unknownFutureValue\| ### authenticationEventType values
v1.0	Externalconnectors Urltoitemresolverbase	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/externalconnectors-urltoitemresolverbase.md	Namespace: microsoft.graph.externalConnectors Defines the rules for resolving a URL to the ID of an [externalItem](externalconnectors-externalitem.md). -This is an abstract type. +This is an abstract base type of [itemIdResolver](externalconnectors-itemidresolver.md).. ## Properties \|Property\|Type\|Description\|
v1.0	Fido2authenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/fido2authenticationmethodconfiguration.md	Namespace: microsoft.graph Represents a FIDO2 authentication methods policy. Authentication methods policies define configuration settings and users or groups who are enabled to use the authentication method. +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). + ## Methods \|Method\|Return type\|Description\| The following is a JSON representation of the resource. "@odata.type": "#microsoft.graph.fido2AuthenticationMethodConfiguration", "id": "String (identifier)", "state": "String", - "excludeTargets": [ + "excludeTargets": [ { "@odata.type": "microsoft.graph.excludeTarget" }
v1.0	Identitygovernance Customtaskextensioncallbackconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncallbackconfiguration.md	Namespace: microsoft.graph.identityGovernance Defines if, and in, which time span a callback is expected from the Azure Logic App. -Inherits from [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md). +Inherits from [customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md). ## Properties \|Property\|Type\|Description\| \|:\|:\|:\| -\|timeoutDuration\|Duration\| Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours. Inherited from [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md).\| +\|timeoutDuration\|Duration\| Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours. Inherited from [customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md).\| +\|authorizedApps\|microsoft.graph.application collection\| Unique identifier for the application object. \| + ## Relationships None. The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration" + "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration", + "baseType": "microsoft.graph.customExtensionCallbackConfiguration" } --> ``` json { "@odata.type": "#microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration", - "timeoutDuration": "String (duration)" + "timeoutDuration": "String (duration)", + "authorizedApps":[ + { + "@odata.type": "microsoft.graph.application" + } +] } ```
v1.0	Identitygovernance Customtaskextensioncallbackdata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncallbackdata.md	None. The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackData" + "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackData", + "baseType": "microsoft.graph.customExtensionData" } --> ``` json
v1.0	Identitygovernance Customtaskextensioncalloutdata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncalloutdata.md	None. The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCalloutData" + "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCalloutData", + "baseType": "microsoft.graph.customExtensionData" } --> ``` json
v1.0	Identitygovernance Lifecyclemanagementsettings	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecyclemanagementsettings.md	The settings of Azure AD Lifecycle Workflows in the tenant. \|:\|:\|:\| \|id\|String\|Identifier used for individually addressing Lifecycle Workflow settings.\| \|workflowScheduleIntervalInHours\|Int32\|The interval in hours at which all [workflows](../resources/identitygovernance-workflow.md) running in the tenant should be scheduled for execution. This interval has a minimum value of 1 and a maximum value of 24. The default value is 3 hours. \| +\|emailSettings\|[microsoft.graph.emailSettings](../resources/emailsettings.md)\|Defines the settings for emails sent out from email-specific [tasks](../resources/identitygovernance-task.md) within workflows. Accepts 2 parameters<br><br>senderDomain- Defines the domain of who is sending the email. <br>useCompanyBranding- A boolean value that defines if company branding is to be used with the email.\| ## Relationships The following is a JSON representation of the resource. --> ``` json { - "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity", - "workflowScheduleIntervalInHours": 1 + "@odata.type": "#microsoft.graph.identityGovernance.lifecycleManagementSettings", + "workflowScheduleIntervalInHours": "Integer", + "emailSettings": { + "@odata.type": "microsoft.graph.emailSettings" + } } ```
v1.0	Identitygovernance Lifecycleworkflows Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflows-overview.md	Each workflow contains general descriptive information such as it's identifier, Workflow tasks are specific actions that run automatically when a workflow is triggered. Lifecycle Workflows defines the following preconfigured and read-only tasks that are allowed for the specified workflow categories. These task definitions show the settings for the task type, guiding you as you create tasks for your workflow. -<!-- Comment out CRR until we can resolve the links problem ->- [!INCLUDE [lifecycle-workflows-tasks-table](../includes/identitygovernance-lifecycleworkflows-tasks-table.md)] Use the [taskDefinition resource type](identitygovernance-taskdefinition.md) and its associated methods to discover all the predefined tasks that you can configure for your workflow and the settings for the properties The [task](identitygovernance-task.md) resource type and its associated GET methods allow you to view the tasks that are configured for your workflow. The following [Azure AD roles](/azure/active-directory/roles/permissions-referen \| Operation \| Application permissions \| Required directory role of the calling user \| \|:\|:\|:--\| -\| Read \| LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All \| Global Admin, Global Reader or Lifecycle Workflows Administrator \| -\| Create, Update or Delete \| LifecycleWorkflows.ReadWrite.All \| Global Administrator or Lifecycle Workflows Administrator \| +\| Read \| LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All \|Global Reader or Lifecycle Workflows Administrator \| +\| Create, Update or Delete \| LifecycleWorkflows.ReadWrite.All \| Lifecycle Workflows Administrator \| ## See also
v1.0	Identitygovernance Lifecycleworkflows Reporting Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflows-reporting-overview.md	The following [Azure AD roles](/azure/active-directory/roles/permissions-referen \| Operation \| Application permissions \| Required directory role of the calling user \| \|:\|:\|:--\| -\| Read \| LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All \| Global Admin, Global Reader or Lifecycle Workflows Administrator \| -\| Create, Update or Delete \| LifecycleWorkflows.ReadWrite.All \| Global Administrator or Lifecycle Workflows Administrator \| +\| Read \| LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All \|Global Reader or Lifecycle Workflows Administrator \| +\| Create, Update or Delete \| LifecycleWorkflows.ReadWrite.All \| Lifecycle Workflows Administrator \| ## See also
v1.0	Identitygovernance Lifecycleworkflowscontainer	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflowscontainer.md	The following is a JSON representation of the resource. "id": "String (identifier)" } ```+
v1.0	Identitygovernance Ondemandexecutiononly	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-ondemandexecutiononly.md	None. The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "@odata.type": "microsoft.graph.identityGovernance.onDemandExecutionOnly" + "@odata.type": "microsoft.graph.identityGovernance.onDemandExecutionOnly", + "baseType": "microsoft.graph.identityGovernance.workflowExecutionConditions" } --> ``` json
v1.0	Identitygovernance Rulebasedsubjectset	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-rulebasedsubjectset.md	Inherits from [subjectSet](../resources/subjectset.md). ### Supported user properties and query parameters -Lifecycle Workflows supports the following [user properties](user.md#properties) for configuring the rules that are in the scope of an execution condition. You can use the `$filter` OData query parameter with either the `eq`, `ne`, `in`, or `startsWith` operators. You can also combine the filter expressions using one of the following conjunction and disjunction operators: +Lifecycle Workflows supports the following user properties for configuring the rules that are in the scope of an execution condition. You can use the `$filter` OData query parameter with either the `eq`, `ne`, `in`, or `startsWith` operators. You can also combine the filter expressions using one of the following conjunction and disjunction operators: + `and` + `or` + `and` and `not` You can also configure rules using [Directory (Azure AD) extensions](/graph/exte \| Example rule \| Description \| \|\|--\| \| `"rule": "(department eq 'Marketing')"` \| Run the workflow for users in the "Marketing" department. \| -\| `"rule": "(department ne 'Marketing')"` \| Run the workflow for users not the "Marketing" department. \| -\| `"rule": "(department in ('Marketing'))"` \| Run the workflow for users not the "Marketing" department. \| +\| `"rule": "(department ne 'Marketing')"` \| Run the workflow for users not in the "Marketing" department. \| +\| `"rule": "(department in ('Marketing'))"` \| Run the workflow for users in the "Marketing" department. \| \| `"rule": "(accountEnabled eq true)"` \| Run the workflow for users whose account is enabled. \| \| `"rule": "(employeeOrgData/costCenter eq '100')"` \| Run the workflow for users whose costCenter is `100`. \| \| `"rule": "(otherMails/any(p:startsWith(p, 'Av')))"` \| Run the workflow for users whose otherMails starts with `Av`. \|
v1.0	Identitygovernance Run	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-run.md	Inherits from [entity](../resources/entity.md). \|[List runs](../api/identitygovernance-workflow-list-runs.md)\|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection\|Get a list of the [run](../resources/identitygovernance-run.md) objects and their properties.\| \|[Get run](../api/identitygovernance-run-get.md)\|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md)\|Read the properties and relationships of a [run](../resources/identitygovernance-run.md) object.\| \|[summary](../api/identitygovernance-run-summary.md)\|[microsoft.graph.identityGovernance.runSummary](../resources/identitygovernance-runsummary.md)\|Get a summary of workflows runs.\| -\|[List user processing results](../api/identitygovernance-run-summary.md)\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection\|Get a list of user processing results of a run.\| -\|[Get user processing result](../api/identitygovernance-run-summary.md)\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md)\|Get a user processing result of a run\| \|[List task processing results of a run](../api/identitygovernance-run-list-taskprocessingresults.md)\|[microsoft.graph.identityGovernance.taskReportSummary](../resources/identitygovernance-taskprocessingresult.md)\|List task processing results from a run.\| ## Properties Inherits from [entity](../resources/entity.md). \|completedDateTime\|DateTimeOffset\|The date time that the run completed. Value is `null` if the workflow hasn't completed.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|failedTasksCount\|Int32\|The number of tasks that failed in the run execution.\| \|failedUsersCount\|Int32\|The number of users that failed in the run execution.\| +\|id\|String\|A unique identifier for the workflow run.\| \|lastUpdatedDateTime\|DateTimeOffset\|The datetime that the run was last updated.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| -\|processingStatus\|String\|The run execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| +\|processingStatus\|microsoft.graph.identityGovernance.lifecycleWorkflowProcessingStatus\|The run execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| \|startedDateTime\|DateTimeOffset\|The date time that the run execution started.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|scheduledDateTime\|DateTimeOffset\|The date time that the run is scheduled to be executed for a workflow.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|successfulUsersCount\|Int32\|The number of successfully completed users in the run.\| \|totalUsersCount\|Int32\|The total number of users in the workflow execution.\| +\|totalTasksCounts\|Int32\|The total number of tasks in the run execution.\| \|totalUnprocessedTasksCount\|Int32\|The total number of unprocessed tasks in the run execution.\| -\|workflowExecutionType\|String\|The execution type of the workflows associated with the run. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| +\|workflowExecutionType\|microsoft.graph.identityGovernance.workflowExecutionType\|The execution type of the workflows associated with the run. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| ## Relationships The following is a JSON representation of the resource. "blockType": "resource", "keyProperty": "id", "@odata.type": "microsoft.graph.identityGovernance.run", - "baseType": "microsoft.graph.entity", "openType": false } --> The following is a JSON representation of the resource. "startedDateTime": "String (timestamp)", "scheduledDateTime": "String (timestamp)", "successfulUsersCount": "Integer", + "totalTasksCounts": "Integer", "totalUsersCount": "Integer", "totalUnprocessedTasksCount": "Integer", "workflowExecutionType": "String"
v1.0	Identitygovernance Runsummary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-runsummary.md	A summary of runs for a specified time period. This summary allows the administr \|failedTasks\|Int32\|The number of failed tasks of a workflow.\| \|successfulRuns\|Int32\|The number of successful workflow runs.\| \|totalRuns\|Int32\|The total number of runs for a workflow.\| +\|totalTasks\|Int32\|The total number of tasks processed by a workflow.\| +\|totalUsers\|Int32\|The total number of users processed by a workflow.\| ## Relationships The following is a JSON representation of the resource. "failedRuns": "Integer", "failedTasks": "Integer", "successfulRuns": "Integer", - "totalRuns": "Integer" + "totalRuns": "Integer", + "totalTasks": "Integer", + "totalUsers": "Integer" } ```
v1.0	Identitygovernance Task	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-task.md	Inherits from [entity](../resources/entity.md). \|taskDefinitionId\|String\|A unique template identifier for the task. For more information about the tasks that Lifecycle Workflows currently supports and their unique identifiers, see [supported tasks](../resources/identitygovernance-task.md#supported-tasks). Required.<br><br>Supports `$filter`(`eq`, `ne`).\| ### Supported tasks -<!-- Comment out CRR until we can resolve the links problem -> [!INCLUDE [lifecycle-workflows-tasks-table](../includes/identitygovernance-lifecycleworkflows-tasks-table.md)]
v1.0	Identitygovernance Taskdefinition	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-taskdefinition.md	Inherits from [entity](../resources/entity.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|category\|microsoft.graph.identityGovernance.lifecycleTaskCategory\|The category of the HR function that the tasks created using this definition can be used with. The possible values are: `joiner`, `leaver`. This is a multi-valued enumeration whose allowed combinations are `joiner`, `joiner,leaver`, or `leaver`.<br><br>Supports `$filter`(`eq`, `ne`, `has`) and `$orderby`. \| +\|category\|microsoft.graph.identityGovernance.lifecycleTaskCategory\|The category of the HR function that the tasks created using this definition can be used with. The possible values are: `joiner`, `leaver`, `unknownFutureValue`. This is a multi-valued enumeration whose allowed combinations are `joiner`, `joiner,leaver`, or `leaver`.<br><br>Supports `$filter`(`eq`, `ne`, `has`) and `$orderby`. \| +\|ContinueOnError\|Boolean\|Defines if the workflow will continue if the task has an error.\| \|description\|String\|The description of the taskDefinition.\| \|displayName\|String\|The display name of the taskDefinition.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| \|id\|String\|The unique identifier for the taskDefinition. Inherited from [entity](../resources/entity.md).\|
v1.0	Identitygovernance Timebasedattributetrigger	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-timebasedattributetrigger.md	None. The following is a JSON representation of the resource. <!-- { "blockType": "resource", - "@odata.type": "microsoft.graph.identityGovernance.timeBasedAttributeTrigger" + "@odata.type": "microsoft.graph.identityGovernance.timeBasedAttributeTrigger", + "baseType": "microsoft.graph.identityGovernance.workflowExecutionTrigger" } --> ``` json
v1.0	Identitygovernance Userprocessingresult	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-userprocessingresult.md	Inherits from [entity](../resources/entity.md). \|Method\|Return type\|Description\| \|:\|:\|:\| \|[List userProcessingResults](../api/identitygovernance-workflow-list-userprocessingresults.md)\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection\|Get a list of the [userProcessingResult](../resources/identitygovernance-userprocessingresult.md) objects and their properties.\| +\|[Get userProcessingResult](../api/identitygovernance-userprocessingresult-get.md)\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md)\|Get a user processing result.\| \|[summary](../api/identitygovernance-userprocessingresult-summary.md)\|[microsoft.graph.identityGovernance.userSummary](../resources/identitygovernance-usersummary.md)\|Provides a summary of user processing results for a specified time period.\| -\|[List taskProcessingResults](../api/identitygovernance-userprocessingresult-list-taskprocessingresults.md)\|[microsoft.graph.identityGovernance.taskReport](../resources/identitygovernance-taskprocessingresult.md) collection\|Get a list of the [taskProcessingResult](../resources/identitygovernance-taskprocessingresult.md) objects and their properties.\| +\|[List taskProcessingResults for a userProcessingResult](../api/identitygovernance-userprocessingresult-list-taskprocessingresults.md)\|[microsoft.graph.identityGovernance.taskReport](../resources/identitygovernance-taskprocessingresult.md) collection\|Get a list of the [taskProcessingResult](../resources/identitygovernance-taskprocessingresult.md) objects and their properties.\| ## Properties Inherits from [entity](../resources/entity.md). \|:\|:\|:\| \|completedDateTime\|DateTimeOffset\|The date time that the workflow execution for a user completed. Value is null if the workflow hasn't completed.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|failedTasksCount\|Int32\|The number of tasks that failed in the workflow execution.\| -\|id\|String\|Identifier used for individually addressing a specific user processing result. Inherited from [entity](../resources/entity.md).<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| -\|processingStatus\|String\|The workflow execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| +\|id\|String\|Identifier used for individually addressing a specific user processing result.Inherited from [entity](../resources/entity.md).<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| +\|processingStatus\|microsoft.graph.identityGovernance.lifecycleWorkflowProcessingStatus\|The workflow execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| \|scheduledDateTime\|DateTimeOffset\|The date time that the workflow is scheduled to be executed for a user.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|startedDateTime\|DateTimeOffset\|The date time that the workflow execution started. Value is `null` if the workflow execution has not started.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|totalTasksCount\|Int32\|The total number of tasks that in the workflow execution.\| \|totalUnprocessedTasksCount\|Int32\|The total number of unprocessed tasks for the workflow.\| -\|workflowExecutionType\|String\|Describes the execution type of the workflow. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| +\|workflowExecutionType\|microsoft.graph.identityGovernance.workflowExecutionType\|Describes the execution type of the workflow. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`.<br><br>Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.\| \|workflowVersion\|Int32\|The version of the workflow that was executed.\| ## Relationships
v1.0	Identitygovernance Workflowbase	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowbase.md	None. \|:\|:\|:\| \|createdBy\|[user](../resources/user.md)\|The user who created the workflow.\| \|lastModifiedBy\|[user](../resources/user.md)\|The user who last modified the workflow.\| -\|runs\|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection\|A history of every time a workflow ran.\| \|tasks\|[microsoft.graph.identityGovernance.task](../resources/identitygovernance-task.md) collection\|The tasks in the workflow.\| -\|userProcessingResults\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection\|The results of a user processed by the workflow.\| ## JSON representation
v1.0	Identitygovernance Workflowtemplate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowtemplate.md	Inherits from [entity](../resources/entity.md). \|description\|String\|The description of the `workflowTemplate`.\| \|displayName\|String\|The display name of the `workflowTemplate`.<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| \|executionConditions\|[microsoft.graph.identityGovernance.workflowExecutionConditions](../resources/identitygovernance-workflowexecutionconditions.md)\|Conditions describing when to execute the workflow and the criteria to identify in-scope subject set.\| -\|id\|String\|The unique identifier for the `workflowTemplate`. Inherited from [entity](../resources/entity.md).<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| +\|id\|String\|The unique identifier for the `workflowTemplate`.Inherited from [entity](../resources/entity.md).<br><br>Supports `$filter`(`eq`, `ne`) and `$orderby`.\| ### Supported workflow templates
v1.0	Identitygovernance Workflowversion	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowversion.md	Inherits from [workflowBase](../resources/identitygovernance-workflowbase.md). \|:\|:\|:\| \|createdBy\|[user](../resources/user.md)\|The user who created the workflow. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).<br><br>Supports `$filter`(`eq`, `ne`) and `$expand`.\| \|lastModifiedBy\|[user](../resources/user.md)\|The user who last modified the workflow.<br><br>Supports `$filter`(`eq`, `ne`) and `$expand`.\| -\|runs\|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection\|A history of every time a workflow ran. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).\| \|tasks\|[microsoft.graph.identityGovernance.task](../resources/identitygovernance-task.md) collection\|The tasks in the workflow. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).\| -\|userProcessingResults\|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection\|The results of a user processed by the workflow. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).\| ## JSON representation
v1.0	Industrydata Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/industrydata-overview.md	The industry data API is defined in the OData subnamespace `microsoft.graph.indu ## Industry data API and education -The industry data API powers the [Microsoft School Data Sync](https://sds.microsoft.com) (SDS) platform to help automate the process of importing data and synchronizing organizations, users and users associations, and groups <!-- with Azure Active Directory (Azure AD) and Office 365 --> from student information systems (SIS) and student management systems (SMS) into an organization's Azure Data Lake. After normalizing the data in Azure Data Lake, the API utilizes the data in multiple outbound flows, synchronizing data with [Insights for Education Leaders](https://support.microsoft.com/topic/leader-s-guide-to-education-insights-premium-8738d1b1-4e1c-49bd-9e8d-b5292474c347) and [Education Data Lake Export](/schooldatasync/enable-education-data-lake-export) for custom analytics scenarios. +The industry data API powers the [Microsoft School Data Sync](https://sds.microsoft.com) (SDS) platform to help automate the process of importing data and synchronizing organizations, users and users associations, and groups <!-- with Azure Active Directory (Azure AD) and Office 365 --> from student information systems (SIS) and student management systems (SMS) into an organization's Azure Data Lake. After normalizing the data in Azure Data Lake <!-- the API utilizes the data in multiple outbound flows, --> SDS can synchronize the data with [Insights for Education Leaders](/schooldatasync/enable-sync-with-insights), for use with the Insights app in Teams for Education, and [Education Data Lake Export](/schooldatasync/enable-education-data-lake-export), for custom analytics scenarios. ![Illustration of the industry data ETL process](/graph/images/industrydata-overview.png) You can integrate industry data APIs with third-party apps. For details about ho \| Use case \| REST resource \| See also \| \| :- \| :- \| :-- \| \| Create an activity to import a delimited data set \| [inboundFileFlow](../resources/industrydata-inboundfileflow.md) \| [inboundFileFlow methods](../resources/industrydata-inboundfileflow.md#methods) \| -\| Create a connector to retrieve data from an Azure Data Lake \| [azureDataLakeConnector](../resources/industrydata-azuredatalakeconnector.md) \| [azureDataLakeConnector methods](../resources/industrydata-azuredatalakeconnector.md#methods) \| \| Define a source of inbound data \| [sourceSystemDefinition](../resources/industrydata-sourcesystemdefinition.md) \| [sourceSystemDefinition methods](../resources/industrydata-sourcesystemdefinition.md#methods) \| +\| Create a connector to post data to an Azure Data Lake (if CSV)\| [azureDataLakeConnector](../resources/industrydata-azuredatalakeconnector.md) \| [azureDataLakeConnector methods](../resources/industrydata-azuredatalakeconnector.md#methods) \| <!-- ## Concepts
v1.0	Logicapptriggerendpointconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/logicapptriggerendpointconfiguration.md	Title: "logicAppTriggerEndpointConfiguration resource type" description: "The configuration details for the logic app's endpoint that is associated with a custom access package workflow extension."-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType The configuration details for the logic app's endpoint that is associated with a \|logicAppWorkflowName\|String\|The name of the logic app.\| \|resourceGroupName\|String\|The Azure resource group name for the logic app.\| \|subscriptionId\|String\|Identifier of the Azure subscription for the logic app.\| +\|url\|String\| The URL to the logic app endpoint that will be triggered. Only required for app-only token scenarios where app is creating a [customCalloutExtension](../resources/customcalloutextension.md) without a signed-in user.\| ## JSON representation The following is a JSON representation of the resource. "@odata.type": "#microsoft.graph.logicAppTriggerEndpointConfiguration", "subscriptionId": "String", "resourceGroupName": "String", - "logicAppWorkflowName": "String" + "logicAppWorkflowName": "String", + "url": "String" } ```
v1.0	Microsoft Teams Team Usage Reports	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/microsoft-teams-team-usage-reports.md	Use the Microsoft Teams team activity reports to get insights into the usage of \| Function \| CSV return type \| JSON return type \| Description \| \| : \| \| - \| - \| \| [Get team detail](../api/reportroot-getteamsteamactivitydetail.md) \| Stream \| Stream \| Get details about Teams activity by team. The numbers include activities for both licensed and non-licensed users. \| -\| [Get team counts](../api/reportroot-getteamsteamactivitycounts.md) \| Stream \| Stream \| Get the number of team activities across Microsoft Teams. The activity types are related to meetings and messages. \| +\| [Get team activity counts](../api/reportroot-getteamsteamactivitycounts.md) \| Stream \| Stream \| Get the number of team activities across Microsoft Teams. The activity types are related to meetings and messages. \| +\| [Get team counts](../api/reportroot-getteamsteamcounts.md) \| Stream \| Stream \| Get the number of teams by type across Microsoft Teams. \| \| [Get distribution team counts](../api/reportroot-getteamsteamactivitydistributioncounts.md) \| Stream \| Stream \| Get the number of team activities across Microsoft Teams over a selected period. \|
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/microsoftauthenticatorauthenticationmethodconfiguration.md	Namespace: microsoft.graph Represents a Microsoft Authenticator authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method. +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). + ## Methods \|Method\|Return type\|Description\| \|:\|:\|:\|
v1.0	Organization	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/organization.md	This resource lets you add your own data to custom properties using [extensions] \|[Get open extension](../api/opentypeextension-get.md) \|[openTypeExtension](opentypeextension.md) collection\| Get an open extension identified by the extension name.\| \|Schema extensions\| \| \| \|[Add schema extension values](../api/schemaextension-post-schemaextensions.md) \| [schemaExtension](schemaextension.md) \| Create a schema extension definition and then use it to add custom typed data to a resource.\| -\|Organization licenses\| \| \| -\|[activateService](../api/organization-activateservice.md) (deprecated) \| None \| Activate a service for an organization. \| \|Organizational branding\| \| \| \|[Get organizationalBranding](../api/organizationalbranding-get.md) \| [organizationalBranding](organizationalbranding.md) \| Get the default organizational branding object. \| \|[Update organizationalBranding](../api/organizationalbranding-update.md) \| [organizationalBranding](organizationalbranding.md) \| Update the default organizational branding object. \|
v1.0	Plannerbucket	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannerbucket.md	Represents a bucket (or "custom column") for tasks in a plan in Microsoft 365. I \|[Create](../api/planner-post-buckets.md) \| [plannerBucket](plannerbucket.md) \| Create a new plannerBucket object. \| \|[Update](../api/plannerbucket-update.md) \| [plannerBucket](plannerbucket.md) \|Update plannerBucket object. \| \|[Delete](../api/plannerbucket-delete.md) \| None \|Delete plannerBucket object. \| +\|[Get delta](../api/plannerbucket-delta.md)\|[plannerBucket](../resources/plannerbucket.md) collection\| Get newly created, updated, or deleted plannerBucket objects in a Planner plan without having to perform a full read of the entire resource collection.\| ## Properties \| Property \| Type \|Description\|
v1.0	Plannerplan	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannerplan.md	Represents a plan in Microsoft 365. A plan can be owned by a [group](group.md) a \|[List tasks](../api/plannerplan-list-tasks.md) \|[plannerTask](plannertask.md) collection\| Get a plannerTask object collection.\| \|[Update](../api/plannerplan-update.md) \| [plannerPlan](plannerplan.md) \|Update plannerPlan object. \| \|[Delete](../api/plannerplan-delete.md) \| None \| Delete plannerPlan object. \| +\|[Get delta](../api/plannerplan-delta.md) \| [plannerPlan](../resources/plannerplan.md) collection \| Get newly created, updated, or deleted plannerPlan objects in either a group or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. \| ## Properties \| Property \| Type \|Description\| The following is a JSON representation of the resource. "suppressions": [] } -->--
v1.0	Plannertask	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannertask.md	Represents a Planner task in Microsoft 365. A Planner task is contained in a [pl \|[Get plannerTask](../api/plannertask-get.md) \| [plannerTask](plannertask.md) \|Read properties and relationships of plannerTask object.\| \|[Update](../api/plannertask-update.md) \| [plannerTask](plannertask.md) \|Update plannerTask object. \| \|[Delete](../api/plannertask-delete.md) \| None \|Delete plannerTask object. \| +\|[Get delta](../api/plannertask-delta.md)\|[plannerTask](../resources/plannertask.md) collection\| Get newly created, updated, or deleted plannerTask objects in either a plannerPlan or assigned to the signed-in user without having to perform a full read of the entire resource collection. \| ## Properties \| Property \| Type \|Description\|
v1.0	Quota	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/quota.md	-description: The quota resource provides details about space constrains on a drive resource. +description: The quota resource provides details about space constraints on a drive resource. Last updated 09/10/2017 Title: Quota ms.localizationpriority: medium Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -The quota resource provides details about space constrains on a [drive](drive.md) resource. +The quota resource provides details about space constraints on a [drive](drive.md) resource. In OneDrive Personal, the values reflect the total/used unified storage quota across multiple Microsoft services. ## JSON representation
v1.0	Report	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/report.md	The following table shows the availability for each API across all cloud deploym \| [Admin Report Settings](/graph/api/resources/adminreportsettings?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ£ö \| Γ£ö \| Γ₧û \| Γ£ö \| \| [Microsoft 365 activations](/graph/api/resources/office-365-activations-reports?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ£ö \| Γ£ö \| Γ₧û \| Γ₧û \| \| [Microsoft 365 active users](/graph/api/resources/office-365-active-users-reports?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ₧û \| Γ£ö \| Γ₧û \| Γ₧û \| -\| [Microsoft 365 Apps usage](/graph/api/resources/microsoft-365-apps-usage-report?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ₧û \| Γ£ö \| Γ₧û \| Γ₧û \| +\| [Microsoft 365 Apps usage](/graph/api/resources/microsoft-365-apps-usage-report?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ£ö \| Γ£ö \| Γ₧û \| Γ₧û \| \| [Microsoft 365 browser usage](/graph/api/resources/microsoft-365-browser-usage-report?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ₧û \| Γ₧û \| Γ₧û \| Γ₧û \| \| [Microsoft 365 groups activity](/graph/api/resources/office-365-groups-activity-reports?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ₧û \| Γ£ö \| Γ₧û \| Γ₧û \| \| [Microsoft Teams device usage](/graph/api/resources/microsoft-teams-device-usage-reports?view=graph-rest-beta&preserve-view=true) \| Γ£ö \| Γ£ö \| Γ₧û \| Γ₧û \| Γ£ö \|
v1.0	Security Api Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-api-overview.md	Alerts from the following security providers are available via this legacy ale \| Security provider \| <p align="center">GET alert</p>\| <p align="center">PATCH alert</p>\| <p align="center">Subscribe to alert</p>\| \|:\|:\|:--\|:\| -\|[Azure Active Directory Identity Protection](/azure/active-directory/identity-protection/playbook) ** \| <p align="center">✓</p> \| <p align="center">[File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) </p> \| <p align="center">✓</p> \| +\|[Azure Active Directory Identity Protection](/azure/active-directory/identity-protection/playbook) \| <p align="center">✓</p> \| <p align="center">[File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) </p> \| <p align="center">✓</p> \| \|[Azure Security Center](/azure/security-center/security-center-alerts-type)\| <p align="center">✓</p> \| <p align="center">✓</p> \| <p align="center">✓</p> \| \|Microsoft 365 <ul><li> [Default](/office365/securitycompliance/alert-policies#default-alert-policies)</li> <li>[Cloud App Security](/office365/securitycompliance/anomaly-detection-policies-in-ocas)</li><li>Custom Alert</li></ul> \| <p align="center">✓</p> \| <p align="center"> [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) </p> \| <p align="center"> [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) </p> \| \| [Microsoft Defender for Cloud Apps](/cloud-app-security/monitor-alerts) (formerly Microsoft Cloud App Security) \| <p align="center">✓</p> \| <p align="center">[File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) </p> \| <p align="center">✓</p> \| Alerts from the following security providers are available via this legacy ale \\\ Microsoft Defender for Identity alerts are available via the Microsoft Defender for Cloud Apps integration. This means you will get Microsoft Defender for Identity alerts only if you have joined Unified SecOps and connected Microsoft Defender for Identity into Microsoft Defender for Cloud Apps. Learn more about [how to integrate Microsoft Defender for Identity and Microsoft Defender for Cloud Apps](/azure-advanced-threat-protection/atp-mcas-integration). -\\\\ Azure AD Identity Protection alerts only include user object IDs. The userPrincipalName (UPN) property is not included in GET request responses. This issue does not impact any of the other providers. For details and a workaround, see [Known issues](/graph/known-issues#upn-missing-in-identity-protection-security-alerts). - ## Attack simulation and training [Attack simulation and training](/microsoft-365/security/office-365-security/attack-simulation-training) is part of [Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide&preserve-view=true). This service lets users in a tenant experience a realistic benign phishing attack and learn from it. Social engineering simulation and training experiences for end users help reduce the risk of users being breached via those attack techniques. The attack simulation and training API enables tenant administrators to view launched [simulation](simulation.md) exercises and trainings, and get [reports](report-m365defender-reports-overview.md) on derived insights into online behaviors of users in the phishing simulations.
v1.0	Security Ediscoveryexportfilemetadata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-ediscoveryexportfilemetadata.md	+ + Title: "ediscoveryExportFileMetadata resource type" +description: "Represents the file metadata for an export in eDiscovery." + +ms.localizationpriority: medium ++ +# ediscoveryExportFileMetadata resource type + +Namespace: microsoft.graph.security ++ +Represents the file metadata for an export in eDiscovery. + +## Properties + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|downloadUrl\| String \|The URL to download the export. \| +\|fileName \| String \| The name of the file. \| +\|size\| Int64 \| The size of the file. \| + +## JSON representation + +The following is a JSON representation of the resource. + +<!-- { + "blockType": "resource", + "@odata.type": "microsoft.graph.security.ediscoveryExportFileMetadata", + "openType": false +} +--> + +``` json +{ + "@odata.type": "#microsoft.graph.security.ediscoveryExportFileMetadata", + "downloadUrl": "String", + "fileName": "String", + "size": "Int64" +} +```
v1.0	Security Ediscoveryexportoperation	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-ediscoveryexportoperation.md	Inherits from [caseOperation](../resources/security-caseoperation.md). ## Methods \|Method\|Return type\|Description\| \|:\|:\|:\| -\|[getDownloadUrl](../api/security-ediscoveryexportoperation-getdownloadurl.md)\|String\| Returns the URL for the export.\| +\|[getDownloadUrl](../api/security-ediscoveryexportoperation-getdownloadurl.md) (deprecated) \|String\| Return the URL for the export. The getDownloadUrl function is deprecated and will stop returning data on April 30th, 2023. Please use the new exportFileMetadata property returned by the [Get caseOperation](../api/security-ediscoverycase-get.md) API instead.\| ## Properties \|Property\|Type\|Description\| \|:\|:\|:\| \|action\|[microsoft.graph.security.caseAction](../resources/security-caseoperation.md#caseaction-values)\| The type of action the operation represents. Possible values are: `addToReviewSet`,`applyTags`,`contentExport`,`convertToPdf`,`estimateStatistics`, `purgeData`\| -\|azureBlobContainer\|String\| The name of the Azure storage location where the export will be stored. This only applies to exports stored in your own Azure storage location. \| -\|azureBlobToken\|String\| The SAS token for the Azure storage location. This only applies to exports stored in your own Azure storage location. \| \|completedDateTime\|DateTimeOffset\| The date and time the export was completed.\| \|createdBy\|[identitySet](../resources/identityset.md)\| The user who initiated the export operation.\| \|createdDateTime\|DateTimeOffset\| The date and time the export was created.\| \|description\|String\| The description provided for the export.\| -\|exportOptions\|microsoft.graph.security.exportOptions\| The options provided for the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.\| +\|exportFileMetaData \| [microsoft.graph.security.ediscoveryExportFileMetadata](../resources/security-ediscoveryexportfilemetadata.md)\| Contains the properties for an export file metadata, including downloadUrl, fileName, and size. If you export to an Azure storage location, this property returns empty. \| +\|exportOptions\|microsoft.graph.security.exportOptions\| The options provided for the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included. \| \|exportStructure\|microsoft.graph.security.exportFileStructure\|The options provided that specify the structure of the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `none`, `directory`, `pst`.\| \|id\|String\| The ID for the operation. Read-only. \| \|outputName\|String\| The name provided for the export.\| \|percentProgress\|Int32\| The progress of the operation.\| \|resultInfo\|[resultInfo](../resources/resultinfo.md)\|Contains success and failure-specific result information. Inherited from [caseOperation](../resources/ediscovery-caseoperation.md).\| \|status\|[microsoft.graph.security.caseOperationStatus](../resources/security-caseoperation.md#caseoperationstatus-values)\| The status of the case operation. Possible values are: `notStarted`, `submissionFailed`, `running`, `succeeded`, `partiallySucceeded`, `failed`.\| +\|azureBlobContainer (deprecated)\|String\| The name of the Azure storage location where the export is stored. This only applies to exports stored in your own Azure storage location. The azureBlobContainer property is deprecated and will stop returning data on April 30th, 2023. \| +\|azureBlobToken (deprecated)\|String\| The SAS token for the Azure storage location. This only applies to exports stored in your own Azure storage location. The azureBlobToken property is deprecated and will stop returning data on April 30th, 2023. \| +\|outputFolderId (deprecated) \| String \| The output folder ID. The outputFolderId property is deprecated and will stop returning data on April 30th, 2023. ### exportOptions values Inherits from [caseOperation](../resources/security-caseoperation.md). \|originalFiles\|Include original files in native format. For example: docx, xlsx, pptx, doc, xlst, pptm, etc.\| \|text\|Include extracted text from the original files.\| \|pdfReplacement\|Replace original file with PDF version when available.\| -\|fileInfo\|Include metadata of original files in a load file.\| \|tags\|Include tag information in fileInfo.\| +\|fileInfo (deprecated) \|Include metadata of original files in a load file. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included. \| ### exportFileStructure values Inherits from [caseOperation](../resources/security-caseoperation.md). \|reviewSet\|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)\| Review set from where documents are exported.\| \|reviewSetQuery\|[microsoft.graph.security.ediscoveryReviewSetQuery](../resources/security-ediscoveryreviewsetquery.md)\|The review set query which is used to filter the documents for export.\| + ## JSON representation The following is a JSON representation of the resource. <!-- { The following is a JSON representation of the resource. "openType": false } -->+ ``` json { "@odata.type": "#microsoft.graph.security.ediscoveryExportOperation", - "id": "String (identifier)", - "createdDateTime": "String (timestamp)", - "completedDateTime": "String (timestamp)", "action": "String", + "azureBlobContainer": "String", + "azureBlobToken": "String", + "completedDateTime": "String (timestamp)", "createdBy": { "@odata.type": "microsoft.graph.identitySet" }, - "percentProgress": "Integer", - "status": "String", + "createdDateTime": "String (timestamp)", + "description": "String", + "exportFileMetadata": { + "@odata.type": "microsoft.graph.security.ediscoveryExportFileMetadata" + }, + "exportOptions": "String", + "exportStructure": "String", + "id": "String (identifier)", + "outputFolderId": "String", + "outputName": "String", + "percentProgress": "Int32", "resultInfo": { "@odata.type": "microsoft.graph.resultInfo" }, - "outputName": "String", - "description": "String", - "outputFolderId": "String", - "azureBlobContainer": "String", - "azureBlobToken": "String", - "exportOptions": "String", - "exportStructure": "String" + "status": "String" } ```-
v1.0	Service Communications Api Overview	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/service-communications-api-overview.md	For more information on access tokens, app registration, and delegated and appli Delegated permissions are needed to access the service communications API on behalf of a signed-in user. Customer-facing canvas applications, such as the [Microsoft 365 admin center](https://admin.microsoft.com/Adminportal/Home?source=applauncher#/homepage) (accessible only to admin roles), can call the service communications API to get the service health and service announcements data for the signed-in user's tenant, _on behalf of the signed-in user_. Users can find out whether their subscribed services are healthy or have issues. They can also learn about any current service issues affecting their tenants. +#### Role-based access control for delegation access + +The service communications API applies role-based access control (RBAC) to identify whether the signed-in user who is on-behalf of has a required Azure Active Directory (Azure AD) role. The signed-in user who is on-behalf of must have at least one of the admin roles. + +For more information about the AZure AD administrator roles, see: +* [About admin roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/about-admin-roles) +* [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference) +* [Roles in Microsoft 365, including Azure AD, service-specific and cross-service roles](/azure/active-directory/roles/concept-understand-roles#how-azure-ad-roles-are-different-from-other-microsoft-365-roles) + ### Access service communications API without user Application permissions are needed to access the service communications API without a signed-in user. Applications that run as backend services, such as monitoring or alert services, can call the service communications API with their own identity and not on behalf of a user. These backend services can build custom monitoring/alert pipelines and call the service communications API to get service health and service announcements data. That service communications API is available in all Microsoft national cloud dep \|Microsoft Graph global service\| https://graph.microsoft.com/beta/admin/serviceAnnouncement/\| \|Microsoft Graph for US Government L4 (GccHigh)\|https://graph.microsoft.us/beta/admin/serviceAnnouncement/\| \|Microsoft Graph for US Government L5 (DoD)\|https://dod-graph.microsoft.us/beta/admin/serviceAnnouncement/\| -\|Microsoft Graph Germany\|https://graph.microsoft.de/beta/admin/serviceAnnouncement/\| \|Microsoft Graph China operated by 21Vianet\|https://microsoftgraph.chinacloudapi.cn/beta/admin/serviceAnnouncement/\| ## Service communications limits
v1.0	Servicestoragequotabreakdown	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/servicestoragequotabreakdown.md	+ + Title: "serviceStorageQuotaBreakdown resource type" +description: "Represents a proportion of the unified storage quota associated with a specific service." + +ms.localizationpriority: medium ++ +# serviceStorageQuotaBreakdown resource type + +Namespace: microsoft.graph ++ +Represents a proportion of the unified storage quota associated with a specific service. + +## Methods +\|Method\|Return type\|Description\| +\|:\|:\|:\| +\|[List serviceStorageQuotaBreakdown](../api/unifiedstoragequota-list-services.md)\| [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection\|Get a list of services in the serviceStorageQuotaBreakdown.\| +\|[Get serviceStorageQuotaBreakdown](../api/servicestoragequotabreakdown-get.md)\|[serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md)\|Read the properties and relationships of a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object.\| + +## Properties +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|displayName\|String\|The service breakdown name displayed to users. Localized. Read-only.\| +\|id\|String\|The service breakdown id. Read-only.\| +\|manageWebUrl\|String\|A URL that can be used in a browser to manage the service breakdown. Read-only.\| +\|used\|Int64\|The number of bytes this service breakdown is consuming. Read-only.\| + +## Relationships +None. + +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "keyProperty": "id", + "@odata.type": "microsoft.graph.serviceStorageQuotaBreakdown", +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.serviceStorageQuotaBreakdown", + "id": "String (identifier)", + "displayName": "String", + "manageWebUrl": "String", + "used": "Integer" +} +``` +
v1.0	Signinactivity	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/signinactivity.md	Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Provides the last interactive or non-interactive sign-in time for a specific [user](user.md). Since signInActivity describes a property of the user object, Azure AD stores signinactivity for your users for as long as the user objects exist. +Provides the last interactive or non-interactive sign-in time for a specific [user](user.md). Since signInActivity describes a property of the user object, Azure AD stores signinactivity for your users for as long as the user object exists. ## Properties The following is a JSON representation of the resource. ```json { + "@odata.type": "#microsoft.graph.signInActivity", "lastSignInDateTime": "String (timestamp)", "lastSignInRequestId": "String", "lastNonInteractiveSignInDateTime": "String (timestamp)",
v1.0	Smsauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/smsauthenticationmethodconfiguration.md	Title: "smsAuthenticationMethodConfiguration resource type" description: "Represents a Text Message authentication methods policy."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: resourcePageType Namespace: microsoft.graph Represents a Text Message authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method. +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). + ## Methods \|Method\|Return type\|Description\| \|:\|:\|:\|
v1.0	Smsauthenticationmethodtarget	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/smsauthenticationmethodtarget.md	Title: "smsAuthenticationMethodTarget resource type" description: "A collection of groups enabled to use Text Message authentication methods policy."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: resourcePageType
v1.0	Softwareoathauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/softwareoathauthenticationmethodconfiguration.md	Namespace: microsoft.graph Represents the authentication policy for a third-party software OATH authentication method. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method. +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). ## Methods \|Method\|Return type\|Description\|
v1.0	Subscription	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/subscription.md	For the possible resource path values for each supported resource, see [Use the ### Maximum length of subscription per resource type -\| Resource \| Maximum expiration time \| -\|:--\|:-\| -\| Security alert \| 43200 minutes (under 30 days) \| -\| Teams callRecord \| 4230 minutes (under 3 days) \| -\| Teams channel \| 60 minutes (1 hour) \| -\| Teams chat \| 60 minutes (1 hour) \| -\| Teams chatMessage \| 60 minutes (1 hour) \| -\| Teams conversationMember \| 60 minutes (1 hour) \| -\| Teams onlineMeeting \| 4320 minutes (3 days) \| -\| Teams team \| 60 minutes (1 hour) \| -\| Group conversation \| 4230 minutes (under 3 days) \| -\| OneDrive driveItem \| 42300 minutes (under 30 days) \| -\| SharePoint list \| 42300 minutes (under 30 days) \| -\| Outlook message, event, contact \| 4230 minutes (under 3 days) \| -\| user, group, other directory resources \| 41760 minutes (under 29 days) \| -\| onlineMeeting \| 4230 minutes (under 3 days) \| -\| presence \| 60 minutes (1 hour) \| -\| Print printer \| 4230 minutes (under 3 days) \| -\| Print printTaskDefinition \| 4230 minutes (under 3 days) \| -\| todoTask \| 4230 minutes (under 3 days) \| -\| baseTask (deprecated) \| 4230 minutes (under 3 days) \| -- -> Note: Existing applications and new applications should not exceed the supported value. In the future, any requests to create or renew a subscription beyond the maximum value will fail. ## Relationships Here is a JSON representation of the resource. "notificationContentType": "String", "notificationUrlAppId": "String" } -``` +```
v1.0	Teamtemplate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamtemplate.md	Namespace: microsoft.graph Represents a logical container for all the definitions and versions of the same team template. -> Note: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/). ## Methods
v1.0	Teamtemplatedefinition	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamtemplatedefinition.md	Generic representation of a team template definition for a team with a specific Inherits from [entity](../resources/entity.md). -> Note: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/). - ## Methods \|Method\|Return type\|Description\|
v1.0	Teamworktag	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamworktag.md	When a tag is added, users can @mention it in a channel. Everyone who has been a ## Properties \|Property\|Type\|Description\| \|:\|:\|:\| -\|description\|String\|Tag description as it will appear to the user in Microsoft Teams.\| +\|description\|String\|Tag description as it will appear to the user in Microsoft Teams. A teamworkTag can't have more than 200 teamworkTagMembers.\| \|displayName\|String\|Tag name as it will appear to the user in Microsoft Teams.\| \|id\|String\|ID of the tag.\| \|memberCount\|Int32\|The number of users assigned to the tag.\| The following is a JSON representation of the resource. ``` ## See also-- [teamworkTagMember](../resources/teamworktagmember.md) +- [teamworkTagMember](../resources/teamworktagmember.md)
v1.0	Temporaryaccesspassauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/temporaryaccesspassauthenticationmethodconfiguration.md	Namespace: microsoft.graph Represents a Temporary Access Pass authentication methods policy that defines the configuration settings and users or groups who are enabled to use the [Temporary Access Pass authentication method](temporaryaccesspassauthenticationmethod.md). +Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). + ## Methods \|Method\|Return type\|Description\| \|:\|:\|:\|
v1.0	Tokenlifetimepolicy	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/tokenlifetimepolicy.md	Inherits from [stsPolicy](stsPolicy.md). \| Method \| Return Type \| Description \| \|:-\|:\|:\| +\| [List tokenLifetimePolicies](../api/tokenlifetimepolicy-list.md) \| [tokenLifetimePolicy](tokenlifetimepolicy.md) \| Read properties and relationships of tokenLifetimePolicies objects. \| \| [Create tokenLifetimePolicy](../api/tokenlifetimepolicy-post-tokenlifetimepolicies.md) \| [tokenLifetimePolicy](tokenlifetimepolicy.md) \| Create a tokenLifetimePolicy object. \| \| [Get tokenLifetimePolicy](../api/tokenlifetimepolicy-get.md) \| [tokenLifetimePolicy](tokenlifetimepolicy.md) \| Read properties and relationships of a tokenLifetimePolicy object. \| -\| [List tokenLifetimePolicies](../api/tokenlifetimepolicy-list.md) \| [tokenLifetimePolicy](tokenlifetimepolicy.md) \| Read properties and relationships of tokenLifetimePolicies objects. \| \| [Update tokenLifetimePolicy](../api/tokenlifetimepolicy-update.md) \| None \| Update a tokenLifetimePolicy object. \| \| [Delete tokenLifetimePolicy](../api/tokenlifetimepolicy-delete.md) \| None \| Delete a tokenLifetimePolicy object. \| \| [List appliesTo](../api/tokenlifetimepolicy-list-appliesto.md) \| [directoryObject](directoryobject.md) collection \| Get the list of directoryObjects that this policy has been applied to. \| Inherits from [stsPolicy](stsPolicy.md). \| Property \| Type \| Description \| \|:-\|:\|:\| \|id\|String\| Unique identifier for this policy. Read-only.\| -\|definition\|String collection\| A string collection containing a JSON string that defines the rules and settings for this policy. See below for more details about the JSON schema for this property. Required.\| +\|definition\|String collection\| A string collection containing a JSON string that defines the rules and settings for this policy. For more information about the JSON schema for this property, see [Properties of a token lifetime policy definition](#properties-of-a-token-lifetime-policy-definition). Required.\| \|description\|String\| Description for this policy.\| \|displayName\|String\| Display name for this policy. Required.\| \|isOrganizationDefault\|Boolean\|If set to `true`, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is `false`.\| ### Properties of a token lifetime policy definition+ The properties below form the JSON object that represents a token lifetime policy. This JSON object must be converted to a string with quotations escaped to be inserted into the definition property. An example is shown below in JSON format: <!-- {
v1.0	Unifiedstoragequota	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/unifiedstoragequota.md	+ + Title: "unifiedStorageQuota resource type" +description: Provides an aggregate view of a user's quota information across multiple services. + +ms.localizationpriority: medium ++ +# unifiedStorageQuota resource type + +Namespace: microsoft.graph ++ +Provides an aggregate view of a user's quota information across multiple services. + +## Methods +\|Method\|Return type\|Description\| +\|:\|:\|:\| +\|[Get unifiedStorageQuota](../api/unifiedstoragequota-get.md)\|[unifiedStorageQuota](../resources/unifiedstoragequota.md)\|Read the properties and relationships of a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object.\| +\|[List serviceStorageQuotaBreakdown](../api/unifiedstoragequota-list-services.md)\| [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection\|Get the list of services in a serviceStorageQuotaBreakdown.\| + +## Properties + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|id\|String\|The user IF.\| +\|manageWebUrl\|String\| A URL that can be used in a browser to manage the breakdown. Read-only. \| +\|remaining\|Int64\| Total space remaining before reaching the quota limit in bytes. \| +\|state\|usqState\| Indicates the state of the storage space. The possible values are: `normal`, `nearing`, `critical`, `full`, and `overLimit`.\| +\|total\|Int64\| Total allowed storage space in bytes. \| +\|used\|Int64\| Total space used in bytes. \| + +## Relationships +\|Relationship\|Type\|Description\| +\|:\|:\|:\| +\|services\|[serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection\| The breakdown of services contributing to the user's quota usage. \| ++ +## JSON representation +The following is a JSON representation of the resource. +<!-- { + "blockType": "resource", + "keyProperty": "id", + "@odata.type": "microsoft.graph.unifiedStorageQuota", + "baseType": "microsoft.graph.entity", + "openType": false +} +--> +``` json +{ + "@odata.type": "#microsoft.graph.unifiedStorageQuota", + "id": "String", + "manageWebUrl": "String", + "remaining": "Integer", + "state": "normal \| nearing \| critical \| full \| overLimit", + "total": "Integer", + "used": "Integer" +} +``` +
v1.0	User	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/user.md	This resource supports: \| [Get deleted user](../api/directory-deleteditems-get.md) \| [directoryObject](directoryobject.md) collection \| Retrieve a deleted user by ID. \| \| [Restore deleted user](../api/directory-deleteditems-delete.md) \| [directoryObject](directoryobject.md) collection \| Restore a user deleted in the tenant in the last 30 days. \| \| [Permanently delete user](../api/directory-deleteditems-restore.md) \| [directoryObject](directoryobject.md) collection \| Permanently delete a deleted user from the tenant. \| -\| [activateServicePlan](../api/user-activateserviceplan.md) (deprecated) \| None \| Activate a service with a given `servicePlanId` and `skuId` for a given [user](user.md). \| \| Drive \|\|\| \| [Get drive](../api/drive-get.md) \| [drive](drive.md) \| Retrieve the properties and relationships of a Drive resource. \| \| [List children](../api/driveitem-list-children.md) \| [DriveItems](driveitem.md) \| Return a collection of DriveItems in the children relationship of a DriveItem. \| This resource supports: \| showInAddressList \| Boolean \| Do not use in Microsoft Graph. Manage this property through the Microsoft 365 admin center instead. Represents whether the user should be included in the Outlook global address list. See [Known issue](/graph/known-issues#showinaddresslist-property-is-out-of-sync-with-microsoft-exchange).\| \| signInSessionsValidFromDateTime \| DateTimeOffset \| Any refresh tokens or sessions tokens (session cookies) issued before this time are invalid, and applications will get an error when using an invalid refresh or sessions token to acquire a delegated access token (to access APIs such as Microsoft Graph). If this happens, the application will need to acquire a new refresh token by making a request to the authorize endpoint. Read-only. Use [revokeSignInSessions](../api/user-revokesigninsessions.md) to reset.\| \| skills \| String collection \| A list for the user to enumerate their skills. <br><br>Returned only on `$select`. \| -\| signInActivity \| [signInActivity](signinactivity.md) \| Get the last signed-in date and request ID of the sign-in for a given user. Read-only.<br><br>Returned only on `$select`. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`) but, not with any other filterable properties. Note: Details for this property require an Azure AD Premium P1/P2 license and the AuditLog.Read.All permission.<br><br>Note: <br/><li>There's a [known issue](/graph/known-issues#license-check-errors-for-azure-ad-activity-reports) with retrieving this property.<li>This property is not returned for a user who has never signed in or last signed in before April 2020.\| +\| signInActivity \| [signInActivity](signinactivity.md) \| Get the last signed-in date and request ID of the sign-in for a given user. Read-only.<br><br>Returned only on `$select`. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`) but not with any other filterable properties. <br><br>Note: <br/><li> Details for this property require an Azure AD Premium P1/P2 license and the AuditLog.Read.All permission.<li>There's a [known issue](/graph/known-issues#license-check-errors-for-azure-ad-activity-reports) with retrieving this property.<li>This property is not returned for a user who has never signed in or last signed in before April 2020.\| \| state \| String \| The state or province in the user's address. Maximum length is 128 characters. <br><br>Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values). \| \| streetAddress \| String \| The street address of the user's place of business. Maximum length is 1024 characters. <br><br>Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values).\| \| surname \| String \| The user's surname (family name or last name). Maximum length is 64 characters. <br><br>Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values). \|
v1.0	Voiceauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/voiceauthenticationmethodconfiguration.md	Namespace: microsoft.graph Represents a voice call authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method. - Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). ## Methods
v1.0	Windowsupdates Featureupdatecatalogentry	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/windowsupdates-featureupdatecatalogentry.md	Title: "featureUpdateCatalogEntry resource type" -description: "Metadata for a Windows 10 feature update that you can approve for deployment." +description: "Represents metadata for a Windows 10 feature update that you can approve for deployment." ms.localizationpriority: medium ms.prod: "w10" Namespace: microsoft.graph.windowsUpdates [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Metadata for a Windows 10 feature update that you can approve for deployment. +Represents metadata for a Windows 10 feature update that you can approve for deployment. -Windows 10 feature updates are released bi-annually and contain new features for Windows 10. Installing these updates increases the Windows 10 build number and typically results in a new servicing lifecycle and end of service date. Microsoft recommends organizations regularly deploy new feature updates as part of adopting Windows as a service. +Windows 10 feature updates are released bi-annually and contain new features for Windows 10. Installing these updates increases the Windows 10 build number and typically results in a new servicing lifecycle and end of service date. We recommend organizations regularly deploy new feature updates as part of adopting Windows as a service. Inherits from [softwareUpdateCatalogEntry](../resources/windowsupdates-softwareupdatecatalogentry.md). The following is a JSON representation of the resource. ``` json { "@odata.type": "#microsoft.graph.windowsUpdates.featureUpdateCatalogEntry", - "id": "String (identifier)", + "deployableUntilDateTime": "String (timestamp)", "displayName": "String", + "id": "String (identifier)", "releaseDateTime": "String (timestamp)", - "deployableUntilDateTime": "String (timestamp)", "version": "String" } ```
v1.0	Windowsupdates Qualityupdatecatalogentry	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/windowsupdates-qualityupdatecatalogentry.md	Title: "qualityUpdateCatalogEntry resource type" -description: "Metadata for a Windows 10 quality update that you can be approve for deployment." +description: "Represents metadata for a Windows 10 quality update that you can approve for deployment." ms.localizationpriority: medium ms.prod: "w10" Namespace: microsoft.graph.windowsUpdates [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Metadata for a Windows 10 quality update that you can be approve for deployment. +Represents metadata for a Windows 10 quality update that you can approve for deployment. -Windows 10 quality updates are released one or more times per month. These updates contain both security and quality fixes and are typically released on the second Tuesday of every month, though they may be released at any time. These updates are cumulative, so later versions always contain all previous fixes. Microsoft strongly recommends keeping devices current by installing the most recent quality updates as soon as they are available. +Windows 10 quality updates are released one or more times per month. These updates contain both security and quality fixes and are typically released on the second Tuesday of every month, though they might be released at any time. These updates are cumulative, so later versions always contain all previous fixes. We strongly recommend keeping devices current by installing the most recent quality updates as soon as they are available. Inherits from [softwareUpdateCatalogEntry](../resources/windowsupdates-softwareupdatecatalogentry.md). The following is a JSON representation of the resource. ``` json { "@odata.type": "#microsoft.graph.windowsUpdates.qualityUpdateCatalogEntry", - "id": "String (identifier)", - "displayName": "String", - "releaseDateTime": "String (timestamp)", "deployableUntilDateTime": "String (timestamp)", + "displayName": "String", + "id": "String (identifier)", "isExpeditable": "Boolean", - "qualityUpdateClassification": "String" + "qualityUpdateClassification": "String", + "releaseDateTime": "String (timestamp)" } ```
v1.0	X509certificateauthenticationmethodconfiguration	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/x509certificateauthenticationmethodconfiguration.md	Inherits from [authenticationMethodConfiguration](../resources/authenticationmet ## Properties \|Property\|Type\|Description\| \|:\|:\|:\| -\|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| +\|authenticationModeConfiguration\|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)\|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. \| +\|certificateUserBindings\|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection\|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The priority of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. \| \|id\|String\|The identifier for the authentication method policy. The value is always `X509Certificate`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).\| +\|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| \|state\|authenticationMethodState\|The possible values are: `enabled`, `disabled`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).\| -\|certificateUserBindings\|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection\|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The priority of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. \| -\|authenticationModeConfiguration\|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)\|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. \| ## Relationships
v1.0	Appmanagementpolicy Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-delete.md	+ + Title: "Delete appManagementPolicy" +description: "Delete an application management policy." +ms.localizationpriority: medium +++ +# Delete appManagementPolicy + +Namespace: microsoft.graph ++ +Delete an [appManagementPolicy](../resources/appManagementPolicy.md) object. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +DELETE /policies/appManagementPolicies/{id} +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Request + +The following is an example of the request. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "delete_appManagementPolicy" +}--> + +```http +DELETE https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id} +``` ++ +### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": false +} --> + +```http +HTTP/1.1 204 No Content + +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "delete appManagementPolicy", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy List Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-list-appliesTo.md	+ + Title: "List appliesTo" +description: "List application or service principal resources assigned to an application management policy." +ms.localizationpriority: medium +++ +# List appliesTo + +Namespace: microsoft.graph + +List application and service principal objects that are assigned an [appManagementPolicy](../resources/appManagementPolicy.md) policy object. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| +\| Delegated (work or school account) \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +GET /policies/appManagementPolicies/{id}/appliesTo +``` + +## Optional query parameters + +This method supports the `$select`, `$filter`, and `$top` OData query parameters to help customize the response. You can apply `$filter` on properties of [application](../resources/application.md) or [servicePrincipal](../resources/serviceprincipal.md) objects that support `$filter`. For example, the following query retrieves the appId and displayName of applications or service principals that are assigned the policy. + +``` http +https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo?$select=appId,displayName +``` + +For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [appManagementPolicy](../resources/appManagementPolicy.md) objects in the response body. + +## Examples + +### Example 1: Get applications and service principal objects applied to an app management policy + +#### Request + +The following is an example of the request. +++ +<!-- { + "blockType": "request", + "name": "list_appManagementPolicyAppliesTo" +}--> + +```http +GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo +``` ++ +#### Response + +The following is an example of the response. +>Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.appManagementPolicy" +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects", + "value": [ + { + "@odata.type": "#microsoft.graph.application", + "id": "0d77e011-2fc6-438f-8b93-decb4f926929", + "appId": "8f527de6-05c9-4032-bca9-b2b56ab2358a", + "displayName": "TestApp1", + "createdDateTime": "2018-01-24T05:55:37Z" + } + ] +} +``` + +### Example 2: Get specific properties of applications and service principal objects applied to an app management policy using $select query option + +#### Request + +The following is an example of the request using $select query option. + +<!-- { + "blockType": "request", + "name": "list_appManagementPolicyAppliesTo_select" +}--> + +```http +GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo?$select=id,appId,displayName,createdDateTime +``` + +#### Response + +The following is an example of the response that returns `id`, `appId`, `displayName` and `createdDateTime` of applications and service principals where the policy is applied. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.appManagementPolicy" +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects(id,appId,displayName,createdDateTime)", + "value": [ + { + "@odata.type": "#microsoft.graph.application", + "id": "0d77e011-2fc6-438f-8b93-decb4f926929", + "appId": "8f527de6-05c9-4032-bca9-b2b56ab2358a", + "displayName": "TestApp1", + "createdDateTime": "2018-01-24T05:55:37Z" + }, + { + "@odata.type": "#microsoft.graph.servicePrincipal", + "id": "0e1fa067-dcc1-4d85-9b4c-e69145dd3efb", + "appId": "255912cb-e31d-4dee-bee4-3fa5d774d6b9", + "displayName": "TestApp2", + "createdDateTime": "2018-01-24T05:55:37Z" + } + ] +} +``` ++ +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "list resources for appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-update.md	+ + Title: "Update appManagementPolicy" +description: "Update an application management policy." +ms.localizationpriority: medium +++ +# Update appManagementPolicy + +Namespace: microsoft.graph + +Update an [appManagementPolicy](../resources/appManagementPolicy.md) object. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +PATCH /policies/appManagementPolicies/{id} +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body ++ +\| Property \| Type \| Description \| +\| :-- \| :-- \| : \| +\| displayName \| String \| The display name of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| description \| String \| The description of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. \| + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "update_appManagementPolicy" +}--> + +```http +PATCH https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id} + +{ + "isEnabled": false +} + +``` + +### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content + +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "update appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Application Delete Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-delete-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -DELETE https://graph.microsoft.com/v1.0/applications/{id}/tokenLifetimePolicies/{id}/$ref +DELETE https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/$ref ``` # [C#](#tab/csharp)
v1.0	Application List Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-list-tokenlifetimepolicies.md	The following is an example of the request. }--> ```msgraph-interactive -GET https://graph.microsoft.com/v1.0/applications/acc848e9-e8ec-4feb-a521-8d58b5482e09/tokenLifetimePolicies +GET https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies ``` # [C#](#tab/csharp) HTTP/1.1 200 OK Content-type: application/json { - "value": [ - { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" - } - ] + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#Collection(microsoft.graph.tokenLifetimePolicy)", + "value": [ + { + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true + } + ] } ```
v1.0	Application Post Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-post-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -POST https://graph.microsoft.com/v1.0/applications/{id}/tokenLifetimePolicies/$ref +POST https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/$ref Content-Type: application/json { - "@odata.id":"https://graph.microsoft.com/v1.0/policies/tokenLifetimePolicies/cd3d9b57-0aee-4f25-8ee3-ac74ef5986a9" + "@odata.id":"https://graph.microsoft.com/v1.0/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4" } ```
v1.0	Appmanagementpolicy Delete Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-delete-appliesto.md	+ + Title: "Remove appliesTo" +description: "Remove an appManagementPolicy from an application or service principal object." +ms.localizationpriority: medium +++ +# Remove appliesTo + +Namespace: microsoft.graph + +Remove an [appManagementPolicy](../resources/appManagementPolicy.md) policy object from an application or service principal object. When you remove the appManagementPolicy, the application or service principal adopts the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| +\| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +DELETE /applications/{id}/appManagementPolicies/$ref +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body + +In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection. + +## Response + +If successful, this method returns `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Example 1: Remove an appManagementPolicy from an application object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from an application. + +<!-- { + "blockType": "request", + "name": "remove_appliesTo" +}--> + +```http +DELETE https://graph.microsoft.com/v1.0/applications/{id}/appManagementPolicies/$ref +Content-type: application/json + +{ + "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}" +} +``` + +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +### Example 2: Remove an appManagementPolicy from a service principal object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from a service principal. + +<!-- { + "blockType": "request", + "name": "remove_appliesTo" +}--> + +``` http +DELETE https://graph.microsoft.com/v1.0/servicePrincipals/{id}/appManagementPolicies/$ref + +{ + "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}" +} +``` ++ +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "list resources for appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-get.md	+ + Title: "Get appManagementPolicy" +description: "Get an application management policy." +ms.localizationpriority: medium +++ +# Get appManagementPolicy + +Namespace: microsoft.graph + +Read the properties of an [appManagementPolicy](../resources/appManagementPolicy.md) object. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +GET /policies/appManagementPolicies/{id} +``` + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a single [appManagementPolicy](../resources/appManagementPolicy.md) object in the response body. + +## Examples + +### Request + +The following is an example of the request. From the response, the app management policy defines the following restrictions for application and service principal objects: + +- Blocks creating of new passwords after 2019-10-19 at 10:37 AM UTC time. +- Limits password secrets for apps created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds. + +<!-- { + "blockType": "request", + "name": "get_appManagementPolicy" +}--> + +```http +GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id} +``` + +### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.appManagementPolicy" +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies", + "value": [ + { + "id": "db9d4b58-3488-4da4-9994-49773c454e33", + "displayName": "Custom app management policy", + "description": "Custom policy that enforces app management restrictions on specific applications and service principals.", + "isEnabled": false, + "restrictions": { + "passwordCredentials": [ + { + "restrictionType": "passwordAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "passwordLifetime", + "maxLifetime": "P4DT12H30M5S", + "restrictForAppsCreatedAfterDateTime": "2017-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2021-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyLifetime", + "maxLifetime": "P4D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ], + "keyCredentials": [ + { + "restrictionType": "asymmetricKeyLifetime", + "maxLifetime": "P90D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ] + } + } + ] +} +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "get appManagementPolicy", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-list.md	+ + Title: "List appManagementPolicies" +description: "Get a list of application management policies." +ms.localizationpriority: medium +++ +# List appManagementPolicies + +Namespace: microsoft.graph + +Retrieve a list of [appManagementPolicy](../resources/appManagementPolicy.md) objects. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| + +## Optional query parameters + +This method supports the `$select`, `$filter`, and `$top` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +GET /policies/appManagementPolicies +``` + +## Request headers + +\| Name \| Description \| +\| : \| : \| +\| Authorization \| Bearer {token}. Required. \| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [appManagementPolicy](../resources/appManagementPolicy.md) object in the response body. + +## Examples + +### Request + +The following is an example of the request. + +<!-- { + "blockType": "request", + "name": "list_appManagementPolicies" +}--> + +```http +GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies +``` +++ +### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.appManagementPolicy" +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies", + "value": [ + { + "id": "db9d4b58-3488-4da4-9994-49773c454e33", + "displayName": "Custom app management policy", + "description": "Custom policy that enforces app management restrictions on specific applications and service principals.", + "isEnabled": false, + "restrictions": { + "passwordCredentials": [ + { + "restrictionType": "passwordAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "passwordLifetime", + "maxLifetime": "P4DT12H30M5S", + "restrictForAppsCreatedAfterDateTime": "2017-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2021-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyLifetime", + "maxLifetime": "P4D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ], + "keyCredentials": [ + { + "restrictionType": "asymmetricKeyLifetime", + "maxLifetime": "P90D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ] + } + } + ] +} +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "get appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Post Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-post-appliesto.md	+ + Title: "Assign appliesTo" +description: "Assign an appManagementPolicy to an application or service principal object." +ms.localizationpriority: medium +++ +# Assign appliesTo + +Namespace: microsoft.graph + +Assign an [appManagementPolicy](../resources/appManagementPolicy.md) policy object to an application or service principal object. The application or service principal adopts this policy over the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting. Only one policy object can be assigned to an application or service principal. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| +\| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +POST /applications/{id}/appManagementPolicies/$ref +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body + +In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection. + +## Response + +If successful, this method returns `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Example 1: Assign an appManagementPolicy to an application object + +#### Request + +The following is an example of the request to assign an appManagementPolicy to an application. ++ +<!-- { + "blockType": "request", + "name": "assign_appliesTo" +}--> + +```http +POST https://graph.microsoft.com/v1.0/applications/{id}/appManagementPolicies/$ref +Content-type: application/json + +{ + "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}" +} +``` + +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +### Example 2: Assign an appManagementPolicy to a service principal object + +#### Request + +The following is an example of the request to assign an appManagementPolicy to a service principal. + +<!-- { + "blockType": "request", + "name": "assign_appliesTo" +}--> + +``` http +POST https://graph.microsoft.com/v1.0/servicePrincipals/{id}/appManagementPolicies/$ref + +{ + "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}" +} +``` + +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "list resources for appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-post.md	+ + Title: "Create appManagementPolicy" +description: "Create an application management policy." +ms.localizationpriority: medium +++ +# Create appManagementPolicy + +Namespace: microsoft.graph + +Create an [appManagementPolicy](../resources/appManagementPolicy.md) object. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +POST /policies/appManagementPolicies +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +> [!IMPORTANT] +> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. + +## Request body + +In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object. + +You can specify the following properties when creating an appManagementPolicy. + +\| Property \| Type \| Description \| +\| :-- \| :- \| : \| +\| displayName \| String \| The display name of the policy. Required. \| +\| description \| String \| The description of the policy. Required. \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. Optional. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. Optional. \| + +## Response + +If successful, this method returns a `201 Created` response code with the new [appManagementPolicy ](../resources/appmanagementpolicy.md) object in the response payload. + +## Examples + +### Request + +The following is an example of the request. This request created an app management policy with the following settings: + +- Enables the policy. +- Blocks creating of new passwords for applications and service principals created on or after 2019-10-19 at 10:37 AM UTC time. +- Enforces lifetime on password secrets and key credentials for applications created on or after 2014-10-19 at 10:37 AM UTC time. +- Limits password secrets for apps and service principals created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds. + +<!-- { + "blockType": "request", + "name": "create_appManagementPolicy" +}--> + +```http +POST https://graph.microsoft.com/v1.0/policies/appManagementPolicies + +{ + "displayName": "Credential management policy", + "description": "Cred policy sample", + "isEnabled": true, + "restrictions": { + "passwordCredentials": [ + { + "restrictionType": "passwordAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "passwordLifetime", + "maxLifetime": "P4DT12H30M5S", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyLifetime", + "maxLifetime": "P4D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ], + "keyCredentials": [ + { + "restrictionType": "asymmetricKeyLifetime", + "maxLifetime": "P90D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" + } + ] + } +} + +``` +++ +### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.appManagementPolicy" +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies/$entity", + "id": "a4ab1ed9-46bb-4bef-88d4-86fd6398dd5d", + "displayName": "credential management policy", + "description": "Lorem ipsum", + "isEnabled": true, + "restrictions": { + "passwordCredentials": [ + { + "restrictionType": "passwordAddition", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "passwordLifetime", + "maxLifetime": "P4DT12H30M5S", + "restrictForAppsCreatedAfterDateTime": "2018-10-19T10:37:00Z" + } + ] + } +} +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "create appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Authentication List Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication List Methods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-methods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Authentication List Softwareoathmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-softwareoathmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global Reader -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Authentication List Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-temporaryaccesspassmethods.md	One of the following permissions is required to call this API. To learn more, in \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Phonemethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-phonemethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authentication Post Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-temporaryaccesspassmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Authenticationmethod Resetpassword	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethod-resetpassword.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Administrator -* Privileged Authentication Administrator -* Authentication Administrator ## HTTP request Content-type: application/json } ``` +# [C#](#tab/csharp) + # [JavaScript](#tab/javascript) [!INCLUDE [sample-code](../includes/snippets/javascript/passwordauthenticationmethod-resetpassword-adminprovided-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] Content-type: application/json [!INCLUDE [sample-code](../includes/snippets/jav)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) + #### Response The following is an example of the request. POST https://graph.microsoft.com/v1.0/users/6ea91a8d-e32e-41a1-b7bd-d2d185eed0e0/authentication/methods/28c10230-6103-485e-b985-444c60001490/resetPassword ``` +# [C#](#tab/csharp) + # [JavaScript](#tab/javascript) [!INCLUDE [sample-code](../includes/snippets/javascript/passwordauthenticationmethod-resetpassword-systemgenerated-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] POST https://graph.microsoft.com/v1.0/users/6ea91a8d-e32e-41a1-b7bd-d2d185eed0e0 [!INCLUDE [sample-code](../includes/snippets/jav)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) + #### Response
v1.0	Authenticationmethodspolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethodspolicy-get.md	Title: "Get authenticationMethodsPolicy" description: "Read the properties and relationships of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request Content-Type: application/json "targetType": "group", "id": "all_users", "isRegistrationRequired": false, - "authenticationMode": "any" + "authenticationMode": "any", + "outlookMobileAllowedState": "default", + "displayAppInformationRequiredState": "default", + "numberMatchingRequiredState": "default" + } + ] + }, + { + "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration", + "id": "Sms", + "state": "enabled", + "includeTargets": [ + { + "targetType": "group", + "id": "all_users", + "isRegistrationRequired": false, + "isUsableForSignIn": true + } + ] + }, + { + "@odata.type": "#microsoft.graph.temporaryAccessPassAuthenticationMethodConfiguration", + "id": "TemporaryAccessPass", + "state": "disabled", + "defaultLifetimeInMinutes": 60, + "defaultLength": 8, + "minimumLifetimeInMinutes": 60, + "maximumLifetimeInMinutes": 480, + "isUsableOnce": false, + "includeTargets": [ + { + "targetType": "group", + "id": "all_users", + "isRegistrationRequired": false } ] },
v1.0	Authenticationmethodspolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethodspolicy-update.md	Title: "Update authenticationMethodsPolicy" description: "Update the properties of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request PATCH /policies/authenticationMethodsPolicy \|Content-Type\|application/json. Required.\| ## Request body -In the request body, supply a JSON representation of the [authenticationMethodConfigurations](../resources/authenticationmethodconfiguration.md) object to prompt users to set up targeted authentication methods. + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|registrationEnforcement\|[registrationEnforcement](../resources/registrationenforcement.md)\|Enforce registration at sign-in time. This property can be used to prompt users to set up targeted authentication methods.\| ## Response -If successful, this method returns a `204 No Content` response code. +If successful, this method returns a `200 OK` response code and an [authenticationMethodsPolicy](../resources/authenticationmethodspolicy.md) object in the response body. ## Examples PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy Content-Type: application/json { - "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#authenticationMethodsPolicy", - "registrationEnforcement": { + "registrationEnforcement": { "authenticationMethodsRegistrationCampaign": { "snoozeDurationInDays": 1, "state": "enabled", Content-Type: application/json "targetedAuthenticationMethod": "microsoftAuthenticator" } ] - } - }, - "authenticationMethodConfigurations": [ - { - "@odata.type": "#microsoft.graph.fido2AuthenticationMethodConfiguration", - "id": "Fido2", - "state": "disabled", - "isSelfServiceRegistrationAllowed": false, - "isAttestationEnforced": false, - "keyRestrictions": { - "isEnforced": false, - "enforcementType": "block", - "aaGuids": [] - } - } - ] + } + } } ``` Content-Type: application/json ### Response <!-- { "blockType": "response", - "truncated": true + "truncated": true, + "@odata.type": "microsoft.graph.authenticationMethodsPolicy" } --> ``` http -HTTP/1.1 204 No Content +HTTP/1.1 200 OK +Content-Type: application/json +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#authenticationMethodsPolicy", + "id": "authenticationMethodsPolicy", + "displayName": "Authentication Methods Policy", + "description": "The tenant-wide policy that controls which authentication methods are allowed in the tenant, authentication method registration requirements, and self-service password reset settings", + "lastModifiedDateTime": "2021-05-25T01:08:08.6712279Z", + "policyVersion": "1.4", + "registrationEnforcement": { + "authenticationMethodsRegistrationCampaign": { + "snoozeDurationInDays": 1, + "state": "enabled", + "excludeTargets": [], + "includeTargets": [ + { + "id": "3ee3a9de-0a86-4e12-a287-9769accf1ba2", + "targetType": "group", + "targetedAuthenticationMethod": "microsoftAuthenticator" + } + ] + } + } +} ```
v1.0	Calendar List Events	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/calendar-list-events.md	Title: "List events" -description: "Retrieve a list of events in a calendar. The list contains single instance meetings and series masters." +description: "Retrieve a list of events in a calendar. The list contains single instance meetings and series masters." ms.localizationpriority: high ms.prod: "outlook" doc_type: apiPageType Namespace: microsoft.graph -Retrieve a list of events in a calendar. The calendar can be one for a [user](../resources/user.md), or the default calendar of a Microsoft 365 [group](../resources/group.md). The list of events contains single instance meetings and series masters. +Retrieve a list of events in a calendar. The calendar can be one for a [user](../resources/user.md), or the default calendar of a Microsoft 365 [group](../resources/group.md). The list of events contains single instance meetings and series masters. To get expanded event instances, you can [get the calendar view](calendar-list-calendarview.md), or [get the instances of an event](event-list-instances.md). +> [!NOTE] +> If your target mailbox calendar contains any private items, the caller must either: +> * Be granted `FullAccess` mailbox permissions over the target mailbox (via the [Add-MailboxPermission](/powershell/module/exchange/add-mailboxpermission) cmdlet). +> * Be granted the `Delegate` + `CanViewPrivateItems` flags (similar to the previous option, but through the [Add-MailboxFolderPermission](/powershell/module/exchange/add-mailboxfolderpermission) cmdlet). This option routes all meeting requests to the delegate mailbox. For a workaround, see [SharingPermissionFlags](/powershell/module/exchange/add-mailboxfolderpermission?view=exchange-ps#-sharingpermissionflags). +> +> Failure to meet these conditions will result in a `The specified object was not found in the store` response. + ## Permissions Depending on the type of calendar that the events are in and the permission type (delegated or application) requested, one of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Callrecords Callrecord Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/callrecords-callrecord-get.md	There are two ways to get the id of a callRecord: * Subscribe to [change notifications](/graph/api/resources/webhooks?view=graph-rest-1.0&preserve-view=true) to the `/communications/callRecords` endpoint. * Use the callChainId property of a [call](../resources/call.md). The call record is available only after the associated call is completed. +> [!WARNING] +> +> A call record is created after a call or meeting ends and will remain available for 30 days. Requests for call records older than 30 days will receive a `404 Not Found` response. + ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. +If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. A request for a call record older than 30 days will receive a `404 Not Found` response. ## Examples GET https://graph.microsoft.com/v1.0/communications/callRecords/{id}?$expand=ses #### Response -The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. +The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. The default page size for sessions is 60 entries. > Note: The response object shown here might be shortened for readability.
v1.0	Channel List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/channel-list.md	GET /teams/{team-id}/channels This method supports the $filter and $select [OData query parameters](/graph/query-parameters) to help customize the response. +### Use $select for better performance +Populating the email property for a channel is an expensive operation that results in slow performance. Use `$select` to exclude the email property to improve performance. + ## Request headers \| Header \| Value \|
v1.0	Deletedteam Getallmessages	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/deletedteam-getallmessages.md	If successful, this function returns a `200 OK` response code and a [chatMessage ### Request The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "deletedteamthis.getallmessages" The following is an example of a request. GET https://graph.microsoft.com/v1.0/teamwork/deletedTeams/fbe2bf47-16c8-47cf-b4a5-4b9b187c508b/channels/getAllMessages ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response
v1.0	Directory Deleteditems List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/directory-deleteditems-list.md	The OData cast type is a required part of the URI and calling `GET /directory/de ## Optional query parameters -This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: +This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. This API returns 100 objects by default and supports returning up to 999 objects per page using `$top`. + +Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: ```http GET https://graph.microsoft.com/beta/directory/deletedItems/microsoft.graph.group?&$count=true&$orderBy=deletedDateTime desc&$select=id,displayName,deletedDateTime
v1.0	Directoryobject Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/directoryobject-delta.md	GET https://graph.microsoft.com/v1.0/directoryObjects/delta?filter=isof('microso - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=isof('{resource type}')`. Note the presence of the _members@delta_ property which includes the ids of member objects in the group. GET https://graph.microsoft.com/v1.0/directoryObjects/delta?$filter=id eq '87d34 - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=id eq '{id}'`. Prefer: return=minimal - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization. Note that the `microsoft.graph.user/surname` property is not included, which means it has not changed since the last delta query; `microsoft.graph.group/displayName` is included which means its value has changed.
v1.0	Driveitem Createlink	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/driveitem-createlink.md	The request should be a JSON object with the following properties. \| expirationDateTime \| string \| A String with format of yyyy-MM-ddTHH:mm:ssZ of DateTime indicates the expiration time of the permission. \| \| retainInheritedPermissions \| Boolean \| Optional. If `true` (default), any existing inherited permissions are retained on the shared item when sharing this item for the first time. If `false`, all existing permissions are removed when sharing for the first time. \| \| scope \| string \| Optional. The scope of link to create. Either `anonymous`, `organization`, or `users`. \| -\| retainInheritedPermissions \| Boolean \| If `true`, any current inherited permissions are retained on the shared item when sharing this item for the first time. If `false`, all current permissions are removed when sharing for the first time. The default value is `true`. Optional. \| ### Link types
v1.0	Emailauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Emailauthenticationmethod Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethod-update.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Externalconnectors Externalconnection Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/externalconnectors-externalconnection-get.md	GET https://graph.microsoft.com/v1.0/external/connections/contosohr [!INCLUDE [sample-code](../includes/snippets/go/get-externalconnection-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/get-externalconnection-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Fido2authenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Fido2authenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-delete.md	Title: "Delete fido2AuthenticationMethodConfiguration" description: "Delete a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType" One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-get.md	Title: "Get fido2AuthenticationMethodConfiguration" description: "Read the properties and relationships of a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType" One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request Content-type: application/json "id": "all_users", "isRegistrationRequired": false } - ] + ], + "excludeTargets": [] } ```
v1.0	Fido2authenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-update.md	Title: "Update fido2AuthenticationMethodConfiguration" description: "Update the properties of a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType" One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Group Post Groups	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/group-post-groups.md	The following table shows the properties that are required when you create the [ \| :-- \| : \| :-- \| \| displayName \| String \| The name to display in the address book for the group. Maximum length: 256 characters. Required. \| \| mailEnabled \| Boolean \| Set to `true` for mail-enabled groups. Required. \| -\| mailNickname \| String \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : . <> , SPACE`. Required. \| +\| mailNickname \| String \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : <> , SPACE`. Required. \| \| securityEnabled \| Boolean \| Set to `true` for security-enabled groups, including Microsoft 365 groups. Required. Note: Groups created using the Microsoft Azure portal always have securityEnabled initially set to `true`. \| > [!IMPORTANT]
v1.0	Longrunningoperation Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/longrunningoperation-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| \| Application \| Not supported. \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Administrator -* Global Reader -* Privileged Authentication Administrator -* Authentication Administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-delete.md	Title: "Delete microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Deletes a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-get.md	Title: "Get microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Read the properties and relationships of a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request Content-Type: application/json "authenticationMode": "any" } ], + "excludeTargets": [], "featureSettings": { "displayAppContextRequiredState" : { "state": "enabled",
v1.0	Microsoftauthenticatorauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-update.md	Title: "Update microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Update the properties of a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request Content-Type: application/json ### Response -Note: The response object shown here might be shortened for readability. +The following is an example of the response. <!-- { "blockType": "response", - "truncated": true, - "@odata.type": "microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration" + "truncated": true } --> ``` http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "@odata.type": "#microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration", - "id": "129ae788-e788-129a-88e7-9a1288e79a12", - "state": "String" -} +HTTP/1.1 204 No Content ```
v1.0	Organizationalbranding Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbranding-get.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Organization.Read.All \|
v1.0	Organizationalbranding List Localizations	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbranding-list-localizations.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Not supported. \|
v1.0	Organizationalbrandinglocalization Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbrandinglocalization-get.md	One of the following permissions is required to call this API. To learn more, in \| Permission type \| Permissions (from least to most privileged) \| \|:\|:--\| -\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All \| +\| Delegated (work or school account) \| User.Read, Organization.Read.All, User.Read.All \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Organization.Read.All \|
v1.0	Phoneauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Disablesmssignin	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-disablesmssignin.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Enablesmssignin	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-enablesmssignin.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Phoneauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Phoneauthenticationmethod Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-update.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Plannerbucket Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/plannerbucket-get.md	Title: "Get plannerBucket" -description: "Retrieve the properties and relationships of plannerBucket object." +description: "Retrieve the properties and relationships of a plannerBucket object." ms.localizationpriority: medium ms.prod: "planner" doc_type: apiPageType Namespace: microsoft.graph -Retrieve the properties and relationships of plannerBucket object. +Retrieve the properties and relationships of a [plannerBucket](../resources/plannerbucket.md) object. + ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [plannerBucket](../resources/plannerbucket.md) object in the response body. +If successful, this method returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) object in the response body. This method can return any of the [HTTP status codes](/graph/errors). The most common errors that apps should handle for this method are the 403 and 404 responses. For more information about these errors, see [Common Planner error conditions](../resources/planner-overview.md#common-planner-error-conditions). ## Example -##### Request -Here is an example of the request. +### Request +The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_plannerbucket" + "name": "get_plannerbucket", + "sampleKeys": ["hsOf2dhOJkqyYYZEtdzDe2QAIUCR"] }--> ```msgraph-interactive -GET https://graph.microsoft.com/v1.0/planner/buckets/{bucket-id} +GET https://graph.microsoft.com/v1.0/planner/buckets/hsOf2dhOJkqyYYZEtdzDe2QAIUCR ``` # [C#](#tab/csharp) GET https://graph.microsoft.com/v1.0/planner/buckets/{bucket-id} -##### Response -Here is an example of the response. Note: The response object shown here might be shortened for readability. +### Response +The following is an example of the response. +>Note: The response object shown here might be shortened for readability. <!-- { "blockType": "response", "truncated": true, Content-type: application/json "suppressions": [ ] }-->-
v1.0	Profilephoto Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/profilephoto-update.md	One of the following permissions is required to call this API. To learn more, in \|:--\|:\| \|Delegated (work or school account) \| Group.ReadWrite.All \| \|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Group.ReadWrite.All \| +\|Application \| Not supported. \| ### To update the profile photo of a team
v1.0	Smsauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-delete.md	+ + Title: "Delete smsAuthenticationMethodConfiguration" +description: "Delete a smsAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Delete smsAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Remove changes made to the [text message authentication method policy](../resources/smsauthenticationmethodconfiguration.md) by reverting the policy to its default configuration. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "delete_smsauthenticationmethodconfiguration" +} +--> +``` http +DELETE https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Smsauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-get.md	+ + Title: "Get smsAuthenticationMethodConfiguration" +description: "Read the properties and relationships of a smsAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Get smsAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Read the properties and relationships of a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object, which represents the Text Message authentication method policy for the Azure AD tenant. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_smsauthenticationmethodconfiguration" +} +--> +``` http +GET https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.smsAuthenticationMethodConfiguration" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration", + "id": "Sms", + "state": "enabled", + "includeTargets": [ + { + "targetType": "group", + "id": "all_users", + "isRegistrationRequired": false, + "isUsableForSignIn": true + } + ], + "excludeTargets": [] + } +} +``` +
v1.0	Smsauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-update.md	+ + Title: "Update smsAuthenticationMethodConfiguration" +description: "Update the properties of a smsAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Update smsAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Update the properties of a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object, which represents the text message authentication method policy for the Azure AD tenant. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|excludeTargets\|[excludeTarget](../resources/excludetarget.md) collection\|Groups of users that are excluded from the policy.\| +\|state\|authenticationMethodState\|Possible values are: `enabled`, `disabled`.\| + +>Note: The `@odata.type` property with a value of `#microsoft.graph.smsAuthenticationMethodConfiguration` must be included in the body. + +## Response + +If successful, this method returns a `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_smsauthenticationmethodconfiguration" +} +--> +``` http +PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration", + "id": "Sms", + "state": "enabled" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Softwareoathauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethod-delete.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Softwareoathauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global Reader -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request
v1.0	Softwareoathauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-delete.md	+ + Title: "Delete softwareOathAuthenticationMethodConfiguration" +description: "Delete a softwareOathAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Delete softwareOathAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Revert the [third-party software Oath authentication method policy](../resources/softwareoathauthenticationmethodconfiguration.md) to its default configuration. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "delete_softwareoathauthenticationmethodconfiguration" +} +--> +``` http +DELETE https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Softwareoathauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-get.md	+ + Title: "Get softwareOathAuthenticationMethodConfiguration" +description: "Read the properties and relationships of a softwareOathAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Get softwareOathAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Read the properties and relationships of a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object, which represents the third-party software OATH authentication method policy for the Azure AD tenant. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_softwareoathauthenticationmethodconfiguration" +} +--> +``` http +GET https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.softwareOathAuthenticationMethodConfiguration" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.softwareOathAuthenticationMethodConfiguration", + "id": "SoftwareOath", + "state": "enabled", + "includeTargets": [ + { + "targetType": "group", + "id": "all_users", + "isRegistrationRequired": false + } + ], + "excludeTargets": [] + } +} +``` +
v1.0	Softwareoathauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-update.md	+ + Title: "Update softwareOathAuthenticationMethodConfiguration" +description: "Update the properties of a softwareOathAuthenticationMethodConfiguration object." + +ms.localizationpriority: medium ++ +# Update softwareOathAuthenticationMethodConfiguration +Namespace: microsoft.graph + +Update the properties of a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object, which represents the third-party software OATH authentication method policy for the Azure AD tenant. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|Policy.ReadWrite.AuthenticationMethod\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Policy.ReadWrite.AuthenticationMethod\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body +In the request body, supply a JSON representation of the [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed. + +For the list of properties, see [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md). + +>Note: The `@odata.type` property with a value of `#microsoft.graph.softwareOathAuthenticationMethodConfiguration` must be included in the body. + +## Response + +If successful, this method returns a `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_softwareoathauthenticationmethodconfiguration" +} +--> +``` http +PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.softwareOathAuthenticationMethodConfiguration", + "state": "disabled" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Team Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/team-post.md	Content-Type: application/json [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go)
v1.0	Teamwork List Deletedteams	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/teamwork-list-deletedteams.md	If successful, this method returns a `200 OK` response code and a collection of ### Request The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_deletedteam" The following is an example of a request. GET https://graph.microsoft.com/v1.0/teamwork/deletedTeams ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response Content-Type: application/json } ] } -``` +```
v1.0	Teamworktag Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/teamworktag-delete.md	DELETE https://graph.microsoft.com/v1.0/teams/53c53217-fe77-4383-bc5a-ed4937a1ae [!INCLUDE [sample-code](../includes/snippets/go/delete-teamworktag-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/delete-teamworktag-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Temporaryaccesspassauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/temporaryaccesspassauthenticationmethod-delete.md

v1.0

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-get.md

Content-type: application/json

} ```

+### Example 3: Retrieve the custom extension stage settings for a policy

+

+#### Request

+

+The following is an example of a request to retrieve the collection of custom extension stage settings that are defined for a policy and their associated access package custom workflow extension.

++

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "get_accesspackageassignmentpolicy_expand_customextensionstagesettings"

+}-->

+

+```msgraph-interactive

+GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197?$expand=customExtensionStageSettings($expand=customExtension)

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

+++++

+#### Response

+

+The following is an example of the response.

+

+> **Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy"

+} -->

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "id": "4540a08f-8ab5-43f6-a923-015275799197",

+ "displayName": "policy with custom access package workflow extension",

+ "description": "Run specified custom access package workflow extension at different stages.",

+ "canExtend": true,

+ "durationInDays": 0,

+ "expirationDateTime": null,

+ "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500",

+ "accessReviewSettings": null,

+ "requestorSettings": {

+ "scopeType": "AllExistingDirectorySubjects",

+ "acceptRequests": true,

+ "allowedRequestors": []

+ },

+ "requestApprovalSettings": {

+ "isApprovalRequired": false,

+ "isApprovalRequiredForExtension": false,

+ "isRequestorJustificationRequired": false,

+ "approvalMode": "NoApproval",

+ "approvalStages": []

+ },

+ "customExtensionStageSettings": [

+ {

+ "id": "5a38d27a-b702-48d9-ac72-dcf158ba1b0d",

+ "stage": "assignmentRequestCreated",

+ "customExtension": {

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id": "219f57b6-7983-45a1-be01-2c228b7a43f8",

+ "displayName": "test_action_1",

+ "description": "Test logic app",

+ "createdDateTime": "2022-01-11T05:19:16.97Z",

+ "lastModifiedDateTime": "2022-01-11T05:19:16.97Z",

+ "endpointConfiguration": {

+ "@odata.type": "#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId": "38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName": "resourcegroup",

+ "logicAppWorkflowName": "customextension_test",

+ "url": "https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration": {

+ "@odata.type": "#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+ ]

+}

+```

+  <!-- {

v1.0

Accesspackageassignmentpolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-update.md

Content-Type: application/json

"accessReviewSettings": null } ```

+### Example 3: Remove the customExtensionStageSettings from a policy

+

+To remove the collection of **customExtensionStageSettings** and their associated custom workflow extension objects from a policy, assign an empty collection to the **customExtensionStageSettings** object.

+

+#### Request

++

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "update_accesspackageassignmentpolicy_delete_customExtensionStageSettings"

+}

+-->

+

+```http

+PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197

+Content-Type: application/json

+

+{

+ "id": "5540a08f-8ab5-43f6-a923-015275799197",

+ "displayName": "policy with access package custom workflow extension",

+ "description": "Run specified access package custom workflow extension at different stages.",

+ "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500",

+ "expiration": {

+ "type": "afterDuration",

+ "duration": "P365D"

+ },

+ "requestApprovalSettings": null,

+ "requestorSettings": {

+ "acceptRequests": true,

+ "scopeType": "AllExistingDirectorySubjects",

+ "allowedRequestors": []

+ },

+ "accessReviewSettings": null,

+ "customExtensionHandlers": []

+}

+```

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++++

+#### Response

+> **Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "id": "4540a08f-8ab5-43f6-a923-015275799197",

+ "displayName": "policy with access package custom workflow extension",

+ "description": "Run specified access package custom workflow extension at different stages.",

+ "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500",

+ "expiration": {

+ "type": "afterDuration",

+ "duration": "P365D"

+ },

+ "requestApprovalSettings": null,

+ "requestorSettings": {

+ "acceptRequests": true,

+ "scopeType": "AllExistingDirectorySubjects",

+ "allowedRequestors": []

+ },

+ "accessReviewSettings": null

+}

+```

<!-- {

v1.0

Accesspackageassignmentrequest Resume

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequest-resume.md

+

+ Title: "accessPackageAssignmentRequest: resume"

+description: "Resume accessPackageAssignmentRequest objects."

+ms.localizationpriority: medium

+++

+# accessPackageAssignmentRequest: resume

+Namespace: microsoft.graph

++

+In [Azure AD entitlement management](../resources/entitlementmanagement-overview.md), when an access package policy has been enabled to call out a custom extension and the request processing is waiting for the callback from the customer, the customer can initiate a resume action. It is performed on an [accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) object whose **requestStatus** is in a `WaitingForCallback` state.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+| Delegated (work or school account) | EntitlementManagement.ReadWrite.All |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+POST /identityGovernance/entitlementManagement/accessPackageAssignmentRequests/{accessPackageAssignmentRequestId}/resume

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

+In the request body, supply a JSON representation of the parameters.

+

+The following table shows the parameters that can be used with this action.

+

+|Parameter|Type|Description|

+|:|:|:|

+|source|String|Source from where customer is trying to resume the request, which can be stored in service and will be helpful for auditing.|

+|type|String|Indicate at which stage the custom callout extension was executed. The possible values are: `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestApproved`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestGranted`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestRemoved`|

+|data|[accessPackageAssignmentRequestCallbackData](../resources/accesspackageassignmentrequestcallbackdata.md)| Contains information about the instance of the callout that was made to the customer endpoint. |

+++

+## Response

+

+If successful, this action returns a `204 No Content` response code.

+

+## Examples

+

+### Example 1: Resume an access package assignment request

+

+#### Request

+The following is an example of a call to resume an access package assignment request that's waiting for a callback.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "accesspackageassignmentrequestthis.resume"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/0e60f18c-b2a0-4887-9da8-da2e30a39d99/resume

+Content-Type: application/json

+

+{

+ "source": "Contoso.SodCheckProcess",

+ "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated",

+ "data": {

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData",

+ "stage": "assignmentRequestCreated",

+ "customExtensionStageInstanceId": "957d0c50-466b-4840-bb5b-c92cea7141ff",

+ "customExtensionStageInstanceDetail": "This user is all verified"

+ }

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

++++

+#### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

+### Example 2: Resume and deny an access package assignment request

+

+#### Request

+The following is an example to resume the processing of an access package assignment request by denying the request that's waiting for a callback. A request cannot be denied at the `assignmentRequestCreated` stage of the callout.

+<!-- {

+ "blockType": "request"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/9e60f18c-b2a0-4887-9da8-da2e30a39d99/resume

+Content-Type: application/json

+

+{

+ "source": "Contoso.SodCheckProcess",

+ "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated",

+ "data": {

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData",

+ "stage": "AssignmentRequestCreated",

+ "customExtensionStageInstanceId": "857d0c50-466b-4840-bb5b-c92cea7141ff",

+ "state": "denied",

+ "customExtensionStageInstanceDetail": "Potential risk user based on the SOD check"

+ }

+}

+```

++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Accesspackageassignmentrequestworkflowextension Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-delete.md

+

+ Title: "Delete accessPackageAssignmentRequestWorkflowExtension"

+description: "Delete an accessPackageAssignmentRequestWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Delete accessPackageAssignmentRequestWorkflowExtension

+Namespace: microsoft.graph

++

+Delete an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies:

+1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`.

+2. Use the access package catalog ID and retrieve the ID of the **accessPackageCustomWorkflowExtension** object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation.

+3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy).

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)| EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application| EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId}

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code.

+

+## Examples

+

+### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "delete_accesspackageassignmentrequestworkflowextension"

+}

+-->

+``` http

+DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/E3D4CE35-B16A-4E19-ADF2-616B64D336DC

+```

++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Accesspackageassignmentrequestworkflowextension Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-get.md

+

+ Title: "Get accessPackageAssignmentRequestWorkflowExtension"

+description: "Read the properties and relationships of an accessPackageAssignmentRequestWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Get accessPackageAssignmentRequestWorkflowExtension

+Namespace: microsoft.graph

++

+Read the properties and relationships of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId}

+```

+

+## Optional query parameters

+This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "get_accesspackageassignmentrequestworkflowextension"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0124_email",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ },

+ "callbackConfiguration":{

+ "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration",

+ "durationBeforeTimeout":"PT1H"

+ }

+}

+```

+

v1.0

Accesspackageassignmentrequestworkflowextension Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-update.md

+

+ Title: "Update accessPackageAssignmentRequestWorkflowExtension"

+description: "Update the properties of an accessPackageAssignmentRequestWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Update accessPackageAssignmentRequestWorkflowExtension

+Namespace: microsoft.graph

++

+Update the properties of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.ReadWrite.All|

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId}

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

++

+|Property|Type|Description|

+|:|:|:|

+|authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|description|String|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|displayName|String|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|callbackConfiguration|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)|The timeout duration for callback. Optional.|

+++

+## Response

+

+If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "update_accesspackageassignmentrequestworkflowextension"

+}

+-->

+``` http

+PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0

+Content-Type: application/json

+

+{

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "displayName": "test_action_0124_email",

+ "description": "this is for graph testing only"

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0124_email",

+ "description": "this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ },

+ "callbackConfiguration":{

+ "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration",

+ "durationBeforeTimeout":"PT1H"

+ }

+}

+```

+

v1.0

Accesspackageassignmentworkflowextension Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-delete.md

+

+ Title: "Delete accessPackageAssignmentWorkflowExtension"

+description: "Delete an accessPackageAssignmentWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Delete accessPackageAssignmentWorkflowExtension

+Namespace: microsoft.graph

++

+Delete an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies:

+1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`.

+2. Use the access package catalog ID and retrieve the ID of the **accessPackageCustomWorkflowExtension** object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation.

+3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy).

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)| EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application| EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId}

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code.

+

+## Examples

+

+### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "delete_accesspackageassignmentworkflowextension"

+}

+-->

+``` http

+DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/5FD6D8D5-E8F1-4B54-A1E6-1D0FE0B6E6EC

+```

++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Accesspackageassignmentworkflowextension Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-get.md

+

+ Title: "Get accessPackageAssignmentWorkflowExtension"

+description: "Read the properties and relationships of an accessPackageAssignmentWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Get accessPackageAssignmentWorkflowExtension

+Namespace: microsoft.graph

++

+Read the properties and relationships of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId}

+```

+

+## Optional query parameters

+This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "get_accesspackageassignmentworkflowextension"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0127_email",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+}

+```

+

v1.0

Accesspackageassignmentworkflowextension Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-update.md

+

+ Title: "Update accessPackageAssignmentWorkflowExtension"

+description: "Update the properties of an accessPackageAssignmentWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Update accessPackageAssignmentWorkflowExtension

+Namespace: microsoft.graph

++

+Update the properties of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.ReadWrite.All|

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId}

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

++

+|Property|Type|Description|

+|:|:|:|

+|authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|description|String|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|displayName|String|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.|

+|callbackConfiguration|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)|The timeout duration for callback. Optional.|

+++

+## Response

+

+If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "update_accesspackageassignmentworkflowextension"

+}

+-->

+``` http

+PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0

+Content-Type: application/json

+

+{

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "displayName": "test_action_0124_email",

+ "description": "this is for graph testing only"

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0127_email",

+ "description": "this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+}

+```

+

v1.0

Accesspackagecatalog List Accesspackagecustomworkflowextensions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md

+

+ Title: "List accessPackagecustomWorkflowExtensions"

+description: "Get a list of the accessPackageCustomWorkflowExtension objects and their properties."

+

+ms.localizationpriority: medium

++

+# List accessPackageCustomWorkflowExtensions

+Namespace: microsoft.graph

++

+Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects and their properties. The resulting list includes all the **customAccessPackageWorkflowExtension** objects for the catalog that the caller has access to read. Each object includes an `@odata.type` property that indicates whether the object is an **accessPackageAssignmentRequestWorkflowExtension** or an **accessPackageAssignmentWorkflowExtension**.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All|

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions

+```

+

+## Optional query parameters

+This method supports the `$select` and `$filter` OData query parameters to help customize the response. For example, to search for access packages with a particular name, include a filter such as `$filter=contains(tolower(displayName),'team')` in the query. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a collection of [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects in the response body.

+

+## Examples

+

+### Request

+

+<!-- {

+ "blockType": "request",

+ "name": "list_accesspackagecustomworkflowextension"

+}

+-->

+``` http

+GET /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions

+```

+

+### Response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.customCalloutExtension)"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions",

+ "value":[

+ {

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0124",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ },

+ "callbackConfiguration":{

+ "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration",

+ "durationBeforeTimeout":"PT1H"

+ }

+ },

+ {

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0124",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/9ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+ ]

+}

+```

v1.0

Accesspackagecatalog Post Accesspackagecustomworkflowextensions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md

+

+ Title: "Create accessPackageCustomWorkflowExtension"

+description: "Create a new accessPackageCustomWorkflowExtension object."

+

+ms.localizationpriority: medium

++

+# Create accessPackageCustomWorkflowExtension

+Namespace: microsoft.graph

++

+Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object and add it to an existing [accessPackageCatalog](../resources/accesspackagecatalog.md) object.

+

+You must explicitly provide an `@odata.type` property that indicates whether the object is an **accessPackageAssignmentRequestWorkflowExtension** or an **accessPackageAssignmentWorkflowExtension**.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|EntitlementManagement.ReadWrite.All |

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|EntitlementManagement.Read.All EntitlementManagement.ReadWrite.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

+In the request body, supply a JSON representation of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.

+

+You can specify the following properties when creating a **accessPackageCustomWorkflowExtension**.

+

+|Property|Type|Description|

+|:|:|:|

+|description|String|Description for the customAccessPackageWorkflowExtension object.|

+|displayName|String|Display name for the customAccessPackageWorkflowExtension.|

+|endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow.|

+|authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow.|

+|callbackConfiguration|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)|The callback configuration for a custom extension. This is suppoted for `accessPackageAssignmentRequestWorkflowExtension`. |

+

+You must also supply an **@odata.type** property with a value of the specific access package workflow extension type. For example, `"@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension"`.

+

+## Response

+

+If successful, this method returns a `201 Created` response code and a [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object in the response body.

+

+## Examples

+

+### Example 1: Create a custom extension for use with an access package assignment request

+The following is an example of a access package assignment request custom workflow extension.

+

+#### Request

+

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "create_accessPackageAssignmentRequestWorkflowExtension"

+}

+-->

+

+``` http

+POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "displayName":"test_action_0124_email",

+ "description":"this is for graph testing only",

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ },

+ "callbackConfiguration":{

+ "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration",

+ "durationBeforeTimeout":"PT1H"

+ }

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++++

+#### Response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.customCalloutExtension"

+}

+-->

+``` http

+HTTP/1.1 201 Created

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0124_email",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ },

+ "callbackConfiguration":{

+ "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration",

+ "durationBeforeTimeout":"PT1H"

+ }

+}

+```

+

+### Example 2: Create a custom extension for use with an access package assignment

+The following is an example of a access package assignment custom workflow extension.

+

+#### Request

+

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "create_accessPackageAssignmentWorkflowExtension"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "displayName":"test_action_0127_email",

+ "description":"this is for graph testing only",

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++++

+#### Response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.customCalloutExtension"

+}

+-->

+``` http

+HTTP/1.1 201 Created

+Content-Type: application/json

+

+{

+ "value":{

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0",

+ "displayName":"test_action_0127_email",

+ "description":"this is for graph testing only",

+ "createdDateTime":"2022-01-24T21:48:57.15Z",

+ "lastModifiedDateTime":"2022-01-24T21:55:44.953Z",

+ "clientConfiguration":null,

+ "endpointConfiguration":{

+ "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration",

+ "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d",

+ "resourceGroupName":"test",

+ "logicAppWorkflowName":"elm-extension-email",

+ "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01"

+ },

+ "authenticationConfiguration":{

+ "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication"

+ }

+}

+```

+

v1.0

Accesspackagecatalog Post Customaccesspackageworkflowextensions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-customaccesspackageworkflowextensions.md

If successful, this method returns a `201 Created` response code and a [customAc

# [HTTP](#tab/http) <!-- { "blockType": "request",

- "name": "create_customaccesspackageworkflowextension_from_"

+ "name": "create_customaccesspackageworkflowextension_"

} --> ``` http

Content-Type: application/json

``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Appmanagementpolicy Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-delete.md

Delete an [appManagementPolicy](../resources/appManagementPolicy.md) object.

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

-| :- | : |

-| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

-| Delegated (personal Microsoft account) | Not supported. |

-| Application | Policy.ReadWrite.ApplicationConfiguration |

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

## HTTP request

The following is an example of the request.

"name": "delete_appManagementPolicy" }-->

-```msgraph-interactive

+```http

DELETE https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} ```

v1.0

Appmanagementpolicy List Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-list-appliesTo.md

List application and service principal objects assigned an [appManagementPolicy]

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

-| :- | : |

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

| Delegated (work or school account) | Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

-| Delegated (personal Microsoft account) | Not supported. |

+| Delegated (personal Microsoft account) | Not supported. |

| Application | Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration | ## HTTP request

The following is an example of the request.

"name": "list_appManagementPolicyAppliesTo" }-->

-```msgraph-interactive

+```http

GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}/appliesTo ```

The following is an example of the request using $select query option.

"name": "list_appManagementPolicyAppliesTo_select" }-->

-```msgraph-interactive

+```http

GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}/appliesTo?$select=id,appId,displayName,createdDateTime ```

v1.0

Appmanagementpolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-update.md

Update an [appManagementPolicy](../resources/appManagementPolicy.md) object.

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

-| :- | : |

-| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

-| Delegated (personal Microsoft account) | Not supported. |

-| Application | Policy.ReadWrite.ApplicationConfiguration |

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

## HTTP request

In the request body, supply the values for relevant fields from the [appManageme

Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed.

-| Property | Type | Description |

-|:|:-|:--|

-| displayName | String | The display name of the policy. Inherited from [policyBase](../resources/policybase.md). |

-| description | String | The description of the policy. Inherited from [policyBase](../resources/policybase.md). |

-| isEnabled | Boolean | Denotes whether the policy is enabled. |

-| restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. |

+| Property | Type | Description |

+| :-- | :-- | : |

+| displayName | String | The display name of the policy. Inherited from [policyBase](../resources/policybase.md). |

+| description | String | The description of the policy. Inherited from [policyBase](../resources/policybase.md). |

+| isEnabled | Boolean | Denotes whether the policy is enabled. |

+| restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. |

## Response

The following is an example of the request.

"name": "update_appManagementPolicy" }-->

-```msgraph-interactive

+```http

PATCH https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} {

v1.0

Application Delete Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-delete-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```http

-DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/{id}/$ref

+DELETE https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/$ref

``` # [C#](#tab/csharp)

DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/

The following is an example of the response.

-> **Note:** The response object shown here might be shortened for readability.

- <!-- { "blockType": "response", "truncated": true

v1.0

Application List Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-list-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```msgraph-interactive

-GET https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies

+GET https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies

``` # [C#](#tab/csharp)

HTTP/1.1 200 OK

Content-type: application/json {

- "value": [

- {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

- }

- ]

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(microsoft.graph.tokenLifetimePolicy)",

+ "value": [

+ {

+ "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",

+ "deletedDateTime": null,

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

+ }

+ ]

} ```

v1.0

Application Post Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-post-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```http

-POST https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies

+POST https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/$ref

Content-Type: application/json {

- "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/cd3d9b57-0aee-4f25-8ee3-ac74ef5986a9"

+ "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4"

} ```

Content-Type: application/json

[!INCLUDE [sample-code](../includes/snippets/go/create-tokenlifetimepolicy-from-application-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

+# [PowerShell](#tab/powershell)

+ # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/create-tokenlifetimepolicy-from-application-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Appmanagementpolicy Delete Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-delete-appliesto.md

+

+ Title: "Remove appliesTo"

+description: "Remove an appManagementPolicy from an application or service principal object."

+ms.localizationpriority: medium

+++

+# Remove appliesTo

+

+Namespace: microsoft.graph

++

+Remove an [appManagementPolicy](../resources/appManagementPolicy.md) policy object from an application or service principal object. When you remove the appManagementPolicy, the application or service principal adopts the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

+| Delegated (work or school account) | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+DELETE /applications/{id}/appManagementPolicies/$ref

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+## Request body

+

+In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection.

+

+## Response

+

+If successful, this method returns `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Example 1: Remove an appManagementPolicy from an application object

+

+#### Request

+

+The following is an example of the request to remove an appManagementPolicy from an application.

++

+<!-- {

+ "blockType": "request",

+ "name": "remove_appliesTo"

+}-->

+

+```http

+DELETE https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref

+Content-type: application/json

+

+{

+ "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}"

+}

+```

+

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+### Example 2: Remove an appManagementPolicy from a service principal object

+

+#### Request

+

+The following is an example of the request to remove an appManagementPolicy from a service principal.

+++

+<!-- {

+ "blockType": "request",

+ "name": "remove_appliesTo"

+}-->

+

+``` http

+DELETE https://graph.microsoft.com/beta/servicePrincipals/{id}/appManagementPolicies/$ref

+

+{

+ "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}"

+}

+```

++

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "list resources for appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-get.md

Read the properties of an [appManagementPolicy](../resources/appManagementPolicy

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

+| Permission type | Permissions (from least to most privileged) |

The following is an example of the request. From the response, the app manageme

"name": "get_appManagementPolicy" }-->

-```msgraph-interactive

+```http

GET https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} ```

v1.0

Appmanagementpolicy List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-list.md

Retrieve a list of [appManagementPolicy](../resources/appManagementPolicy.md) ob

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

+| Permission type | Permissions (from least to most privileged) |

The following is an example of the request.

"name": "list_appManagementPolicies" }-->

-```msgraph-interactive

+```http

GET https://graph.microsoft.com/beta/policies/appManagementPolicies ```

v1.0

Appmanagementpolicy Post Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post-appliesto.md

Assign an [appManagementPolicy](../resources/appManagementPolicy.md) policy obje

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

-| :- | : |

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

| Delegated (work or school account) | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

-| Delegated (personal Microsoft account) | Not supported. |

+| Delegated (personal Microsoft account) | Not supported. |

| Application | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration | ## HTTP request

POST /applications/{id}/appManagementPolicies/$ref

## Request headers | Name | Description |

-|:--|:-|

+| : | :-- |

| Authorization | Bearer {token}. Required. | | Content-Type | application/json. Required. |

The following is an example of the request to assign an appManagementPolicy to a

"name": "ApplicationsAppManagementPolicies" }-->

-```msgraph-interactive

+```http

POST https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref Content-type: application/json

v1.0

Appmanagementpolicy Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post.md

Create an [appManagementPolicy](../resources/appManagementPolicy.md) object.

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-| Permission type | Permissions (from least to most privileged) |

-| :- | : |

-| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

-| Delegated (personal Microsoft account) | Not supported. |

-| Application | Policy.ReadWrite.ApplicationConfiguration |

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

## HTTP request

POST /policies/appManagementPolicies

| Authorization | Bearer {token}. Required. | | Content-Type | application/json. Required. |

+> [!IMPORTANT]

+> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019.

## Request body

-In the request body, provide a JSON representation of an [appManagementPolicy](../resources/appManagementPolicy.md).

+In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object.

+

+You can specify the following properties when creating an **appManagementPolicy**.

+

+| Property | Type | Description |

+| :-- | :- | : |

+| displayName | String | The display name of the policy. Required. |

+| description | String | The description of the policy. Required. |

+| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. |

+| restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. Optional. |

## Response

-If successful, this method returns a `201 Created` response code with the new [appManagementPolicy ](../resources/appmanagementpolicy.md) object in the response payload.

+If successful, this method returns a `201 Created` response code with the new [appManagementPolicy](../resources/appmanagementpolicy.md) object in the response payload.

## Examples

v1.0

Authentication List Emailmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-emailmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication List Methods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-methods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Authentication List Passwordmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-passwordmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Authentication List Softwareoathmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-softwareoathmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global Reader

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Authentication List Temporaryaccesspassmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-temporaryaccesspassmethods.md

One of the following permissions is required to call this API. To learn more, in

| Application | UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All |

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Emailmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-emailmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Phonemethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-phonemethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Temporaryaccesspassmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-temporaryaccesspassmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authenticationmethod Resetpassword

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethod-resetpassword.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authenticationmethodspolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-get.md

Title: "Get authenticationMethodsPolicy" description: "Read the properties and relationships of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Authenticationmethodspolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-update.md

Title: "Update authenticationMethodsPolicy" description: "Update the properties of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Authenticationoperation Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationoperation-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authorizationpolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authorizationpolicy-get.md

One of the following permissions is required to call this API. To learn more, in

```http

-GET /policies/authorizationPolicy/authorizationPolicy

+GET /policies/authorizationPolicy

``` ## Request headers

If successful, this method returns a `200 OK` response code and the single [auth

The following is an example of the request. ```msgraph-interactive

-GET https://graph.microsoft.com/beta/policies/authorizationPolicy/authorizationPolicy

+GET https://graph.microsoft.com/beta/policies/authorizationPolicy

```

v1.0

Calendar List Events

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/calendar-list-events.md

Retrieve a list of events in a calendar. The calendar can be one for a [user](.

To get expanded event instances, you can [get the calendar view](calendar-list-calendarview.md), or [get the instances of an event](event-list-instances.md).

+> [!NOTE]

+> If your target mailbox calendar contains any private items, the caller must either:

+> * Be granted `FullAccess` mailbox permissions over the target mailbox (via the [Add-MailboxPermission](/powershell/module/exchange/add-mailboxpermission) cmdlet).

+> * Be granted the `Delegate` + `CanViewPrivateItems` flags (similar to the previous option, but through the [Add-MailboxFolderPermission](/powershell/module/exchange/add-mailboxfolderpermission) cmdlet). This option routes all meeting requests to the delegate mailbox. For a workaround, see [SharingPermissionFlags](/powershell/module/exchange/add-mailboxfolderpermission?view=exchange-ps#-sharingpermissionflags).

+>

+> Failure to meet these conditions will result in a `The specified object was not found in the store` response.

+ ## Permissions Depending on the type of calendar that the events are in and the permission type (delegated or application) requested, one of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

v1.0

Callrecords Callrecord Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/callrecords-callrecord-get.md

There are two ways to get the **id** of a **callRecord**:

* Subscribe to [change notifications](/graph/api/resources/webhooks) to the `/communications/callRecords` endpoint. * Use the **callChainId** property of a [call](../resources/call.md). The call record is available only after the associated call is completed.

+> [!WARNING]

+>

+> A call record is created after a call or meeting ends and will remain available for **30 days**. Requests for call records older than 30 days will receive a `404 Not Found` response.

+ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

Do not supply a request body for this method.

## Response

-If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body.

+If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. A request for a call record older than 30 days will receive a `404 Not Found` response.

## Examples

GET https://graph.microsoft.com/beta/communications/callRecords/{id}?$expand=ses

#### Response

-The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions.

+The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. The default page size for sessions is 60 entries.

> **Note:** The response object shown here might be shortened for readability.

v1.0

Cloudpc Getcloudpclaunchinfo

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getcloudpclaunchinfo.md

If successful, this function returns a `200 OK` response code and a [cloudPcLaun

# [HTTP](#tab/http) <!-- { "blockType": "request",

- "name": "cloudpcthis.getcloudpclaunchinfo"

+ "name": "cloudpc.getcloudpclaunchinfo"

} --> ``` http

v1.0

Cloudpc Getshiftworkcloudpcaccessstate

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getshiftworkcloudpcaccessstate.md

+

+ Title: "cloudPC: getShiftWorkCloudPcAccessState"

+description: "Get the access state of a shift work Cloud PC. Callers can get the latest shift work Cloud PC accessState and determine if the shift work Cloud PC is accessible to the user."

+

+ms.localizationpriority: medium

++

+# cloudPC: getShiftWorkCloudPcAccessState

+Namespace: microsoft.graph

++

+Get the [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) of a shift work Cloud PC.

+

+This API only supports shared-use licenses. For more information, see [cloudPcProvisioningPolicy](../resources/cloudpcprovisioningpolicy.md#cloudpcprovisioningtype-values). Shared-use licenses allow three users per license, with one user signed in at a time. Callers can get the latest shift work Cloud PC **accessState** and determine whether the shift work Cloud PC is accessible to the user.

+

+If a web client needs to connect to a shift work Cloud PC, the **sharedCloudPcAccessState** validates the bookmark scenario. If **sharedCloudPcAccessState** is not active/activating/hibernated, the web client shows a "bad bookmark".

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|CloudPC.Read.All, CloudPC.ReadWrite.All|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Not supported.|

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this function returns a `200 OK` response code and a [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) object in the response body.

+

+If the Cloud PC has been provisioned as a dedicated device, this method returns `400 Bad request`.

+

+## Examples

+

+### Request

+<!-- {

+ "blockType": "request",

+ "name": "cloudpc.getShiftWorkCloudPcAccessState"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState

+```

+

+### Response

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "string"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#Edm.String",

+ "value": "noLicensesAvailable"

+}

+```

+

v1.0

Directory Deleteditems List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-list.md

The OData cast type is a required part of the URI and calling `GET /directory/de

## Optional query parameters

-This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For example:

+This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. This API returns 100 objects by default and supports returning up to 999 objects per page using `$top`.

+

+Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For example:

```msgraph-interactive https://graph.microsoft.com/beta/directory/deletedItems/microsoft.graph.group?&$count=true&$orderBy=deletedDateTime desc&$select=id,displayName,deletedDateTime

v1.0

Directoryobject Delta

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryobject-delta.md

GET https://graph.microsoft.com/beta/directoryObjects/delta?filter=isof('microso

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=isof('{resource type}')`. Note the presence of the _members@delta_ property which includes the ids of member objects in the group.

GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=id eq '87d34

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=id eq '{id}'`.

GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=isof('micros

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization. Note that both properties are included in the response and it is not known which ones have changed since the `@odata.deltaLink` was obtained.

v1.0

Dynamics Companies Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/dynamics-companies-get.md

Title: Get companies

-description: Gets a company object in Dynamics 365 Business Central.

--

+ Title: "Get companies"

+description: "Get a companies object in Dynamics 365 Business Central."

+

+documentationcenter: ""

+ ms.localizationpriority: medium ms.prod: "dynamics-365-business-central" doc_type: apiPageType

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Retrieve the properties and relationships of a companies object for Dynamics 365 Business Central.

+Get a [companies](../resources/dynamics-companies.md) object in Dynamics 365 Business Central.

## Permissions+ One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). |Permission type |Permissions (from least to most privileged)|

One of the following permissions is required to call this API. To learn more, in

|Application|Financials.ReadWrite.All| ## HTTP request+

+

```http GET /financials/companies ``` ## Optional query parameters

-This method supports the [OData Query Parameters](/graph/query-parameters) to help customize the response.

+

+This method supports the [OData query parameters](/graph/query-parameters) to help customize the response.

## Request headers+ |Header|Value| ||--| |Authorization |Bearer {token}. Required. | ## Request body+ Do not supply a request body for this method. ## Response

-If successful, this method returns a `200 OK` response code and a **companies** object in the response body.

+

+If successful, this method returns a `200 OK` response code and a [companies](../resources/dynamics-companies.md) object in the response body.

## Example

-**Request**

+### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "ignored",

+ "name": "get_companies"

+}-->

-Here is an example of the request.

```http GET https://graph.microsoft.com/beta/financials/companies ```

-**Response**

+### Response

-Here is an example of the response.

+The following is an example of the response.

> **Note**: The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "ignored",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.companies"

+} -->

+ ```json

+HTTP/1.1 200 OK

+Content-Type: application/json

+ { "id": "id-value", "systemVersion": "17806",

Here is an example of the response.

"businessProfileId": "" } ```--

v1.0

Emailauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication admin

## HTTP request

v1.0

Emailauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Emailauthenticationmethod Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-update.md

Update a user's email address associated with an [email Authentication Method](.

## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-### Permissions acting on self

-

-|Permission type | Permissions (from least to most privileged) |

-|:|:-|

-| Delegated (work or school account) | UserAuthenticationMethod.ReadWrite |

-| Delegated (personal Microsoft account) | Not supported. |

-| Application | Not supported. |

-

-### Permissions acting on other users

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

+Users without one of the supported Azure AD roles cannot update their own email authentication method.

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Entitlementmanagement Post Accesspackageassignmentpolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/entitlementmanagement-post-accesspackageassignmentpolicies.md

Content-type: application/json

} ``` -- ### Example 4: Create a policy and specify the stages to trigger pre-defined custom workflow extensions #### Request

Content-type: application/json

} ```

+### Example 5: Create a policy and specify the stages to trigger pre-defined access package custom extensions

+

+#### Request

+

+In the following example, the pre-defined **accessPackageCustomWorkflowExtension** object is triggered when an access package assignment request is created and when it's granted. The identifier provided within the **customExtension** field is the **accessPackageCustomWorkflowExtension** object's ID.

++

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "create_accesspackageassignmentpolicy_accessPackageCustomWorkflowExtension"

+}-->

++

+```msgraph-interactive

+POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies

+Content-type: application/json

+

+{

+ "displayName": "extension-policy",

+ "description": "test",

+ "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500",

+ "expiration": {

+ "type": "afterDuration",

+ "duration": "P365D"

+ },

+ "canExtend": false,

+ "requestApprovalSettings": null,

+ "requestorSettings": {

+ "acceptRequests": true,

+ "scopeType": "AllExistingDirectorySubjects",

+ "allowedRequestors": [],

+ "isOnBehalfAllowed": false

+ },

+ "accessReviewSettings": null,

+ "questions": [],

+ "customExtensionStageSettings": [

+ {

+ "stage": "assignmentRequestCreated",

+ "customExtension": {

+ "id": "219f57b6-7983-45a1-be01-2c228b7a43f8"

+ }

+ },

+ {

+ "stage": "assignmentRequestGranted",

+ "customExtension": {

+ "id": "219f57b6-7983-45a1-be01-2c228b7a43f8"

+ }

+ ]

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++++

+#### Response

+

+The following is an example of the response. The **customExtensionStageSettings** object isn't returned by default. To retrieve this object, use the **GET** method with `$expand`. For more information, see [Retrieve the custom extension stage settings for a policy](accesspackageassignmentpolicy-get.md#example-3-retrieve-the-custom-extension-stage-settings-for-a-policy)

+

+> **Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy"

+} -->

+

+```http

+HTTP/1.1 201 Created

+Content-type: application/json

+

+{

+ "id": "d0324cbb-24a2-4edb-acca-fee5384c6a5e",

+ "displayName": "extension-policy",

+ "description": "test",

+ "canExtend": false,

+ "durationInDays": 0,

+ "expirationDateTime": null,

+ "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500",

+ "accessReviewSettings": null,

+ "questions": [],

+ "requestorSettings": {

+ "scopeType": "AllExistingDirectorySubjects",

+ "acceptRequests": true,

+ "allowedRequestors": []

+ },

+ "requestApprovalSettings": {

+ "isApprovalRequired": false,

+ "isApprovalRequiredForExtension": false,

+ "isRequestorJustificationRequired": false,

+ "approvalMode": "NoApproval",

+ "approvalStages": []

+ }

+}

+```

+  <!-- {

v1.0

Fido2authenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Fido2authenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Fido2authenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Fido2authenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Fido2authenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Fido2authenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Group Post Groups

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-post-groups.md

The following table shows the properties that are required when you create the [

-| mailNickname | string | The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : . <> , SPACE`. Required. |

+| mailNickname | string | The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : <> , SPACE`. Required. |

| securityEnabled | boolean | Set to `true` for security-enabled groups, including Microsoft 365 groups. Required. **Note:** Groups created using the Microsoft Azure portal always have **securityEnabled** initially set to `true`. | > [!IMPORTANT]

v1.0

Identitygovernance Customtaskextension Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_delete_customtaskextension"

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions/2af4670b-47d3-460f-ad16-fc7d4c511d33 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response <!-- {

v1.0

Identitygovernance Customtaskextension Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_customtaskextension"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions/ffcc4c85-5a14-448e-a390-77abf2700369 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Customtaskextension Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-update.md

One of the following permissions is required to call this API. To learn more, in

> [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: **Logic App contributor**, **Contributor**, or **Owner**.

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_update_customtaskextension"

Content-length: 588

} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response <!-- {

v1.0

Identitygovernance Deleteditemcontainer Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deletedItemcontainer-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_delete_deleteditems"

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/{workflowId} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response <!-- {

v1.0

Identitygovernance Deleteditemcontainer Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deleteditemcontainer-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_deleteditemcontainer"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/4557805a-1af5-4c29-b271-2cd7fb5de9bf ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_deleteditemcontainer_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/952b23c5-cc25-48c9-8848-95da4dd9dc6d?$select=id,category,displayName,description,version,executionConditions ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Lifecyclemanagementsettings Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_lifecyclemanagementsettings"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/settings ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

-- ### Response

Content-Type: application/json

{ "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity",

- "workflowScheduleIntervalInHours": 1

+ "workflowScheduleIntervalInHours": 1,

+ "emailSettings": {

+ "senderDomain": "ContosoIndustries.net",

+ "useCompanyBranding": true

+ }

} ```

v1.0

Identitygovernance Lifecyclemanagementsettings Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

PATCH /identityGovernance/lifecycleWorkflows/settings

|Property|Type|Description| |:|:|:| |workflowScheduleIntervalInHours|Int32|The workflow schedule interval. Required.|

+|emailSettings|[microsoft.graph.emailSettings](../resources/emailsettings.md)|The settings for emails sent from email-specific tasks within a workflow. Required.|

## Response

If successful, this action returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_update_lifecyclemanagementsettings"

Content-Type: application/json

{ "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity",

- "workflowScheduleIntervalInHours": 3

+ "workflowScheduleIntervalInHours": 3,

+ "emailSettings": {

+ "senderDomain": "ContosoIndustries.net",

+ "useCompanyBranding": true

+ }

} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response <!-- { "blockType": "response",

v1.0

Identitygovernance Lifecycleworkflowscontainer List Customtaskextensions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-customtaskextensions.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_customtaskextension"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/customTaskExtensions ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Lifecycleworkflowscontainer List Deleteditems

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-deleteditems.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_deleteditemcontainer"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

-- #### Response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_deleteditemcontainer_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows?$select=id,category,displayName,description,version&$filter=category eq 'leaver' ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Lifecycleworkflowscontainer List Taskdefinitions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-taskdefinitions.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskdefinition"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. Because the **category** is a flagged enumeration that can be one of `joiner`, `joiner,leaver`, or `leaver`, the `has` operator checks tasks where the category includes "joiner". -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskdefinition_filter_category"

The following is an example of a request. Because the **category** is a flagged

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions?$filter=category has 'joiner' ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Lifecycleworkflowscontainer List Workflows

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflows.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

-- #### Response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows?$filter=category eq 'leaver'&$select=id,category,displayName,isEnabled,isSchedulingEnabled ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response <!-- {

v1.0

Identitygovernance Lifecycleworkflowscontainer List Workflowtemplates

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflowtemplates.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowtemplate"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowtemplate_filter_category"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates?$filter=category eq 'leaver' ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response <!-- {

v1.0

Identitygovernance Lifecycleworkflowscontainer Post Customtaskextensions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-customtaskextensions.md

One of the following permissions is required to call this API. To learn more, in

> [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: **Logic App contributor**, **Contributor**, or **Owner**.

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_create_customtaskextension_from_"

Content-length: 588

} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Lifecycleworkflowscontainer Post Workflows

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-workflows.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

The following is an example of a request that creates a workflow with the follow

+ It runs for new users that are based in Australia, on their employeeHireDate. + Two tasks are carried out when the workflow runs: the user's account is enabled and a "Welcome" email is sent to the user.

-# [HTTP](#tab/http)

+ <!-- { "blockType": "request", "name": "lifecycleworkflows_create_workflow_from_"

Content-Type: application/json

} ```

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Run Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow_run"

The following is an example of a request.

GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow_run"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2?$select=id,failedTasksCount,failedUsersCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,totalUsersCount ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response

v1.0

Identitygovernance Run List Taskprocessingresults

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-taskprocessingresults.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_taskprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/a977dbe8-0f3f-4ae6-b3a7-29e1010ac4cc/runs/33bf1a9c-2b26-49b6-996f-ca416c518341/taskProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_taskprocessingresult_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/a977dbe8-0f3f-4ae6-b3a7-29e1010ac4cc/runs/33bf1a9c-2b26-49b6-996f-ca416c518341/taskProcessingResults?$select=id,failureReason,processingStatus,subject ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Run List Userprocessingresults

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-userprocessingresults.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_taskprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d/userProcessingResults/ ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_taskprocessingresult_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,subject ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Run Summary

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-summary.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this function returns a `200 OK` response code and a [microsoft.g

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_runthis.summary"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/summary(startDateTime=2022-08-01T00:00:00Z,endDateTime=2022-08-31T00:00:00Z) ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Task Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

Content-Type: application/json

The following is an example of a request to get a task from a workflow version.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowVersion_task",

The following is an example of a request to get a task from a workflow version.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/2/tasks/4d9d41d7-a8e1-4f2f-8c8c-a883bc02e6ee ```

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

--- #### Response The following is an example of the response of a request to get a task from a workflow version.

v1.0

Identitygovernance Task Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `204 No Content` response code.

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_update_task"

Content-length: 454

} ```

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-- ### Response

v1.0

Identitygovernance Taskdefinition Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskdefinition-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_taskdefinition"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/taskDefinitions/1dfdfcc7-52fa-4c2e-bf3a-e3919cc12950 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Taskprocessingresult Resume

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskprocessingresult-resume.md

If successful, this action returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_taskprocessingresultthis.resume"

Content-length: 155

} ```

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

--- ### Response The following is an example of the response.

v1.0

Identitygovernance Taskreport List Taskprocessingresults

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-list-taskprocessingresults.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_taskprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports/3a3bea11-99ca-462d-86fb-d283db8d734a/taskProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_taskprocessingresult_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/taskReports/443c7611-45df-48c0-bf5e-dc6068c402f0/taskProcessingResults?$select=id,failureReason,processingStatus,subject,task ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Taskreport Summary

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-summary.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_taskreport.summary"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports/summary(startDateTime=2022-08-19T00:00:00.000Z,endDateTime=2022-08-25T00:33:31.533Z) ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Userprocessingresult Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_userprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/dad77a47-6eda-4de7-bc37-fe8eb5aaf17d/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_run_userprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,subject ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Userprocessingresult List Taskprocessingresults

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-list-taskprocessingresults.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9/taskProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresult_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2/taskProcessingResults?$select=id,processingStatus,failureReason,subject,task ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response

Content-Type: application/json

### Example 3: Get the task processing results for a user processing result in a run report for a workflow -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresults"

Content-Type: application/json

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/72885f91-2cf0-44b1-b3ed-bd145af0192c/userProcessingResults/78b83505-6967-4168-a7ea-4921c0543ce9/taskProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. --

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflow_userprocessingresult_taskprocessingresults_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs/e65e08a0-d68d-41dc-915b-8c4019af5cc2/userProcessingResults/40efc576-840f-47d0-ab95-5abca800f8a2/taskProcessingResults?$select=id,failureReason,processingStatus,subject,task ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Userprocessingresult Summary

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-summary.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this function returns a `200 OK` response code and a [microsoft.g

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_userprocessingresultthis.summary"

The following is an example of a request.

GET https://graph.microsoft.com/beta/IdentityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/userProcessingResults/summary(startDateTime=2022-07-20T00:00:00Z,endDateTime=2022-07-23T00:00:00Z) ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Workflow Activate

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-activate.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.activate"

Content-Type: application/json

} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PHP](#tab/php)

--- ### Response <!-- {

v1.0

Identitygovernance Workflow Createnewversion

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-createnewversion.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `200 OK` response code and a [microsoft.gra

## Examples

-### Request

+### Example 1: Create a new version of a workflow

+

+#### Request

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.createnewversion"

Content-length: 631

{ "workflow":{

+ "category": "joiner",

"description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true,

Content-length: 631

} ```

-# [JavaScript](#tab/javascript)

-# [Java](#tab/java)

+#### Response

-# [Go](#tab/go)

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.identityGovernance.workflow"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

-# [PHP](#tab/php)

-

+{

+ "workflow":{

+ "category": "joiner",

+ "description": "Configure new hire tasks for onboarding employees on their first day",

+ "displayName": "Global onboard new hire employee",

+ "isEnabled": true,

+ "isSchedulingEnabled": false,

+ "executionConditions": {

+ "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions",

+ "scope": {

+ "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet",

+ "rule": "(department eq 'Marketing')"

+ },

+ "trigger": {

+ "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger",

+ "timeBasedAttribute": "employeeHireDate",

+ "offsetInDays": 1

+ }

+ },

+ "tasks": [

+ {

+ "continueOnError": false,

+ "description": "Enable user account in the directory",

+ "displayName": "Enable User Account",

+ "isEnabled": true,

+ "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc",

+ "arguments": []

+ },

+ {

+ "continueOnError": false,

+ "description": "Send welcome email to new hire",

+ "displayName": "Send Welcome Email",

+ "isEnabled": true,

+ "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea",

+ "arguments": []

+ }

+ ]

+ }

+}

+```

+

+### Example 2: Create a new version of a task with customized email

+

+#### Request

+

+The following is an example of a request.

+

+<!-- {

+ "blockType": "request",

+ "name": "lifecycleworkflows_workflowthis.createnewversion_customemail"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/{workflowId}/createNewVersion

+Content-Type: application/json

+Content-length: 631

+

+{

+ "workflow":{

+ "category": "joiner",

+ "description": "Configure new hire tasks for onboarding employees on their first day",

+ "displayName": "Global onboard new hire employee",

+ "isEnabled": true,

+ "isSchedulingEnabled": false,

+ "executionConditions": {

+ "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions",

+ "scope": {

+ "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet",

+ "rule": "(department eq 'Marketing')"

+ },

+ "trigger": {

+ "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger",

+ "timeBasedAttribute": "employeeHireDate",

+ "offsetInDays": 1

+ }

+ },

+ "tasks": [

+ {

+ "continueOnError": false,

+ "description": "Enable user account in the directory",

+ "displayName": "Enable User Account",

+ "isEnabled": true,

+ "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc",

+ "arguments": []

+ },

+ {

+ "continueOnError": false,

+ "description": "Send welcome email to new hire",

+ "displayName": "Send Welcome Email",

+ "isEnabled": true,

+ "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea",

+ "arguments": [

+ {

+ "name": "cc",

+ "value": "1baa57fa-3c4e-4526-ba5a-db47a9df95f0"

+ },

+ {

+ "name": "customSubject",

+ "value": "Welcome to the organization {{userDisplayName}}!"

+ },

+ {

+ "name": "customBody",

+ "value": "Welcome to our organization {{userGivenName}}!"

+ },

+ {

+ "name": "locale",

+ "value": "en-us"

+ }

+ ]

+ }

+ ]

+ }

+}

+```

+

+#### Response

-### Response

The following is an example of the response >**Note:** The response object shown here might be shortened for readability.

Content-Type: application/json

{ "workflow":{

+ "category": "joiner",

"description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true,

Content-Type: application/json

"displayName": "Send Welcome Email", "isEnabled": true, "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea",

- "arguments": []

+ "arguments": [

+ {

+ "name": "cc",

+ "value": "b47471b9-af8f-4a5a-bfa2-b78e82398f6e, a7a23ce0-909b-40b9-82cf-95d31f0aaca2"

+ },

+ {

+ "name": "customSubject",

+ "value": "Welcome to the organization {{userDisplayName}}!"

+ },

+ {

+ "name": "customBody",

+ "value": "Welcome to our organization {{userGivenName}} {{userSurname}}. \nFor more information, reach out to your manager {{managerDisplayName}} at {{managerEmail}}."

+ },

+ {

+ "name": "locale",

+ "value": "en-us"

+ },

+ ]

} ] }

v1.0

Identitygovernance Workflow Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_delete_workflow"

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/4c9c57b9-e1e9-4bed-a936-4fad9d8f5638 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response <!-- {

v1.0

Identitygovernance Workflow Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflow"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

} ``` - ### Example 2: Retrieve specific properties of a workflow #### Request

v1.0

Identitygovernance Workflow List Runs

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-runs.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_run"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/runs/ ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_run_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/runs?$select=id,failedTasksCount,failedUsersCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,totalUsersCount,id ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Workflow List Task

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-task.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

v1.0

Identitygovernance Workflow List Taskreports

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-taskreports.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/14879e66-9ea9-48d0-804d-8fea672d0341/taskReports ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_taskreport_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/taskReports?$select=id,failedUsersCount,processingStatus,successfulUsersCount,totalUsersCount,unprocessedUsersCount,taskDefinition,taskProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

v1.0

Identitygovernance Workflow List Userprocessingresults

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-userprocessingresults.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_userprocessingresult"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/userProcessingResults ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_userprocessingresult_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/userProcessingResults?$select=id,failedTasksCount,processingStatus,totalTasksCount,totalUnprocessedTasksCount,workflowExecutionType,subject ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response >**Note:** The response object shown here might be shortened for readability.

v1.0

Identitygovernance Workflow List Versions

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-versions.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion_select"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/versions?$select=category,displayName,versionNumber ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response <!-- {

v1.0

Identitygovernance Workflow Restore

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-restore.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_workflowthis.restore"

The following is an example of a request.

POST https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/deletedItems/workflows/4c9c57b9-e1e9-4bed-a936-4fad9d8f5638/restore ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Workflow Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Lifecycle workflows administrator ## HTTP request

If successful, this action returns a `204 No Content` response code.

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_update_workflow"

Content-length: 454

} ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

-- ### Response

v1.0

Identitygovernance Workflowtemplate Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowtemplate-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowtemplate"

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflowTemplates/77179007-8114-41b5-922e-2e22109df41f ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- ### Response The following is an example of the response

v1.0

Identitygovernance Workflowversion Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowversion",

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/3 ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response The following is an example of the response

Content-Type: application/json

The following is an example of a request. -

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_get_workflowversion_select",

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/15239232-66ed-445b-8292-2f5bbb2eb833/versions/2?$select=category,displayName,versionNumber,executionConditions&$expand=tasks ```

-# [C#](#tab/csharp)

-

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

-

-# [Go](#tab/go)

-

-# [PowerShell](#tab/powershell)

-

-# [PHP](#tab/php)

--- #### Response <!-- { "blockType": "response",

v1.0

Identitygovernance Workflowversion List Tasks

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-list-tasks.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

-# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "lifecycleworkflows_list_workflowversion_task",

The following is an example of a request.

GET https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/156ce798-1eb6-4e0a-8515-e79f54d04390/versions/2/tasks ```

-# [JavaScript](#tab/javascript)

-

-# [Java](#tab/java)

--- ### Response The following is an example of the response

v1.0

Industrydata Azuredatalakeconnector Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "delete_azuredatalakeconnector",

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Azuredatalakeconnector Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_azuredatalakeconnector",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Azuredatalakeconnector Getuploadsession

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-getuploadsession.md

If successful, this function returns a `200 OK` response code and a [microsoft.g

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "azuredatalakeconnectorthis.getuploadsession",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271/microsoft.graph.industryData.azureDataLakeConnector/getUploadSession ```

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Azuredatalakeconnector List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Azuredatalakeconnector Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_azureDataLakeConnector_from_dataConnectors"

Content-length: 104

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Azuredatalakeconnector Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-update.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "update_azuredatalakeconnector",

Content-type: application/json

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Filevalidateoperation Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_fileValidateOperation",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/operations/581b2ef8-dda2-4a3e-bb62-df13fd4a5808 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Filevalidateoperation List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/operations ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundfileflow Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "delete_inboundflow"

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundfileflow Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_inboundflow",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundfileflow List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundfileflow Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_inboundfileflow_from_inboundflows"

Content-length: 246

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundfileflow Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-update.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "update_inboundfileflow"

Content-length: 246

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundflow Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "delete_inboundflow",

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/0c629a1a-a85c-4365-bdf0-623a32ca69cb ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundflow Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_inboundflow",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundflow List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundflow Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_inboundflow_from_inboundFlows"

Content-length: 246

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Inboundflow Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-update.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "update_inboundfileflow"

Content-length: 246

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydataconnector Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "delete_azuredatalakeconnector",

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydataconnector Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_azuredatalakeconnector",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydataconnector List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydataconnector Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_industrydataconnector_from_dataConnectors"

Content-length: 104

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydataconnector Validate

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-validate.md

If successful, this action returns a `202 Accepted` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "industrydataconnectorthis.validate",

The following is an example of a request.

POST https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93/validate ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydatarun Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_industrydatarun",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydatarun Getstatistics

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-getstatistics.md

If successful, this function returns a `200 OK` response code and a [microsoft.g

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "industrydatarunthis.getstatistics",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534/getStatistics ```

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Industrydatarun List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/runs ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Referencedefinition Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_referencedefinition",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions/RefAcademicSubject-01 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Referencedefinition List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Rolegroup Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_rolegroup",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/roleGroups/students ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Rolegroup List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/roleGroups ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Sourcesystemdefinition Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_",

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/sourceSystems/0c629a1a-a85c-4365-bdf0-623a32ca69cb ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Sourcesystemdefinition Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_sourcesystemdefinition",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/sourceSystems/0190210e-8827-4747-6f2b-08dacc885e72 ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Sourcesystemdefinition List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/sourceSystems ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Sourcesystemdefinition Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_sourceSystems"

Content-length: 250

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Sourcesystemdefinition Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-update.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "update_sourcesystemdefinition",

Content-length: 250

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Yeartimeperioddefinition Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-delete.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "delete_yearTimePeriodDefinition_from_",

The following is an example of a request.

DELETE https://graph.microsoft.com/beta/external/industryData/years/0c629a1a-a85c-4365-bdf0-623a32ca69cb ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Yeartimeperioddefinition Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-get.md

If successful, this method returns a `200 OK` response code and a [microsoft.gra

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "get_yeartimeperioddefinition",

The following is an example of a request.

} -->

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/years/ebf18762-ab92-487e-21d1-08daddab28bb ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Yeartimeperioddefinition List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-list.md

If successful, this method returns a `200 OK` response code and a collection of

The following is an example of a request.

+# [HTTP](#tab/http)

-```http

+```msgraph-interactive

GET https://graph.microsoft.com/beta/external/industryData/years ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Yeartimeperioddefinition Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-post.md

If successful, this method returns a `201 Created` response code and a [microsof

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "create_yeartimeperioddefinition_from_years"

Content-length: 242

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+++ ### Response The following is an example of the response.

v1.0

Industrydata Yeartimeperioddefinition Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-update.md

If successful, this method returns a `204 No Content` response code.

The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "update_yeartimeperioddefinition",

Content-length: 242

} ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response.

v1.0

Microsoftauthenticatorauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/microsoftauthenticatorauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Oauth2permissiongrant List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/oauth2permissiongrant-list.md

GET https://graph.microsoft.com/beta/oauth2PermissionGrants

[!INCLUDE [sample-code](../includes/snippets/go/list-oauth2permissiongrants-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

-# [PowerShell](#tab/powershell)

- # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/list-oauth2permissiongrants-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Organization Activateservice

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organization-activateservice.md

- Title: "organization: activateService"

-description: "Activates a service for an organization."

-

-doc_type: apiPageType

--

-# organization: activateService (deprecated)

-

-Namespace: microsoft.graph

--

-> [!CAUTION]

-> The **activateService** API is deprecated and will stop returning data on June 30, 2022.

-

-Activate a service for an organization.

-

-## Permissions

-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-

-In order to activate a service for an organization the requestor needs to have the _Company Administrator_ role with the following permissions.

-

-|Permission type|Permissions (from least to most privileged)|

-| : | : |

-| Delegated (work or school account) | Directory.ReadWrite.All|

-| Delegated (personal Microsoft account) | Not Supported. |

-| Application | Directory.ReadWrite.All|

--

-## HTTP request

-

-<!-- {

- "blockType": "ignored"

-}

>

-``` http

-POST /organization/{organizationId}/activateService

-```

-

-## Request headers

-|Name|Description|

-|:|:|

-|Authorization|Bearer {token}. Required.|

-|Content-Type|application/json. Required.|

-

-## Request body

-In the request body, supply a JSON representation of the [activateService](../resources/activateService.md) object.

-You must define **service** or (**servicePlanId** _and_ **skuId**) for this action to be valid.

-

-| Property | Type | Description |

-| -- | | - |

-| service| String | The name of the service to activate. |

-| servicePlanId | Guid | The plan identifier of the service plan to activate. |

-| skuId | Guid | The SKU identifier of the service plan. |

-

-## Response

-

-If successful, this action returns a `204 No Content` response code.

-

-## Examples

-

-### Request

-

-# [HTTP](#tab/http)

-<!-- {

- "blockType": "request",

- "name": "organization_activateservice"

-}

>

-``` http

-POST https://graph.microsoft.com/beta/organization/{:organizationId}/activateService

-Content-Type: application/json

-

-{

- "skuId": "6fd2c87f-b296-42f0-b197-1e91e994b900",

- "servicePlanId": "a23b959c-7ce8-4e57-9140-b90eb88a9e97"

-}

-```

-

-# [JavaScript](#tab/javascript)

---

-### Response

-<!-- {

- "blockType": "response",

- "truncated": true

-}

>

-``` http

-HTTP/1.1 204 No Content

-```

v1.0

Organizationalbranding Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbranding-get.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Organizationalbranding List Localizations

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbranding-list-localizations.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Organizationalbrandinglocalization Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/organizationalbrandinglocalization-get.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Passwordauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Phoneauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Disablesmssignin

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-disablesmssignin.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Enablesmssignin

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-enablesmssignin.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Phoneauthenticationmethod Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/phoneauthenticationmethod-update.md

If a user is enabled by policy to use SMS to sign in and the `mobile` number is

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-### Permissions acting on self

-

-|Permission type | Permissions (from least to most privileged) |

-|:|:-|

-| Delegated (work or school account) | UserAuthenticationMethod.ReadWrite |

-| Delegated (personal Microsoft account) | Not supported. |

-| Application | Not supported. |

-

-### Permissions acting on other users

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

+

+Users without one of the supported Azure AD roles cannot update their own phone authentication method.

## HTTP request  ```http

-PATCH /me/authentication/phoneMethods/{id}

PATCH /users/{id | userPrincipalName}/authentication/phoneMethods/{id} ``` The value of `id` corresponding to the phoneType to update is one of the following:

v1.0

Plannerbucket Delta

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerbucket-delta.md

+

+ Title: "plannerBucket: delta"

+description: "Get newly created, updated, or deleted buckets in a Planner plan without having to perform a full read of the entire resource collection."

+

+ms.localizationpriority: medium

++

+# plannerBucket: delta

+

+Namespace: microsoft.graph

++

+Get newly created, updated, or deleted [buckets](../resources/plannerbucket.md) in a Planner [plan](../resources/plannerplan.md) without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview).

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Tasks.Read |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Tasks.Read.All |

+

+## HTTP request

+

+

+

+```http

+GET /planner/plans/{plan-id}/buckets/delta

+```

+

+## Query parameters

+

+Tracking changes incurs a round of one or more **delta** function calls. If you use any query parameter (other than `$deltaToken` and `$skipToken`), you must specify it in the initial **delta** request. Microsoft Graph automatically encodes any specified parameters into the token portion of the `@odata.nextLink` or `@odata.deltaLink` URL provided in the response. You only need to specify any query parameters once upfront. In subsequent requests, copy and apply the `@odata.nextLink` or `@odata.deltaLink` URL from the previous response. That URL already includes the encoded parameters.

+

+| Query parameter | Type | Description |

+| :-- | :-- | :-- |

+| $deltaToken | string | A [state token](/graph/delta-query-overview) returned in the `@odata.deltaLink` URL of the previous **delta** function call for the same resource collection, indicating the completion of that round of change tracking. Save and apply the entire `@odata.deltaLink` URL, including this token in the first request of the next round of change tracking for that collection. |

+| $skipToken | string | A [state token](/graph/delta-query-overview) returned in the `@odata.nextLink` URL of the previous **delta** function call, indicating there are further changes to be tracked in the same resource collection. |

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this function returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) collection in the response body. The response also includes a `@odata.nextLink` or a `@odata.deltaLink` URL.

+

+- A `@odata.nextLink` URL in the response object indicates additional pages of data to be retrieved in the session. The application continues making requests using the `@odata.nextLink` URL until a `@odata.deltaLink` URL is included in the response.

+

+- A `@odata.deltaLink` URL in the response object indicates that no more data about the existing state of the resource is returned. Persist and use the `@odata.deltaLink` URL to learn about changes to the resource in the future.

+

+For more details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview). For an example that shows how to track changes to users, see [Get incremental changes for users](/graph/delta-query-users).

+

+## Examples

+

+The following example shows a request for delta on **plannerBucket** objects contained by a **plannerPlan**.

+

+### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "plannerbucketthis.delta",

+ "sampleKeys": ["-W4K7hIak0WlAwgJCn1sEWQABgjH"]

+}

+-->

+

+```http

+GET https://graph.microsoft.com/beta/planner/plans/-W4K7hIak0WlAwgJCn1sEWQABgjH/buckets/delta

+```

+

+### Response

+

+The following is an example of the response.

+

+>**Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.plannerBucket)"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket",

+ "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/buckets?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4",

+ "value": [

+ {

+ "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"",

+ "id": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH",

+ "name": "This is a bucket",

+ "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH",

+ "orderHint": "8585371316800245114P\\"

+ }

+ ]

+}

+```

v1.0

Plannerbucket Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerbucket-get.md

Title: "Get plannerBucket"

-description: "Retrieve the properties and relationships of **plannerBucket** object."

+description: "Retrieve the properties and relationships of a plannerBucket object."

ms.localizationpriority: medium ms.prod: "planner"

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Retrieve the properties and relationships of **plannerBucket** object.

+Retrieve the properties and relationships of a [plannerBucket](../resources/plannerbucket.md) object.

+ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

Do not supply a request body for this method.

## Response

-If successful, this method returns a `200 OK` response code and [plannerBucket](../resources/plannerbucket.md) object in the response body.

+If successful, this method returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) object in the response body.

This method can return any of the [HTTP status codes](/graph/errors). The most common errors that apps should handle for this method are the 403 and 404 responses. For more information about these errors, see [Common Planner error conditions](../resources/planner-overview.md#common-planner-error-conditions). ## Example

-##### Request

-Here is an example of the request.

+### Request

+The following is an example of the request.

# [HTTP](#tab/http) <!-- {

GET https://graph.microsoft.com/beta/planner/buckets/hsOf2dhOJkqyYYZEtdzDe2QAIUC

-##### Response

-Here is an example of the response. Note: The response object shown here might be shortened for readability.

+### Response

+The following is an example of the response.

+>**Note:** The response object shown here might be shortened for readability.

<!-- { "blockType": "response", "truncated": true,

Content-type: application/json

] } -->--

v1.0

Plannerplan Delta

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannerplan-delta.md

+

+ Title: "plannerPlan: delta"

+description: "Get newly created, updated, or deleted Planner plans in either a group or a Planner roster without having to perform a full read of the entire resource collection."

+

+ms.localizationpriority: medium

++

+# plannerPlan: delta

+

+Namespace: microsoft.graph

++

+Get newly created, updated, or deleted Planner [plans](../resources/plannerplan.md) in either a [group](../resources/group.md) or a Planner [roster](../resources/plannerroster.md) without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview).

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Tasks.Read |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Tasks.Read.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+

+```http

+GET /planner/rosters/{plannerRosterId}/plans/delta

+GET /groups/{group-id}/planner/plans/delta

+```

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this function returns a `200 OK` response code and a [plannerPlan](../resources/plannerplan.md) collection in the response body.

+

+## Examples

+

+### Example 1: Get delta on plans in a plannerRoster

+

+The following example shows a request for delta on **plannerPlan** objects contained by a **plannerRoster**.

+

+#### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "plannerplanthis.delta",

+ "sampleKeys": ["-W4K7hIak0WlAwgJCn1sEWQABgjH"]

+}

+-->

+

+```http

+GET https://graph.microsoft.com/beta/planner/rosters/-W4K7hIak0WlAwgJCn1sEWQABgjH/plans/delta

+```

+

+#### Response

+

+The following is an example of the response.

+

+>**Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.plannerPlan)"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket",

+ "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/rosters/('-W4K7hIak0WlAwgJCn1sEWQABgjH')/plans?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4",

+ "value": [

+ {

+ "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"",

+ "id": "xqQg5FS2LkCp935s-FIFm2QAFkHM",

+ "title": "Test plan",

+ "container": {

+ "@odata.type": "microsoft.graph.plannerPlanContainer",

+ "url": "https://graph.microsoft.com/beta/planner/rosters/-W4K7hIak0WlAwgJCn1sEWQABgjH",

+ "containerId": "-W4K7hIak0WlAwgJCn1sEWQABgjH",

+ "type": "roster"

+ }

+ ]

+}

+```

+

+### Example 2: Get delta on plans in a group

+

+The following example shows a request for delta on **plannerPlan** objects contained by a group.

+

+#### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "plannerplanthis.delta",

+ "sampleKeys": ["ebf3b108-5234-4e22-b93d-656d7dae5874"]

+}

+-->

+

+```http

+GET https://graph.microsoft.com/beta/groups/ebf3b108-5234-4e22-b93d-656d7dae5874/planner/plans/delta

+```

+

+#### Response

+

+The following is an example of the response.

+

+>**Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.plannerPlan)"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerBucket",

+ "@odata.deltaLink": "https://graph.microsoft.com/beta/groups/('ebf3b108-5234-4e22-b93d-656d7dae5874')/planner/plans?deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4",

+ "value": [

+ {

+ "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"",

+ "id": "xqQg5FS2LkCp935s-FIFm2QAFkHM",

+ "title": "Test plan",

+ "container": {

+ "@odata.type": "microsoft.graph.plannerPlanContainer",

+ "url": "https://graph.microsoft.com/beta/groups/ebf3b108-5234-4e22-b93d-656d7dae5874",

+ "containerId": "ebf3b108-5234-4e22-b93d-656d7dae5874",

+ "type": "group"

+ }

+ ]

+}

+```

v1.0

Plannertask Delta

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/plannertask-delta.md

+

+ Title: "plannerTask: delta"

+description: "Get newly created, updated, or deleted tasks in either a Planner plan or assigned to the signed-in user without having to perform a full read of the entire resource collection."

+

+ms.localizationpriority: medium

++

+# plannerTask: delta

+

+Namespace: microsoft.graph

++

+Get newly created, updated, or deleted [tasks](../resources/plannertask.md) in either a Planner [plan](../resources/plannerplan.md) or assigned to the signed-in user without having to perform a full read of the entire resource collection. For details, see [Use delta query to track changes in Microsoft Graph data](/graph/delta-query-overview).

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Tasks.Read |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Tasks.Read.All |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+

+```http

+GET /planner/tasks/delta

+GET /me/planner/tasks/delta

+```

+

+## Query parameters

+

+Tracking changes incurs a round of one or more **delta** function calls. If you use any query parameter (other than `$deltaToken` and `$skipToken`), you must specify it in the initial **delta** request. Microsoft Graph automatically encodes any specified parameters into the token portion of the `@odata.nextLink` or `@odata.deltaLink` URL provided in the response. You only need to specify any query parameters once upfront. In subsequent requests, copy and apply the `@odata.nextLink` or `@odata.deltaLink` URL from the previous response. That URL already includes the encoded parameters.

+

+| Query parameter | Type | Description |

+| :-- | :-- | :-- |

+| $deltaToken | string | A [state token](/graph/delta-query-overview) returned in the `@odata.deltaLink` URL of the previous **delta** function call for the same resource collection, indicating the completion of that round of change tracking. Save and apply the entire `@odata.deltaLink` URL, including this token in the first request of the next round of change tracking for that collection. |

+| $skipToken | string | A [state token](/graph/delta-query-overview) returned in the `@odata.nextLink` URL of the previous **delta** function call, indicating there are further changes to be tracked in the same resource collection. |

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this function returns a `200 OK` response code and a [plannerTask](../resources/plannertask.md) collection in the response body.

+

+## Examples

+

+### Example 1: Get delta on tasks in a plannerPlan

+

+The following example shows a request for the delta on **plannerTask** objects in a **plannerPlan**.

+

+#### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "plannertaskthis.delta"

+}

+-->

+

+```http

+GET https://graph.microsoft.com/beta/planner/tasks/delta

+```

+

+#### Response

+

+The following is an example of the response.

+

+> **Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.plannerTask)"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerTask",

+ "@odata.deltaLink": "https://graph.microsoft.com/beta/planner/plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks?%24expand=details&%24deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4",

+ "value": [

+ {

+ "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"",

+ "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "createdByApp": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3",

+ "createdByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ },

+ "application": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3"

+ }

+ },

+ "userContentLastModifiedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "userContentLastModifiedByApp": null,

+ "userContentLastModifiedByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH",

+ "bucketId": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH",

+ "title": "Testing",

+ "orderHint": "8585371316800245114P\\",

+ "assigneePriority": "8585371316123370883",

+ "focusDateTime": null,

+ "percentComplete": 0,

+ "startDateTime": null,

+ "createdDateTime": "2022-09-29T18:14:25.6091874Z",

+ "userContentLastModifiedDate": "2022-09-29T18:14:33.1404924Z",

+ "dueDateTime": null,

+ "recurrence": null,

+ "hasDescription": false,

+ "previewType": "automatic",

+ "completedDateTime": null,

+ "completedBy": null,

+ "completedByApp": null,

+ "completedByAsIdentitySet": null,

+ "referenceCount": 0,

+ "checklistItemCount": 0,

+ "activeChecklistItemCount": 0,

+ "appliedCategories": {},

+ "assignments": {

+ "b40c85a0-1a66-4fa3-932f-cc9249ce8c29": {

+ "@odata.type": "#microsoft.taskServices.assignment",

+ "assignedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "assignedByAppId": null,

+ "assignedByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "assignedDateTime": "2022-09-29T18:14:33.1404924Z",

+ "orderHint": "8585371316723527019PX",

+ "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "createdByAppId": null,

+ "createdByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "conversationThreadId": null,

+ "priority": 5,

+ "creationSource": {

+ "publication": null,

+ "externalSource": null

+ },

+ "creationSourceInfo": null,

+ "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l",

+ "version": "1-Task @@@@@@@@@@@@@@@H",

+ "details@odata.context": "https://tasks.officeppe.com/taskApi/V3.0/$metadata#plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks('aSOQ0mveu06bTSkfnJQay2QAIn_l')/details/$entity",

+ "details": {

+ "@odata.etag": "W/\"JzEtVGFza0RldGFpbHMgQEBAQEBAQEBAQEBAQEBARCc=\"",

+ "description": "",

+ "notes": null,

+ "previewType": "automatic",

+ "references": {},

+ "checklist": {},

+ "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l",

+ "version": "1-TaskDetails @@@@@@@@@@@@@@@D"

+ }

+ ]

+}

+```

+

+### Example 2: Get delta on tasks assigned to a user

+

+The following example shows a request for the delta on **plannerTask** objects assigned to a user.

+

+#### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "plannertaskthis.delta"

+}

+-->

+

+```http

+GET https://graph.microsoft.com/beta/me/planner/tasks/delta

+```

+

+#### Response

+

+The following is an example of the response.

+

+> **Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.plannerTask)"

+}

+-->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "@odata.context":"https://graph.microsoft.com/beta/$metadata#plannerTask",

+ "@odata.deltaLink": "https://graph.microsoft.com/beta/me/planner/tasks/delta?%24expand=details&%24deltatoken=0%257eaa6c4c81-656f-40e8-a2c5-60f4116fa9a4",

+ "value": [

+ {

+ "@odata.etag": "W/\"JzEtVGFzayAgQEBAQEBAQEBAQEBAQEBASCc=\"",

+ "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "createdByApp": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3",

+ "createdByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ },

+ "application": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "09abbdfd-ed23-44ee-a2d9-a627aa1c90f3"

+ }

+ },

+ "userContentLastModifiedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "userContentLastModifiedByApp": null,

+ "userContentLastModifiedByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "planId": "-W4K7hIak0WlAwgJCn1sEWQABgjH",

+ "bucketId": "iz1mmIxX7EK0Yj7DmRsMs2QAEDXH",

+ "title": "Testing",

+ "orderHint": "8585371316800245114P\\",

+ "assigneePriority": "8585371316123370883",

+ "focusDateTime": null,

+ "percentComplete": 0,

+ "startDateTime": null,

+ "createdDateTime": "2022-09-29T18:14:25.6091874Z",

+ "userContentLastModifiedDate": "2022-09-29T18:14:33.1404924Z",

+ "dueDateTime": null,

+ "recurrence": null,

+ "hasDescription": false,

+ "previewType": "automatic",

+ "completedDateTime": null,

+ "completedBy": null,

+ "completedByApp": null,

+ "completedByAsIdentitySet": null,

+ "referenceCount": 0,

+ "checklistItemCount": 0,

+ "activeChecklistItemCount": 0,

+ "appliedCategories": {},

+ "assignments": {

+ "b40c85a0-1a66-4fa3-932f-cc9249ce8c29": {

+ "@odata.type": "#microsoft.taskServices.assignment",

+ "assignedBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "assignedByAppId": null,

+ "assignedByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "assignedDateTime": "2022-09-29T18:14:33.1404924Z",

+ "orderHint": "8585371316723527019PX",

+ "createdBy": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29",

+ "createdByAppId": null,

+ "createdByAsIdentitySet": {

+ "user": {

+ "@odata.type": "#microsoft.taskServices.identity",

+ "displayName": null,

+ "id": "b40c85a0-1a66-4fa3-932f-cc9249ce8c29"

+ }

+ },

+ "conversationThreadId": null,

+ "priority": 5,

+ "creationSource": {

+ "publication": null,

+ "externalSource": null

+ },

+ "creationSourceInfo": null,

+ "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l",

+ "version": "1-Task @@@@@@@@@@@@@@@H",

+ "details@odata.context": "https://tasks.officeppe.com/taskApi/V3.0/$metadata#plans('-W4K7hIak0WlAwgJCn1sEWQABgjH')/tasks('aSOQ0mveu06bTSkfnJQay2QAIn_l')/details/$entity",

+ "details": {

+ "@odata.etag": "W/\"JzEtVGFza0RldGFpbHMgQEBAQEBAQEBAQEBAQEBARCc=\"",

+ "description": "",

+ "notes": null,

+ "previewType": "automatic",

+ "references": {},

+ "checklist": {},

+ "id": "aSOQ0mveu06bTSkfnJQay2QAIn_l",

+ "version": "1-TaskDetails @@@@@@@@@@@@@@@D"

+ }

+ },

+ ]

+}

+```

v1.0

Reportroot Getteamsteamcounts

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/reportroot-getteamsteamcounts.md

+

+ Title: "reportRoot: getTeamsTeamCounts"

+description: "Get the number of teams of a particular type in an instance of Microsoft Teams."

+ms.localizationpriority: medium

+++

+# reportRoot: getTeamsTeamCounts

+

+Namespace: microsoft.graph

++

+Get the number of teams of a particular type in an instance of Microsoft Teams.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Reports.Read.All |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Reports.Read.All |

+

+> **Note:** For delegated permissions to allow apps to read service usage reports on behalf of a user, the tenant administrator must have assigned the user the appropriate Azure Active Directory limited administrator role. For more details, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization).

+## HTTP request

+

+

+

+```http

+GET /reports/getTeamsTeamCounts(period='{period_value}')

+```

+

+## Function parameters

+

+In the request URL, provide the following parameters with a valid value.

+

+| Parameter | Type | Description |

+| :-- | :-- | : |

+| period | string | Specifies the length of time over which the report is aggregated. The supported values for {period_value} are: `D7`, `D30`, `D90`, and `D180`. These values follow the format D*n*, where *n* represents the number of days over which the report is aggregated. Required. |

+

+> **Note:** You need to set either **period** or **date** in the request URL.

+## Optional query parameters

+

+This method supports the `$format` [OData query parameter](/graph/query-parameters) to customize the response. The default output type is `text/csv`. However, if you want to specify the output type, you can use the OData `$format` query parameter to set the default output to `text/csv` or `application/json`.

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+### CSV

+

+If successful, this method returns a `302 Found` response that redirects to a pre-authenticated download URL for the report. That URL can be found in the `Location` header in the response.

+

+Pre-authenticated download URLs are only valid for a short period (a few minutes) and do not require an `Authorization` header.

+

+The CSV file has the following headers for columns:

+

+- Report Refresh Date

+- Report Date

+- Public Teams

+- Active Public Teams

+- Private Teams

+- Active Private Teams

+

+### JSON

+

+If successful, this method returns a `200 OK` response code and a JSON object in the response body.

+

+## Examples

+

+### Example 1: CSV output

+

+The following is an example that outputs CSV.

+

+#### Request

+

+The following is an example of a request.

+

+<!-- {

+ "blockType": "ignored",

+ "name": "reportroot_getteamsteamcounts_csv"

+}-->

+

+```msgraph-interactive

+GET https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=text/csv

+```

++

+#### Response

+

+The following is an example of the response.

+

+

+

+```http

+HTTP/1.1 302 Found

+Content-Type: text/plain

+Location: https://reports.office.com/data/download/JDFKdf2_eJXKS034dbc7e0t__XDe

+```

+

+Follow the 302 redirection and the CSV file that downloads will have the following schema.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "stream"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-Type: application/octet-stream

+Report Refresh Date,Report Date,Public Teams,Active Public Teams,Private Teams,Active Private Teams,

+```

+

+### Example 2: JSON output

+

+The following is an example that returns JSON.

+

+#### Request

+

+The following is an example of a request.

+

+<!-- {

+ "blockType": "ignored",

+ "name": "reportroot_getteamsteamcounts_json"

+}-->

+

+```msgraph-interactive

+GET https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=application/json

+```

++

+#### Response

+

+The following is an example of the response.

+

+> **Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "stream"

+} -->

+```http

+HTTP/1.1 200 OK

+Content-Type: application/json

+Content-Length: 641

+{

+ "@odata.context": "https://graph.microsoft.com/beta/reports/getTeamsTeamCounts(period='D7')?$format=application/json&$skiptoken=D07uj",

+ "value": [

+ {

+ "reportRefreshDate": "2021-09-01",

+ "reportPeriod":7,

+ "teamsTeamUsageByDate": [

+ {

+ "reportDate": "2022-08-01",

+ "publicTeams": 26,

+ "privateTeams": 17,

+ "activePublicTeams": 20,

+ "activePrivateTeams": 12

+ }

+ ]

+ }

+ ]

+}

+```

+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79

+2015-10-25 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "Example",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": "",

+ "suppressions": [

+ ]

+}-->

v1.0

Riskyserviceprincipal List History

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/riskyserviceprincipal-list-history.md

GET https://graph.microsoft.com/beta/identityProtection/riskyServicePrincipals/{

[!INCLUDE [sample-code](../includes/snippets/go/list-riskyserviceprincipalhistoryitem-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

-# [PowerShell](#tab/powershell)

- # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/list-riskyserviceprincipalhistoryitem-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Search Query

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/search-query.md

If successful, this method returns an `HTTP 200 OK` response code and a collecti

## Examples

-### Request

+### Example 1: Basic call to perform a search request

+

+The following example shows how to perform a search to get expected connector items.

+

+#### Request

-The following is an example of the request.

# [HTTP](#tab/http) <!-- { "blockType": "request",

- "name": "search_query"

+ "name": "query"

}--> ```HTTP

Content-type: application/json

``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] ### Response

-The following is an example of the response.

+The following example shows the response.

> **Note:** The response object shown here might be shortened for readability.

Content-type: application/json

} ```

+### Example 2: Basic call to use queryTemplate

+

+The following example shows how to use the queryable property **createdBy** to retrieve all files created by a user.

+

+#### Request

+

+```HTTP

+POST https://graph.microsoft.com/beta/search/query

+Content-type: application/json

+

+{

+ "requests": [

+ {

+ "entityTypes": [

+ "listItem"

+ ],

+ "query": {

+ "queryString": "contoso",

+ "queryTemplate":"{searchTerms} CreatedBy:Bob"

+ },

+ "from": 0,

+ "size": 25

+ }

+ ]

+}

+```

+

+### Response

+

+The following example shows the response.

+

+```HTTP

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "value": [

+ {

+ "searchTerms": [

+ "contoso"

+ ],

+ "hitsContainers": [

+ {

+ "hits": [

+ {

+ "hitId": "1",

+ "rank": 1,

+ "summary": "_summary-value",

+ "resource": {

+ "@odata.type": "#microsoft.graph.listItem",

+ "id": "c23c7035-73d6-4bad-8901-9e2930d4be8e",

+ "createdBy": {

+ "user": {

+ "displayName": "Bob",

+ "email": "Bob@contoso.com"

+ }

+ },

+ "createdDateTime": "2021-11-19T17:04:18Z",

+ "lastModifiedDateTime": "2023-03-09T18:52:26Z"

+ }

+ ],

+ "total": 1,

+ "moreResultsAvailable": false

+ }

+ ]

+ }

+ ]

+}

+```

+ ## See also - Search [mail messages](/graph/search-concept-messages)

Content-type: application/json

- Search [person](/graph/search-concept-person) - Search content in SharePoint and OneDrive ([files, lists and sites](/graph/search-concept-files)) - Search [custom types (Graph Connectors)](/graph/search-concept-custom-types) data

+- Search with [queryTemplate](/graph/search-concept-query-template)

- [Sort](/graph/search-concept-sort) search results - Use [aggregations](/graph/search-concept-aggregation) to refine search results - Enable [spell corrections](/graph/search-concept-speller) in search results

v1.0

Security Ediscoveryexportoperation Getdownloadurl

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryexportoperation-getdownloadurl.md

Title: "ediscoveryExportOperation: getDownloadUrl"

-description: "return a downloadUrl from where the export content is delivered as a stream"

+ Title: "ediscoveryExportOperation: getDownloadUrl (deprecated)"

+description: "Return a download URL from where the export content is delivered as a stream."

ms.localizationpriority: medium ms.prod: "ediscovery" doc_type: "apiPageType"

-# ediscoveryExportOperation: getDownloadUrl

+# ediscoveryExportOperation: getDownloadUrl (deprecated)

+ Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-If a Azure blob url is not provided in export action, the export operation exports the files to an internal store. Contents of this store can be fetched by calling into this function. This will return a downloadUrl where the zipped content is delivered as a stream.

+> [!CAUTION]

+> The **getDownloadUrl** function is deprecated and will stop returning data on April 30th, 2023. Please use the new **exportFileMetadata** property returned by the [Get caseOperation](../api/security-ediscoverycase-get.md) API instead.

+

+If an Azure blob URL is not provided in export action, the export operation exports the files to an internal store. Contents of this store can be fetched by calling into this function. This returns a download URL where the zipped content is delivered as a stream.

## Permissions

v1.0

Security Ediscoveryreviewset Export

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryreviewset-export.md

The following table shows the parameters that can be used with this action.

|Parameter|Type|Description| |:|:|:|

-|outputName|String| Name of the export. Required. |

-|description|String| Description of the export |

-|azureBlobContainer|String| when you export to your own Azure storage account, this is the container URL. |

-|azureBlobToken|String| when you export to your own Azure storage account, SAS token for the container URL. |

-|exportOptions|String|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.|

+|description|String| Description of the export. |

+|exportOptions|String|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included.|

|exportStructure|String| Options that control file structure and packaging of the export. Possible values are: `none`, `directory`, `pst`.|

+|outputName|String| Name of the export. Required. |

+|azureBlobContainer (deprecated)|String| When you export to your own Azure storage account, this is the container URL. The **azureBlobContainer** property is deprecated and will stop returning data on April 30th, 2023. |

+|azureBlobToken (deprecated)|String| When you export to your own Azure storage account, SAS token for the container URL. The **azureBlobToken** property is deprecated and will stop returning data on April 30th, 2023. |

+ ## Response If the export has started successfully, this action returns a `202 Accepted` response code. The response will also contain a `Location` header, which contains the location of the [Export operation](../resources/security-ediscoveryexportoperation.md) that was created to handle the export.

v1.0

Security Ediscoveryreviewsetquery Export

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/security-ediscoveryreviewsetquery-export.md

The following table shows the parameters that can be used with this action.

|Parameter|Type|Description| |:|:|:|

-|outputName|String| Name of the export. Required. |

-|description|String| Description of the export |

-|azureBlobContainer|String| when you export to your own Azure storage account, this is the container URL. |

-|azureBlobToken|String| when you export to your own Azure storage account, SAS token for the container URL. |

-|exportOptions|String|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.|

+|description|String| Description of the export. |

+|exportOptions|String|Specifies options that control the format of the export. Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo` (deprecated), `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included.|

|exportStructure|String| Options that control file structure and packaging of the export. Possible values are: `none`, `directory`, `pst`.|-

+|outputName|String| Name of the export. Required. |

+|azureBlobContainer (deprecated) |String| When you export to your own Azure storage account, this is the container URL. The **azureBlobContainer** property is deprecated and will stop returning data on April 30th, 2023. |

+|azureBlobToken (deprecated) |String| When you export to your own Azure storage account, SAS token for the container URL. The **azureBlobToken** property is deprecated and will stop returning data on April 30th, 2023. |

## Response

v1.0

Servicestoragequotabreakdown Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/servicestoragequotabreakdown-get.md

+

+ Title: "Get serviceStorageQuotaBreakdown"

+description: "Read the properties and relationships of a serviceStorageQuotaBreakdown object."

+

+ms.localizationpriority: medium

++

+# Get serviceStorageQuotaBreakdown

+Namespace: microsoft.graph

++

+Read the properties and relationships of a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)| Not supported. |

+|Delegated (personal Microsoft account)| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All |

+|Application| Not supported. |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /me/settings/storage/quota/services/{serviceStorageQuotaBreakdownId}

+GET /users/{usersId}/settings/storage/quota/services/{serviceStorageQuotaBreakdownId}

+```

+

+## Optional query parameters

+This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_servicestoragequotabreakdown"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/me/settings/storage/quota/services/OneDrive

+```

++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.serviceStorageQuotaBreakdown"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "displayName": "OneDrive",

+ "id": "OneDrive",

+ "used": 102633320226,

+ "manageWebUrl": "String"

+}

+```

+

v1.0

Sitepage Getwebpartsbyposition

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/sitepage-getwebpartsbyposition.md

The following is an example of a request.

<!-- { "blockType": "request",

- "name": "list_webpart"

+ "name": "get_webparts_by_position"

} -->

The following is an example of a request.

GET https://graph.microsoft.com/beta/sites/{siteId}/pages/{sitePageId}/getWebPartsByPosition(horizontalSectionId={horizontalSectionId},columnId={columnId},webPartIndex={webPartIndex},isInVerticalSection={isInVerticalSection}) ``` - ### Response The following is an example of the response

v1.0

Smsauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Smsauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Smsauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/smsauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/s

|Content-Type|application/json. Required.| ## Request body

-In the request body, supply a JSON representation of the [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed.

-

-The following table shows the properties that are required when you update the [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object.

|Property|Type|Description| |:|:|:|

-|id|String|The authentication method policy identifier.|

+|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.|

|state|authenticationMethodState|Possible values are: `enabled`, `disabled`.| >**Note:** The `@odata.type` property with a value of `#microsoft.graph.smsAuthenticationMethodConfiguration` must be included in the body.

v1.0

Softwareoathauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Softwareoathauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global Reader

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Softwareoathauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Softwareoathauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Softwareoathauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/softwareoathauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Team Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/team-post.md

Content-Type: application/json

[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go)

Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')/operations('3a6fdce1-c2

Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375') Content-Length: 0 ```

+### Example 7: Create a team with a localized non-standard base template type

+Base template types can be localized to your preferred language choice, which enables you to create templates in your preferred language.

-### Example 7: Create a team with a non-standard base template type with extended properties

+Choose your team template from the defintion list returned by the [List definitions](/graph/api/teamtemplate-list-definitions) operation.

+

+#### Request

+

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "convert_team_from_non_standard_localized"

+}-->

+

+```http

+POST https://graph.microsoft.com/beta/teams

+Content-Type: application/json

+

+{

+

+┬á ┬á "templateDefinition@odata.bind": "https://graph.microsoft.com/betC50ZWFtcy50ZW1wbGF0ZS5NYW5hZ2VBUHJvamVjdCMjUHVibGljIyNhci1TQQ==",

+

+┬á ┬á "displayName": "My Sample Team",

+

+┬á ┬á "description": "My Sample TeamΓÇÖs Description"

+

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

+++

+#### Response

+<!-- {

+ "blockType": "response",

+ "name": "convert_team_from_non_standard_localized"

+}-->

+```http

+HTTP/1.1 202 Accepted

+Content-Type: application/json

+Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')/operations('3a6fdce1-c261-48bc-89de-1cfef658c0d5')

+Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')

+Content-Length: 0

+```

+

+### Example 8: Create a team with a non-standard base template type with extended properties

Base template types can be extended with additional properties, enabling you to build on an existing base template with additional team settings, channels, apps, or tabs.

Content-Location: /teams('dbd8de4f-5d47-48da-87f1-594bed003375')

Content-Length: 0 ```

-### Example 8: Create a team in migration mode

+### Example 9: Create a team in migration mode

#### Request

v1.0

Teamtemplatedefinition Get Teamdefinition

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/teamtemplatedefinition-get-teamdefinition.md

Namespace: microsoft.graph

Get the properties of the [team](../resources/team.md) associated with a [teamTemplateDefinition](../resources/teamstemplate.md) object.

+> **Note**: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/).

++ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

v1.0

Teamtemplatedefinition Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/teamtemplatedefinition-get.md

Namespace: microsoft.graph

Read the properties and relationships of a [teamTemplateDefinition](../resources/teamtemplatedefinition.md) object.

+> **Note**: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/).

++ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

v1.0

Temporaryaccesspassauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Temporaryaccesspassauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Temporaryaccesspassauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Temporaryaccesspassauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/temporaryaccesspassauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Tenantappmanagementpolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tenantappmanagementpolicy-update.md

PATCH /policies/defaultAppManagementPolicy

| Authorization | Bearer {token}. Required. | | Content-Type | application/json. Required. |

+> [!IMPORTANT]

+> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019.

+ ## Request body In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, do not include unchanged values in the request payload.

In the request body, supply the values for relevant fields from the [tenantAppMa

| isEnabled | Boolean | Denotes if the policy is enabled. Default value is false. | | servicePrincipalRestrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply as default to all service principal objects in the tenant. |

+> [!IMPORTANT]

+> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019.

+ ## Response If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.

v1.0

Tokenlifetimepolicy Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-delete.md

The following is an example of the request.

}--> ```http

-DELETE https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id}

+DELETE https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4

``` # [C#](#tab/csharp)

v1.0

Tokenlifetimepolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-get.md

The following is an example of the request.

}--> ```msgraph-interactive

-GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id}

+GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4

``` # [C#](#tab/csharp)

HTTP/1.1 200 OK

Content-type: application/json {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies/$entity",

+ "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",

+ "deletedDateTime": null,

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

} ```

v1.0

Tokenlifetimepolicy List Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-list-appliesto.md

The following is an example of the request.

}--> ```msgraph-interactive

-GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id}/appliesTo

+GET https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/appliesTo

``` # [JavaScript](#tab/javascript)

HTTP/1.1 200 OK

Content-type: application/json {

- "value": [

- {

- "id": "id-value",

- "deletedDateTime": "datetime-value"

- }

- ]

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#directoryObjects",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.application",

+ "id": "3ccc9971-9ae7-45d6-8de8-263fd25fe116",

+ "appId": "6e4a2285-a438-4bcc-9d76-6c45fb91d4b0",

+ "applicationTemplateId": "8adf8e6e-67b2-4cf2-a259-e3dc5476c621",

+ "displayName": "Contoso IWA App",

+ "publisherDomain": "Contoso.com",

+ "signInAudience": "AzureADMyOrg"

+ }

+ ]

} ```

v1.0

Tokenlifetimepolicy List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-list.md

HTTP/1.1 200 OK

Content-type: application/json {

- "value": [

- {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

- }

- ]

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies",

+ "value": [

+ {

+ "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",

+ "deletedDateTime": null,

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

+ }

+ ]

} ```

v1.0

Tokenlifetimepolicy Post Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-post-tokenlifetimepolicies.md

If successful, this method returns a `201 Created` response code and a new [toke

### Request

-The following is an example of the request.

+The following is an example of a request that creates a token lifetime policy that sets the access and ID token lifetime to eight hours.

# [HTTP](#tab/http) <!-- {

POST https://graph.microsoft.com/beta/policies/tokenLifetimePolicies

Content-type: application/json {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

} ```

HTTP/1.1 201 Created

Content-type: application/json {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/tokenLifetimePolicies/$entity",

+ "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",

+ "deletedDateTime": null,

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

} ```

v1.0

Tokenlifetimepolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/tokenlifetimepolicy-update.md

In the request body, supply the values for relevant fields that should be update

| Property | Type | Description | |:-|:|:|

-|definition|String collection| A string collection containing a JSON string that defines the rules and settings for this policy. Required.|

+|definition|String collection| A string collection containing a JSON string that defines the rules and settings for this policy. For more information about the JSON schema for this property, see [Properties of a token lifetime policy definition](../resources/tokenlifetimepolicy.md#properties-of-a-token-lifetime-policy-definition). Required.|

-|isOrganizationDefault|Boolean|If set to true, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is false.|

+|isOrganizationDefault|Boolean|If set to `true`, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is `false`.|

## Response

The following is an example of the request.

}--> ```http

-PATCH https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/{id}

+PATCH https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4

Content-type: application/json {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

} ```

Content-type: application/json

The following is an example of the response.

-> **Note:** The response object shown here might be shortened for readability.

- <!-- {

- "blockType": "response",

- "truncated": true,

- "@odata.type": "microsoft.graph.tokenLifetimePolicy"

+ "blockType": "response"

} --> ```http HTTP/1.1 204 No Content

-Content-type: application/json

-

-{

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

-}

``` <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

v1.0

Unifiedstoragequota Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/unifiedstoragequota-get.md

+

+ Title: "Get unifiedStorageQuota"

+description: "Read the properties and relationships of a unifiedStorageQuota object."

+

+ms.localizationpriority: medium

++

+# Get unifiedStorageQuota

+Namespace: microsoft.graph

++

+Read the properties and relationships of a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)| Not supported. |

+|Delegated (personal Microsoft account)| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All |

+|Application| Not supported. |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /me/settings/storage/quota

+GET /users/{user-id}/settings/storage/quota

+```

+

+## Optional query parameters

+This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object in the response body.

+

+## Examples

+

+### Example 1: Get the unified quota information for the current user

+#### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_unifiedstoragequota"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/me/settings/storage/quota

+```

++

+#### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.unifiedStorageQuota"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.unifiedStorageQuota",

+ "manageWebUrl": "String",

+ "remaining": 1066671526110,

+ "state": "normal",

+ "total": 1169304846336,

+ "used": 102633320226

+ }

+}

+```

+

+### Example 2: Get the unified quota information for the current user

+#### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_unifiedstoragequotabyuserid"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/users/1234BBS1121YY95/settings/storage/quota

+```

++

+#### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.unifiedStorageQuota"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.unifiedStorageQuota",

+ "manageWebUrl": "String",

+ "remaining": 1066671526110,

+ "state": "normal",

+ "total": 1169304846336,

+ "used": 102633320226

+ }

+}

+```

+

+### Example 3: Get the unified quota information, along with the service breakdowns, for the current user

+#### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_unifiedstoragequotaandservices"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/me/settings/storage/quota?$expand=services

+```

++

+#### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.unifiedStorageQuota"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.unifiedStorageQuota",

+ "manageWebUrl": "String",

+ "remaining": 1066671526110,

+ "state": "normal",

+ "total": 1169304846336,

+ "used": 102633320226,

+ "services": [

+ {

+ "displayName": "OneDrive",

+ "id": "OneDrive",

+ "used": 102633320226

+ },

+ {

+ "displayName": "Outlook (Attachments)",

+ "id": "Outlook",

+ "used": 123

+ }

+ ]

+ }

+}

+```

v1.0

Unifiedstoragequota List Services

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/unifiedstoragequota-list-services.md

+

+ Title: "List serviceStorageQuotaBreakdown"

+description: "Get a list of serviceStorageQuotaBreakdown objects and their properties."

+

+ms.localizationpriority: medium

++

+# List serviceStorageQuotaBreakdown

+Namespace: microsoft.graph

++

+Get a list of [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) objects and their properties.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)| Not supported. |

+|Delegated (personal Microsoft account)| Files.Read, Files.Read.All, Files.ReadWrite, Files.ReadWrite.All |

+|Application| Not supported. |

+

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /me/settings/storage/quota/services

+GET /users/{usersId}/settings/storage/quota/services

+```

+

+## Optional query parameters

+This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a collection of [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) objects in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+<!-- {

+ "blockType": "request",

+ "name": "list_servicestoragequotabreakdown"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/me/settings/storage/quota/services

+```

++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "Collection(microsoft.graph.serviceStorageQuotaBreakdown)"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": [

+ {

+ "displayName": "OneDrive",

+ "id": "OneDrive",

+ "used": 102633320226

+ },

+ {

+ "displayName": "Outlook (Attachments)",

+ "id": "Outlook",

+ "used": 123456

+ }

+ ]

+}

+```

+

v1.0

User Activateserviceplan

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-activateserviceplan.md

- Title: "user: activateServicePlan"

-description: "Activate a service plan with a given `servicePlanId` and `skuId` for a given user."

-

-doc_type: apiPageType

--

-# user: activateServicePlan (deprecated)

-

-Namespace: microsoft.graph

--

-> [!CAUTION]

-> The **activateServicePlan** API is deprecated and will stop returning data on June 30, 2022.

-

-Activate a service plan with a given `servicePlanId` and `skuId` for a given user.

-

-## Permissions

-

-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

-

-|Permission type|Permissions (from most to least privileged)|

-| : | : |

-| Delegated (work or school account) | Directory.ReadWrite.All |

-| Delegated (personal Microsoft account) | Not Supported. |

-| Application | Directory.ReadWrite.All |

-

-## HTTP request

-

-<!-- {

- "blockType": "ignored"

-}

>-

-``` http

-POST /users/{id | userPrincipalName}/activateServicePlan

-```

-

-## Request headers

-

-| Name | Description |

-| : | : |

-| Authorization | Bearer {token}. Required. |

-| Content-Type | application/json. Required. |

-

-## Request body

-

-In the request body, provide a JSON object with the following parameter:

-

-| Parameter | Type | Description |

-| : | : | : |

-| servicePlanId | Guid | PlanId of the ServicePlan to activate. |

-| skuId | Guid | SkuId of SKU the service plan is on. |

-

-## Response

-

-If successful, this action returns a `204 No Content` response code.

-

-## Examples

-

-### Request

--

-# [HTTP](#tab/http)

-<!-- {

- "blockType": "request",

- "name": "user_activateserviceplan"

-}

>-

-``` http

-POST https://graph.microsoft.com/beta/me/activateServicePlan

-Content-type: application/json

-

-{

- "servicePlanId": "28f42d6f-8034-4a0f-9d8a-a218a63b3299",

- "skuId": "465a2a90-5e59-456d-a7b8-127b9fb2e484"

-}

-```

-

-# [JavaScript](#tab/javascript)

---

-### Response

-

-<!-- {

- "blockType": "response",

- "truncated": true

-}

>-

-``` http

-HTTP/1.1 204 No Content

-```

v1.0

User List Transitivememberof

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-list-transitivememberof.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | | :- | : |

-| Delegated (work or school account) | User.Read, GroupMember.Read.All, Directory.Read.All, Directory.ReadWrite.All |

+| Delegated (work or school account) | User.Read, User.Read.All, GroupMember.Read.All, Group.Read.All, Directory.Read.All, Directory.ReadWrite.All |

| Delegated (personal Microsoft account) | Not supported. |

-| Application | Directory.Read.All, Directory.ReadWrite.All |

+| Application | User.Read.All, GroupMember.Read.All, Group.Read.All, Directory.Read.All, Directory.ReadWrite.All |

## HTTP request  ```http

+GET /me/transitiveMemberOf

GET /users/{id | userPrincipalName}/transitiveMemberOf ```

v1.0

User Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/user-update.md

In the request body, supply the values for relevant fields that should be update

|identities|[objectIdentity](../resources/objectidentity.md) collection| Represents the identities that can be used to sign in to this user account. An identity can be provided by Microsoft, by organizations, or by social identity providers such as Facebook, Google, and Microsoft, and tied to a user account. Any update to **identities** will replace the entire collection and you must supply the userPrincipalName **signInType** identity in the collection.| |interests|String collection|A list for the user to describe their interests.| |jobTitle|String|The userΓÇÖs job title.|

-|mail|String|The SMTP address for the user, for example, `jeff@contoso.onmicrosoft.com`. For Azure AD B2C accounts, this property can be updated up to only ten times with unique SMTP addresses. Changes to this property will also update the user's **proxyAddresses** collection to include the value as a SMTP address.|

+|mail|String|The SMTP address for the user, for example, `jeff@contoso.onmicrosoft.com`. For Azure AD B2C accounts, this property can be updated up to only ten times with unique SMTP addresses. Changes to this property will also update the user's **proxyAddresses** collection to include the value as a SMTP address. Cannot be updated to `null`.|

v1.0

Virtualendpoint Post Onpremisesconnections

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/virtualendpoint-post-onpremisesconnections.md

Title: "Create cloudPcOnPremisesConnection" description: "Create an Azure network connection for provisioning Cloud PCs."-+ ms.localizationpriority: medium ms.prod: "cloud-pc" doc_type: apiPageType

POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/onPremise

Content-Type: application/json {

- "@odata.type": "#microsoft.graph.cloudPcOnPremisesConnection",

"displayName": "test-canary-02", "type": "hybridAzureADJoin", "subscriptionId": "0ac520ee-14c0-480f-b6c9-0a90c585ffff",

- "subscriptionName": "CPC customer 001 test subscription",

"adDomainName": "contoso001.com", "adDomainUsername": "dcadmin", "organizationalUnit": "OU=Domain Controllers, DC=contoso001, DC=com",

v1.0

Voiceauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Voiceauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Voiceauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/voiceauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/v

|Content-Type|application/json. Required.| ## Request body

-In the request body, supply a JSON representation of the [voiceAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed.

-For the list of properties, see [voiceAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md).

+|Property|Type|Description|

+|:|:|:|

+|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.|

+|isOfficePhoneAllowed|Boolean|`true` if users can register office phones, otherwise, `false`.|

+|state|authenticationMethodState|Possible values are: `enabled`, `disabled`.|

>**Note:** The `@odata.type` property with a value of `#microsoft.graph.voiceAuthenticationMethodConfiguration` must be included in the body.

v1.0

Webpart List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/webpart-list.md

Content-Type: application/json

"innerHtml": "<h2>How do you get started?</h2>" }, {

- "@odata.type": "#microsoft.graph.textWebPart",

+ "@odata.type": "#microsoft.graph.standardWebPart",

"id": "6346d908-f20d-4528-902f-3c2a9c8c2442", "webPartType": "d1d91016-032f-456d-98a4-721247c305e8", "data": {

+ "audiences": [],

"dataVersion": "1.9", "description": "Show an image on your page", "title": "Image",

Content-Type: application/json

"alignment": "Center" }, "serverProcessedContent": {

+ "componentDependencies": [],

+ "htmlStrings": [],

+ "links": [],

+ "searchablePlainTexts": [],

"imageSources": [ {

+ "@odata.type": "#microsoft.graph.metaDataKeyStringPair",

"key": "imageSource", "value": "/_LAYOUTS/IMAGES/VISUALTEMPLATEIMAGE1.JPG" } ], "customMetadata": [ {

+ "@odata.type": "#microsoft.graph.metaDataKeyValuePair",

"key": "imageSource", "value": { "siteid": "0264cabe-6b92-450a-b162-b0c3d54fe5e8",

v1.0

Windowshelloforbusinessauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Windowshelloforbusinessauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Windowshelloforbusinessauthenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowshelloforbusinessauthenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Windowsupdates Catalog List Entries

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/windowsupdates-catalog-list-entries.md

GET /admin/windows/updates/catalog/entries

## Optional query parameters This method supports some of the [OData query parameters](/graph/query-parameters) to help customize the response, including `$count`, `$filter`, `$orderBy`, `$select`, `$skip`, and `$top`.

-To use a query parameter on a property that is not inherited from **catalogEntry**, include the full resource type for the property. For example, to filter on the **version** property of [featureUpdateCatalogEntry](../resources/windowsupdates-featureupdatecatalogentry.md) that equals 'Windows 11, version 22H2' , use `?$filter=microsoft.graph.windowsUpdates.featureUpdateCatalogEntry/version eq 'Windows 11, version 22H2''.

+To use a query parameter on a property that is not inherited from **catalogEntry**, include the full resource type for the property. For example, to filter on the **version** property of [featureUpdateCatalogEntry](../resources/windowsupdates-featureupdatecatalogentry.md) that equals 'Windows 11, version 22H2' , use `?$filter=microsoft.graph.windowsUpdates.featureUpdateCatalogEntry/version eq 'Windows 11, version 22H2'`.

## Request headers |Name|Description|

Do not supply a request body for this method.

## Response

-If successful, this method returns a `200 OK` response code and a collection of catalogEntry objects in the response body.

+If successful, this method returns a `200 OK` response code and a collection of [catalogEntry](../resources/windowsupdates-catalogentry.md) objects in the response body.

## Examples ### Request

+The following is an example of a request.

+ # [HTTP](#tab/http) <!-- { "blockType": "request",

GET https://graph.microsoft.com/beta/admin/windows/updates/catalog/entries

### Response

+The following is an example of the response.

+ <!-- { "blockType": "response", "truncated": true,

Content-Type: application/json

] } ```-

v1.0

Workflow List Executionscope

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/workflow-list-executionscope.md

Namespace: microsoft.graph.identityGovernance

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Lists the users who are in the scope of the execution conditions of a [workflow](../resources/identitygovernance-workflow.md). Users who initially fall in the scope of the execution conditions, but are updated to no longer meet the conditions after it's scheduled to run, will remain on the list for a short period of time before being removed. If the execution scope is changed, users who initially met it's conditions, but no longer do so will be cleared from the list after a short period of time. New users who meet the conditions for the workflow will then be listed.

+List the users that meet the [execution conditions](../resources/identitygovernance-workflowexecutionconditions.md) regardless of whether they have already been processed by the [workflow](../resources/identitygovernance-workflow.md).

-This API call requires workflow scheduling to be enabled.

+The workflow engine periodically evaluates the users that meet the execution conditions. The results will not be up to date if the execution conditions have been changed recently, relevant attributes on the user have been changed recently or the [time based trigger](../resources/identitygovernance-timebasedattributetrigger.md) has been reached recently.

+

+The API is only supported for workflows with [trigger and scope based](../resources/identitygovernance-triggerandscopebasedconditions.md) [execution conditions](../resources/identitygovernance-workflowexecutionconditions.md). Furthermore, results are only returned if the workflows schedule (isSchedulingEnabled) is enabled.

## Permissions

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

--- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request

v1.0

X509certificateauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

X509certificateauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

X509certificateauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/x

## Request body [!INCLUDE [table-intro](../../includes/update-property-table-intro.md)]

-The following properties can be updated.

-

-|Property|Type|Description|

-|:|:|:|

-|state|authenticationMethodState|The possible values are: `enabled`, `disabled`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).|

-|certificateUserBindings|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The **priority** of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. |

-|authenticationModeConfiguration|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. |

>**Note:** The `@odata.type` property with a value of `#microsoft.graph.x509CertificateAuthenticationMethodConfiguration` must be included in the body.

v1.0

Accesspackageassignment

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignment.md

In [Azure AD Entitlement Management](entitlementmanagement-overview.md), an acce

|assignmentState|String|The state of the access package assignment. Possible values are `Delivering`, `Delivered`, or `Expired`. Read-only. Supports `$filter` (`eq`).| |assignmentStatus|String|More information about the assignment lifecycle. Possible values include `Delivering`, `Delivered`, `NearExpiry1DayNotificationTriggered`, or `ExpiredNotificationTriggered`. Read-only.| |catalogId|String|The identifier of the catalog containing the access package. Read-only.|

+|customExtensionCalloutInstances|[customExtensionCalloutInstance](customextensioncalloutinstance.md) collection|Information about all the custom extension calls that were made during the access package assignment workflow.|

The following is a JSON representation of the resource.

<!-- { "blockType": "resource",

- "optionalProperties": [

-

- ],

+ "keyProperty": "id",

"@odata.type": "microsoft.graph.accessPackageAssignment",

- "keyProperty": "id"

-}-->

-

-```json

+ "openType": false

+}

+-->

+``` json

{

- "id":"9bdae7b4-6ece-487b-9eb8-9679dbd67aa2",

- "catalogId":"cc30dc98-6d3c-4fa0-bed8-fd76d0efd993",

- "accessPackageId":"e3f47362-993f-4fcb-8a38-532ffca16150",

- "assignmentPolicyId":"63ebd106-8116-40e7-a0ab-01ae475d11bb",

- "targetId":"ab4291f6-66b7-42bf-b597-a05b29414f5c",

- "assignmentStatus":"ExpiredNotificationTriggered",

- "assignmentState":"Expired",

- "isExtended":false,

- "expiredDateTime":"2019-04-25T23:45:40.42Z"

+ "@odata.type": "#microsoft.graph.accessPackageAssignment",

+ "id": "String (identifier)",

+ "catalogId": "String",

+ "accessPackageId": "String",

+ "assignmentPolicyId": "String",

+ "targetId": "String",

+ "assignmentStatus": "String",

+ "assignmentState": "String",

+ "isExtended": "Boolean",

+ "expiredDateTime": "String (timestamp)",

+ "schedule": {

+ "@odata.type": "microsoft.graph.requestSchedule"

+ },

+ "customExtensionCalloutInstances": [

+ {

+ "@odata.type": "microsoft.graph.customExtensionCalloutInstance"

+ }

+ ]

} ```

v1.0

Accesspackageassignmentpolicy

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentpolicy.md

To assign a user to an access package, [create an accessPackageAssignmentRequest

+|customExtensionStageSettings|[customExtensionStageSetting](../resources/customextensionstagesetting.md) collection|The collection of stages when to execute one or more custom access package workflow extensions. Supports `$expand`.|

The following is a JSON representation of the resource.

```json {

- "@odata.type": "#microsoft.graph.accessPackageAssignmentPolicy",

- "id": "String (identifier)",

- "accessPackageId": "String",

- "displayName": "String",

- "description": "String",

- "canExtend": "Boolean",

- "durationInDays": "Integer",

- "expirationDateTime": "String (timestamp)",

- "createdBy": "String",

- "createdDateTime": "String (timestamp)",

- "modifiedBy": "String",

- "modifiedDateTime": "String (timestamp)",

- "questions": [

- {

- "@odata.type": "microsoft.graph.accessPackageQuestion"

- }

- ],

- "requestorSettings": {

- "@odata.type": "microsoft.graph.requestorSettings"

- },

- "requestApprovalSettings": {

- "@odata.type": "microsoft.graph.approvalSettings"

- },

- "accessReviewSettings": {

- "@odata.type": "microsoft.graph.assignmentReviewSettings"

- }

+ "@odata.type":"#microsoft.graph.accessPackageAssignmentPolicy",

+ "id":"String (identifier)",

+ "accessPackageId":"String",

+ "displayName":"String",

+ "description":"String",

+ "canExtend":"Boolean",

+ "durationInDays":"Integer",

+ "expirationDateTime":"String (timestamp)",

+ "createdBy":"String",

+ "createdDateTime":"String (timestamp)",

+ "modifiedBy":"String",

+ "modifiedDateTime":"String (timestamp)",

+ "questions":[

+ {

+ "@odata.type":"microsoft.graph.accessPackageQuestion"

+ }

+ ],

+ "requestorSettings":{

+ "@odata.type":"microsoft.graph.requestorSettings"

+ },

+ "requestApprovalSettings":{

+ "@odata.type":"microsoft.graph.approvalSettings"

+ },

+ "accessReviewSettings":{

+ "@odata.type":"microsoft.graph.assignmentReviewSettings"

+ }

} ```

v1.0

Accesspackageassignmentrequest

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequest.md

In [Azure AD Entitlement Management](entitlementmanagement-overview.md), an acce

|:-|:|:| |completedDate|DateTimeOffset|The date of the end of processing, either successful or failure, of a request. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.| |createdDateTime|DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.|

-|customExtensionHandlerInstances|[customExtensionHandlerInstance](../resources/customextensionhandlerinstance.md) collection| A collection of [custom workflow extension](customaccesspackageworkflowextension.md) instances being run on an assignment request. Read-only. |

+|customExtensionCalloutInstances|[customExtensionCalloutInstance](../resources/customextensioncalloutinstance.md) collection|Information about all the custom extension calls that were made during the access package assignment request workflow.|

+|customExtensionHandlerInstances|[customExtensionHandlerInstance](../resources/customextensionhandlerinstance.md) collection| A collection of [custom workflow extension](customaccesspackageworkflowextension.md) instances being run on an assignment request. Read-only.|

The following is a JSON representation of the resource.

{ "@odata.type": "microsoft.graph.customExtensionHandlerInstance" }

+ ],

+ "customExtensionCalloutInstances": [

+ {

+ "@odata.type": "microsoft.graph.customExtensionCalloutInstance"

+ }

] } ```

v1.0

Accesspackageassignmentrequestcallbackdata

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequestcallbackdata.md

+

+ Title: "accessPackageAssignmentRequestCallbackData resource type"

+description: "Access package assignment request workflow calllback back that custom extension endpoint callback."

+

+ms.localizationpriority: medium

++

+# accessPackageAssignmentRequestCallbackData resource type

+

+Namespace: microsoft.graph

++

+Access package assignment request workflow calllback back that custom extension endpoint callback, derived from [customextensiondata](../resources/customextensiondata.md)

++

+Inherits from [customExtensionData](../resources/customextensiondata.md).

+

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|customExtensionStageInstanceId|String|Unique identifier of the callout to the custom extension.|

+|customExtensionStageInstanceDetail|String|Details for the callback.|

+|stage|accessPackageCustomExtensionStage|Indicates the stage at which the custom callout extension will be executed. The possible values are: `assignmentRequestCreated`, `assignmentRequestApproved`, `assignmentRequestGranted`, `assignmentRequestRemoved`, `assignmentFourteenDaysBeforeExpiration`, `assignmentOneDayBeforeExpiration`, `unknownFutureValue`.|

+|state|String|Allow the extension to be able to deny or cancel the request submitted by the requestor. The supported values are `Denied` and `Canceled`. This property can only be set for an `assignmentRequestCreated` stage.|

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData"

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestCallbackData",

+ "stage": "String",

+ "customExtensionStageInstanceId": "String",

+ "customExtensionStageInstanceDetail": "String",

+ "state": "String"

+}

+```

+

v1.0

Accesspackageassignmentrequestworkflowextension

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentrequestworkflowextension.md

+

+ Title: "accessPackageAssignmentRequestWorkflowExtension resource type"

+description: "Defines the attributes of a logic app that can be called at various stages of an access package request cycle."

+

+ms.localizationpriority: medium

++

+# accessPackageAssignmentRequestWorkflowExtension resource type

+

+Namespace: microsoft.graph

++

+Defines the attributes of a logic app that can be called at various stages of an access package request cycle. You can integrate logic apps with entitlement management to broaden your governance workflows beyond the core entitlement management use cases.

+

+The following use cases can be integrated with logic apps using [access package assignment request](accesspackageassignmentrequest.md) workflow:

+- When an [access package is requested](accesspackageassignmentrequest.md)

+- When an [access package request is approved](accesspackageassignmentrequest.md)

+- When an [access package request is granted](accesspackageassignmentrequest.md)

+- When an [access package assignment expires](accesspackageassignmentrequest.md)

++

+Inherits from [customCalloutExtension](../resources/customcalloutextension.md).

+

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[List accessPackageAssignmentRequestWorkflowExtension](../api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md)|[customCalloutExtension](../resources/accesspackageassignmentrequestworkflowextension.md) collection|Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) objects and their properties.|

+|[Create accessPackageAssignmentRequestWorkflowExtension](../api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)| Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.|

+|[Get accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-get.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)|Read the properties and relationships of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.|

+|[Update accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-update.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md)|Update the properties of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.|

+|[Delete accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-delete.md)|None|Delete an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object.|

+

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|callbackConfiguration|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)|The callback configuration for a custom extension.|

+|createdBy|String|The userPrincipalName of the user or identity of the subject that created this resource. Read-only.|

+|createdDateTime|DateTimeOffset|When the object was created.|

+|description|String|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|displayName|String|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|id|String|Read-only.|

+|lastModifiedBy|String|The userPrincipalName of the identity that last modified the object. |

+|lastModifiedDateTime|DateTimeOffset|When the object was last modified.|

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "baseType": "microsoft.graph.customCalloutExtension",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension",

+ "id": "String (identifier)",

+ "authenticationConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionAuthenticationConfiguration"

+ },

+ "description": "String",

+ "displayName": "String",

+ "endpointConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionEndpointConfiguration"

+ },

+ "createdBy": "String",

+ "lastModifiedBy": "String",

+ "createdDateTime": "String (timestamp)",

+ "lastModifiedDateTime": "String (timestamp)",

+ "callbackConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionCallbackConfiguration"

+ }

+}

+```

+

v1.0

Accesspackageassignmentworkflowextension

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackageassignmentworkflowextension.md

+

+ Title: "accessPackageAssignmentWorkflowExtension resource type"

+description: "Defines the attributes of a logic app that can be called at various stages of an access package assignment cycle."

+

+ms.localizationpriority: medium

++

+# accessPackageAssignmentWorkflowExtension resource type

+

+Namespace: microsoft.graph

++

+Defines the attributes of a logic app that can be called at various stages of an access package request cycle. You can integrate logic apps with entitlement management to broaden your governance workflows beyond the core entitlement management use cases.

+

+The following use cases can be integrated with logic apps in the [access package assignment](accesspackageassignment.md) workflow:

+- When an [access package assignment will expire in fourteen days](accesspackageassignment.md)

+- When an [access package assignment will expire in one day](accesspackageassignment.md)

+

+Inherits from [customCalloutExtension](../resources/customcalloutextension.md).

+

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[List accessPackageAssignmentWorkflowExtensions](../api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md)|[customCalloutExtension](../resources/accesspackageassignmentworkflowextension.md) collection|Get a list of the [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) objects and their properties.|

+|[Create accessPackageAssignmentWorkflowExtension](../api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md)|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)|Create a new [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.|

+|[Get accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-get.md)|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)|Read the properties and relationships of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.|

+|[Update accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-update.md)|[accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)|Update the properties of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.|

+|[Delete accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-delete.md)|None|Delete an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object.|

+

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|callbackConfiguration|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)|The callback configuration for a custom extension.|

+|createdBy|String|The userPrincipalName of the user or identity of the subject that created this resource. Read-only.|

+|createdDateTime|DateTimeOffset|When the entity was created.|

+|description|String|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|displayName|String|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).|

+|id|String|Read-only.|

+|lastModifiedBy|String|The userPrincipalName of the identity that last modified the entity. |

+|lastModifiedDateTime|DateTimeOffset|When the entity was last modified.|

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "baseType": "microsoft.graph.customCalloutExtension",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.accessPackageAssignmentWorkflowExtension",

+ "id": "String (identifier)",

+ "authenticationConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionAuthenticationConfiguration"

+ },

+ "clientConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionClientConfiguration"

+ },

+ "description": "String",

+ "displayName": "String",

+ "endpointConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionEndpointConfiguration"

+ },

+ "createdBy": "String",

+ "lastModifiedBy": "String",

+ "createdDateTime": "String (timestamp)",

+ "lastModifiedDateTime": "String (timestamp)",

+ "callbackConfiguration": {

+ "@odata.type": "microsoft.graph.customExtensionCallbackConfiguration"

+ }

+}

+```

+

v1.0

Accesspackagecatalog

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/accesspackagecatalog.md

An access package catalog might also have linked resources that are used in thos

| [List accessPackageCatalog resources](../api/accesspackagecatalog-list-accesspackageresources.md) | [accessPackageResource](accesspackageresource.md) collection | Retrieve a list of accessPackageResource objects in a catalog. | | **Access package resource roles**| | | | [List accessPackageCatalog resource roles](../api/accesspackagecatalog-list-accesspackageresourceroles.md) | [accessPackageResourceRole](accesspackageresourcerole.md) collection | Retrieve a list of accessPackageResourceRole objects for resources in a catalog. |

+| **Access package custom package workflow extensions**| | |

+|[List accessPackageCustomWorkflowExtensions](../api/accesspackagecatalog-list-accessPackageCustomWorkflowExtensions.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) collection|Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects and their properties.|

+|[Create accessPackageCustomWorkflowExtensions](../api/accesspackagecatalog-post-accessPackageCustomWorkflowExtensions.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)|Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.|

+|[Get accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-get.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md)|Read the properties and relationships of a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.|

+|[Update accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-update.md)|[accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md)|Update the properties of a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.|

+|[Delete accessPackageAssignmentRequestWorkflowExtension](../api/accesspackageassignmentrequestworkflowextension-delete.md)|None|Deletes a [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) object.|

+|[Get accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-get.md)|[accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)|Read the properties and relationships of a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.|

+|[Update accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-update.md)|[accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md)|Update the properties of a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.|

+|[Delete accessPackageAssignmentWorkflowExtension](../api/accesspackageassignmentworkflowextension-delete.md)|None|Deletes a [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.|

| **Custom access package package workflow extensions**| | | |[List customAccessPackageWorkflowExtensions](../api/accesspackagecatalog-list-customaccesspackageworkflowextensions.md)|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection|Get a list of the [customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) objects and their properties.| |[Create customAccessPackageWorkflowExtensions](../api/accesspackagecatalog-post-customaccesspackageworkflowextensions.md)|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md)|Create a new [customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) object.|

An access package catalog might also have linked resources that are used in thos

+|accessPackageCustomWorkflowExtensions|[customCalloutExtension](../resources/customcalloutextension.md) collection|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. |

-|customAccessPackageWorkflowExtension|[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. |

+|customAccessPackageWorkflowExtension |[customAccessPackageWorkflowExtension](../resources/customaccesspackageworkflowextension.md) collection|The attributes of a logic app, which can be called at various stages of an access package request and assignment cycle. |

## JSON representation

v1.0

Activateservice

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/activateservice.md

- Title: "activateService resource type"

-description: "Represents a service to be activated."

-

-doc_type: apiPageType

--

-# activateService resource type (deprecated)

-

-Namespace: microsoft.graph

--

-Represents a service to be activated.

-

-## Properties

-

-| Property | Type | Description |

-| -- | | - |

-| service| String | The name of the service to activate. |

-| servicePlanId | Guid | The plan identifier of the service plan to activate. |

-| skuId | Guid | The SKU identifier of the service plan. |

-

-## JSON representation

-

-Here is a JSON representation of the resource.

-

-<!-- {

- "blockType": "resource",

- "optionalProperties": [

-

- ],

- "@odata.type": "microsoft.graph.activateService"

-}-->

-

-```json

-{

- "service": "String",

- "skuId": "Guid",

- "servicePlanId": "Guid"

-}

-

-```

-

-<!-- uuid: 20fd7863-9545-40d4-ae8f-fee2d115a690

-2015-10-25 14:57:30 UTC -->

-<!--

-{

- "type": "#page.annotation",

- "description": "activateService",

- "keywords": "",

- "section": "documentation",

- "tocPath": "",

- "suppressions": []

-}

>

v1.0

Applicationauthenticationmethodpolicy

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/applicationauthenticationmethodpolicy.md

ms.prod: "identity-and-sign-in"

doc_type: "conceptualPageType"

-# Azure AD application authentication methods API overview (preview)

+# Azure AD application authentication methods API overview

Namespace: microsoft.graph

v1.0

Authenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/authenticationmethodconfiguration.md

The following authentication methods are derived from the **authenticationMethod

+ [emailAuthenticationMethodConfiguration](emailauthenticationmethodconfiguration.md) + [fido2AuthenticationMethodConfiguration](fido2authenticationmethodconfiguration.md) + [microsoftAuthenticatorAuthenticationMethodConfiguration](microsoftauthenticatorauthenticationmethodconfiguration.md)++ [voiceAuthenticationMethodConfiguration](voiceauthenticationmethodconfiguration.md) + [smsAuthenticationMethodConfiguration](smsauthenticationmethodconfiguration.md)++ [softwareOathAuthenticationMethodConfiguration](softwareoathauthenticationmethodconfiguration.md) + [temporaryAccessPassAuthenticationMethodConfiguration](smsauthenticationmethodconfiguration.md) + [x509CertificateAuthenticationMethodConfiguration](x509certificateauthenticationmethodconfiguration.md)

The following is a JSON representation of the resource.

{ "@odata.type": "#microsoft.graph.authenticationMethodConfiguration", "id": "String (identifier)",

- "state": "String"

+ "state": "String",

+ "excludeTargets": [

+ {

+ "@odata.type": "microsoft.graph.excludeTarget"

+ }

+ ]

} ```

v1.0

Authenticationmethodspolicies Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/authenticationmethodspolicies-overview.md

The authentication method policies APIs are used to manage policy settings. For

|Authentication method policy | Description | |:|:|

-|[smsAuthenticationMethodConfiguration](smsAuthenticationMethodConfiguration.md)| Define users who can use Text Message on the Azure AD tenant.|

+|[emailauthenticationmethodconfiguration](emailauthenticationmethodconfiguration.md)|Define users who can use email OTP on the Azure AD tenant.|

|[fido2authenticationmethodconfiguration](fido2authenticationmethodconfiguration.md)| Define FIDO2 security key restrictions and users who can use them to sign in to Azure AD.| |[microsoftauthenticatorauthenticationmethodconfiguration](microsoftauthenticatorauthenticationmethodconfiguration.md)|Define users who can use Microsoft Authenticator on the Azure AD tenant.|

-|[emailauthenticationmethodconfiguration](emailauthenticationmethodconfiguration.md)|Define users who can use email OTP on the Azure AD tenant.|

|[passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration](passwordlessmicrosoftauthenticatorauthenticationmethodconfiguration.md) (deprecated)|Define users who can use Passwordless Phone Sign-in to sign in to Azure AD.|

+|[smsAuthenticationMethodConfiguration](smsAuthenticationMethodConfiguration.md)| Define users who can use Text Message on the Azure AD tenant.|

+|[softwareOathAuthenticationMethodConfiguration](softwareOathAuthenticationMethodConfiguration.md)|Define users who can use a third-party software OATH authentication method.|

|[temporaryaccesspassauthenticationmethodconfiguration](temporaryaccesspassauthenticationmethodconfiguration.md)|Define users who can use Temporary Access Pass to sign in to Azure AD.|

+|[voiceAuthenticationMethodConfiguration](voiceAuthenticationMethodConfiguration.md)|Define users or groups that are enabled to use the voice call authentication method.|

|[x509CertificateAuthenticationMethodConfiguration](x509CertificateAuthenticationMethodConfiguration.md)|Define users who can use X.509 certificate to sign in to Azure AD.| ## Policies available to push users to set up authentication methods:

v1.0

Azureadpoptokenauthentication

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/azureadpoptokenauthentication.md

+

+ Title: "azureAdPopTokenAuthentication resource type"

+description: "Defines the Azure AD Proof Of Possession (PoP) used to authenticate with a workflow extension."

+

+ms.localizationpriority: medium

++

+# azureAdPopTokenAuthentication resource type

+

+Namespace: microsoft.graph

++

+Defines the Proof Of Possession (PoP) token authentication model to authenticate a logic app with a [accessPackageAssignmentRequestWorkflowExtensions](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or a [accessPackageAssignmentWorkflowExtensions](../resources/accessPackageAssignmentWorkflowExtension.md) object.

+

+Inherits from [customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md).

+

+## Properties

+None.

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "baseType": "microsoft.graph.customExtensionAuthenticationConfiguration",

+ "@odata.type": "microsoft.graph.azureAdPopTokenAuthentication"

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.azureAdPopTokenAuthentication"

+}

+```

v1.0

Callrecords Api Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/callrecords-api-overview.md

Title: "Working with the call records API in Microsoft Graph" description: "The Microsoft Graph call records API allows you to retrieve usage and diagnostics data for calls and online meetings within your organization."-+ doc_type: conceptualPageType ms.prod: cloud-communications ms.localizationpriority: high

ms.localizationpriority: high

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Call records provide usage and diagnostic information about the calls and online meetings that occur within your organization when using Microsoft Teams or Skype for Business. You can use the call records APIs to subscribe to call records and look up call records by IDs.

+Call records provide usage and diagnostic information about the calls and online meetings that occur within your organization when using Microsoft Teams or Skype for Business. You can use the call records APIs to subscribe to call records and look up call records by IDs. A call record is created after a call or meeting ends and the record is retained for 30 days.

The call records API is defined in the OData sub-namespace, `microsoft.graph.callRecords`.

v1.0

Callrecords Callrecord

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/callrecords-callrecord.md

Title: "callRecord resource type" description: "Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting." ms.localizationpriority: medium-+ ms.prod: "cloud-communications" doc_type: "resourcePageType"

Namespace: microsoft.graph.callRecords

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting.

+Represents a single peer-to-peer call or a group call between multiple participants, sometimes referred to as an online meeting. A call record is created after a call or meeting ends.

## Methods

v1.0

Cloudpc

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpc.md

Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into

|[List for user](../api/user-list-cloudpcs.md)|[cloudPC](../resources/cloudpc.md) collection|List the [cloudPC](../resources/cloudpc.md) devices that are attributed to the signed-in user.| |[Get launch info for user](../api/cloudpc-getcloudpclaunchinfo.md)|[cloudPCLaunchInfo](../resources/cloudpclaunchinfo.md)|Get the [cloudPCLaunchInfo](../resources/cloudpclaunchinfo.md) for the signed-in user.| |[Get connectivity history](../api/cloudpc-getcloudpcconnectivityhistory.md)|[cloudPcConnectivityEvent](../resources/cloudpcconnectivityevent.md) collection|Get the Cloud PC connectivity history.|

+|[Get shift work access state](../api/cloudpc-getshiftworkcloudpcaccessstate.md)|[shiftWorkCloudPcAccessState](#shiftworkcloudpcaccessstate-values)|Get the access state of the shift work Cloud PC. The possible values are: {unassigned, noLicensesAvailable, activationFailed, active, activating, waitlisted, unknownFutureValue, hibernated}. Note that you must use the `Prefer: include-unknown-enum-members` request header to get the following value in this [shiftWorkCloudPcAccessState](#shiftworkcloudpcaccessstate-values): {hibernated}.|

|[Get supported remote actions](../api/cloudpc-getsupportedcloudpcremoteactions.md)|[cloudPcRemoteActionCapability](../resources/cloudpcremoteactioncapability.md) collection|Get a list of supported Cloud PC remote actions for a specific Cloud PC device, including the action names and capabilities.| |[Retry partner agent installation](../api/cloudpc-retrypartneragentinstallation.md)|None|Retry installation for the partner agents which failed to install on the [cloudPC](../resources/cloudpc.md).|

Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into

-|connectivityResult|[cloudPcConnectivityResult](../resources/cloudpcconnectivityresult.md)|The connectivity health check result of a Cloud PC, including the updated timestamp and whether the Cloud PC is able to be connected or not.|

+|connectivityResult|[cloudPcConnectivityResult](../resources/cloudpcconnectivityresult.md)|The connectivity health check result of a Cloud PC, including the updated timestamp and whether the Cloud PC can be connected.|

|diskEncryptionState|[cloudPcDiskEncryptionState](#cloudpcdiskencryptionstate-values)|The disk encryption applied to the Cloud PC. Possible values: `notAvailable`, `notEncrypted`, `encryptedUsingPlatformManagedKey`, `encryptedUsingCustomerManagedKey`, and `unknownFutureValue`.| |displayName|String|The display name of the Cloud PC.| |gracePeriodEndDateTime|DateTimeOffset|The date and time when the grace period ends and reprovisioning/deprovisioning happens. Required only if the status is `inGracePeriod`. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.|

Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled into

+### shiftWorkCloudPcAccessState values

+The following table lists the members of an [evolvable enumeration](#shiftworkcloudpcaccessstate-values). You must use the `Prefer: include-unknown-enum-members` request header to get the following values in this evolvable enum: `hibernated`.

+

+|Member|Description|

+|:|:|

+|unassigned|Set to unassigned if the Cloud PC is not consuming any shared-use licenses. The default value is unassigned.|

+|noLicensesAvailable|Indicates that all shared-use licenses are in use.|

+|activationFailed|Indicates that the shift work Cloud PC activation failed after the user requested a shift work Cloud PC.|

+|active|Indicates that the shift work Cloud PC is in an active state with a shared-use license assigned, and the user can connect to the Cloud PC.|

+|activating|Indicates that a user requested to connect the Cloud PC and the service is starting.|

+|waitlisted (deprecated)|Indicates that the shift work Cloud PC is in waitlisted state after the user requests to connect this Cloud PC and all shared use licenses are being actively used. This value is deprecated and will stop returning on May 17, 2023. |

+|unknownFutureValue|Evolvable enumeration sentinel value. Do not use.|

+|hibernated|Indicates that the shift work Cloud PC is in the hibernated state before it's shut down and deallocated. A shift work Cloud PC in hibernated state is still accessible by the user.|

+ ## Relationships None.

v1.0

Cloudpcdeviceimage

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcdeviceimage.md

Represents the image resource on a Cloud PC.

|Property|Type|Description| |:|:|:|

-|displayName|String|The image's display name.|

+|displayName|String|The display name of the image.|

-|lastModifiedDateTime|DateTimeOffset|The data and time that the image was last modified. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as '2014-01-01T00:00:00Z'.|

-|operatingSystem|String|The image's operating system. For example: Windows 10 Enterprise.|

-|osBuildNumber|String|The image's OS build version. For example: 1909.|

+|lastModifiedDateTime|DateTimeOffset|The data and time that the image was last modified. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as `2014-01-01T00:00:00Z`.|

+|operatingSystem|String|The operating system of the image. For example, `Windows 10 Enterprise`.|

+|osBuildNumber|String|The OS build version of the image. For example, `1909`.|

|osStatus|[cloudPcDeviceImageOsStatus](#cloudpcdeviceimageosstatus-values)|The OS status of this image. Possible values are: `supported`, `supportedWithWarning`, `unknownFutureValue`.|

-|sourceImageResourceId|String|The ID of the source image resource on Azure. Required format: "/subscriptions/{subscription-id}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/images/{imageName}".|

+|sourceImageResourceId|String|The ID of the source image resource on Azure. Required format: `/subscriptions/{subscription-id}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/images/{imageName}`.|

|status|[cloudPcDeviceImageStatus](#cloudpcdeviceimagestatus-values)|The status of the image on Cloud PC. Possible values are: `pending`, `ready`, `failed`.|

-|statusDetails|cloudPcDeviceImageStatusDetails|The details of the image's status, which indicates why the upload failed, if applicable. Possible values are: `internalServerError`, `sourceImageNotFound`, `osVersionNotSupported`, `sourceImageInvalid`, and `sourceImageNotGeneralized`.|

-|version|String|The image version. For example: 0.0.1, 1.5.13.|

+|statusDetails|cloudPcDeviceImageStatusDetails|The details of the status of the image that indicates why the upload failed, if applicable. Possible values are: `internalServerError`, `sourceImageNotFound`, `osVersionNotSupported`, `sourceImageInvalid`, and `sourceImageNotGeneralized`.|

+|version|String|The image version. For example, `0.0.1` and `1.5.13`.|

### cloudPcDeviceImageStatus values

The following is a JSON representation of the resource.

``` json { "@odata.type": "#microsoft.graph.cloudPcDeviceImage",

- "id": "String (identifier)",

"displayName": "String",

+ "expirationDate": "String (timestamp)",

+ "id": "String (identifier)",

+ "lastModifiedDateTime": "String (timestamp)",

"operatingSystem": "String", "osBuildNumber": "String",

- "version": "String",

- "lastModifiedDateTime": "String (timestamp)",

+ "osStatus": "String",

+ "sourceImageResourceId": "String",

"status": "String", "statusDetails": "String",

- "sourceImageResourceId": "String",

- "expirationDate":"String (timestamp)",

- "osStatus":"String"

+ "version": "String"

} ```

v1.0

Cloudpcgalleryimage

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcgalleryimage.md

Title: "cloudPcGalleryImage resource type"

-description: "Represents the gallery image resource of the current organization."

+description: "Represents the gallery image resource of the current organization that can be used to provision a Cloud PC."

ms.localizationpriority: medium ms.prod: "cloud-pc"

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Represents the gallery image resource of the current organization which can be used to provision a Cloud PC.

+Represents the gallery image resource of the current organization that can be used to provision a Cloud PC.

## Methods

Represents the gallery image resource of the current organization which can be u

-|endDate|Date|The date in which this image is no longer within long-term support. The Cloud PC will continue to provide short-term support. Read-only.|

+|endDate|Date|The date in which this image is no longer within long-term support. The Cloud PC continues to provide short-term support. Read-only.|

-|offer|String|The offer name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.|

-|offerDisplayName|String|The official display offer name of the gallery image. For example, Windows 10 Enterprise + OS Optimizations. Read-only.|

-|publisher|String|The publisher name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.|

+|offer|String|The offer name of the gallery image. This value is passed to Azure to get the image resource. Read-only.|

+|offerDisplayName|String|The official display offer name of the gallery image. For example, `Windows 10 Enterprise + OS Optimizations`. Read-only.|

+|publisher|String|The publisher name of the gallery image. This value is passed to Azure to get the image resource. Read-only.|

-|sku|String|The SKU name of the gallery image. This value will be passed to Azure to get the image resource. Read-only.|

-|skuDisplayName|String|The official display stock keeping unit (SKU) name of this gallery image. For example, 2004. Read-only.|

+|sku|String|The SKU name of the gallery image. This value is passed to Azure to get the image resource. Read-only.|

+|skuDisplayName|String|The official display stock keeping unit (SKU) name of this gallery image. For example, `2004`. Read-only.|

|startDate|Date|The date when the image becomes available. Read-only.| |status|cloudPcGalleryImageStatus|The status of the gallery image on the Cloud PC. Possible values are: `supported`, `supportedWithWarning`, `notSupported`, `unknownFutureValue`. Read-only.|

The following is a JSON representation of the resource.

``` json { "@odata.type": "#microsoft.graph.cloudPcDeviceImage",

+ "displayName": "String",

+ "endDate": "String (Date)",

+ "expiredDate": "String (Date)",

"id": "String (identifier)",

- "displayName":"String",

- "offerDisplayName":"String",

- "skuDisplayName":"String",

- "publisher":"String",

- "offer":"String",

- "sku":"String",

- "recommendedSku":"String",

- "status":"String",

- "sizeInGB":"Int32",

- "startDate":"String (Date)",

- "endDate":"String (Date)",

- "expiredDate":"String (Date)"

+ "offer": "String",

+ "offerDisplayName": "String",

+ "publisher": "String",

+ "recommendedSku": "String",

+ "sizeInGB": "Int32",

+ "sku": "String",

+ "skuDisplayName": "String",

+ "startDate": "String (Date)",

+ "status": "String"

} ```

v1.0

Cloudpcserviceplan

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcserviceplan.md

Title: "cloudPcServicePlan resource type"

-description: "Represents a Windows 365 service plan configured for a Cloud PC."

+description: "Represents a Windows 365 service plan that can be purchased and configured for a Cloud PC."

ms.localizationpriority: medium ms.prod: "cloud-pc"

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Represents a Windows 365 service plan configured for a Cloud PC.

+Represents a Windows 365 service plan that can be purchased and configured for a Cloud PC.

-For examples of currently available service plans, see [Windows 365 compare plans and pricing](https://www.microsoft.com/windows-365/business/compare-plans-pricing). Currently, Microsoft Graph API is available for Windows 365 Enterprise.

+For examples of currently available service plans, see [Windows 365 compare plans and pricing](https://www.microsoft.com/windows-365/business/compare-plans-pricing). Currently, the Microsoft Graph API is available for Windows 365 Enterprise.

## Methods

For examples of currently available service plans, see [Windows 365 compare plan

+|supportedSolution|[cloudPcManagementService](../resources/cloudpconpremisesconnection.md#cloudpcmanagementservice-values)|The supported service or solution for the region. The possible values are: `windows365`, `devBox`, `rpaBox`, `unknownFutureValue`. Read-only.|

+|provisioningType|[cloudPcProvisioningType](../resources/cloudpcprovisioningpolicy.md#cloudpcprovisioningtype-values)|Specifies the type of license used when provisioning Cloud PCs. By default, the license type is `dedicated`. Possible values are: `dedicated`, `shared`, `unknownFutureValue`.|

### cloudPcServicePlanType values

The following is a JSON representation of the resource.

``` json { "@odata.type": "#microsoft.graph.cloudPcServicePlan",

- "id": "String (identifier)",

"displayName": "String",

- "type": "String",

- "vCpuCount": "Int32",

+ "id": "String (identifier)",

+ "provisioningType": "String",

"ramInGB": "Int32", "storageInGB": "Int32",

- "userProfileInGB": "Int32"

+ "supportedSolution": "String",

+ "type": "String",

+ "userProfileInGB": "Int32",

+ "vCpuCount": "Int32"

} ```

v1.0

Cloudpcsnapshot

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/cloudpcsnapshot.md

Inherits from [entity](../resources/entity.md).

|createdDateTime|DateTimeOffset|The date and time at which the snapshot was taken. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.| |id|String|The unique identifier for the snapshot of the Cloud PC device at a specific point in time. Inherited from [entity](../resources/entity.md).| |lastRestoredDateTime|DateTimeOffset|The date and time at which the snapshot was last used to restore the Cloud PC device. The timestamp is shown in ISO 8601 format and Coordinated Universal Time (UTC). For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.|

-|snapshotType| [cloudPcSnapshotType](#cloudpcsnapshottype-values) | The type of snapshot. indicates how the snapshot is to be created. Possible values are `automatic`, `manual`. Default value is `automatic`.|

+|snapshotType| [cloudPcSnapshotType](#cloudpcsnapshottype-values) | The type of snapshot that indicates how to create the snapshot. Possible values are `automatic`, `manual`. Default value is `automatic`.|

|status|[cloudPcSnapshotStatus](#cloudpcsnapshotstatus-values)|The status of the Cloud PC snapshot. The possible values are: `ready`, `unknownFutureValue`.|

-|expirationDateTime|DateTimeOffset| The date and time when the snapshot expires. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 appears as'2014-01-01T00:00:00Z'.|

+|expirationDateTime|DateTimeOffset| The date and time when the snapshot expires. The time is shown in ISO 8601 format and Coordinated Universal Time (UTC) time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.|

### cloudPcSnapshotStatus values

The following is a JSON representation of the resource.

"@odata.type": "#microsoft.graph.cloudPcSnapshot", "cloudPcId": "String", "createdDateTime": "String (timestamp)",

+ "expirationDateTime": "String (timestamp)",

"id": "String (identifier)", "lastRestoredDateTime": "String (timestamp)",

- "status": "String",

"snapshotType": "String",

- "expirationDateTime": "String (timestamp)",

+ "status": "String"

} ```

v1.0

Customcalloutextension

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customcalloutextension.md

Title: "customCalloutExtension resource type" description: "An abstract type that defines the configuration for logic apps that can be integrated with the customer's entitlement management use cases to implement broader governance workflows. This abstract type is inherited by the customAccessPackageWorkflowExtension resource type"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType

This abstract type is inherited by:

- [customAccessPackageWorkflowExtension](customaccesspackageworkflowextension.md) - [customTaskExtension](../resources/identitygovernance-customtaskextension.md)

+- [accessPackageAssignmentRequestWorkflowExtension](accesspackageassignmentrequestworkflowextension.md)

+- [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md)

Inherits from [entity](entity.md).

v1.0

Customextensionauthenticationconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensionauthenticationconfiguration.md

Title: "customExtensionAuthenticationConfiguration resource type" description: "Abstract base type that exposes the configuration for the **authenticationConfiguration** property of the derived types that inherit from the customCalloutExtension abstract type"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Abstract base type that exposes the configuration for the **authenticationConfiguration** property of the derived types that inherit from the [customCalloutExtension](customcalloutextension.md) abstract type. This abstract type is inherited by the [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md) resource type.

+Abstract base type that exposes the configuration for the **authenticationConfiguration** property of the derived types that inherit from the [customCalloutExtension](customcalloutextension.md) abstract type.

+

+This abstract type is inherited by the following resource types:

+- [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md)

+- [azureAdPopTokenAuthentication](../resources/azureAdPopTokenAuthentication.md)

+

+The type of token authentication used depends on the token security. If the token security value is normal, you will use the [azureAdTokenAuthentication](../resources/azureadtokenauthentication.md) resource type. If the value is Proof of Possession, you will use the [azureAdPopTokenAuthentication](../resources/azureAdPopTokenAuthentication.md) resource type.

## Properties

The following is a JSON representation of the resource.

``` json {

- "@odata.type": "#microsoft.graph.customExtensionAuthenticationConfiguration "

+ "@odata.type": "#microsoft.graph.customExtensionAuthenticationConfiguration"

}

-```

+```

v1.0

Customextensioncallbackconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensioncallbackconfiguration.md

Title: "customExtensionCallbackConfiguration resource type"

-description: "The callback configuration for a custom task extension that's linked to an Azure Logic App."

-

+description: "Callback settings that define how long Azure AD can wait for a resume signal for the callout that it made to the logic app."

+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-This is an abstract type describing the callback configuration of a [custom callout extension](../resources/customcalloutextension.md).

-This abstract type is inherited by:

-+ [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md)

+Callback settings that define how long Azure AD can wait for a resume signal for the callout that it made to the logic app. This is an abstract type that's inherited by [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md).

## Properties |Property|Type|Description| |:|:|:|

-|timeoutDuration|Duration|Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours.|

+|timeoutDuration|Duration|The maximum duration in ISO 8601 format that Azure AD will wait for a resume action for the callout it sent to the logic app. The valid range for custom extensions in lifecycle workflows is five minutes to three hours. The valid range for custom extensions in entitlement management is between 5 minutes and 14 days. For example, `PT3H` refers to three hours, `P3D` refers to three days, `PT10M` refers to ten minutes.|

-## Relationships

+## Relationships

None. ## JSON representation- The following is a JSON representation of the resource. <!-- { "blockType": "resource",

The following is a JSON representation of the resource.

"timeoutDuration": "String (duration)" } ```+

v1.0

Customextensioncalloutinstance

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensioncalloutinstance.md

+

+ Title: "customExtensionCalloutInstance resource type"

+description: "Defines the calls that were made by an instance of a custom extension callout."

+

+ms.localizationpriority: medium

++

+# customExtensionCalloutInstance resource type

+

+Namespace: microsoft.graph

++

+Defines the calls that were made by an instance of a custom extension callout.

+

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|customExtensionId|String|Identification of the custom extension that was triggered at this instance.|

+|detail|String|Details provided by the logic app during the callback of the request instance.|

+|externalCorrelationId|String|The unique run identifier for the logic app.|

+|id|String|Unique identifier for the callout instance. Read-only.|

+|status|customExtensionCalloutInstanceStatus| The status of the request to the custom extension. The possible values are: `calloutSent`, `callbackReceived`, `calloutFailed`, `callbackTimedOut`, `waitingForCallback`, `unknownFutureValue`.|

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "@odata.type": "microsoft.graph.customExtensionCalloutInstance"

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.customExtensionCalloutInstance",

+ "id": "String (identifier)",

+ "customExtensionId": "String",

+ "externalCorrelationId": "String",

+ "detail": "String",

+ "status": "String"

+}

+```

+

v1.0

Customextensiondata

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensiondata.md

Title: "customExtensionData resource type" description: "An abstract type noting the data being sent and received as part of extensibility scenarios based on custom callout extensions"-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] This is an abstract type noting the data being sent and received as part of extensibility scenarios based on [custom callout extensions](../resources/customcalloutextension.md). The following types are derived from this abstract type:

-+ [customTaskExtensionCalloutData](../resources/identitygovernance-customtaskextensioncalloutdata.md)

-+ [customTaskExtensionCallbackData](../resources/identitygovernance-customtaskextensioncallbackdata.md)

+- [accessPackageAssignmentRequestCallbackData](../resources/accesspackageassignmentrequestcallbackdata.md)

+- [customTaskExtensionCalloutData](../resources/identitygovernance-customtaskextensioncalloutdata.md)

+- [customTaskExtensionCallbackData](../resources/identitygovernance-customtaskextensioncallbackdata.md)

## Properties- None. ## Relationships- None. ## JSON representation- The following is a JSON representation of the resource. <!-- { "blockType": "resource",

v1.0

Customextensionstagesetting

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/customextensionstagesetting.md

+

+ Title: "customExtensionStageSetting resource type"

+description: "Defines when to execute an access package custom workflow extension."

+

+ms.localizationpriority: medium

++

+# customExtensionStageSetting resource type

+

+Namespace: microsoft.graph

++

+Defines when to execute a [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object.

++

+Inherits from [entity](../resources/entity.md).

+

+To read the **customExtensionStageSettings** objects on a policy, append `?$expand=customExtensionStageSettings` to a [GET accessPackageAssignmentPolicy](../api/accesspackageassignmentpolicy-get.md) request. For example, `GET https://graph.microsoft.com/bet#example-2-retrieve-the-custom-extension-handlers-for-a-policy).

+

+To delete the **customExtensionStageSettings** objects from a policy, call the [Update accessPackageAssignmentPolicy](../api/accesspackageassignmentpolicy-update.md) and specify the customExtensionHandlers property as an empty collection. For more details, see [Example 2: Remove the customExtensionStageSettings from a policy](../api/accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy).

+

+## Methods

+None

++

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|id|String| Identifier of the stage. Inherited from [entity](../resources/entity.md).|

+|stage|accessPackageCustomExtensionStage|Indicates the stage of the access package assignment request workflow when the access package custom extension runs. The possible values are: `assignmentRequestCreated`, `assignmentRequestApproved`, `assignmentRequestGranted`, `assignmentRequestRemoved`, `assignmentFourteenDaysBeforeExpiration`, `assignmentOneDayBeforeExpiration`, `unknownFutureValue`.|

+

+## Relationships

+|Relationship|Type|Description|

+|:|:|:|

+|customExtension|[customCalloutExtension](../resources/customcalloutextension.md)|Indicates the custom workflow extension that will be executed at this stage. Nullable. Supports `$expand`.|

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.customExtensionStageSetting",

+ "baseType": "microsoft.graph.entity",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.customExtensionStageSetting",

+ "id": "String (identifier)",

+ "stage": "String"

+}

+```

+

v1.0

Dynamics Graph Reference

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/dynamics-graph-reference.md

Use the Azure AD v2.0 endpoint to authenticate Dynamics 365 Business Central API

## Common Dynamics 365 Business Central scenarios The Dynamics 365 Business Central API allows you to read and modify business data through apps that are connected and integrated through a single endpoint. Use the API to, for example, get access to [customer](../resources/dynamics-customer.md) and [vendor](../resources/dynamics-vendor.md) information, or [view overdue payments](../resources/dynamics-agedaccountspayable.md).

+## Environment

+To enable the Dynamics 365 Business Central API, you must ensure that the **Environment Name** in the Business Central Admin Center is **Production**.

+++ ## What's new Find out about the [latest new features and updates](/graph/whats-new-overview) for this API set.

v1.0

Emailauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/emailauthenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents this tenant's email OTP authentication methods policy. Authentication methods policies define configuration settings and users or groups who are enabled to use the authentication method. Email OTP may be used by the tenant's cloud-native users for self-service password reset, or by external users for authentication during invitation redemption and self-service sign-up for specific apps in user flows.

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

+ ## Methods |Method|Return type|Description|

Represents this tenant's email OTP authentication methods policy. Authentication

|Property|Type|Description| |:|:|:|

+|allowExternalIdToUseEmailOtp|externalEmailOtpState|Determines whether email OTP is usable by external users for authentication. Possible values are: `default`, `enabled`, `disabled`, `unknownFutureValue`. Tenants in the `default` state who did not use public preview will automatically have email OTP enabled beginning in October 2021.|

|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.| |id|String|The authentication method policy identifier. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).| |state|authenticationMethodState|Indicates whether this authentication method is enabled or not. Possible values are: `enabled`, `disabled`.|

-|allowExternalIdToUseEmailOtp|externalEmailOtpState|Determines whether email OTP is usable by external users for authentication. Possible values are: `default`, `enabled`, `disabled`, `unknownFutureValue`. Tenants in the `default` state who did not use public preview will automatically have email OTP enabled beginning in October 2021.|

## Relationships

The following is a JSON representation of the resource.

```json { "@odata.type": "#microsoft.graph.emailAuthenticationMethodConfiguration",

- "id": "String (identifier)",

- "state": "String",

- "excludeTargets": [

+ "allowExternalIdToUseEmailOtp": "String",

+ "excludeTargets": [

{ "@odata.type": "microsoft.graph.excludeTarget" } ],

- "allowExternalIdToUseEmailOtp": "String",

- "includeTargets": [ { "@odata.type": "microsoft.graph.authenticationMethodTarget" } ]

+ "id": "String (identifier)",

+ "includeTargets": [ { "@odata.type": "microsoft.graph.authenticationMethodTarget" } ],

+ "state": "String"

}

-```

+```

v1.0

Emailsettings

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/emailsettings.md

+

+ Title: "emailSettings resource type"

+description: "Defines the settings for emails sent using Lifecycle Workflows."

+

+ms.localizationpriority: medium

++

+# emailSettings resource type

+

+Namespace: microsoft.graph

++

+Defines the settings for emails sent from Lifecycle workflow [tasks](identitygovernance-task.md). Allows you to use a verified custom [domain](domain.md) and [organizationalBranding](organizationalbranding.md) with emails sent out via workflow tasks.

+

+## Properties

+

+|Property|Type|Description|

+|:|:|:|

+|senderDomain|String|Specifies the [domain](domain.md) that should be used when sending email notifications. This domain must be [verified](../api/domain-verify.md) in order to be used.|

+|useCompanyBranding|Boolean|Specifies if the organizationΓÇÖs banner logo should be included in email notifications. The banner logo will replace the Microsoft logo at the top of the email notification. If `true` the banner logo will be taken from the tenantΓÇÖs [branding settings](organizationalbranding.md). This value can only be set to `true` if the [organizationalBranding](organizationalbranding.md) **bannerLogo** property is set. |

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "@odata.type": "microsoft.graph.emailSettings"

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.emailSettings",

+ "senderDomain": "String",

+ "useCompanyBranding": "Boolean"

+}

+```

v1.0

Enums

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/enums.md

Namespace: microsoft.graph

+### usqState values

+

+| Member |

+|:-|

+| norma. |

+| nearing |

+| critical |

+| full |

+| overLimit |

+ ### userPurpose values | Member |

Namespace: microsoft.graph

|requestReceived| |unknownFutureValue|

+### customExtensionCalloutInstanceStatus values

+

+|Member|

+|:|

+|calloutSent|

+|callbackReceived|

+|calloutFailed|

+|callbackTimedOut|

+|waitingForCallback|

+|unknownFutureValue|

+ ### accessPackageCustomExtensionStage values |Member|

Possible values for user account types (group membership), per Windows definitio

+|unknownFutureValue|

### authenticationEventType values

v1.0

Externalconnectors Urltoitemresolverbase

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/externalconnectors-urltoitemresolverbase.md

Namespace: microsoft.graph.externalConnectors

Defines the rules for resolving a URL to the ID of an [externalItem](externalconnectors-externalitem.md).

-This is an abstract type.

+This is an abstract base type of [itemIdResolver](externalconnectors-itemidresolver.md)..

## Properties |Property|Type|Description|

v1.0

Fido2authenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/fido2authenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents a FIDO2 authentication methods policy. Authentication methods policies define configuration settings and users or groups who are enabled to use the authentication method.

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

+ ## Methods |Method|Return type|Description|

The following is a JSON representation of the resource.

"@odata.type": "#microsoft.graph.fido2AuthenticationMethodConfiguration", "id": "String (identifier)", "state": "String",

- "excludeTargets": [

+ "excludeTargets": [

{ "@odata.type": "microsoft.graph.excludeTarget" }

v1.0

Identitygovernance Customtaskextensioncallbackconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncallbackconfiguration.md

Namespace: microsoft.graph.identityGovernance

Defines if, and in, which time span a callback is expected from the Azure Logic App.

-Inherits from [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md).

+Inherits from [customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md).

## Properties |Property|Type|Description| |:|:|:|

-|timeoutDuration|Duration| Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours. Inherited from [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md).|

+|timeoutDuration|Duration| Callback time out in ISO 8601 time duration. Accepted time durations are between five minutes to three hours. For example, PT5M for five minutes and PT3H for three hours. Inherited from [customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md).|

+|authorizedApps|microsoft.graph.application collection| Unique identifier for the application object. |

+ ## Relationships

None.

The following is a JSON representation of the resource. <!-- { "blockType": "resource",

- "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration"

+ "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration",

+ "baseType": "microsoft.graph.customExtensionCallbackConfiguration"

} --> ``` json { "@odata.type": "#microsoft.graph.identityGovernance.customTaskExtensionCallbackConfiguration",

- "timeoutDuration": "String (duration)"

+ "timeoutDuration": "String (duration)",

+ "authorizedApps":[

+ {

+ "@odata.type": "microsoft.graph.application"

+ }

+]

} ```

v1.0

Identitygovernance Customtaskextensioncallbackdata

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncallbackdata.md

None.

The following is a JSON representation of the resource. <!-- { "blockType": "resource",

- "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackData"

+ "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCallbackData",

+ "baseType": "microsoft.graph.customExtensionData"

} --> ``` json

v1.0

Identitygovernance Customtaskextensioncalloutdata

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-customtaskextensioncalloutdata.md

None.

The following is a JSON representation of the resource. <!-- { "blockType": "resource",

- "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCalloutData"

+ "@odata.type": "microsoft.graph.identityGovernance.customTaskExtensionCalloutData",

+ "baseType": "microsoft.graph.customExtensionData"

} --> ``` json

v1.0

Identitygovernance Lifecyclemanagementsettings

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecyclemanagementsettings.md

The settings of Azure AD Lifecycle Workflows in the tenant.

|:|:|:| |id|String|Identifier used for individually addressing Lifecycle Workflow settings.| |workflowScheduleIntervalInHours|Int32|The interval in hours at which all [workflows](../resources/identitygovernance-workflow.md) running in the tenant should be scheduled for execution. This interval has a minimum value of 1 and a maximum value of 24. The default value is 3 hours. |

+|emailSettings|[microsoft.graph.emailSettings](../resources/emailsettings.md)|Defines the settings for emails sent out from email-specific [tasks](../resources/identitygovernance-task.md) within workflows. Accepts 2 parameters senderDomain- Defines the domain of who is sending the email. useCompanyBranding- A boolean value that defines if company branding is to be used with the email.|

## Relationships

The following is a JSON representation of the resource.

--> ``` json {

- "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity",

- "workflowScheduleIntervalInHours": 1

+ "@odata.type": "#microsoft.graph.identityGovernance.lifecycleManagementSettings",

+ "workflowScheduleIntervalInHours": "Integer",

+ "emailSettings": {

+ "@odata.type": "microsoft.graph.emailSettings"

+ }

} ```

v1.0

Identitygovernance Lifecycleworkflows Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflows-overview.md

Each workflow contains general descriptive information such as it's identifier,

Workflow tasks are specific actions that run automatically when a workflow is triggered. Lifecycle Workflows defines the following preconfigured and read-only tasks that are allowed for the specified workflow categories. These task definitions show the settings for the task type, guiding you as you create tasks for your workflow.

-<!-- Comment out CRR until we can resolve the links problem

->- [!INCLUDE [lifecycle-workflows-tasks-table](../includes/identitygovernance-lifecycleworkflows-tasks-table.md)] Use the [taskDefinition resource type](identitygovernance-taskdefinition.md) and its associated methods to discover all the predefined tasks that you can configure for your workflow and the settings for the properties The [task](identitygovernance-task.md) resource type and its associated GET methods allow you to view the tasks that are configured for your workflow.

The following [Azure AD roles](/azure/active-directory/roles/permissions-referen

| Operation | Application permissions | Required directory role of the calling user | |:|:|:--|

-| Read | LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All | Global Admin, Global Reader or Lifecycle Workflows Administrator |

-| Create, Update or Delete | LifecycleWorkflows.ReadWrite.All | Global Administrator or Lifecycle Workflows Administrator |

+| Read | LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All |Global Reader or Lifecycle Workflows Administrator |

+| Create, Update or Delete | LifecycleWorkflows.ReadWrite.All | Lifecycle Workflows Administrator |

## See also

v1.0

Identitygovernance Lifecycleworkflows Reporting Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflows-reporting-overview.md

The following [Azure AD roles](/azure/active-directory/roles/permissions-referen

| Operation | Application permissions | Required directory role of the calling user | |:|:|:--|

-| Read | LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All | Global Admin, Global Reader or Lifecycle Workflows Administrator |

-| Create, Update or Delete | LifecycleWorkflows.ReadWrite.All | Global Administrator or Lifecycle Workflows Administrator |

+| Read | LifecycleWorkflows.Read.All or LifecycleWorkflows.ReadWrite.All |Global Reader or Lifecycle Workflows Administrator |

+| Create, Update or Delete | LifecycleWorkflows.ReadWrite.All | Lifecycle Workflows Administrator |

## See also

v1.0

Identitygovernance Lifecycleworkflowscontainer

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-lifecycleworkflowscontainer.md

The following is a JSON representation of the resource.

"id": "String (identifier)" } ```+

v1.0

Identitygovernance Ondemandexecutiononly

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-ondemandexecutiononly.md

None.

The following is a JSON representation of the resource. <!-- { "blockType": "resource",

- "@odata.type": "microsoft.graph.identityGovernance.onDemandExecutionOnly"

+ "@odata.type": "microsoft.graph.identityGovernance.onDemandExecutionOnly",

+ "baseType": "microsoft.graph.identityGovernance.workflowExecutionConditions"

} --> ``` json

v1.0

Identitygovernance Rulebasedsubjectset

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-rulebasedsubjectset.md

Inherits from [subjectSet](../resources/subjectset.md).

### Supported user properties and query parameters

-Lifecycle Workflows supports the following [user properties](user.md#properties) for configuring the rules that are in the scope of an execution condition. You can use the `$filter` OData query parameter with either the `eq`, `ne`, `in`, or `startsWith` operators. You can also combine the filter expressions using one of the following conjunction and disjunction operators:

+Lifecycle Workflows supports the following user properties for configuring the rules that are in the scope of an execution condition. You can use the `$filter` OData query parameter with either the `eq`, `ne`, `in`, or `startsWith` operators. You can also combine the filter expressions using one of the following conjunction and disjunction operators:

+ `and` + `or` + `and` and `not`

You can also configure rules using [Directory (Azure AD) extensions](/graph/exte

| Example rule | Description | ||--| | `"rule": "(department eq 'Marketing')"` | Run the workflow for users in the "Marketing" department. |

-| `"rule": "(department ne 'Marketing')"` | Run the workflow for users not the "Marketing" department. |

-| `"rule": "(department in ('Marketing'))"` | Run the workflow for users not the "Marketing" department. |

+| `"rule": "(department ne 'Marketing')"` | Run the workflow for users not in the "Marketing" department. |

+| `"rule": "(department in ('Marketing'))"` | Run the workflow for users in the "Marketing" department. |

| `"rule": "(accountEnabled eq true)"` | Run the workflow for users whose account is enabled. | | `"rule": "(employeeOrgData/costCenter eq '100')"` | Run the workflow for users whose costCenter is `100`. | | `"rule": "(otherMails/any(p:startsWith(p, 'Av')))"` | Run the workflow for users whose **otherMails** starts with `Av`. |

v1.0

Identitygovernance Run

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-run.md

Inherits from [entity](../resources/entity.md).

|[List runs](../api/identitygovernance-workflow-list-runs.md)|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection|Get a list of the [run](../resources/identitygovernance-run.md) objects and their properties.| |[Get run](../api/identitygovernance-run-get.md)|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md)|Read the properties and relationships of a [run](../resources/identitygovernance-run.md) object.| |[summary](../api/identitygovernance-run-summary.md)|[microsoft.graph.identityGovernance.runSummary](../resources/identitygovernance-runsummary.md)|Get a summary of workflows runs.|

-|[List user processing results](../api/identitygovernance-run-summary.md)|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection|Get a list of user processing results of a run.|

-|[Get user processing result](../api/identitygovernance-run-summary.md)|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md)|Get a user processing result of a run|

|[List task processing results of a run](../api/identitygovernance-run-list-taskprocessingresults.md)|[microsoft.graph.identityGovernance.taskReportSummary](../resources/identitygovernance-taskprocessingresult.md)|List task processing results from a run.| ## Properties

Inherits from [entity](../resources/entity.md).

+|id|String|A unique identifier for the workflow run.|

|lastUpdatedDateTime|DateTimeOffset|The datetime that the run was last updated. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.|

-|processingStatus|String|The run execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|processingStatus|microsoft.graph.identityGovernance.lifecycleWorkflowProcessingStatus|The run execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|totalTasksCounts|Int32|The total number of tasks in the run execution.|

|totalUnprocessedTasksCount|Int32|The total number of unprocessed tasks in the run execution.|

-|workflowExecutionType|String|The execution type of the workflows associated with the run. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|workflowExecutionType|microsoft.graph.identityGovernance.workflowExecutionType|The execution type of the workflows associated with the run. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

## Relationships

The following is a JSON representation of the resource.

"blockType": "resource", "keyProperty": "id", "@odata.type": "microsoft.graph.identityGovernance.run",

- "baseType": "microsoft.graph.entity",

"openType": false } -->

The following is a JSON representation of the resource.

"startedDateTime": "String (timestamp)", "scheduledDateTime": "String (timestamp)", "successfulUsersCount": "Integer",

+ "totalTasksCounts": "Integer",

"totalUsersCount": "Integer", "totalUnprocessedTasksCount": "Integer", "workflowExecutionType": "String"

v1.0

Identitygovernance Runsummary

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-runsummary.md

A summary of runs for a specified time period. This summary allows the administr

+|totalTasks|Int32|The total number of tasks processed by a workflow.|

+|totalUsers|Int32|The total number of users processed by a workflow.|

## Relationships

The following is a JSON representation of the resource.

"failedRuns": "Integer", "failedTasks": "Integer", "successfulRuns": "Integer",

- "totalRuns": "Integer"

+ "totalRuns": "Integer",

+ "totalTasks": "Integer",

+ "totalUsers": "Integer"

} ```

v1.0

Identitygovernance Task

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-task.md

Inherits from [entity](../resources/entity.md).

|taskDefinitionId|String|A unique template identifier for the task. For more information about the tasks that Lifecycle Workflows currently supports and their unique identifiers, see [supported tasks](../resources/identitygovernance-task.md#supported-tasks). Required. Supports `$filter`(`eq`, `ne`).| ### Supported tasks

-<!-- Comment out CRR until we can resolve the links problem

-> [!INCLUDE [lifecycle-workflows-tasks-table](../includes/identitygovernance-lifecycleworkflows-tasks-table.md)]

v1.0

Identitygovernance Taskdefinition

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-taskdefinition.md

Inherits from [entity](../resources/entity.md).

|Property|Type|Description| |:|:|:|

-|category|microsoft.graph.identityGovernance.lifecycleTaskCategory|The category of the HR function that the tasks created using this definition can be used with. The possible values are: `joiner`, `leaver`. This is a multi-valued enumeration whose allowed combinations are `joiner`, `joiner,leaver`, or `leaver`. Supports `$filter`(`eq`, `ne`, `has`) and `$orderby`. |

+|category|microsoft.graph.identityGovernance.lifecycleTaskCategory|The category of the HR function that the tasks created using this definition can be used with. The possible values are: `joiner`, `leaver`, `unknownFutureValue`. This is a multi-valued enumeration whose allowed combinations are `joiner`, `joiner,leaver`, or `leaver`. Supports `$filter`(`eq`, `ne`, `has`) and `$orderby`. |

+|ContinueOnError|Boolean|Defines if the workflow will continue if the task has an error.|

v1.0

Identitygovernance Timebasedattributetrigger

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-timebasedattributetrigger.md

None.

The following is a JSON representation of the resource. <!-- { "blockType": "resource",

- "@odata.type": "microsoft.graph.identityGovernance.timeBasedAttributeTrigger"

+ "@odata.type": "microsoft.graph.identityGovernance.timeBasedAttributeTrigger",

+ "baseType": "microsoft.graph.identityGovernance.workflowExecutionTrigger"

} --> ``` json

v1.0

Identitygovernance Userprocessingresult

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-userprocessingresult.md

Inherits from [entity](../resources/entity.md).

|Method|Return type|Description| |:|:|:| |[List userProcessingResults](../api/identitygovernance-workflow-list-userprocessingresults.md)|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection|Get a list of the [userProcessingResult](../resources/identitygovernance-userprocessingresult.md) objects and their properties.|

+|[Get userProcessingResult](../api/identitygovernance-userprocessingresult-get.md)|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md)|Get a user processing result.|

|[summary](../api/identitygovernance-userprocessingresult-summary.md)|[microsoft.graph.identityGovernance.userSummary](../resources/identitygovernance-usersummary.md)|Provides a summary of user processing results for a specified time period.|

-|[List taskProcessingResults](../api/identitygovernance-userprocessingresult-list-taskprocessingresults.md)|[microsoft.graph.identityGovernance.taskReport](../resources/identitygovernance-taskprocessingresult.md) collection|Get a list of the [taskProcessingResult](../resources/identitygovernance-taskprocessingresult.md) objects and their properties.|

+|[List taskProcessingResults for a userProcessingResult](../api/identitygovernance-userprocessingresult-list-taskprocessingresults.md)|[microsoft.graph.identityGovernance.taskReport](../resources/identitygovernance-taskprocessingresult.md) collection|Get a list of the [taskProcessingResult](../resources/identitygovernance-taskprocessingresult.md) objects and their properties.|

## Properties

Inherits from [entity](../resources/entity.md).

|:|:|:| |completedDateTime|DateTimeOffset|The date time that the workflow execution for a user completed. Value is null if the workflow hasn't completed. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.| |failedTasksCount|Int32|The number of tasks that failed in the workflow execution.|

-|id|String|Identifier used for individually addressing a specific user processing result. Inherited from [entity](../resources/entity.md). Supports `$filter`(`eq`, `ne`) and `$orderby`.|

-|processingStatus|String|The workflow execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|id|String|Identifier used for individually addressing a specific user processing result.Inherited from [entity](../resources/entity.md). Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|processingStatus|microsoft.graph.identityGovernance.lifecycleWorkflowProcessingStatus|The workflow execution status. The possible values are: `queued`, `inProgress`, `completed`, `completedWithErrors`, `canceled`, `failed`, `unknownFutureValue`. Supports `$filter`(`eq`, `ne`) and `$orderby`.|

|scheduledDateTime|DateTimeOffset|The date time that the workflow is scheduled to be executed for a user. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.| |startedDateTime|DateTimeOffset|The date time that the workflow execution started. Value is `null` if the workflow execution has not started. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.| |totalTasksCount|Int32|The total number of tasks that in the workflow execution.| |totalUnprocessedTasksCount|Int32|The total number of unprocessed tasks for the workflow.|

-|workflowExecutionType|String|Describes the execution type of the workflow. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.|

+|workflowExecutionType|microsoft.graph.identityGovernance.workflowExecutionType|Describes the execution type of the workflow. The possible values are: `scheduled`, `onDemand`, `unknownFutureValue`. Supports `$filter`(`lt`, `le`, `gt`, `ge`, `eq`, `ne`) and `$orderby`.|

|workflowVersion|Int32|The version of the workflow that was executed.| ## Relationships

v1.0

Identitygovernance Workflowbase

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowbase.md

None.

-|runs|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection|A history of every time a workflow ran.|

|tasks|[microsoft.graph.identityGovernance.task](../resources/identitygovernance-task.md) collection|The tasks in the workflow.|

-|userProcessingResults|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection|The results of a user processed by the workflow.|

## JSON representation

v1.0

Identitygovernance Workflowtemplate

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowtemplate.md

Inherits from [entity](../resources/entity.md).

|description|String|The description of the `workflowTemplate`.| |displayName|String|The display name of the `workflowTemplate`. Supports `$filter`(`eq`, `ne`) and `$orderby`.| |executionConditions|[microsoft.graph.identityGovernance.workflowExecutionConditions](../resources/identitygovernance-workflowexecutionconditions.md)|Conditions describing when to execute the workflow and the criteria to identify in-scope subject set.|

-|id|String|The unique identifier for the `workflowTemplate`. Inherited from [entity](../resources/entity.md). Supports `$filter`(`eq`, `ne`) and `$orderby`.|

+|id|String|The unique identifier for the `workflowTemplate`.Inherited from [entity](../resources/entity.md). Supports `$filter`(`eq`, `ne`) and `$orderby`.|

### Supported workflow templates

v1.0

Identitygovernance Workflowversion

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/identitygovernance-workflowversion.md

Inherits from [workflowBase](../resources/identitygovernance-workflowbase.md).

-|runs|[microsoft.graph.identityGovernance.run](../resources/identitygovernance-run.md) collection|A history of every time a workflow ran. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).|

|tasks|[microsoft.graph.identityGovernance.task](../resources/identitygovernance-task.md) collection|The tasks in the workflow. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).|

-|userProcessingResults|[microsoft.graph.identityGovernance.userProcessingResult](../resources/identitygovernance-userprocessingresult.md) collection|The results of a user processed by the workflow. Inherited from [workflowBase](../resources/identitygovernance-workflowbase.md).|

## JSON representation

v1.0

Industrydata Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/industrydata-overview.md

The industry data API is defined in the OData subnamespace `microsoft.graph.indu

## Industry data API and education

-The industry data API powers the [Microsoft School Data Sync](https://sds.microsoft.com) (SDS) platform to help automate the process of importing data and synchronizing organizations, users and users associations, and groups  from student information systems (SIS) and student management systems (SMS) into an organization's Azure Data Lake. After normalizing the data in Azure Data Lake, the API utilizes the data in multiple outbound flows, synchronizing data with [Insights for Education Leaders](https://support.microsoft.com/topic/leader-s-guide-to-education-insights-premium-8738d1b1-4e1c-49bd-9e8d-b5292474c347) and [Education Data Lake Export](/schooldatasync/enable-education-data-lake-export) for custom analytics scenarios.

+The industry data API powers the [Microsoft School Data Sync](https://sds.microsoft.com) (SDS) platform to help automate the process of importing data and synchronizing organizations, users and users associations, and groups  from student information systems (SIS) and student management systems (SMS) into an organization's Azure Data Lake. After normalizing the data in Azure Data Lake  SDS can synchronize the data with [Insights for Education Leaders](/schooldatasync/enable-sync-with-insights), for use with the Insights app in Teams for Education, and [Education Data Lake Export](/schooldatasync/enable-education-data-lake-export), for custom analytics scenarios.

![Illustration of the industry data ETL process](/graph/images/industrydata-overview.png)

You can integrate industry data APIs with third-party apps. For details about ho

-| Create a connector to retrieve data from an Azure Data Lake | [azureDataLakeConnector](../resources/industrydata-azuredatalakeconnector.md) | [azureDataLakeConnector methods](../resources/industrydata-azuredatalakeconnector.md#methods) |

| Define a source of inbound data | [sourceSystemDefinition](../resources/industrydata-sourcesystemdefinition.md) | [sourceSystemDefinition methods](../resources/industrydata-sourcesystemdefinition.md#methods) |

+| Create a connector to post data to an Azure Data Lake (if CSV)| [azureDataLakeConnector](../resources/industrydata-azuredatalakeconnector.md) | [azureDataLakeConnector methods](../resources/industrydata-azuredatalakeconnector.md#methods) |

<!-- ## Concepts

v1.0

Logicapptriggerendpointconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/logicapptriggerendpointconfiguration.md

Title: "logicAppTriggerEndpointConfiguration resource type" description: "The configuration details for the logic app's endpoint that is associated with a custom access package workflow extension."-+ ms.localizationpriority: medium ms.prod: "governance" doc_type: resourcePageType

The configuration details for the logic app's endpoint that is associated with a

+|url|String| The URL to the logic app endpoint that will be triggered. Only required for app-only token scenarios where app is creating a [customCalloutExtension](../resources/customcalloutextension.md) without a signed-in user.|

## JSON representation

The following is a JSON representation of the resource.

"@odata.type": "#microsoft.graph.logicAppTriggerEndpointConfiguration", "subscriptionId": "String", "resourceGroupName": "String",

- "logicAppWorkflowName": "String"

+ "logicAppWorkflowName": "String",

+ "url": "String"

} ```

v1.0

Microsoft Teams Team Usage Reports

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/microsoft-teams-team-usage-reports.md

Use the Microsoft Teams team activity reports to get insights into the usage of

| [Get distribution team counts](../api/reportroot-getteamsteamactivitydistributioncounts.md) | Stream | Stream | Get the number of team activities across Microsoft Teams over a selected period. |

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/microsoftauthenticatorauthenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents a Microsoft Authenticator authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method.

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

+ ## Methods |Method|Return type|Description| |:|:|:|

v1.0

Organization

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/organization.md

This resource lets you add your own data to custom properties using [extensions]

|[Get open extension](../api/opentypeextension-get.md) |[openTypeExtension](opentypeextension.md) collection| Get an open extension identified by the extension name.| |**Schema extensions**| | | |[Add schema extension values](../api/schemaextension-post-schemaextensions.md) | [schemaExtension](schemaextension.md) | Create a schema extension definition and then use it to add custom typed data to a resource.|

-|**Organization licenses**| | |

-|[activateService](../api/organization-activateservice.md) (deprecated) | None | Activate a service for an organization. |

|**Organizational branding**| | | |[Get organizationalBranding](../api/organizationalbranding-get.md) | [organizationalBranding](organizationalbranding.md) | Get the default organizational branding object. | |[Update organizationalBranding](../api/organizationalbranding-update.md) | [organizationalBranding](organizationalbranding.md) | Update the default organizational branding object. |

v1.0

Plannerbucket

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannerbucket.md

Represents a bucket (or "custom column") for tasks in a plan in Microsoft 365. I

+|[Get delta](../api/plannerbucket-delta.md)|[plannerBucket](../resources/plannerbucket.md) collection| Get newly created, updated, or deleted **plannerBucket** objects in a Planner plan without having to perform a full read of the entire resource collection.|

## Properties | Property | Type |Description|

v1.0

Plannerplan

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannerplan.md

Represents a plan in Microsoft 365. A plan can be owned by a [group](group.md) a

+|[Get delta](../api/plannerplan-delta.md) | [plannerPlan](../resources/plannerplan.md) collection | Get newly created, updated, or deleted **plannerPlan** objects in either a **group** or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. |

## Properties | Property | Type |Description|

The following is a JSON representation of the resource.

"suppressions": [] } -->--

v1.0

Plannertask

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/plannertask.md

Represents a Planner task in Microsoft 365. A Planner task is contained in a [pl

+|[Get delta](../api/plannertask-delta.md)|[plannerTask](../resources/plannertask.md) collection| Get newly created, updated, or deleted **plannerTask** objects in either a **plannerPlan** or assigned to the signed-in user without having to perform a full read of the entire resource collection. |

## Properties | Property | Type |Description|

v1.0

Quota

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/quota.md

-description: The quota resource provides details about space constrains on a drive resource.

+description: The quota resource provides details about space constraints on a drive resource.

Last updated 09/10/2017 Title: Quota ms.localizationpriority: medium

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-The **quota** resource provides details about space constrains on a [drive](drive.md) resource.

+The **quota** resource provides details about space constraints on a [drive](drive.md) resource. In OneDrive Personal, the values reflect the total/used unified storage quota across multiple Microsoft services.

## JSON representation

v1.0

Report

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/report.md

The following table shows the availability for each API across all cloud deploym

| [Admin Report Settings](/graph/api/resources/adminreportsettings?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ£ö | Γ£ö | Γ₧û | Γ£ö | | [Microsoft 365 activations](/graph/api/resources/office-365-activations-reports?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ£ö | Γ£ö | Γ₧û | Γ₧û | | [Microsoft 365 active users](/graph/api/resources/office-365-active-users-reports?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ₧û | Γ£ö | Γ₧û | Γ₧û |

-| [Microsoft 365 Apps usage](/graph/api/resources/microsoft-365-apps-usage-report?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ₧û | Γ£ö | Γ₧û | Γ₧û |

+| [Microsoft 365 Apps usage](/graph/api/resources/microsoft-365-apps-usage-report?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ£ö | Γ£ö | Γ₧û | Γ₧û |

| [Microsoft 365 browser usage](/graph/api/resources/microsoft-365-browser-usage-report?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ₧û | Γ₧û | Γ₧û | Γ₧û | | [Microsoft 365 groups activity](/graph/api/resources/office-365-groups-activity-reports?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ₧û | Γ£ö | Γ₧û | Γ₧û | | [Microsoft Teams device usage](/graph/api/resources/microsoft-teams-device-usage-reports?view=graph-rest-beta&preserve-view=true) | Γ£ö | Γ£ö | Γ₧û | Γ₧û | Γ£ö |

v1.0

Security Api Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-api-overview.md

Alerts from the following security providers are available via this legacy **ale

| Security provider | GET alert| PATCH alert| Subscribe to alert| |:|:|:--|:|

-|[Azure Active Directory Identity Protection](/azure/active-directory/identity-protection/playbook) **** | ✓ | [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) * | ✓ |

+|[Azure Active Directory Identity Protection](/azure/active-directory/identity-protection/playbook) | ✓ | [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) * | ✓ |

|[Azure Security Center](/azure/security-center/security-center-alerts-type)| ✓ | ✓ | ✓ | |Microsoft 365 <ul><li> [Default](/office365/securitycompliance/alert-policies#default-alert-policies)</li> <li>[Cloud App Security](/office365/securitycompliance/anomaly-detection-policies-in-ocas)</li><li>Custom Alert</li></ul> | ✓ | [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) | [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) | | [Microsoft Defender for Cloud Apps](/cloud-app-security/monitor-alerts) (formerly Microsoft Cloud App Security) | ✓ | [File issue](https://github.com/microsoftgraph/security-api-solutions/issues/new) * | ✓ |

Alerts from the following security providers are available via this legacy **ale

\*\*\* Microsoft Defender for Identity alerts are available via the Microsoft Defender for Cloud Apps integration. This means you will get Microsoft Defender for Identity alerts only if you have joined Unified SecOps and connected Microsoft Defender for Identity into Microsoft Defender for Cloud Apps. Learn more about [how to integrate Microsoft Defender for Identity and Microsoft Defender for Cloud Apps](/azure-advanced-threat-protection/atp-mcas-integration).

-\*\*\*\* Azure AD Identity Protection alerts only include user object IDs. The **userPrincipalName** (UPN) property is not included in GET request responses. This issue does not impact any of the other providers. For details and a workaround, see [Known issues](/graph/known-issues#upn-missing-in-identity-protection-security-alerts).

- ## Attack simulation and training [Attack simulation and training](/microsoft-365/security/office-365-security/attack-simulation-training) is part of [Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide&preserve-view=true). This service lets users in a tenant experience a realistic benign phishing attack and learn from it. Social engineering simulation and training experiences for end users help reduce the risk of users being breached via those attack techniques. The attack simulation and training API enables tenant administrators to view launched [simulation](simulation.md) exercises and trainings, and get [reports](report-m365defender-reports-overview.md) on derived insights into online behaviors of users in the phishing simulations.

v1.0

Security Ediscoveryexportfilemetadata

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-ediscoveryexportfilemetadata.md

+

+ Title: "ediscoveryExportFileMetadata resource type"

+description: "Represents the file metadata for an export in eDiscovery."

+

+ms.localizationpriority: medium

++

+# ediscoveryExportFileMetadata resource type

+

+Namespace: microsoft.graph.security

++

+Represents the file metadata for an export in eDiscovery.

+

+## Properties

+

+|Property|Type|Description|

+|:|:|:|

+|downloadUrl| String |The URL to download the export. |

+|fileName | String | The name of the file. |

+|size| Int64 | The size of the file. |

+

+## JSON representation

+

+The following is a JSON representation of the resource.

+

+<!-- {

+ "blockType": "resource",

+ "@odata.type": "microsoft.graph.security.ediscoveryExportFileMetadata",

+ "openType": false

+}

+-->

+

+``` json

+{

+ "@odata.type": "#microsoft.graph.security.ediscoveryExportFileMetadata",

+ "downloadUrl": "String",

+ "fileName": "String",

+ "size": "Int64"

+}

+```

v1.0

Security Ediscoveryexportoperation

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/security-ediscoveryexportoperation.md

Inherits from [caseOperation](../resources/security-caseoperation.md).

## Methods |Method|Return type|Description| |:|:|:|

-|[getDownloadUrl](../api/security-ediscoveryexportoperation-getdownloadurl.md)|String| Returns the URL for the export.|

+|[getDownloadUrl](../api/security-ediscoveryexportoperation-getdownloadurl.md) (deprecated) |String| Return the URL for the export. The **getDownloadUrl** function is deprecated and will stop returning data on April 30th, 2023. Please use the new **exportFileMetadata** property returned by the [Get caseOperation](../api/security-ediscoverycase-get.md) API instead.|

-|azureBlobContainer|String| The name of the Azure storage location where the export will be stored. This only applies to exports stored in your own Azure storage location. |

-|azureBlobToken|String| The SAS token for the Azure storage location. This only applies to exports stored in your own Azure storage location. |

-|exportOptions|microsoft.graph.security.exportOptions| The options provided for the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`.|

+|exportFileMetaData | [microsoft.graph.security.ediscoveryExportFileMetadata](../resources/security-ediscoveryexportfilemetadata.md)| Contains the properties for an export file metadata, including **downloadUrl**, **fileName**, and **size**. If you export to an Azure storage location, this property returns empty. |

+|exportOptions|microsoft.graph.security.exportOptions| The options provided for the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `originalFiles`, `text`, `pdfReplacement`, `fileInfo`, `tags`. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included. |

|exportStructure|microsoft.graph.security.exportFileStructure|The options provided that specify the structure of the export. For more details, see [reviewSet: export](../api/security-ediscoveryreviewset-export.md). Possible values are: `none`, `directory`, `pst`.| |id|String| The ID for the operation. Read-only. | |outputName|String| The name provided for the export.| |percentProgress|Int32| The progress of the operation.| |resultInfo|[resultInfo](../resources/resultinfo.md)|Contains success and failure-specific result information. Inherited from [caseOperation](../resources/ediscovery-caseoperation.md).| |status|[microsoft.graph.security.caseOperationStatus](../resources/security-caseoperation.md#caseoperationstatus-values)| The status of the case operation. Possible values are: `notStarted`, `submissionFailed`, `running`, `succeeded`, `partiallySucceeded`, `failed`.|

+|azureBlobContainer (deprecated)|String| The name of the Azure storage location where the export is stored. This only applies to exports stored in your own Azure storage location. The **azureBlobContainer** property is deprecated and will stop returning data on April 30th, 2023. |

+|azureBlobToken (deprecated)|String| The SAS token for the Azure storage location. This only applies to exports stored in your own Azure storage location. The **azureBlobToken** property is deprecated and will stop returning data on April 30th, 2023. |

+|outputFolderId (deprecated) | String | The output folder ID. The **outputFolderId** property is deprecated and will stop returning data on April 30th, 2023.

### exportOptions values

Inherits from [caseOperation](../resources/security-caseoperation.md).

-|fileInfo|Include metadata of original files in a load file.|

|tags|Include tag information in fileInfo.|

+|fileInfo (deprecated) |Include metadata of original files in a load file. The `fileInfo` member is deprecated and will stop returning data on April 30th, 2023. Going forward, the summary and load file are always included. |

### exportFileStructure values

Inherits from [caseOperation](../resources/security-caseoperation.md).

|reviewSet|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)| Review set from where documents are exported.| |reviewSetQuery|[microsoft.graph.security.ediscoveryReviewSetQuery](../resources/security-ediscoveryreviewsetquery.md)|The review set query which is used to filter the documents for export.| + ## JSON representation The following is a JSON representation of the resource. <!-- {

The following is a JSON representation of the resource.

"openType": false } -->+ ``` json { "@odata.type": "#microsoft.graph.security.ediscoveryExportOperation",

- "id": "String (identifier)",

- "createdDateTime": "String (timestamp)",

- "completedDateTime": "String (timestamp)",

"action": "String",

+ "azureBlobContainer": "String",

+ "azureBlobToken": "String",

+ "completedDateTime": "String (timestamp)",

"createdBy": { "@odata.type": "microsoft.graph.identitySet" },

- "percentProgress": "Integer",

- "status": "String",

+ "createdDateTime": "String (timestamp)",

+ "description": "String",

+ "exportFileMetadata": {

+ "@odata.type": "microsoft.graph.security.ediscoveryExportFileMetadata"

+ },

+ "exportOptions": "String",

+ "exportStructure": "String",

+ "id": "String (identifier)",

+ "outputFolderId": "String",

+ "outputName": "String",

+ "percentProgress": "Int32",

"resultInfo": { "@odata.type": "microsoft.graph.resultInfo" },

- "outputName": "String",

- "description": "String",

- "outputFolderId": "String",

- "azureBlobContainer": "String",

- "azureBlobToken": "String",

- "exportOptions": "String",

- "exportStructure": "String"

+ "status": "String"

} ```-

v1.0

Service Communications Api Overview

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/service-communications-api-overview.md

For more information on access tokens, app registration, and delegated and appli

Delegated permissions are needed to access the service communications API on behalf of a signed-in user. Customer-facing canvas applications, such as the [Microsoft 365 admin center](https://admin.microsoft.com/Adminportal/Home?source=applauncher#/homepage) (accessible only to admin roles), can call the service communications API to get the service health and service announcements data for the signed-in user's tenant, _on behalf of the signed-in user_. Users can find out whether their subscribed services are healthy or have issues. They can also learn about any current service issues affecting their tenants.

+#### Role-based access control for delegation access

+

+The service communications API applies role-based access control (RBAC) to identify whether the signed-in user who is on-behalf of has a required Azure Active Directory (Azure AD) role. The signed-in user who is on-behalf of must have at least one of the admin roles.

+

+For more information about the AZure AD administrator roles, see:

+* [About admin roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/about-admin-roles)

+* [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference)

+* [Roles in Microsoft 365, including Azure AD, service-specific and cross-service roles](/azure/active-directory/roles/concept-understand-roles#how-azure-ad-roles-are-different-from-other-microsoft-365-roles)

+ ### Access service communications API without user Application permissions are needed to access the service communications API without a signed-in user. Applications that run as backend services, such as monitoring or alert services, can call the service communications API with their own identity and not on behalf of a user. These backend services can build custom monitoring/alert pipelines and call the service communications API to get service health and service announcements data.

That service communications API is available in all Microsoft national cloud dep

|Microsoft Graph global service| https://graph.microsoft.com/beta/admin/serviceAnnouncement/| |Microsoft Graph for US Government L4 (GccHigh)|https://graph.microsoft.us/beta/admin/serviceAnnouncement/| |Microsoft Graph for US Government L5 (DoD)|https://dod-graph.microsoft.us/beta/admin/serviceAnnouncement/|

-|Microsoft Graph Germany|https://graph.microsoft.de/beta/admin/serviceAnnouncement/|

|Microsoft Graph China operated by 21Vianet|https://microsoftgraph.chinacloudapi.cn/beta/admin/serviceAnnouncement/| ## Service communications limits

v1.0

Servicestoragequotabreakdown

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/servicestoragequotabreakdown.md

+

+ Title: "serviceStorageQuotaBreakdown resource type"

+description: "Represents a proportion of the unified storage quota associated with a specific service."

+

+ms.localizationpriority: medium

++

+# serviceStorageQuotaBreakdown resource type

+

+Namespace: microsoft.graph

++

+Represents a proportion of the unified storage quota associated with a specific service.

+

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[List serviceStorageQuotaBreakdown](../api/unifiedstoragequota-list-services.md)| [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection|Get a list of services in the serviceStorageQuotaBreakdown.|

+|[Get serviceStorageQuotaBreakdown](../api/servicestoragequotabreakdown-get.md)|[serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md)|Read the properties and relationships of a [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) object.|

+

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|displayName|String|The service breakdown name displayed to users. Localized. Read-only.|

+|id|String|The service breakdown id. Read-only.|

+|manageWebUrl|String|A URL that can be used in a browser to manage the service breakdown. Read-only.|

+|used|Int64|The number of bytes this service breakdown is consuming. Read-only.|

+

+## Relationships

+None.

+

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.serviceStorageQuotaBreakdown",

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.serviceStorageQuotaBreakdown",

+ "id": "String (identifier)",

+ "displayName": "String",

+ "manageWebUrl": "String",

+ "used": "Integer"

+}

+```

+

v1.0

Signinactivity

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/signinactivity.md

Namespace: microsoft.graph

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Provides the last interactive or non-interactive sign-in time for a specific [user](user.md). Since signInActivity describes a property of the user object, Azure AD stores signinactivity for your users for as long as the user objects exist.

+Provides the last interactive or non-interactive sign-in time for a specific [user](user.md). Since signInActivity describes a property of the user object, Azure AD stores signinactivity for your users for as long as the user object exists.

## Properties

The following is a JSON representation of the resource.

```json {

+ "@odata.type": "#microsoft.graph.signInActivity",

"lastSignInDateTime": "String (timestamp)", "lastSignInRequestId": "String", "lastNonInteractiveSignInDateTime": "String (timestamp)",

v1.0

Smsauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/smsauthenticationmethodconfiguration.md

Title: "smsAuthenticationMethodConfiguration resource type" description: "Represents a Text Message authentication methods policy."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: resourcePageType

Namespace: microsoft.graph

Represents a Text Message authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method.

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

+ ## Methods |Method|Return type|Description| |:|:|:|

v1.0

Smsauthenticationmethodtarget

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/smsauthenticationmethodtarget.md

Title: "smsAuthenticationMethodTarget resource type" description: "A collection of groups enabled to use Text Message authentication methods policy."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: resourcePageType

v1.0

Softwareoathauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/softwareoathauthenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents the authentication policy for a third-party software OATH authentication method. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method.

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

## Methods |Method|Return type|Description|

v1.0

Subscription

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/subscription.md

For the possible resource path values for each supported resource, see [Use the

### Maximum length of subscription per resource type

-| Resource | Maximum expiration time |

-|:--|:-|

-| Security **alert** | 43200 minutes (under 30 days) |

-| Teams **callRecord** | 4230 minutes (under 3 days) |

-| Teams **channel** | 60 minutes (1 hour) |

-| Teams **chat** | 60 minutes (1 hour) |

-| Teams **chatMessage** | 60 minutes (1 hour) |

-| Teams **conversationMember** | 60 minutes (1 hour) |

-| Teams **onlineMeeting** | 4320 minutes (3 days) |

-| Teams **team** | 60 minutes (1 hour) |

-| Group **conversation** | 4230 minutes (under 3 days) |

-| OneDrive **driveItem** | 42300 minutes (under 30 days) |

-| SharePoint **list** | 42300 minutes (under 30 days) |

-| Outlook **message**, **event**, **contact** | 4230 minutes (under 3 days) |

-| **user**, **group**, other directory resources | 41760 minutes (under 29 days) |

-| **onlineMeeting** | 4230 minutes (under 3 days) |

-| **presence** | 60 minutes (1 hour) |

-| Print **printer** | 4230 minutes (under 3 days) |

-| Print **printTaskDefinition** | 4230 minutes (under 3 days) |

-| **todoTask** | 4230 minutes (under 3 days) |

-| **baseTask** (deprecated) | 4230 minutes (under 3 days) |

--

-> **Note:** Existing applications and new applications should not exceed the supported value. In the future, any requests to create or renew a subscription beyond the maximum value will fail.

## Relationships

Here is a JSON representation of the resource.

"notificationContentType": "String", "notificationUrlAppId": "String" }

-```

+```

v1.0

Teamtemplate

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamtemplate.md

Namespace: microsoft.graph

Represents a logical container for all the definitions and versions of the same team template.

-> **Note**: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/).

## Methods

v1.0

Teamtemplatedefinition

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamtemplatedefinition.md

Generic representation of a team template definition for a team with a specific

Inherits from [entity](../resources/entity.md).

-> **Note**: This API is currently in private preview only. When it reaches public preview, we will publish a blog post announcement on the [Microsoft 365 Developer blog](https://devblogs.microsoft.com/microsoft365dev/).

- ## Methods |Method|Return type|Description|

v1.0

Teamworktag

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/teamworktag.md

When a tag is added, users can @mention it in a channel. Everyone who has been a

## Properties |Property|Type|Description| |:|:|:|

-|description|String|Tag description as it will appear to the user in Microsoft Teams.|

+|description|String|Tag description as it will appear to the user in Microsoft Teams. A **teamworkTag** can't have more than 200 **teamworkTagMembers**.|

The following is a JSON representation of the resource.

``` ## See also-- [teamworkTagMember](../resources/teamworktagmember.md)

+- [teamworkTagMember](../resources/teamworktagmember.md)

v1.0

Temporaryaccesspassauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/temporaryaccesspassauthenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents a Temporary Access Pass authentication methods policy that defines the configuration settings and users or groups who are enabled to use the [Temporary Access Pass authentication method](temporaryaccesspassauthenticationmethod.md).

+Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).

+ ## Methods |Method|Return type|Description| |:|:|:|

v1.0

Tokenlifetimepolicy

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/tokenlifetimepolicy.md

Inherits from [stsPolicy](stsPolicy.md).

| Method | Return Type | Description | |:-|:|:|

+| [List tokenLifetimePolicies](../api/tokenlifetimepolicy-list.md) | [tokenLifetimePolicy](tokenlifetimepolicy.md) | Read properties and relationships of tokenLifetimePolicies objects. |

| [Create tokenLifetimePolicy](../api/tokenlifetimepolicy-post-tokenlifetimepolicies.md) | [tokenLifetimePolicy](tokenlifetimepolicy.md) | Create a tokenLifetimePolicy object. | | [Get tokenLifetimePolicy](../api/tokenlifetimepolicy-get.md) | [tokenLifetimePolicy](tokenlifetimepolicy.md) | Read properties and relationships of a tokenLifetimePolicy object. |

-| [List tokenLifetimePolicies](../api/tokenlifetimepolicy-list.md) | [tokenLifetimePolicy](tokenlifetimepolicy.md) | Read properties and relationships of tokenLifetimePolicies objects. |

| [Update tokenLifetimePolicy](../api/tokenlifetimepolicy-update.md) | None | Update a tokenLifetimePolicy object. | | [Delete tokenLifetimePolicy](../api/tokenlifetimepolicy-delete.md) | None | Delete a tokenLifetimePolicy object. | | [List appliesTo](../api/tokenlifetimepolicy-list-appliesto.md) | [directoryObject](directoryobject.md) collection | Get the list of directoryObjects that this policy has been applied to. |

Inherits from [stsPolicy](stsPolicy.md).

| Property | Type | Description | |:-|:|:| |id|String| Unique identifier for this policy. Read-only.|

-|definition|String collection| A string collection containing a JSON string that defines the rules and settings for this policy. See below for more details about the JSON schema for this property. Required.|

+|definition|String collection| A string collection containing a JSON string that defines the rules and settings for this policy. For more information about the JSON schema for this property, see [Properties of a token lifetime policy definition](#properties-of-a-token-lifetime-policy-definition). Required.|

|description|String| Description for this policy.| |displayName|String| Display name for this policy. Required.| |isOrganizationDefault|Boolean|If set to `true`, activates this policy. There can be many policies for the same policy type, but only one can be activated as the organization default. Optional, default value is `false`.| ### Properties of a token lifetime policy definition+ The properties below form the JSON object that represents a token lifetime policy. This JSON object must be **converted to a string with quotations escaped** to be inserted into the **definition** property. An example is shown below in JSON format: <!-- {

v1.0

Unifiedstoragequota

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/unifiedstoragequota.md

+

+ Title: "unifiedStorageQuota resource type"

+description: Provides an aggregate view of a user's quota information across multiple services.

+

+ms.localizationpriority: medium

++

+# unifiedStorageQuota resource type

+

+Namespace: microsoft.graph

++

+Provides an aggregate view of a user's quota information across multiple services.

+

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[Get unifiedStorageQuota](../api/unifiedstoragequota-get.md)|[unifiedStorageQuota](../resources/unifiedstoragequota.md)|Read the properties and relationships of a [unifiedStorageQuota](../resources/unifiedstoragequota.md) object.|

+|[List serviceStorageQuotaBreakdown](../api/unifiedstoragequota-list-services.md)| [serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection|Get the list of services in a **serviceStorageQuotaBreakdown**.|

+

+## Properties

+

+|Property|Type|Description|

+|:|:|:|

+|id|String|The user IF.|

+|manageWebUrl|String| A URL that can be used in a browser to manage the breakdown. Read-only. |

+|remaining|Int64| Total space remaining before reaching the quota limit in bytes. |

+|state|usqState| Indicates the state of the storage space. The possible values are: `normal`, `nearing`, `critical`, `full`, and `overLimit`.|

+|total|Int64| Total allowed storage space in bytes. |

+|used|Int64| Total space used in bytes. |

+

+## Relationships

+|Relationship|Type|Description|

+|:|:|:|

+|services|[serviceStorageQuotaBreakdown](../resources/servicestoragequotabreakdown.md) collection| The breakdown of services contributing to the user's quota usage. |

++

+## JSON representation

+The following is a JSON representation of the resource.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.unifiedStorageQuota",

+ "baseType": "microsoft.graph.entity",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.unifiedStorageQuota",

+ "id": "String",

+ "manageWebUrl": "String",

+ "remaining": "Integer",

+ "state": "normal | nearing | critical | full | overLimit",

+ "total": "Integer",

+ "used": "Integer"

+}

+```

+

v1.0

User

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/user.md

This resource supports:

| [Get deleted user](../api/directory-deleteditems-get.md) | [directoryObject](directoryobject.md) collection | Retrieve a deleted user by ID. | | [Restore deleted user](../api/directory-deleteditems-delete.md) | [directoryObject](directoryobject.md) collection | Restore a user deleted in the tenant in the last 30 days. | | [Permanently delete user](../api/directory-deleteditems-restore.md) | [directoryObject](directoryobject.md) collection | Permanently delete a deleted user from the tenant. |

-| [activateServicePlan](../api/user-activateserviceplan.md) (deprecated) | None | Activate a service with a given `servicePlanId` and `skuId` for a given [user](user.md). |

| **Drive** ||| | [Get drive](../api/drive-get.md) | [drive](drive.md) | Retrieve the properties and relationships of a Drive resource. | | [List children](../api/driveitem-list-children.md) | [DriveItems](driveitem.md) | Return a collection of DriveItems in the children relationship of a DriveItem. |

This resource supports:

| showInAddressList | Boolean | **Do not use in Microsoft Graph. Manage this property through the Microsoft 365 admin center instead.** Represents whether the user should be included in the Outlook global address list. See [Known issue](/graph/known-issues#showinaddresslist-property-is-out-of-sync-with-microsoft-exchange).| | signInSessionsValidFromDateTime | DateTimeOffset | Any refresh tokens or sessions tokens (session cookies) issued before this time are invalid, and applications will get an error when using an invalid refresh or sessions token to acquire a delegated access token (to access APIs such as Microsoft Graph). If this happens, the application will need to acquire a new refresh token by making a request to the authorize endpoint. Read-only. Use [revokeSignInSessions](../api/user-revokesigninsessions.md) to reset.| | skills | String collection | A list for the user to enumerate their skills. Returned only on `$select`. |

-| signInActivity | [signInActivity](signinactivity.md) | Get the last signed-in date and request ID of the sign-in for a given user. Read-only. Returned only on `$select`. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`) *but*, not with any other filterable properties. **Note:** Details for this property require an Azure AD Premium P1/P2 license and the **AuditLog.Read.All** permission. **Note:** <li>There's a [known issue](/graph/known-issues#license-check-errors-for-azure-ad-activity-reports) with retrieving this property.<li>This property is not returned for a user who has never signed in or last signed in before April 2020.|

+| signInActivity | [signInActivity](signinactivity.md) | Get the last signed-in date and request ID of the sign-in for a given user. Read-only. Returned only on `$select`. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`) *but* not with any other filterable properties. **Note:** <li> Details for this property require an Azure AD Premium P1/P2 license and the **AuditLog.Read.All** permission.<li>There's a [known issue](/graph/known-issues#license-check-errors-for-azure-ad-activity-reports) with retrieving this property.<li>This property is not returned for a user who has never signed in or last signed in before April 2020.|

| state | String | The state or province in the user's address. Maximum length is 128 characters. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values). | | streetAddress | String | The street address of the user's place of business. Maximum length is 1024 characters. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values).| | surname | String | The user's surname (family name or last name). Maximum length is 64 characters. Supports `$filter` (`eq`, `ne`, `not`, `ge`, `le`, `in`, `startsWith`, and `eq` on `null` values). |

v1.0

Voiceauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/voiceauthenticationmethodconfiguration.md

Namespace: microsoft.graph

Represents a voice call authentication methods policy. Authentication methods policies define configuration settings and users or groups that are enabled to use the authentication method. - Inherits from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md). ## Methods

v1.0

Windowsupdates Featureupdatecatalogentry

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/windowsupdates-featureupdatecatalogentry.md

Title: "featureUpdateCatalogEntry resource type"

-description: "Metadata for a Windows 10 feature update that you can approve for deployment."

+description: "Represents metadata for a Windows 10 feature update that you can approve for deployment."

ms.localizationpriority: medium ms.prod: "w10"

Namespace: microsoft.graph.windowsUpdates

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Metadata for a Windows 10 feature update that you can approve for deployment.

+Represents metadata for a Windows 10 feature update that you can approve for deployment.

-Windows 10 feature updates are released bi-annually and contain new features for Windows 10. Installing these updates increases the Windows 10 build number and typically results in a new servicing lifecycle and end of service date. Microsoft recommends organizations regularly deploy new feature updates as part of adopting Windows as a service.

+Windows 10 feature updates are released bi-annually and contain new features for Windows 10. Installing these updates increases the Windows 10 build number and typically results in a new servicing lifecycle and end of service date. We recommend organizations regularly deploy new feature updates as part of adopting Windows as a service.

Inherits from [softwareUpdateCatalogEntry](../resources/windowsupdates-softwareupdatecatalogentry.md).

The following is a JSON representation of the resource.

``` json { "@odata.type": "#microsoft.graph.windowsUpdates.featureUpdateCatalogEntry",

- "id": "String (identifier)",

+ "deployableUntilDateTime": "String (timestamp)",

"displayName": "String",

+ "id": "String (identifier)",

"releaseDateTime": "String (timestamp)",

- "deployableUntilDateTime": "String (timestamp)",

"version": "String" } ```

v1.0

Windowsupdates Qualityupdatecatalogentry

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/windowsupdates-qualityupdatecatalogentry.md

Title: "qualityUpdateCatalogEntry resource type"

-description: "Metadata for a Windows 10 quality update that you can be approve for deployment."

+description: "Represents metadata for a Windows 10 quality update that you can approve for deployment."

ms.localizationpriority: medium ms.prod: "w10"

Namespace: microsoft.graph.windowsUpdates

[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]

-Metadata for a Windows 10 quality update that you can be approve for deployment.

+Represents metadata for a Windows 10 quality update that you can approve for deployment.

-Windows 10 quality updates are released one or more times per month. These updates contain both security and quality fixes and are typically released on the second Tuesday of every month, though they may be released at any time. These updates are cumulative, so later versions always contain all previous fixes. Microsoft strongly recommends keeping devices current by installing the most recent quality updates as soon as they are available.

+Windows 10 quality updates are released one or more times per month. These updates contain both security and quality fixes and are typically released on the second Tuesday of every month, though they might be released at any time. These updates are cumulative, so later versions always contain all previous fixes. We strongly recommend keeping devices current by installing the most recent quality updates as soon as they are available.

Inherits from [softwareUpdateCatalogEntry](../resources/windowsupdates-softwareupdatecatalogentry.md).

The following is a JSON representation of the resource.

``` json { "@odata.type": "#microsoft.graph.windowsUpdates.qualityUpdateCatalogEntry",

- "id": "String (identifier)",

- "displayName": "String",

- "releaseDateTime": "String (timestamp)",

"deployableUntilDateTime": "String (timestamp)",

+ "displayName": "String",

+ "id": "String (identifier)",

"isExpeditable": "Boolean",

- "qualityUpdateClassification": "String"

+ "qualityUpdateClassification": "String",

+ "releaseDateTime": "String (timestamp)"

} ```

v1.0

X509certificateauthenticationmethodconfiguration

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/resources/x509certificateauthenticationmethodconfiguration.md

Inherits from [authenticationMethodConfiguration](../resources/authenticationmet

## Properties |Property|Type|Description| |:|:|:|

-|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.|

+|authenticationModeConfiguration|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. |

+|certificateUserBindings|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The **priority** of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. |

|id|String|The identifier for the authentication method policy. The value is always `X509Certificate`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).|

+|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.|

|state|authenticationMethodState|The possible values are: `enabled`, `disabled`. Inherited from [authenticationMethodConfiguration](../resources/authenticationmethodconfiguration.md).|

-|certificateUserBindings|[x509CertificateUserBinding](../resources/x509certificateuserbinding.md) collection|Defines fields in the X.509 certificate that map to attributes of the Azure AD user object in order to bind the certificate to the user. The **priority** of the object determines the order in which the binding is carried out. The first binding that matches will be used and the rest ignored. |

-|authenticationModeConfiguration|[x509CertificateAuthenticationModeConfiguration](../resources/x509certificateauthenticationmodeconfiguration.md)|Defines strong authentication configurations. This configuration includes the default authentication mode and the different rules for strong authentication bindings. |

## Relationships

v1.0

Appmanagementpolicy Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-delete.md

+

+ Title: "Delete appManagementPolicy"

+description: "Delete an application management policy."

+ms.localizationpriority: medium

+++

+# Delete appManagementPolicy

+

+Namespace: microsoft.graph

++

+Delete an [appManagementPolicy](../resources/appManagementPolicy.md) object.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+DELETE /policies/appManagementPolicies/{id}

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Request

+

+The following is an example of the request.

++

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "delete_appManagementPolicy"

+}-->

+

+```http

+DELETE https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}

+```

++

+### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": false

+} -->

+

+```http

+HTTP/1.1 204 No Content

+

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "delete appManagementPolicy",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy List Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-list-appliesTo.md

+

+ Title: "List appliesTo"

+description: "List application or service principal resources assigned to an application management policy."

+ms.localizationpriority: medium

+++

+# List appliesTo

+

+Namespace: microsoft.graph

+

+List application and service principal objects that are assigned an [appManagementPolicy](../resources/appManagementPolicy.md) policy object.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

+| Delegated (work or school account) | Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+GET /policies/appManagementPolicies/{id}/appliesTo

+```

+

+## Optional query parameters

+

+This method supports the `$select`, `$filter`, and `$top` OData query parameters to help customize the response. You can apply `$filter` on properties of [application](../resources/application.md) or [servicePrincipal](../resources/serviceprincipal.md) objects that support `$filter`. For example, the following query retrieves the **appId** and **displayName** of applications or service principals that are assigned the policy.

+

+``` http

+https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo?$select=appId,displayName

+```

+

+For general information, see [OData query parameters](/graph/query-parameters).

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a collection of [appManagementPolicy](../resources/appManagementPolicy.md) objects in the response body.

+

+## Examples

+

+### Example 1: Get applications and service principal objects applied to an app management policy

+

+#### Request

+

+The following is an example of the request.

+++

+<!-- {

+ "blockType": "request",

+ "name": "list_appManagementPolicyAppliesTo"

+}-->

+

+```http

+GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo

+```

++

+#### Response

+

+The following is an example of the response.

+>**Note:** The response object shown here might be shortened for readability.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.appManagementPolicy"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.application",

+ "id": "0d77e011-2fc6-438f-8b93-decb4f926929",

+ "appId": "8f527de6-05c9-4032-bca9-b2b56ab2358a",

+ "displayName": "TestApp1",

+ "createdDateTime": "2018-01-24T05:55:37Z"

+ }

+ ]

+}

+```

+

+### Example 2: Get specific properties of applications and service principal objects applied to an app management policy using $select query option

+

+#### Request

+

+The following is an example of the request using $select query option.

+

+<!-- {

+ "blockType": "request",

+ "name": "list_appManagementPolicyAppliesTo_select"

+}-->

+

+```http

+GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}/appliesTo?$select=id,appId,displayName,createdDateTime

+```

+

+#### Response

+

+The following is an example of the response that returns `id`, `appId`, `displayName` and `createdDateTime` of applications and service principals where the policy is applied.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.appManagementPolicy"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects(id,appId,displayName,createdDateTime)",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.application",

+ "id": "0d77e011-2fc6-438f-8b93-decb4f926929",

+ "appId": "8f527de6-05c9-4032-bca9-b2b56ab2358a",

+ "displayName": "TestApp1",

+ "createdDateTime": "2018-01-24T05:55:37Z"

+ },

+ {

+ "@odata.type": "#microsoft.graph.servicePrincipal",

+ "id": "0e1fa067-dcc1-4d85-9b4c-e69145dd3efb",

+ "appId": "255912cb-e31d-4dee-bee4-3fa5d774d6b9",

+ "displayName": "TestApp2",

+ "createdDateTime": "2018-01-24T05:55:37Z"

+ }

+ ]

+}

+```

++

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "list resources for appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appManagementPolicy-update.md

+

+ Title: "Update appManagementPolicy"

+description: "Update an application management policy."

+ms.localizationpriority: medium

+++

+# Update appManagementPolicy

+

+Namespace: microsoft.graph

+

+Update an [appManagementPolicy](../resources/appManagementPolicy.md) object.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+PATCH /policies/appManagementPolicies/{id}

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+## Request body

++

+| Property | Type | Description |

+| :-- | :-- | : |

+| displayName | String | The display name of the policy. Inherited from [policyBase](../resources/policybase.md). |

+| description | String | The description of the policy. Inherited from [policyBase](../resources/policybase.md). |

+| isEnabled | Boolean | Denotes whether the policy is enabled. |

+| restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. |

+

+## Response

+

+If successful, this method returns a `204 No Content` response code.

+

+## Examples

+

+### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "update_appManagementPolicy"

+}-->

+

+```http

+PATCH https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}

+

+{

+ "isEnabled": false

+}

+

+```

+

+### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "update appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Application Delete Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-delete-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```http

-DELETE https://graph.microsoft.com/v1.0/applications/{id}/tokenLifetimePolicies/{id}/$ref

+DELETE https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/$ref

``` # [C#](#tab/csharp)

v1.0

Application List Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-list-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```msgraph-interactive

-GET https://graph.microsoft.com/v1.0/applications/acc848e9-e8ec-4feb-a521-8d58b5482e09/tokenLifetimePolicies

+GET https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies

``` # [C#](#tab/csharp)

HTTP/1.1 200 OK

Content-type: application/json {

- "value": [

- {

- "definition": [

- "definition-value"

- ],

- "displayName": "displayName-value",

- "isOrganizationDefault": true,

- "id": "id-value"

- }

- ]

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#Collection(microsoft.graph.tokenLifetimePolicy)",

+ "value": [

+ {

+ "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",

+ "deletedDateTime": null,

+ "definition": [

+ "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}"

+ ],

+ "displayName": "Contoso token lifetime policy",

+ "isOrganizationDefault": true

+ }

+ ]

} ```

v1.0

Application Post Tokenlifetimepolicies

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/application-post-tokenlifetimepolicies.md

The following is an example of the request.

}--> ```http

-POST https://graph.microsoft.com/v1.0/applications/{id}/tokenLifetimePolicies/$ref

+POST https://graph.microsoft.com/v1.0/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/$ref

Content-Type: application/json {

- "@odata.id":"https://graph.microsoft.com/v1.0/policies/tokenLifetimePolicies/cd3d9b57-0aee-4f25-8ee3-ac74ef5986a9"

+ "@odata.id":"https://graph.microsoft.com/v1.0/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4"

} ```

v1.0

Appmanagementpolicy Delete Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-delete-appliesto.md

+

+ Title: "Remove appliesTo"

+description: "Remove an appManagementPolicy from an application or service principal object."

+ms.localizationpriority: medium

+++

+# Remove appliesTo

+

+Namespace: microsoft.graph

+

+Remove an [appManagementPolicy](../resources/appManagementPolicy.md) policy object from an application or service principal object. When you remove the appManagementPolicy, the application or service principal adopts the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

+| Delegated (work or school account) | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+DELETE /applications/{id}/appManagementPolicies/$ref

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+## Request body

+

+In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection.

+

+## Response

+

+If successful, this method returns `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Example 1: Remove an appManagementPolicy from an application object

+

+#### Request

+

+The following is an example of the request to remove an appManagementPolicy from an application.

+

+<!-- {

+ "blockType": "request",

+ "name": "remove_appliesTo"

+}-->

+

+```http

+DELETE https://graph.microsoft.com/v1.0/applications/{id}/appManagementPolicies/$ref

+Content-type: application/json

+

+{

+ "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}"

+}

+```

+

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+### Example 2: Remove an appManagementPolicy from a service principal object

+

+#### Request

+

+The following is an example of the request to remove an appManagementPolicy from a service principal.

+

+<!-- {

+ "blockType": "request",

+ "name": "remove_appliesTo"

+}-->

+

+``` http

+DELETE https://graph.microsoft.com/v1.0/servicePrincipals/{id}/appManagementPolicies/$ref

+

+{

+ "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}"

+}

+```

++

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "list resources for appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-get.md

+

+ Title: "Get appManagementPolicy"

+description: "Get an application management policy."

+ms.localizationpriority: medium

+++

+# Get appManagementPolicy

+

+Namespace: microsoft.graph

+

+Read the properties of an [appManagementPolicy](../resources/appManagementPolicy.md) object.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+GET /policies/appManagementPolicies/{id}

+```

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a single [appManagementPolicy](../resources/appManagementPolicy.md) object in the response body.

+

+## Examples

+

+### Request

+

+The following is an example of the request. From the response, the app management policy defines the following restrictions for application and service principal objects:

+

+- Blocks creating of new passwords after 2019-10-19 at 10:37 AM UTC time.

+- Limits password secrets for apps created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds.

+

+<!-- {

+ "blockType": "request",

+ "name": "get_appManagementPolicy"

+}-->

+

+```http

+GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}

+```

+

+### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.appManagementPolicy"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies",

+ "value": [

+ {

+ "id": "db9d4b58-3488-4da4-9994-49773c454e33",

+ "displayName": "Custom app management policy",

+ "description": "Custom policy that enforces app management restrictions on specific applications and service principals.",

+ "isEnabled": false,

+ "restrictions": {

+ "passwordCredentials": [

+ {

+ "restrictionType": "passwordAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "passwordLifetime",

+ "maxLifetime": "P4DT12H30M5S",

+ "restrictForAppsCreatedAfterDateTime": "2017-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2021-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyLifetime",

+ "maxLifetime": "P4D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ],

+ "keyCredentials": [

+ {

+ "restrictionType": "asymmetricKeyLifetime",

+ "maxLifetime": "P90D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ]

+ }

+ ]

+}

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "get appManagementPolicy",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-list.md

+

+ Title: "List appManagementPolicies"

+description: "Get a list of application management policies."

+ms.localizationpriority: medium

+++

+# List appManagementPolicies

+

+Namespace: microsoft.graph

+

+Retrieve a list of [appManagementPolicy](../resources/appManagementPolicy.md) objects.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration |

+

+## Optional query parameters

+

+This method supports the `$select`, `$filter`, and `$top` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).

+

+## HTTP request

+

+

+

+```http

+GET /policies/appManagementPolicies

+```

+

+## Request headers

+

+| Name | Description |

+| : | : |

+| Authorization | Bearer {token}. Required. |

+

+## Request body

+

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a collection of [appManagementPolicy](../resources/appManagementPolicy.md) object in the response body.

+

+## Examples

+

+### Request

+

+The following is an example of the request.

+

+<!-- {

+ "blockType": "request",

+ "name": "list_appManagementPolicies"

+}-->

+

+```http

+GET https://graph.microsoft.com/v1.0/policies/appManagementPolicies

+```

+++

+### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.appManagementPolicy"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies",

+ "value": [

+ {

+ "id": "db9d4b58-3488-4da4-9994-49773c454e33",

+ "displayName": "Custom app management policy",

+ "description": "Custom policy that enforces app management restrictions on specific applications and service principals.",

+ "isEnabled": false,

+ "restrictions": {

+ "passwordCredentials": [

+ {

+ "restrictionType": "passwordAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "passwordLifetime",

+ "maxLifetime": "P4DT12H30M5S",

+ "restrictForAppsCreatedAfterDateTime": "2017-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2021-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyLifetime",

+ "maxLifetime": "P4D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ],

+ "keyCredentials": [

+ {

+ "restrictionType": "asymmetricKeyLifetime",

+ "maxLifetime": "P90D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ]

+ }

+ ]

+}

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "get appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy Post Appliesto

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-post-appliesto.md

+

+ Title: "Assign appliesTo"

+description: "Assign an appManagementPolicy to an application or service principal object."

+ms.localizationpriority: medium

+++

+# Assign appliesTo

+

+Namespace: microsoft.graph

+

+Assign an [appManagementPolicy](../resources/appManagementPolicy.md) policy object to an application or service principal object. The application or service principal adopts this policy over the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting. Only one policy object can be assigned to an application or service principal.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | :-- |

+| Delegated (work or school account) | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Application.Read.All and Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+POST /applications/{id}/appManagementPolicies/$ref

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+## Request body

+

+In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection.

+

+## Response

+

+If successful, this method returns `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Example 1: Assign an appManagementPolicy to an application object

+

+#### Request

+

+The following is an example of the request to assign an appManagementPolicy to an application.

++

+<!-- {

+ "blockType": "request",

+ "name": "assign_appliesTo"

+}-->

+

+```http

+POST https://graph.microsoft.com/v1.0/applications/{id}/appManagementPolicies/$ref

+Content-type: application/json

+

+{

+ "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}"

+}

+```

+

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+### Example 2: Assign an appManagementPolicy to a service principal object

+

+#### Request

+

+The following is an example of the request to assign an appManagementPolicy to a service principal.

+

+<!-- {

+ "blockType": "request",

+ "name": "assign_appliesTo"

+}-->

+

+``` http

+POST https://graph.microsoft.com/v1.0/servicePrincipals/{id}/appManagementPolicies/$ref

+

+{

+ "@odata.id":"https://graph.microsoft.com/v1.0/policies/appManagementPolicies/{id}"

+}

+```

+

+#### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true

+} -->

+

+```http

+HTTP/1.1 204 No Content

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "list resources for appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Appmanagementpolicy Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/appmanagementpolicy-post.md

+

+ Title: "Create appManagementPolicy"

+description: "Create an application management policy."

+ms.localizationpriority: medium

+++

+# Create appManagementPolicy

+

+Namespace: microsoft.graph

+

+Create an [appManagementPolicy](../resources/appManagementPolicy.md) object.

+

+## Permissions

+

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+| Permission type | Permissions (from least to most privileged) |

+| :- | : |

+| Delegated (work or school account) | Policy.ReadWrite.ApplicationConfiguration |

+| Delegated (personal Microsoft account) | Not supported. |

+| Application | Policy.ReadWrite.ApplicationConfiguration |

+

+## HTTP request

+

+

+

+```http

+POST /policies/appManagementPolicies

+```

+

+## Request headers

+

+| Name | Description |

+| : | :-- |

+| Authorization | Bearer {token}. Required. |

+| Content-Type | application/json. Required. |

+

+> [!IMPORTANT]

+> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019.

+

+## Request body

+

+In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object.

+

+You can specify the following properties when creating an **appManagementPolicy**.

+

+| Property | Type | Description |

+| :-- | :- | : |

+| displayName | String | The display name of the policy. Required. |

+| description | String | The description of the policy. Required. |

+| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. |

+| restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. Optional. |

+

+## Response

+

+If successful, this method returns a `201 Created` response code with the new [appManagementPolicy ](../resources/appmanagementpolicy.md) object in the response payload.

+

+## Examples

+

+### Request

+

+The following is an example of the request. This request created an app management policy with the following settings:

+

+- Enables the policy.

+- Blocks creating of new passwords for applications and service principals created on or after 2019-10-19 at 10:37 AM UTC time.

+- Enforces lifetime on password secrets and key credentials for applications created on or after 2014-10-19 at 10:37 AM UTC time.

+- Limits password secrets for apps and service principals created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds.

+

+<!-- {

+ "blockType": "request",

+ "name": "create_appManagementPolicy"

+}-->

+

+```http

+POST https://graph.microsoft.com/v1.0/policies/appManagementPolicies

+

+{

+ "displayName": "Credential management policy",

+ "description": "Cred policy sample",

+ "isEnabled": true,

+ "restrictions": {

+ "passwordCredentials": [

+ {

+ "restrictionType": "passwordAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "passwordLifetime",

+ "maxLifetime": "P4DT12H30M5S",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "symmetricKeyLifetime",

+ "maxLifetime": "P4D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ],

+ "keyCredentials": [

+ {

+ "restrictionType": "asymmetricKeyLifetime",

+ "maxLifetime": "P90D",

+ "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z"

+ }

+ ]

+ }

+}

+

+```

+++

+### Response

+

+The following is an example of the response.

+

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.appManagementPolicy"

+} -->

+

+```http

+HTTP/1.1 200 OK

+Content-type: application/json

+

+{

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/appManagementPolicies/$entity",

+ "id": "a4ab1ed9-46bb-4bef-88d4-86fd6398dd5d",

+ "displayName": "credential management policy",

+ "description": "Lorem ipsum",

+ "isEnabled": true,

+ "restrictions": {

+ "passwordCredentials": [

+ {

+ "restrictionType": "passwordAddition",

+ "maxLifetime": null,

+ "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z"

+ },

+ {

+ "restrictionType": "passwordLifetime",

+ "maxLifetime": "P4DT12H30M5S",

+ "restrictForAppsCreatedAfterDateTime": "2018-10-19T10:37:00Z"

+ }

+ ]

+ }

+}

+```

+

+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98

+2019-02-04 14:57:30 UTC -->

+<!-- {

+ "type": "#page.annotation",

+ "description": "create appManagementPolicies",

+ "keywords": "",

+ "section": "documentation",

+ "tocPath": ""

+}-->

v1.0

Authentication List Emailmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-emailmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication List Methods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-methods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Authentication List Softwareoathmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-softwareoathmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global Reader

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Authentication List Temporaryaccesspassmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-list-temporaryaccesspassmethods.md

One of the following permissions is required to call this API. To learn more, in

| Application | UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All |

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Emailmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-emailmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Phonemethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-phonemethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authentication Post Temporaryaccesspassmethods

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authentication-post-temporaryaccesspassmethods.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Authenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Authenticationmethod Resetpassword

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethod-resetpassword.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Administrator

-* Privileged Authentication Administrator

-* Authentication Administrator

## HTTP request

Content-type: application/json

} ```

+# [C#](#tab/csharp)

+ # [JavaScript](#tab/javascript) [!INCLUDE [sample-code](../includes/snippets/javascript/passwordauthenticationmethod-resetpassword-adminprovided-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

Content-type: application/json

[!INCLUDE [sample-code](../includes/snippets/jav)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

+ #### Response

The following is an example of the request.

POST https://graph.microsoft.com/v1.0/users/6ea91a8d-e32e-41a1-b7bd-d2d185eed0e0/authentication/methods/28c10230-6103-485e-b985-444c60001490/resetPassword ```

+# [C#](#tab/csharp)

+ # [JavaScript](#tab/javascript) [!INCLUDE [sample-code](../includes/snippets/javascript/passwordauthenticationmethod-resetpassword-systemgenerated-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

POST https://graph.microsoft.com/v1.0/users/6ea91a8d-e32e-41a1-b7bd-d2d185eed0e0

[!INCLUDE [sample-code](../includes/snippets/jav)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

+ #### Response

v1.0

Authenticationmethodspolicy Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethodspolicy-get.md

Title: "Get authenticationMethodsPolicy" description: "Read the properties and relationships of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

Content-Type: application/json

"targetType": "group", "id": "all_users", "isRegistrationRequired": false,

- "authenticationMode": "any"

+ "authenticationMode": "any",

+ "outlookMobileAllowedState": "default",

+ "displayAppInformationRequiredState": "default",

+ "numberMatchingRequiredState": "default"

+ }

+ ]

+ },

+ {

+ "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration",

+ "id": "Sms",

+ "state": "enabled",

+ "includeTargets": [

+ {

+ "targetType": "group",

+ "id": "all_users",

+ "isRegistrationRequired": false,

+ "isUsableForSignIn": true

+ }

+ ]

+ },

+ {

+ "@odata.type": "#microsoft.graph.temporaryAccessPassAuthenticationMethodConfiguration",

+ "id": "TemporaryAccessPass",

+ "state": "disabled",

+ "defaultLifetimeInMinutes": 60,

+ "defaultLength": 8,

+ "minimumLifetimeInMinutes": 60,

+ "maximumLifetimeInMinutes": 480,

+ "isUsableOnce": false,

+ "includeTargets": [

+ {

+ "targetType": "group",

+ "id": "all_users",

+ "isRegistrationRequired": false

} ] },

v1.0

Authenticationmethodspolicy Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/authenticationmethodspolicy-update.md

Title: "Update authenticationMethodsPolicy" description: "Update the properties of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

PATCH /policies/authenticationMethodsPolicy

|Content-Type|application/json. Required.| ## Request body

-In the request body, supply a JSON representation of the [authenticationMethodConfigurations](../resources/authenticationmethodconfiguration.md) object to prompt users to set up targeted authentication methods.

+

+|Property|Type|Description|

+|:|:|:|

+|registrationEnforcement|[registrationEnforcement](../resources/registrationenforcement.md)|Enforce registration at sign-in time. This property can be used to prompt users to set up targeted authentication methods.|

## Response

-If successful, this method returns a `204 No Content` response code.

+If successful, this method returns a `200 OK` response code and an [authenticationMethodsPolicy](../resources/authenticationmethodspolicy.md) object in the response body.

## Examples

PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy

Content-Type: application/json {

- "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#authenticationMethodsPolicy",

- "registrationEnforcement": {

+ "registrationEnforcement": {

"authenticationMethodsRegistrationCampaign": { "snoozeDurationInDays": 1, "state": "enabled",

Content-Type: application/json

"targetedAuthenticationMethod": "microsoftAuthenticator" } ]

- }

- },

- "authenticationMethodConfigurations": [

- {

- "@odata.type": "#microsoft.graph.fido2AuthenticationMethodConfiguration",

- "id": "Fido2",

- "state": "disabled",

- "isSelfServiceRegistrationAllowed": false,

- "isAttestationEnforced": false,

- "keyRestrictions": {

- "isEnforced": false,

- "enforcementType": "block",

- "aaGuids": []

- }

- ]

+ }

} ```

Content-Type: application/json

### Response <!-- { "blockType": "response",

- "truncated": true

+ "truncated": true,

+ "@odata.type": "microsoft.graph.authenticationMethodsPolicy"

} --> ``` http

-HTTP/1.1 204 No Content

+HTTP/1.1 200 OK

+Content-Type: application/json

+{

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#authenticationMethodsPolicy",

+ "id": "authenticationMethodsPolicy",

+ "displayName": "Authentication Methods Policy",

+ "description": "The tenant-wide policy that controls which authentication methods are allowed in the tenant, authentication method registration requirements, and self-service password reset settings",

+ "lastModifiedDateTime": "2021-05-25T01:08:08.6712279Z",

+ "policyVersion": "1.4",

+ "registrationEnforcement": {

+ "authenticationMethodsRegistrationCampaign": {

+ "snoozeDurationInDays": 1,

+ "state": "enabled",

+ "excludeTargets": [],

+ "includeTargets": [

+ {

+ "id": "3ee3a9de-0a86-4e12-a287-9769accf1ba2",

+ "targetType": "group",

+ "targetedAuthenticationMethod": "microsoftAuthenticator"

+ }

+ ]

+ }

+}

```

v1.0

Calendar List Events

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/calendar-list-events.md

Title: "List events"

-description: "Retrieve a list of events in a calendar. The list contains single instance meetings and series masters."

+description: "Retrieve a list of events in a calendar. The list contains single instance meetings and series masters."

ms.localizationpriority: high ms.prod: "outlook"

doc_type: apiPageType

Namespace: microsoft.graph

-Retrieve a list of events in a calendar. The calendar can be one for a [user](../resources/user.md), or the default calendar of a Microsoft 365 [group](../resources/group.md). The list of events contains single instance meetings and series masters.

+Retrieve a list of events in a calendar. The calendar can be one for a [user](../resources/user.md), or the default calendar of a Microsoft 365 [group](../resources/group.md). The list of events contains single instance meetings and series masters.

To get expanded event instances, you can [get the calendar view](calendar-list-calendarview.md), or [get the instances of an event](event-list-instances.md).

+> [!NOTE]

+> If your target mailbox calendar contains any private items, the caller must either:

+> * Be granted `FullAccess` mailbox permissions over the target mailbox (via the [Add-MailboxPermission](/powershell/module/exchange/add-mailboxpermission) cmdlet).

+> * Be granted the `Delegate` + `CanViewPrivateItems` flags (similar to the previous option, but through the [Add-MailboxFolderPermission](/powershell/module/exchange/add-mailboxfolderpermission) cmdlet). This option routes all meeting requests to the delegate mailbox. For a workaround, see [SharingPermissionFlags](/powershell/module/exchange/add-mailboxfolderpermission?view=exchange-ps#-sharingpermissionflags).

+>

+> Failure to meet these conditions will result in a `The specified object was not found in the store` response.

+ ## Permissions Depending on the type of calendar that the events are in and the permission type (delegated or application) requested, one of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

v1.0

Callrecords Callrecord Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/callrecords-callrecord-get.md

There are two ways to get the **id** of a **callRecord**:

* Subscribe to [change notifications](/graph/api/resources/webhooks?view=graph-rest-1.0&preserve-view=true) to the `/communications/callRecords` endpoint. * Use the **callChainId** property of a [call](../resources/call.md). The call record is available only after the associated call is completed.

+> [!WARNING]

+>

+> A call record is created after a call or meeting ends and will remain available for **30 days**. Requests for call records older than 30 days will receive a `404 Not Found` response.

+ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

Do not supply a request body for this method.

## Response

-If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body.

+If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. A request for a call record older than 30 days will receive a `404 Not Found` response.

## Examples

GET https://graph.microsoft.com/v1.0/communications/callRecords/{id}?$expand=ses

#### Response

-The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions.

+The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. The default page size for sessions is 60 entries.

> **Note:** The response object shown here might be shortened for readability.

v1.0

Channel List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/channel-list.md

GET /teams/{team-id}/channels

This method supports the $filter and $select [OData query parameters](/graph/query-parameters) to help customize the response.

+### Use $select for better performance

+Populating the **email** property for a channel is an expensive operation that results in slow performance. Use `$select` to exclude the **email** property to improve performance.

+ ## Request headers | Header | Value |

v1.0

Deletedteam Getallmessages

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/deletedteam-getallmessages.md

If successful, this function returns a `200 OK` response code and a [chatMessage

### Request The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "deletedteamthis.getallmessages"

The following is an example of a request.

GET https://graph.microsoft.com/v1.0/teamwork/deletedTeams/fbe2bf47-16c8-47cf-b4a5-4b9b187c508b/channels/getAllMessages ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response

v1.0

Directory Deleteditems List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/directory-deleteditems-list.md

The OData cast type is a required part of the URI and calling `GET /directory/de

## Optional query parameters

-This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For example:

+This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. This API returns 100 objects by default and supports returning up to 999 objects per page using `$top`.

+

+Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For example:

```http GET https://graph.microsoft.com/beta/directory/deletedItems/microsoft.graph.group?&$count=true&$orderBy=deletedDateTime desc&$select=id,displayName,deletedDateTime

v1.0

Directoryobject Delta

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/directoryobject-delta.md

GET https://graph.microsoft.com/v1.0/directoryObjects/delta?filter=isof('microso

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=isof('{resource type}')`. Note the presence of the _members@delta_ property which includes the ids of member objects in the group.

GET https://graph.microsoft.com/v1.0/directoryObjects/delta?$filter=id eq '87d34

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=id eq '{id}'`.

Prefer: return=minimal

- #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization. Note that the `microsoft.graph.user/surname` property is not included, which means it has not changed since the last delta query; `microsoft.graph.group/displayName` is included which means its value has changed.

v1.0

Driveitem Createlink

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/driveitem-createlink.md

The request should be a JSON object with the following properties.

| **expirationDateTime** | string | A String with format of yyyy-MM-ddTHH:mm:ssZ of DateTime indicates the expiration time of the permission. | | **retainInheritedPermissions** | Boolean | Optional. If `true` (default), any existing inherited permissions are retained on the shared item when sharing this item for the first time. If `false`, all existing permissions are removed when sharing for the first time. | | **scope** | string | Optional. The scope of link to create. Either `anonymous`, `organization`, or `users`. |

-| **retainInheritedPermissions** | Boolean | If `true`, any current inherited permissions are retained on the shared item when sharing this item for the first time. If `false`, all current permissions are removed when sharing for the first time. The default value is `true`. Optional. |

### Link types

v1.0

Emailauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Emailauthenticationmethod Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethod-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Emailauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/emailauthenticationmethodconfiguration-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Externalconnectors Externalconnection Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/externalconnectors-externalconnection-get.md

GET https://graph.microsoft.com/v1.0/external/connections/contosohr

[!INCLUDE [sample-code](../includes/snippets/go/get-externalconnection-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

-# [PowerShell](#tab/powershell)

- # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/get-externalconnection-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Fido2authenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Fido2authenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Fido2authenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-delete.md

Title: "Delete fido2AuthenticationMethodConfiguration" description: "Delete a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType"

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Fido2authenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-get.md

Title: "Get fido2AuthenticationMethodConfiguration" description: "Read the properties and relationships of a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType"

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

Content-type: application/json

"id": "all_users", "isRegistrationRequired": false }

- ]

+ ],

+ "excludeTargets": []

} ```

v1.0

Fido2authenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/fido2authenticationmethodconfiguration-update.md

Title: "Update fido2AuthenticationMethodConfiguration" description: "Update the properties of a fido2AuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: "apiPageType"

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Group Post Groups

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/group-post-groups.md

The following table shows the properties that are required when you create the [

-| mailNickname | String | The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : . <> , SPACE`. Required. |

+| mailNickname | String | The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : <> , SPACE`. Required. |

| securityEnabled | Boolean | Set to `true` for security-enabled groups, including Microsoft 365 groups. Required. **Note:** Groups created using the Microsoft Azure portal always have **securityEnabled** initially set to `true`. | > [!IMPORTANT]

v1.0

Longrunningoperation Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/longrunningoperation-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Administrator

-* Global Reader

-* Privileged Authentication Administrator

-* Authentication Administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethod List

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethod-list.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-delete.md

Title: "Delete microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Deletes a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-get.md

Title: "Get microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Read the properties and relationships of a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Global Reader

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

Content-Type: application/json

"authenticationMode": "any" } ],

+ "excludeTargets": [],

"featureSettings": { "displayAppContextRequiredState" : { "state": "enabled",

v1.0

Microsoftauthenticatorauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/microsoftauthenticatorauthenticationmethodconfiguration-update.md

Title: "Update microsoftAuthenticatorAuthenticationMethodConfiguration" description: "Update the properties of a microsoftAuthenticatorAuthenticationMethodConfiguration object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-

-* Authentication Policy Administrator

-* Global Administrator

## HTTP request

Content-Type: application/json

### Response

-**Note:** The response object shown here might be shortened for readability.

+The following is an example of the response.

<!-- { "blockType": "response",

- "truncated": true,

- "@odata.type": "microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration"

+ "truncated": true

} --> ``` http

-HTTP/1.1 200 OK

-Content-Type: application/json

-

-{

- "@odata.type": "#microsoft.graph.microsoftAuthenticatorAuthenticationMethodConfiguration",

- "id": "129ae788-e788-129a-88e7-9a1288e79a12",

- "state": "String"

-}

+HTTP/1.1 204 No Content

```

v1.0

Organizationalbranding Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbranding-get.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Organizationalbranding List Localizations

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbranding-list-localizations.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Organizationalbrandinglocalization Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/organizationalbrandinglocalization-get.md

One of the following permissions is required to call this API. To learn more, in

| Permission type | Permissions (from least to most privileged) | |:|:--|

-| Delegated (work or school account) | User.Read, Organization.Read.All, User.ReadBasic.All, User.Read.All |

+| Delegated (work or school account) | User.Read, Organization.Read.All, User.Read.All |

v1.0

Phoneauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Disablesmssignin

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-disablesmssignin.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Enablesmssignin

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-enablesmssignin.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Phoneauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Global reader

-* Privileged authentication administrator

-* Authentication administrator (only sees masked phone numbers)

+

+> [!NOTE]

+> The authentication administrator only sees masked phone numbers.

## HTTP request

v1.0

Phoneauthenticationmethod Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/phoneauthenticationmethod-update.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global administrator

-* Privileged authentication administrator

-* Authentication administrator

## HTTP request

v1.0

Plannerbucket Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/plannerbucket-get.md

Title: "Get plannerBucket"

-description: "Retrieve the properties and relationships of **plannerBucket** object."

+description: "Retrieve the properties and relationships of a plannerBucket object."

ms.localizationpriority: medium ms.prod: "planner"

doc_type: apiPageType

Namespace: microsoft.graph

-Retrieve the properties and relationships of **plannerBucket** object.

+Retrieve the properties and relationships of a [plannerBucket](../resources/plannerbucket.md) object.

+ ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

Do not supply a request body for this method.

## Response

-If successful, this method returns a `200 OK` response code and [plannerBucket](../resources/plannerbucket.md) object in the response body.

+If successful, this method returns a `200 OK` response code and a [plannerBucket](../resources/plannerbucket.md) object in the response body.

This method can return any of the [HTTP status codes](/graph/errors). The most common errors that apps should handle for this method are the 403 and 404 responses. For more information about these errors, see [Common Planner error conditions](../resources/planner-overview.md#common-planner-error-conditions). ## Example

-##### Request

-Here is an example of the request.

+### Request

+The following is an example of the request.

# [HTTP](#tab/http) <!-- { "blockType": "request",

- "name": "get_plannerbucket"

+ "name": "get_plannerbucket",

+ "sampleKeys": ["hsOf2dhOJkqyYYZEtdzDe2QAIUCR"]

}--> ```msgraph-interactive

-GET https://graph.microsoft.com/v1.0/planner/buckets/{bucket-id}

+GET https://graph.microsoft.com/v1.0/planner/buckets/hsOf2dhOJkqyYYZEtdzDe2QAIUCR

``` # [C#](#tab/csharp)

GET https://graph.microsoft.com/v1.0/planner/buckets/{bucket-id}

-##### Response

-Here is an example of the response. Note: The response object shown here might be shortened for readability.

+### Response

+The following is an example of the response.

+>**Note:** The response object shown here might be shortened for readability.

<!-- { "blockType": "response", "truncated": true,

Content-type: application/json

"suppressions": [ ] }-->-

v1.0

Profilephoto Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/profilephoto-update.md

One of the following permissions is required to call this API. To learn more, in

-|Application | Group.ReadWrite.All |

+|Application | Not supported. |

### To update the profile photo of a team

v1.0

Smsauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-delete.md

+

+ Title: "Delete smsAuthenticationMethodConfiguration"

+description: "Delete a smsAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Delete smsAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Remove changes made to the [text message authentication method policy](../resources/smsauthenticationmethodconfiguration.md) by reverting the policy to its default configuration.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+DELETE /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "delete_smsauthenticationmethodconfiguration"

+}

+-->

+``` http

+DELETE https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Smsauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-get.md

+

+ Title: "Get smsAuthenticationMethodConfiguration"

+description: "Read the properties and relationships of a smsAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Get smsAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Read the properties and relationships of a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object, which represents the Text Message authentication method policy for the Azure AD tenant.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "get_smsauthenticationmethodconfiguration"

+}

+-->

+``` http

+GET https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

+++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.smsAuthenticationMethodConfiguration"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration",

+ "id": "Sms",

+ "state": "enabled",

+ "includeTargets": [

+ {

+ "targetType": "group",

+ "id": "all_users",

+ "isRegistrationRequired": false,

+ "isUsableForSignIn": true

+ }

+ ],

+ "excludeTargets": []

+ }

+}

+```

+

v1.0

Smsauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/smsauthenticationmethodconfiguration-update.md

+

+ Title: "Update smsAuthenticationMethodConfiguration"

+description: "Update the properties of a smsAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Update smsAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Update the properties of a [smsAuthenticationMethodConfiguration](../resources/smsauthenticationmethodconfiguration.md) object, which represents the text message authentication method policy for the Azure AD tenant.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

+

+|Property|Type|Description|

+|:|:|:|

+|excludeTargets|[excludeTarget](../resources/excludetarget.md) collection|Groups of users that are excluded from the policy.|

+|state|authenticationMethodState|Possible values are: `enabled`, `disabled`.|

+

+>**Note:** The `@odata.type` property with a value of `#microsoft.graph.smsAuthenticationMethodConfiguration` must be included in the body.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "update_smsauthenticationmethodconfiguration"

+}

+-->

+``` http

+PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/sms

+Content-Type: application/json

+

+{

+ "@odata.type": "#microsoft.graph.smsAuthenticationMethodConfiguration",

+ "id": "Sms",

+ "state": "enabled"

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Softwareoathauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethod-delete.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Softwareoathauthenticationmethod Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethod-get.md

One of the following permissions is required to call this API. To learn more, in

-For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles):

-* Global Reader

-* Authentication administrator

-* Privileged authentication administrator

-* Global administrator

## HTTP request

v1.0

Softwareoathauthenticationmethodconfiguration Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-delete.md

+

+ Title: "Delete softwareOathAuthenticationMethodConfiguration"

+description: "Delete a softwareOathAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Delete softwareOathAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Revert the [third-party software Oath authentication method policy](../resources/softwareoathauthenticationmethodconfiguration.md) to its default configuration.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+DELETE /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "delete_softwareoathauthenticationmethodconfiguration"

+}

+-->

+``` http

+DELETE https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Softwareoathauthenticationmethodconfiguration Get

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-get.md

+

+ Title: "Get softwareOathAuthenticationMethodConfiguration"

+description: "Read the properties and relationships of a softwareOathAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Get softwareOathAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Read the properties and relationships of a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object, which represents the third-party software OATH authentication method policy for the Azure AD tenant.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+

+## Request body

+Do not supply a request body for this method.

+

+## Response

+

+If successful, this method returns a `200 OK` response code and a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "get_softwareoathauthenticationmethodconfiguration"

+}

+-->

+``` http

+GET https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.softwareOathAuthenticationMethodConfiguration"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.softwareOathAuthenticationMethodConfiguration",

+ "id": "SoftwareOath",

+ "state": "enabled",

+ "includeTargets": [

+ {

+ "targetType": "group",

+ "id": "all_users",

+ "isRegistrationRequired": false

+ }

+ ],

+ "excludeTargets": []

+ }

+}

+```

+

v1.0

Softwareoathauthenticationmethodconfiguration Update

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/softwareoathauthenticationmethodconfiguration-update.md

+

+ Title: "Update softwareOathAuthenticationMethodConfiguration"

+description: "Update the properties of a softwareOathAuthenticationMethodConfiguration object."

+

+ms.localizationpriority: medium

++

+# Update softwareOathAuthenticationMethodConfiguration

+Namespace: microsoft.graph

+

+Update the properties of a [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object, which represents the third-party software OATH authentication method policy for the Azure AD tenant.

+

+## Permissions

+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).

+

+|Permission type|Permissions (from least to most privileged)|

+|:|:|

+|Delegated (work or school account)|Policy.ReadWrite.AuthenticationMethod|

+|Delegated (personal Microsoft account)|Not supported.|

+|Application|Policy.ReadWrite.AuthenticationMethod|

++

+## HTTP request

+

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+PATCH /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+```

+

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required.|

+|Content-Type|application/json. Required.|

+

+## Request body

+In the request body, supply a JSON representation of the [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md) object with the values of fields that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed.

+

+For the list of properties, see [softwareOathAuthenticationMethodConfiguration](../resources/softwareoathauthenticationmethodconfiguration.md).

+

+>**Note:** The `@odata.type` property with a value of `#microsoft.graph.softwareOathAuthenticationMethodConfiguration` must be included in the body.

+

+## Response

+

+If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.

+

+## Examples

+

+### Request

+The following is an example of a request.

+# [HTTP](#tab/http)

+<!-- {

+ "blockType": "request",

+ "name": "update_softwareoathauthenticationmethodconfiguration"

+}

+-->

+``` http

+PATCH https://graph.microsoft.com/v1.0/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/softwareOath

+Content-Type: application/json

+

+{

+ "@odata.type": "#microsoft.graph.softwareOathAuthenticationMethodConfiguration",

+ "state": "disabled"

+}

+```

+

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PowerShell](#tab/powershell)

+

+# [PHP](#tab/php)

++++

+### Response

+The following is an example of the response

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 204 No Content

+```

+

v1.0

Team Post

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/team-post.md

Content-Type: application/json

[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go)

v1.0

Teamwork List Deletedteams

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/teamwork-list-deletedteams.md

If successful, this method returns a `200 OK` response code and a collection of

### Request The following is an example of a request.

+# [HTTP](#tab/http)

<!-- { "blockType": "request", "name": "list_deletedteam"

The following is an example of a request.

GET https://graph.microsoft.com/v1.0/teamwork/deletedTeams ```

+# [C#](#tab/csharp)

+

+# [JavaScript](#tab/javascript)

+

+# [Java](#tab/java)

+

+# [Go](#tab/go)

+

+# [PHP](#tab/php)

+++ ### Response The following is an example of the response

Content-Type: application/json

} ] }

-```

+```

v1.0

Teamworktag Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/teamworktag-delete.md

DELETE https://graph.microsoft.com/v1.0/teams/53c53217-fe77-4383-bc5a-ed4937a1ae

[!INCLUDE [sample-code](../includes/snippets/go/delete-teamworktag-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

-# [PowerShell](#tab/powershell)

- # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/delete-teamworktag-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]

v1.0

Temporaryaccesspassauthenticationmethod Delete

https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/v1.0/api/temporaryaccesspassauthenticationmethod-delete.md