Docs update tracker

Updates from: 04/07/2023 01:29:46

Service	Microsoft Docs article	Related commit history on GitHub	Change details
v1.0	Accesspackage Getapplicablepolicyrequirements	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md	Content-Type: application/json #### Request -<!-- { "blockType": "ignored" } --> +<!-- { + "blockType": "request", + "sampleKeys": ["b15419bb-5ffc-ea11-b207-c8d9d21f4e9a"], + "name": "get_req_for_given_user" +}--> + ```http -POST /identityGovernance/entitlementManagement/accessPackages(ΓÇÿb15419bb-5ffc-ea11-b207-c8d9d21f4e9aΓÇÖ)/getApplicablePolicyRequirements +POST /identityGovernance/entitlementManagement/accessPackages/b15419bb-5ffc-ea11-b207-c8d9d21f4e9a/getApplicablePolicyRequirements { "subject": { POST /identityGovernance/entitlementManagement/accessPackages(ΓÇÿb15419bb-5ffc-e #### Response +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.accessPackageAssignmentRequestRequirements)" +} +--> + ```http HTTP/1.1 200 OK Content-Type: application/json
v1.0	Accesspackageassignmentpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-get.md	Content-type: application/json } ``` +### Example 3: Retrieve the custom extension stage settings for a policy + +#### Request + +The following is an example of a request to retrieve the collection of custom extension stage settings that are defined for a policy and their associated access package custom workflow extension. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentpolicy_expand_customextensionstagesettings" +}--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197?$expand=customExtensionStageSettings($expand=customExtension) +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response + +The following is an example of the response. + +> Note: The response object shown here might be shortened for readability. + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} --> +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "id": "4540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with custom access package workflow extension", + "description": "Run specified custom access package workflow extension at different stages.", + "canExtend": true, + "durationInDays": 0, + "expirationDateTime": null, + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "accessReviewSettings": null, + "requestorSettings": { + "scopeType": "AllExistingDirectorySubjects", + "acceptRequests": true, + "allowedRequestors": [] + }, + "requestApprovalSettings": { + "isApprovalRequired": false, + "isApprovalRequiredForExtension": false, + "isRequestorJustificationRequired": false, + "approvalMode": "NoApproval", + "approvalStages": [] + }, + "customExtensionStageSettings": [ + { + "id": "5a38d27a-b702-48d9-ac72-dcf158ba1b0d", + "stage": "assignmentRequestCreated", + "customExtension": { + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8", + "displayName": "test_action_1", + "description": "Test logic app", + "createdDateTime": "2022-01-11T05:19:16.97Z", + "lastModifiedDateTime": "2022-01-11T05:19:16.97Z", + "endpointConfiguration": { + "@odata.type": "#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId": "38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName": "resourcegroup", + "logicAppWorkflowName": "customextension_test", + "url": "https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration": { + "@odata.type": "#microsoft.graph.azureAdPopTokenAuthentication" + } + } + } + ] +} +``` + <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 2019-02-04 14:57:30 UTC --> <!-- {
v1.0	Accesspackageassignmentpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentpolicy-update.md	Content-Type: application/json "accessReviewSettings": null } ``` +### Example 3: Remove the customExtensionStageSettings from a policy + +To remove the collection of customExtensionStageSettings and their associated custom workflow extension objects from a policy, assign an empty collection to the customExtensionStageSettings object. + +#### Request ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentpolicy_delete_customExtensionStageSettings" +} +--> + +```http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies/4540a08f-8ab5-43f6-a923-015275799197 +Content-Type: application/json + +{ + "id": "5540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with access package custom workflow extension", + "description": "Run specified access package custom workflow extension at different stages.", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [] + }, + "accessReviewSettings": null, + "customExtensionHandlers": [] +} +``` + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +#### Response +> Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} +--> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "id": "4540a08f-8ab5-43f6-a923-015275799197", + "displayName": "policy with access package custom workflow extension", + "description": "Run specified access package custom workflow extension at different stages.", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [] + }, + "accessReviewSettings": null +} +``` <!-- {
v1.0	Accesspackageassignmentrequest Resume	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequest-resume.md	+ + Title: "accessPackageAssignmentRequest: resume" +description: "Resume accessPackageAssignmentRequest objects." +ms.localizationpriority: medium +++ +# accessPackageAssignmentRequest: resume +Namespace: microsoft.graph ++ +In [Azure AD entitlement management](../resources/entitlementmanagement-overview.md), when an access package policy has been enabled to call out a custom extension and the request processing is waiting for the callback from the customer, the customer can initiate a resume action. It is performed on an [accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) object whose requestStatus is in a `WaitingForCallback` state. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\| Delegated (work or school account) \| EntitlementManagement.ReadWrite.All \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +POST /identityGovernance/entitlementManagement/accessPackageAssignmentRequests/{accessPackageAssignmentRequestId}/resume +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body +In the request body, supply a JSON representation of the parameters. + +The following table shows the parameters that can be used with this action. + +\|Parameter\|Type\|Description\| +\|:\|:\|:\| +\|source\|String\|Source from where customer is trying to resume the request, which can be stored in service and will be helpful for auditing.\| +\|type\|String\|Indicate at which stage the custom callout extension was executed. The possible values are: `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestApproved`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestGranted`, `microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestRemoved`\| +\|data\|[accessPackageAssignmentRequestCallbackData](../resources/accesspackageassignmentrequestcallbackdata.md)\| Contains information about the instance of the callout that was made to the customer endpoint. \| +++ +## Response + +If successful, this action returns a `204 No Content` response code. + +## Examples + +### Example 1: Resume an access package assignment request + +#### Request +The following is an example of a call to resume an access package assignment request that's waiting for a callback. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "accesspackageassignmentrequestthis.resume" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/0e60f18c-b2a0-4887-9da8-da2e30a39d99/resume +Content-Type: application/json + +{ + "source": "Contoso.SodCheckProcess", + "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated", + "data": { + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData", + "stage": "assignmentRequestCreated", + "customExtensionStageInstanceId": "957d0c50-466b-4840-bb5b-c92cea7141ff", + "customExtensionStageInstanceDetail": "This user is all verified" + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` + +### Example 2: Resume and deny an access package assignment request + +#### Request +The following is an example to resume the processing of an access package assignment request by denying the request that's waiting for a callback. A request cannot be denied at the `assignmentRequestCreated` stage of the callout. +<!-- { + "blockType": "request" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentRequests/9e60f18c-b2a0-4887-9da8-da2e30a39d99/resume +Content-Type: application/json + +{ + "source": "Contoso.SodCheckProcess", + "type": "microsoft.graph.accessPackageCustomExtensionStage.assignmentRequestCreated", + "data": { + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestCallbackData", + "stage": "AssignmentRequestCreated", + "customExtensionStageInstanceId": "857d0c50-466b-4840-bb5b-c92cea7141ff", + "state": "denied", + "customExtensionStageInstanceDetail": "Potential risk user based on the SOD check" + } +} +``` ++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-delete.md	+ + Title: "Delete accessPackageAssignmentRequestWorkflowExtension" +description: "Delete an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Delete accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Delete an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies: +1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`. +2. Use the access package catalog ID and retrieve the ID of the accessPackageCustomWorkflowExtension object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation. +3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy). + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "delete_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/E3D4CE35-B16A-4E19-ADF2-616B64D336DC +``` ++ +### Response +The following is an example of the response +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-get.md	+ + Title: "Get accessPackageAssignmentRequestWorkflowExtension" +description: "Read the properties and relationships of an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Get accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Read the properties and relationships of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId} +``` + +## Optional query parameters +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` +
v1.0	Accesspackageassignmentrequestworkflowextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentrequestworkflowextension-update.md	+ + Title: "Update accessPackageAssignmentRequestWorkflowExtension" +description: "Update the properties of an accessPackageAssignmentRequestWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Update accessPackageAssignmentRequestWorkflowExtension +Namespace: microsoft.graph ++ +Update the properties of an [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body ++ +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|description\|String\|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|displayName\|String\|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The timeout duration for callback. Optional.\| +++ +## Response + +If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentrequestworkflowextension" +} +--> +``` http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "displayName": "test_action_0124_email", + "description": "this is for graph testing only" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentRequestWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description": "this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` +
v1.0	Accesspackageassignmentworkflowextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-delete.md	+ + Title: "Delete accessPackageAssignmentWorkflowExtension" +description: "Delete an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Delete accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Delete an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. The custom workflow extension must first be removed from any associated [policies](../resources/accesspackageassignmentpolicy.md) before it can be deleted. Follow these steps to remove the custom workflow extension from any associated policies: +1. First retrieve the accessPackageCatalogId by calling the [Get accessPackageAssignmentPolicies](accesspackageassignmentpolicy-get.md) operation and appending `?$expand=accessPackage($expand=accessPackageCatalog)` to the query. For example, `https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies?$expand=accessPackage($expand=accessPackageCatalog)`. +2. Use the access package catalog ID and retrieve the ID of the accessPackageCustomWorkflowExtension object that you want to delete by running the [List accessPackageCustomWorkflowExtensions](accesspackagecatalog-list-accesspackagecustomworkflowextensions.md) operation. +3. Call the [Update accessPackageAssignmentPolicy](accesspackageassignmentpolicy-update.md) operation to remove the custom workflow extension object from the policy. For an example, see [Example 3: Remove the customExtensionStageSettings from a policy](accesspackageassignmentpolicy-update.md#example-3-remove-the-customextensionstagesettings-from-a-policy). + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\| EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following is an example of a request. +<!-- { + "blockType": "request", + "name": "delete_accesspackageassignmentworkflowextension" +} +--> +``` http +DELETE /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/customAccessPackageWorkflowExtensions/5FD6D8D5-E8F1-4B54-A1E6-1D0FE0B6E6EC +``` ++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true +} +--> +``` http +HTTP/1.1 204 No Content +``` +
v1.0	Accesspackageassignmentworkflowextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-get.md	+ + Title: "Get accessPackageAssignmentWorkflowExtension" +description: "Read the properties and relationships of an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Get accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Read the properties and relationships of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions/{accessPackageCustomWorkflowExtensionId} +``` + +## Optional query parameters +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_accesspackageassignmentworkflowextension" +} +--> +``` http +GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackageassignmentworkflowextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackageassignmentworkflowextension-update.md	+ + Title: "Update accessPackageAssignmentWorkflowExtension" +description: "Update the properties of an accessPackageAssignmentWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Update accessPackageAssignmentWorkflowExtension +Namespace: microsoft.graph ++ +Update the properties of an [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +PUT /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/customAccessPackageWorkflowExtensions/{customAccessPackageWorkflowExtensionId} +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body ++ +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Authentication type. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|description\|String\|Description for the accessPackageCustomWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|displayName\|String\|Display name for the accessPackageCustomWorkflowExtension. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Optional.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The timeout duration for callback. Optional.\| +++ +## Response + +If successful, this method returns a `200 OK` response code and an updated [accessPackageAssignmentWorkflowExtension](../resources/accesspackageassignmentworkflowextension.md) object in the response body. + +## Examples + +### Request +The following is an example of a request. +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "update_accesspackageassignmentworkflowextension" +} +--> +``` http +PUT https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions/78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0 +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "displayName": "test_action_0124_email", + "description": "this is for graph testing only" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +### Response +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentWorkflowExtension" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description": "this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackagecatalog List Accesspackagecustomworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-list-accesspackagecustomworkflowextensions.md	+ + Title: "List accessPackagecustomWorkflowExtensions" +description: "Get a list of the accessPackageCustomWorkflowExtension objects and their properties." + +ms.localizationpriority: medium ++ +# List accessPackageCustomWorkflowExtensions +Namespace: microsoft.graph ++ +Get a list of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) and [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects and their properties. The resulting list includes all the customAccessPackageWorkflowExtension objects for the catalog that the caller has access to read. Each object includes an `@odata.type` property that indicates whether the object is an accessPackageAssignmentRequestWorkflowExtension or an accessPackageAssignmentWorkflowExtension. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions +``` + +## Optional query parameters +This method supports the `$select` and `$filter` OData query parameters to help customize the response. For example, to search for access packages with a particular name, include a filter such as `$filter=contains(tolower(displayName),'team')` in the query. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageAssignmentRequestWorkflowExtension](../resources/accessPackageAssignmentRequestWorkflowExtension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) objects in the response body. + +## Examples + +### Request + +<!-- { + "blockType": "request", + "name": "list_accesspackagecustomworkflowextension" +} +--> +``` http +GET /identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions +``` + +### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "Collection(microsoft.graph.customCalloutExtension)" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackageCustomWorkflowExtensions", + "value":[ + { + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + }, + { + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/9ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } + ] +} +```
v1.0	Accesspackagecatalog Post Accesspackagecustomworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-accesspackagecustomworkflowextensions.md	+ + Title: "Create accessPackageCustomWorkflowExtension" +description: "Create a new accessPackageCustomWorkflowExtension object." + +ms.localizationpriority: medium ++ +# Create accessPackageCustomWorkflowExtension +Namespace: microsoft.graph ++ +Create a new [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object and add it to an existing [accessPackageCatalog](../resources/accesspackagecatalog.md) object. + +You must explicitly provide an `@odata.type` property that indicates whether the object is an accessPackageAssignmentRequestWorkflowExtension or an accessPackageAssignmentWorkflowExtension. + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|EntitlementManagement.ReadWrite.All \| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|EntitlementManagement.Read.All EntitlementManagement.ReadWrite.All \| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{catalogId}/accessPackageCustomWorkflowExtensions +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| +\|Content-Type\|application/json. Required.\| + +## Request body +In the request body, supply a JSON representation of the [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object. + +You can specify the following properties when creating a accessPackageCustomWorkflowExtension. + +\|Property\|Type\|Description\| +\|:\|:\|:\| +\|description\|String\|Description for the customAccessPackageWorkflowExtension object.\| +\|displayName\|String\|Display name for the customAccessPackageWorkflowExtension.\| +\|endpointConfiguration\|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)\|The type and details for configuring the endpoint to call the logic app's workflow.\| +\|authenticationConfiguration\|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)\|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow.\| +\|callbackConfiguration\|[customExtensionCallbackConfiguration](../resources/customextensioncallbackconfiguration.md)\|The callback configuration for a custom extension. This is suppoted for `accessPackageAssignmentRequestWorkflowExtension`. \| + +You must also supply an @odata.type property with a value of the specific access package workflow extension type. For example, `"@odata.type": "#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension"`. + +## Response + +If successful, this method returns a `201 Created` response code and a [accessPackageAssignmentRequestWorkflowExtension](../resources/accesspackageassignmentrequestworkflowextension.md) or [accessPackageAssignmentWorkflowExtension](../resources/accessPackageAssignmentWorkflowExtension.md) object in the response body. + +## Examples + +### Example 1: Create a custom extension for use with an access package assignment request +The following is an example of a access package assignment request custom workflow extension. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accessPackageAssignmentRequestWorkflowExtension" +} +--> + +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.customCalloutExtension" +} +--> +``` http +HTTP/1.1 201 Created +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentRequestWorkflowExtension", + "id":"98ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0124_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/8ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + }, + "callbackConfiguration":{ + "@odata.type":"microsoft.graph.customExtensionCallbackConfiguration", + "durationBeforeTimeout":"PT1H" + } + } +} +``` + +### Example 2: Create a custom extension for use with an access package assignment +The following is an example of a access package assignment custom workflow extension. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accessPackageAssignmentWorkflowExtension" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/32efb28c-9a7a-446c-986b-ca6528c6669d/accessPackagecustomWorkflowExtensions +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.customCalloutExtension" +} +--> +``` http +HTTP/1.1 201 Created +Content-Type: application/json + +{ + "value":{ + "@odata.type":"#microsoft.graph.accessPackageAssignmentWorkflowExtension", + "id":"78ffaec5-ae8e-4902-a434-5ffc5d3d3cd0", + "displayName":"test_action_0127_email", + "description":"this is for graph testing only", + "createdDateTime":"2022-01-24T21:48:57.15Z", + "lastModifiedDateTime":"2022-01-24T21:55:44.953Z", + "clientConfiguration":null, + "endpointConfiguration":{ + "@odata.type":"#microsoft.graph.logicAppTriggerEndpointConfiguration", + "subscriptionId":"38ab2ccc-3747-4567-b36b-9478f5602f0d", + "resourceGroupName":"test", + "logicAppWorkflowName":"elm-extension-email", + "url":"https://prod-31.eastus.logic.azure.com:443/workflows/7ccffea766ae48e680gd9a22d1549bbc/triggers/manual/paths/invoke?api-version=2016-10-01" + }, + "authenticationConfiguration":{ + "@odata.type":"#microsoft.graph.azureAdPopTokenAuthentication" + } + } +} +``` +
v1.0	Accesspackagecatalog Post Customaccesspackageworkflowextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accesspackagecatalog-post-customaccesspackageworkflowextensions.md	If successful, this method returns a `201 Created` response code and a [customAc # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "create_customaccesspackageworkflowextension_from_" + "name": "create_customaccesspackageworkflowextension_" } --> ``` http Content-Type: application/json ``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Accessreviewinstance Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/accessreviewinstance-update.md	Attempting to remove existing fallbackReviewers returns a `409 Conflict` res # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "update_accessreviewinstance" + "name": "update_accessreviewinstance_e1" } --> ```msgraph-interactive
v1.0	Administrativeunit Delete Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-delete-members.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.ReadWrite.All \| -To remove a member from an administrative unit, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Administrativeunit Delete Scopedrolemembers	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-delete-scopedrolemembers.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.ReadWrite.Directory \| -To remove a role assignment from an administrative unit, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Administrativeunit Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.ReadWrite.All \| -To delete an administrative unit, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Administrativeunit Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.Read.All, Directory.Read.All, AdministrativeUnit.ReadWrite.All, Directory.ReadWrite.All \| + ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Administrativeunit List Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-list-members.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.Read.All, Directory.Read.All, AdministrativeUnit.ReadWrite.All, Directory.ReadWrite.All \| -> Note: To list the members of a hidden membership in an administrative unit, the Member.Read.Hidden permission is required. +> [!NOTE] +> To view the members with a hidden membership in an administrative unit, the app must be granted the `Member.Read.Hidden` delegated or application permission. + [!INCLUDE [limited-info](../../includes/limited-info.md)]
v1.0	Administrativeunit Post Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-post-members.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.ReadWrite.All \| -To add a user, group, or device to an administrative unit, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator +To add a user, group, or device to an administrative unit, the calling user must be assigned the Privileged Role Administrator [Azure AD role](/azure/active-directory/roles/permissions-reference). ### Permissions to create a new group \|Permission type \| Permissions (from least to most privileged) \| To add a user, group, or device to an administrative unit, the calling principal \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| Directory.ReadWrite.All \| -To create a new group in an administrative unit, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator -* Groups Administrator +To create a new group in an administrative unit, the calling user must be assigned the Privileged Role Administrator or Groups Administrator [Azure AD role](/azure/active-directory/roles/permissions-reference). ## HTTP request Content-type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#groups/$entity", - "id": "45b7d2e7-b882-4a80-ba97-10b7a63b8fa4", - "deletedDateTime": null, - "classification": null, - "createdDateTime": "2018-12-22T02:21:05Z", - "description": "Self help community for golf", - "displayName": "Golf Assist", - "expirationDateTime": null, - "groupTypes": [ - "Unified" - ], + "id": "45b7d2e7-b882-4a80-ba97-10b7a63b8fa4", + "deletedDateTime": null, + "classification": null, + "createdDateTime": "2018-12-22T02:21:05Z", + "description": "Self help community for golf", + "displayName": "Golf Assist", + "expirationDateTime": null, + "groupTypes": [ + "Unified" + ], "isAssignableToRole": null, - "mail": "golfassist@contoso.com", - "mailEnabled": true, - "mailNickname": "golfassist", - "membershipRule": null, - "membershipRuleProcessingState": null, - "onPremisesLastSyncDateTime": null, - "onPremisesSecurityIdentifier": null, - "onPremisesSyncEnabled": null, - "preferredDataLocation": "CAN", - "preferredLanguage": null, - "proxyAddresses": [ - "SMTP:golfassist@contoso.onmicrosoft.com" - ], - "renewedDateTime": "2018-12-22T02:21:05Z", - "resourceBehaviorOptions": [], - "resourceProvisioningOptions": [], - "securityEnabled": false, + "mail": "golfassist@contoso.com", + "mailEnabled": true, + "mailNickname": "golfassist", + "membershipRule": null, + "membershipRuleProcessingState": null, + "onPremisesLastSyncDateTime": null, + "onPremisesSecurityIdentifier": null, + "onPremisesSyncEnabled": null, + "preferredDataLocation": "CAN", + "preferredLanguage": null, + "proxyAddresses": [ + "SMTP:golfassist@contoso.onmicrosoft.com" + ], + "renewedDateTime": "2018-12-22T02:21:05Z", + "resourceBehaviorOptions": [], + "resourceProvisioningOptions": [], + "securityEnabled": false, "securityIdentifier": "S-1-12-1-1753967289-1089268234-832641959-555555555", - "theme": null, - "visibility": "Public", - "onPremisesProvisioningErrors": [] + "theme": null, + "visibility": "Public", + "onPremisesProvisioningErrors": [] } ```
v1.0	Administrativeunit Post Scopedrolemembers	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/administrativeunit-post-scopedrolemembers.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.ReadWrite.Directory \| -To assign Azure AD roles with an administrative unit scope, the calling principal must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): - -* Privileged Role Administrator -* Global Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Adminwindowsupdates List Deployments	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/adminwindowsupdates-list-deployments.md	If successful, this method returns a `200 OK` response code and a collection of # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_deployment" + "name": "list_deployment_e1" } --> ``` http
v1.0	Agreement Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/agreement-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| Not supported. \| -When calling on behalf of a user, the user needs to belong to one of the following directory roles. To learn more about directory roles, see [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference): -+ Global Administrator -+ Conditional Access Administrator -+ Security Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Agreement Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/agreement-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| Not supported. \| -When calling on behalf of a user, the user needs to belong to one of the following directory roles. To learn more about directory roles, see [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference): -+ Global Administrator -+ Conditional Access Administrator -+ Security Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Agreement Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/agreement-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| Not supported. \| -When calling on behalf of a user, the user needs to belong to one of the following directory roles. To learn more about directory roles, see [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference): -+ Global Administrator -+ Conditional Access Administrator -+ Security Administrator ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Appmanagementpolicy Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-delete.md	Delete an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request The following is an example of the request. "name": "delete_appManagementPolicy" }--> -```msgraph-interactive +```http DELETE https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} ```
v1.0	Appmanagementpolicy List Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-list-appliesTo.md	List application and service principal objects assigned an [appManagementPolicy] One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| \| Delegated (work or school account) \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| +\| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Application.Read.All and Policy.Read.All, Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request
v1.0	Appmanagementpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appManagementPolicy-update.md	Update an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request In the request body, supply the values for relevant fields from the [appManageme Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed. -\| Property \| Type \| Description \| -\|:\|:-\|:--\| -\| displayName \| String \| The display name of the policy. Inherited from [policyBase](../resources/policybase.md). \| -\| description \| String \| The description of the policy. Inherited from [policyBase](../resources/policybase.md). \| -\| isEnabled \| Boolean \| Denotes whether the policy is enabled. \| -\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. \| +\| Property \| Type \| Description \| +\| :-- \| :-- \| : \| +\| displayName \| String \| The display name of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| description \| String \| The description of the policy. Inherited from [policyBase](../resources/policybase.md). \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. \| ## Response The following is an example of the request. "name": "update_appManagementPolicy" }--> -```msgraph-interactive +```http PATCH https://graph.microsoft.com/beta/policies/appManagementPolicies/{id} {
v1.0	Appcatalogs List Teamsapps	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appcatalogs-list-teamsapps.md	One of the following permissions is required to call this API. To learn more, in \| Permission Type \| Permissions (from least to most privileged) \| \|:\|:\| -\| Delegated (work or school account) \| AppCatalog.Submit, AppCatalog.Read.All, AppCatalog.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| +\| Delegated (work or school account) \| AppCatalog.Submit, AppCatalog.Read.All, AppCatalog.ReadWrite.All, Directory.Read.All<sup>1</sup>, Directory.ReadWrite.All<sup>1</sup> \| \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| AppCatalog.Read.All, AppCatalog.ReadWrite.All \| -> Note: Permissions marked with are supported only for backward compatibility. We recommend that you update your solutions to use an alternative permission listed in the previous table and avoid using these permissions going forward. +> Note**: +<br><sup>1</sup> These permissions are supported only for backward compatibility. We recommend that you update your solutions to use an alternative permission and avoid using these permissions going forward. ## HTTP request Content-Type: application/json "azureADAppId": null, "displayName": "Test App", "version": "1.0.1", - "requiredResourceSpecificApplicationPermissions": [], - "publishingState": "published" + "publishingState": "published", + "authorization": + { + "requiredPermissionSet": + { + "resourceSpecificPermissions": [] + } + } } ] } Content-Type: application/json "azureADAppId": null, "displayName": "Ducks-3", "version": "1.0.9", - "requiredResourceSpecificApplicationPermissions": [], "publishingState": "rejected", "shortdescription": "quaerat quasi magnam. slight change. 5", "description": "Aliquid placeat animi debitis accusamus. Non perferendis ullam. Quis est consequuntur vitae provident. Sunt laudantium id aut. slight change 5", Content-Type: application/json "userIdentityType": "aadUser" } }, + "authorization": { + "requiredPermissionSet": { + "resourceSpecificPermissions": [] + } + }, "bot": { "id": "bb9f67a4-893b-48d7-ab17-40ed466c0f16" } Content-Type: application/json "azureADAppId": "d75abc57-8255-4309-9c29-a3c689e20341", "displayName": "Self-Install-App-E2E-Tests", "version": "6.0.0", - "requiredResourceSpecificApplicationPermissions": [], "publishingState": "submitted", "shortdescription": "A conversational smart assistant from MSX that surfaces real-time insights.", "description": "For MSX Users: A conversational role-based smart assistant that will enable Enterprise sellers (AE, ATS, SSP, TSP) to be more productive by surfacing real-time insights, recommendations, actions and notifications, and by automating repetitive tasks.", Content-Type: application/json "userIdentityType": "aadUser" } }, + "authorization": { + "requiredPermissionSet": { + "resourceSpecificPermissions": [] + } + }, "bot": { "id": "da7d471b-de7d-4152-8556-1cdf7a564f6c" } Content-Type: application/json ] } ``` +### Example 7: List applications with a given ID and return only the resource specific permissions required by the app + +The following example lists the apps with a given ID and returns the resource-specific permissions that are associated with it. + +#### Request + +The following is an example of a request. + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "list_teamsapp_with_rsc_permissions" +}--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/appCatalogs/teamsApps?$filter=id+eq+'a5228c26-a9ae-4702-90e0-79a5246d2f7d'&$expand=appDefinitions($select=id,authorization) +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++ +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "name": "list_teamsapp_with_rsc_permissions", + "@odata.type": "microsoft.graph.teamsApp", + "truncated": true, + "isCollection": true +} --> + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#appCatalogs/teamsApps(appDefinitions(id,authorization))", + "value": [ + { + "id": "a5228c26-a9ae-4702-90e0-79a5246d2f7d", + "externalId": "a55ec032-36e9-4b60-b604-34b2fe55abf1", + "displayName": "teamsDelegatedRscTests", + "distributionMethod": "organization", + "appDefinitions@odata.context": "https://graph.microsoft.com/beta/$metadata#appCatalogs/teamsApps('a5228c26-a9ae-4702-90e0-79a5246d2f7d')/appDefinitions(id,authorization)", + "appDefinitions": [ + { + "id": "YTUyMjhjMjYtYTlhZS00NzAyLTkwZTAtNzlhNTI0NmQyZjdkIyMxLjAuMCMjUHVibGlzaGVk", + "authorization": { + "requiredPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "Channel.Create.Group", + "permissionType": "application" + }, + { + "permissionValue": "Channel.Delete.Group", + "permissionType": "application" + }, + { + "permissionValue": "ChannelMeeting.ReadBasic.Group", + "permissionType": "delegated" + } + ] + } + } + } + ] + } + ] +} +``` ## See also - [List apps installed in a team](team-list-installedapps.md) - [List apps installed in a chat](chat-list-installedapps.md) - [List apps installed in the personal scope of a user](userteamwork-list-installedapps.md) +- [Request resource-specific consent for apps](/microsoftteams/platform/graph-api/rsc/resource-specific-consent)
v1.0	Application Delete Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-delete-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/{id}/$ref +DELETE https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4/$ref ``` # [C#](#tab/csharp) DELETE https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies/ The following is an example of the response. -> Note: The response object shown here might be shortened for readability. - <!-- { "blockType": "response", "truncated": true
v1.0	Application List Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-list-tokenlifetimepolicies.md	The following is an example of the request. }--> ```msgraph-interactive -GET https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies +GET https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies ``` # [C#](#tab/csharp) HTTP/1.1 200 OK Content-type: application/json { - "value": [ - { - "definition": [ - "definition-value" - ], - "displayName": "displayName-value", - "isOrganizationDefault": true, - "id": "id-value" - } - ] + "@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(microsoft.graph.tokenLifetimePolicy)", + "value": [ + { + "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4", + "deletedDateTime": null, + "definition": [ + "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"5:30:00\"}}" + ], + "displayName": "Contoso token lifetime policy", + "isOrganizationDefault": true + } + ] } ```
v1.0	Application Post Tokenlifetimepolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/application-post-tokenlifetimepolicies.md	The following is an example of the request. }--> ```http -POST https://graph.microsoft.com/beta/applications/{id}/tokenLifetimePolicies +POST https://graph.microsoft.com/beta/applications/3ccc9971-9ae7-45d6-8de8-263fd25fe116/tokenLifetimePolicies/$ref Content-Type: application/json { - "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/cd3d9b57-0aee-4f25-8ee3-ac74ef5986a9" + "@odata.id":"https://graph.microsoft.com/beta/policies/tokenLifetimePolicies/4d2f137b-e8a9-46da-a5c3-cc85b2b840a4" } ``` Content-Type: application/json [!INCLUDE [sample-code](../includes/snippets/go/create-tokenlifetimepolicy-from-application-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +# [PowerShell](#tab/powershell) + # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/create-tokenlifetimepolicy-from-application-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Appmanagementpolicy Delete Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-delete-appliesto.md	+ + Title: "Remove appliesTo" +description: "Remove an appManagementPolicy from an application or service principal object." +ms.localizationpriority: medium +++ +# Remove appliesTo + +Namespace: microsoft.graph ++ +Remove an [appManagementPolicy](../resources/appManagementPolicy.md) policy object from an application or service principal object. When you remove the appManagementPolicy, the application or service principal adopts the tenant-wide [tenantAppManagementPolicy](../resources/tenantappmanagementpolicy.md) setting. + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| +\| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| + +## HTTP request + +<!-- { "blockType": "ignored" } --> + +```http +DELETE /applications/{id}/appManagementPolicies/$ref +``` + +## Request headers + +\| Name \| Description \| +\| : \| :-- \| +\| Authorization \| Bearer {token}. Required. \| +\| Content-Type \| application/json. Required. \| + +## Request body + +In the request body, provide a reference to a single policy object from the [appManagementPolicies](../resources/appmanagementpolicy.md) collection. + +## Response + +If successful, this method returns `204 No Content` response code. It does not return anything in the response body. + +## Examples + +### Example 1: Remove an appManagementPolicy from an application object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from an application. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "remove_appliesTo_e1" +}--> + +```http +DELETE https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref +Content-type: application/json + +{ + "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +### Example 2: Remove an appManagementPolicy from a service principal object + +#### Request + +The following is an example of the request to remove an appManagementPolicy from a service principal. +++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "remove_appliesTo_e2" +}--> + +``` http +DELETE https://graph.microsoft.com/beta/servicePrincipals/{id}/appManagementPolicies/$ref + +{ + "@odata.id":"https://graph.microsoft.com/beta/policies/appManagementPolicies/{id}" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +#### Response + +The following is an example of the response. + +<!-- { + "blockType": "response", + "truncated": true +} --> + +```http +HTTP/1.1 204 No Content +``` + +<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 +2019-02-04 14:57:30 UTC --> +<!-- { + "type": "#page.annotation", + "description": "list resources for appManagementPolicies", + "keywords": "", + "section": "documentation", + "tocPath": "" +}-->
v1.0	Appmanagementpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-get.md	Read the properties of an [appManagementPolicy](../resources/appManagementPolicy One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| +\| Permission type \| Permissions (from least to most privileged) \| \| :- \| : \| \| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| \| Delegated (personal Microsoft account) \| Not supported. \|
v1.0	Appmanagementpolicy List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-list.md	Retrieve a list of [appManagementPolicy](../resources/appManagementPolicy.md) ob One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| +\| Permission type \| Permissions (from least to most privileged) \| \| :- \| : \| \| Delegated (work or school account) \| Policy.Read.All, Policy.ReadWrite.ApplicationConfiguration \| \| Delegated (personal Microsoft account) \| Not supported. \|
v1.0	Appmanagementpolicy Post Appliesto	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post-appliesto.md	Assign an [appManagementPolicy](../resources/appManagementPolicy.md) policy obje One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| :-- \| \| Delegated (work or school account) \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| +\| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Application.Read.All and Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request POST /applications/{id}/appManagementPolicies/$ref ## Request headers \| Name \| Description \| -\|:--\|:-\| +\| : \| :-- \| \| Authorization \| Bearer {token}. Required. \| \| Content-Type \| application/json. Required. \| The following is an example of the request to assign an appManagementPolicy to a "name": "ApplicationsAppManagementPolicies" }--> -```msgraph-interactive +```http POST https://graph.microsoft.com/beta/applications/{id}/appManagementPolicies/$ref Content-type: application/json
v1.0	Appmanagementpolicy Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/appmanagementpolicy-post.md	Create an [appManagementPolicy](../resources/appManagementPolicy.md) object. One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Policy.ReadWrite.ApplicationConfiguration \| +\| Permission type \| Permissions (from least to most privileged) \| +\| :- \| : \| +\| Delegated (work or school account) \| Policy.ReadWrite.ApplicationConfiguration \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Policy.ReadWrite.ApplicationConfiguration \| ## HTTP request POST /policies/appManagementPolicies \| Authorization \| Bearer {token}. Required. \| \| Content-Type \| application/json. Required. \| +> [!IMPORTANT] +> Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. ## Request body -In the request body, provide a JSON representation of an [appManagementPolicy](../resources/appManagementPolicy.md). +In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object. + +You can specify the following properties when creating an appManagementPolicy. + +\| Property \| Type \| Description \| +\| :-- \| :- \| : \| +\| displayName \| String \| The display name of the policy. Required. \| +\| description \| String \| The description of the policy. Required. \| +\| isEnabled \| Boolean \| Denotes whether the policy is enabled. Optional. \| +\| restrictions \| [appManagementConfiguration](../resources/appManagementConfiguration.md) \| Restrictions that apply to an application or service principal object. Optional. \| ## Response -If successful, this method returns a `201 Created` response code with the new [appManagementPolicy ](../resources/appmanagementpolicy.md) object in the response payload. +If successful, this method returns a `201 Created` response code with the new [appManagementPolicy](../resources/appmanagementpolicy.md) object in the response payload. ## Examples
v1.0	Attachment Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/attachment-delete.md	DELETE /me/calendar/events/{id}/attachments/{id} DELETE /users/{id \| userPrincipalName}/calendar/events/{id}/attachments/{id} ``` -Attachments for an [event](../resources/event.md) in the specified [calendar](../resources/calendar.md) belonging to the user. +Attachments for an [event](../resources/event.md) in the specified [calendar](../resources/calendar.md) that belongs to the user. <!-- { "blockType": "ignored" } --> ```http DELETE /me/calendars/{id}/events/{id}/attachments/{id} DELETE /groups/{id}/events/{id}/attachments/{id} DELETE /groups/{id}/calendar/events/{id}/attachments/{id} --> -Attachments for an [event](../resources/event.md) in a [calendar](../resources/calendar.md) belonging to the user's default [calendarGroup](../resources/calendargroup.md). +Attachments for an [event](../resources/event.md) in a [calendar](../resources/calendar.md) that belongs to the user's default [calendarGroup](../resources/calendargroup.md). <!-- { "blockType": "ignored" } --> ```http DELETE /me/calendars/{id}/events/{id}/attachments/{id} DELETE /users/{id \| userPrincipalName}/calendars/{id}/events/{id}/attachments/{id} ``` -Attachments for an [event](../resources/event.md) in a [calendar](../resources/calendar.md) belonging to a user's [calendarGroup](../resources/calendargroup.md). +Attachments for an [event](../resources/event.md) in a [calendar](../resources/calendar.md) that belongs to a user's [calendarGroup](../resources/calendargroup.md). <!-- { "blockType": "ignored" } --> ```http DELETE /me/calendargroups/{id}/calendars/{id}/events/{id}/attachments/{id} DELETE /me/mailFolders/{id}/messages/{id}/attachments/{id} DELETE /users/{id \| userPrincipalName}/mailFolders/{id}/messages/{id}/attachments/{id} ``` -Attachments for a [message](../resources/message.md) contained in a child folder of a [mailFolder](../resources/mailfolder.md) in a user's mailbox. The -example below shows one level of nesting, but a message can be located in a child of a child and so on. +Attachments for a [message](../resources/message.md) contained in a child folder of a [mailFolder](../resources/mailfolder.md) in a user's mailbox. The following +example shows one level of nesting, but a message can be located in a child of a child and so on. <!-- { "blockType": "ignored" } --> ```http DELETE /me/outlook/tasks/{id}/attachments/{id} DELETE /users/{id}/outlook/tasks/{id}/attachments/{id} ``` -Attachments for a [post](../resources/post.md) in a [thread](../resources/conversationthread.md) belonging to a [conversation](../resources/conversation.md) of a group. +Attachments for a [post](../resources/post.md) in a [thread](../resources/conversationthread.md) that belongs to a [conversation](../resources/conversation.md) of a group. <!-- { "blockType": "ignored" } --> ```http Do not supply a request body for this method. ## Response -If successful, this method returns `204 No Content` response code. It does not return anything in the response body. +If successful, this method returns a `204 No Content` response code. It does not return anything in the response body. ## Example ### Request -Here is an example of the request to delete an attachment on an event. +The following is an example of the request to delete an attachment on an event. # [HTTP](#tab/http) <!-- { DELETE https://graph.microsoft.com/beta/me/events/{id}/attachments/{id} ### Response -Here is an example of the response. +The following is an example of the response. <!-- { "blockType": "response", "truncated": true HTTP/1.1 204 No Content ] } -->--
v1.0	Authentication List Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Get details of your own email authentication method. +<!-- { "blockType": "ignored" } --> ``` http GET /me/authentication/emailMethods +``` + +Get details of your own or another user's email authentication method. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/emailMethods ```
v1.0	Authentication List Methods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-methods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) + +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request +List your own authentication methods. <!-- { "blockType": "ignored" } -->- -```http +``` http GET /me/authentication/methods +``` + +List your own or another user's authentication methods. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/methods ```
v1.0	Authentication List Passwordmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-passwordmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) ## HTTP request +Get details of your own password authentication method. <!-- { "blockType": "ignored" } -->- ```http GET /me/authentication/passwordMethods +``` + +Get details of your own or another user's password authentication method. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/passwordMethods ```
v1.0	Authentication List Phonemethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-phonemethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request +List your own phone authentication methods. <!-- { "blockType": "ignored" } -->- -```http +``` http GET /me/authentication/phoneMethods +``` + +List your own or another user's phone authentication methods. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/phoneMethods ```
v1.0	Authentication List Softwareoathmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-softwareoathmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs [one of the following directory roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global Reader -* Authentication administrator -* Privileged authentication administrator -* Global administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Get details of your own software OATH token authentication methods. +<!-- { "blockType": "ignored" } --> ``` http GET /me/authentication/softwareOathMethods +``` + +Get details of your own or another user's software OATH token authentication methods. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/softwareOathMethods ```
v1.0	Authentication List Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-list-temporaryaccesspassmethods.md	Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve a list of a user's [temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md) objects and their properties. This API will only return a single object in the collection as a user can have only one Temporary Access Pass method. +Retrieve a list of a user's [temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md) objects and their properties. This API will only return a single object in the collection as a user can have only one Temporary Access Pass (TAP) method. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). One of the following permissions is required to call this API. To learn more, in \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > -``` http +Get details of your own temporary access pass (TAP) authentication method. +<!-- { "blockType": "ignored" } --> +```http GET /me/authentication/temporaryAccessPassMethods +``` + +Get details of your own or another user's temporary access pass (TAP) authentication method. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/temporaryAccessPassMethods ```
v1.0	Authentication Post Emailmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-emailmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Add an email method to your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in. +<!-- { "blockType": "ignored" } --> +``` http +POST /me/authentication/emailMethods +``` + +Add an email authentication method to another user's account. +<!-- { "blockType": "ignored" } --> ``` http POST /users/{id \| userPrincipalName}/authentication/emailMethods ```
v1.0	Authentication Post Phonemethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-phonemethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request +Add a phone authentication method to your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in. <!-- { "blockType": "ignored" } -->- ```http POST /me/authentication/phoneMethods +``` + +Add a phone authentication method to another user's account. +<!-- { "blockType": "ignored" } --> +```http POST /users/{id \| userPrincipalName}/authentication/phoneMethods ```
v1.0	Authentication Post Temporaryaccesspassmethods	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authentication-post-temporaryaccesspassmethods.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authenticationflowspolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationflowspolicy-update.md	One of the following permissions is required to call this API. To learn more, in } --> ``` http -PATCH https://graph.microsoft.com/beta/policies/authenticationFlowsPolicy +PATCH /policies/authenticationFlowsPolicy ``` ## Request headers
v1.0	Authenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| \| Application \| Not applicable. \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator (only sees masked phone numbers) +> [!NOTE] +> The authentication administrator only sees masked phone numbers. ## HTTP request
v1.0	Authenticationmethod Resetpassword	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethod-resetpassword.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authenticationmethodspolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-get.md	Title: "Get authenticationMethodsPolicy" description: "Read the properties and relationships of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Authenticationmethodspolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationmethodspolicy-update.md	Title: "Update authenticationMethodsPolicy" description: "Update the properties of an authenticationMethodsPolicy object."-+ ms.localizationpriority: medium ms.prod: "identity-and-sign-in" doc_type: apiPageType One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Authenticationoperation Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authenticationoperation-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| \| Application \| Not supported. \| Not supported. \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request
v1.0	Authorizationpolicy Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/authorizationpolicy-get.md	One of the following permissions is required to call this API. To learn more, in <!-- { "blockType": "ignored" } --> ```http -GET /policies/authorizationPolicy/authorizationPolicy +GET /policies/authorizationPolicy ``` ## Request headers If successful, this method returns a `200 OK` response code and the single [auth The following is an example of the request. ```msgraph-interactive -GET https://graph.microsoft.com/beta/policies/authorizationPolicy/authorizationPolicy +GET https://graph.microsoft.com/beta/policies/authorizationPolicy ```
v1.0	Bookingappointment Cancel	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/bookingappointment-cancel.md	One of the following permissions is required to call this API. To learn more, in <!-- { "blockType": "ignored" } --> ```http POST /bookingBusinesses/{id}/appointments/{id}/cancel- ``` ## Request headers In the request body, provide a JSON object with the following parameters. If successful, this method returns a `204 No Content` response code. It does not return anything in the response body. -If you attempt to cancel an appointment that does not exist, this method returns `HTTP 404 Not found`. +If you attempt to cancel an appointment that does not exist, this method returns `HTTP 404 Not Found`. ## Example -The following is an example of how to call this API. - ### Request The following is an example of the request. HTTP/1.1 204 No content ] } -->--
v1.0	Browsersitelist Delete Sharedcookies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/browsersitelist-delete-sharedcookies.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "delete_browsersharedcookie", + "name": "delete_browsersharedcookie_e1", "@odata.type": "microsoft.graph.browserSharedCookie", "sampleKeys": ["7cf831d2-8a9b-4826-b120-911566f6fd6a", "07b4cc32-237f-4a1a-9d7f-531efc26220e"] } The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "delete_browsersharedcookie", + "name": "delete_browsersharedcookie_e2", "sampleKeys": ["7cf831d2-8a9b-4826-b120-911566f6fd6a", "07f4030f-45ff-4ad1-9277-3b8f6ee74141"] } -->
v1.0	Browsersitelist Delete Sites	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/browsersitelist-delete-sites.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "delete_browsersite", + "name": "delete_browsersite_e1", "sampleKeys": ["07f4030f-45ff-4ad1-9277-3b8f6ee74141", "a22cbc85-d5d2-4e61-8414-42e6704c36f7"] } --> HTTP/1.1 204 No Content The following is an example of a request. <!-- { "blockType": "request", - "name": "delete_browsersite", + "name": "delete_browsersite_e2", "sampleKeys": ["07f4030f-45ff-4ad1-9277-3b8f6ee74141", "a22cbc85-d5d2-4e61-8414-42e6704c36f7"] } -->
v1.0	Browsersitelist Publish	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/browsersitelist-publish.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "browsersitelist_publish", + "name": "browsersitelist_publish_e1", "sampleKeys": ["36ba61eb-c492-4283-a38b-963a1dbb2f69"] } --> Content-Type: application/json The following is an example of a request. <!-- { "blockType": "request", - "name": "browsersitelist_publish", + "name": "browsersitelist_publish_e2", "sampleKeys": ["36ba61eb-c492-4283-a38b-963a1dbb2f69"] } -->
v1.0	Bundle List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/bundle-list.md	To request an enumeration of all bundles defined in the drive, you can make a re The following is an example of a request. # [HTTP](#tab/http) -<!-- { "blockType": "request", "name": "list-all-bundles", "tags": "service.onedrive" } --> +<!-- { "blockType": "request", "name": "list-all-bundles_e1", "tags": "service.onedrive" } --> ```msgraph-interactive GET https://graph.microsoft.com/beta/drive/bundles To filter the list of bundles returned from a request to the bundles collection, The following is an example of a request. # [HTTP](#tab/http) -<!-- {"blockType": "request", "name": "list-album-bundles", "tags": "service.onedrive" } --> +<!-- {"blockType": "request", "name": "list-album-bundles-e2", "tags": "service.onedrive" } --> ```msgraph-interactive GET https://graph.microsoft.com/beta/drive/bundles?filter=bundle/album%20ne%20null
v1.0	Businessscenarioplanner List Tasks	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/businessscenarioplanner-list-tasks.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_businessscenariotask", + "name": "list_businessscenariotask_e1", "sampleKeys": ["c5d514e6c6864911ac46c720affb6e4d"] } --> The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_businessscenariotask", + "name": "list_businessscenariotask_e2", "sampleKeys": ["c5d514e6c6864911ac46c720affb6e4d"] } --> The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_businessscenariotask", + "name": "list_businessscenariotask_e3", "sampleKeys": ["c5d514e6c6864911ac46c720affb6e4d"] } -->
v1.0	Calendar List Events	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/calendar-list-events.md	Retrieve a list of events in a calendar. The calendar can be one for a [user](. To get expanded event instances, you can [get the calendar view](calendar-list-calendarview.md), or [get the instances of an event](event-list-instances.md). +> [!NOTE] +> If your target mailbox calendar contains any private items, the caller must either: +> * Be granted `FullAccess` mailbox permissions over the target mailbox (via the [Add-MailboxPermission](/powershell/module/exchange/add-mailboxpermission) cmdlet). +> * Be granted the `Delegate` + `CanViewPrivateItems` flags (similar to the previous option, but through the [Add-MailboxFolderPermission](/powershell/module/exchange/add-mailboxfolderpermission) cmdlet). This option routes all meeting requests to the delegate mailbox. For a workaround, see [SharingPermissionFlags](/powershell/module/exchange/add-mailboxfolderpermission?view=exchange-ps#-sharingpermissionflags). +> +> Failure to meet these conditions will result in a `The specified object was not found in the store` response. + ## Permissions Depending on the type of calendar that the events are in and the permission type (delegated or application) requested, one of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Callrecords Callrecord Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/callrecords-callrecord-get.md	There are two ways to get the id of a callRecord: * Subscribe to [change notifications](/graph/api/resources/webhooks) to the `/communications/callRecords` endpoint. * Use the callChainId property of a [call](../resources/call.md). The call record is available only after the associated call is completed. +> [!WARNING] +> +> A call record is created after a call or meeting ends and will remain available for 30 days. Requests for call records older than 30 days will receive a `404 Not Found` response. + ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. +If successful, this method returns a `200 OK` response code and the requested [microsoft.graph.callRecords.callRecord](../resources/callrecords-callrecord.md) object in the response body. A request for a call record older than 30 days will receive a `404 Not Found` response. ## Examples GET https://graph.microsoft.com/beta/communications/callRecords/{id}?$expand=ses #### Response -The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. +The following is an example of the response. If the sessions list is truncated, a `sessions@odata.nextLink` value will be provided to retrieve the next page of sessions. The default page size for sessions is 60 entries. > Note: The response object shown here might be shortened for readability.
v1.0	Calltranscript Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/calltranscript-get.md	If successful, this method returns a `200 OK` response code and a [callTranscrip ## Examples +> [!NOTE] +> The docx format for transcripts will be deprecated starting May 31, 2023. + ### Example 1: Get a callTranscript #### Request GET https://graph.microsoft.com/beta/users/ba321e0d-79ee-478d-8e28-85a19507f456/ #### Response -Response contains bytes for the transcript in the body. `content-type` header specifies type of the transcript content. +Response contains bytes for the transcript in the body. `content-type` header specifies type of the transcript content. Negative offsets indicate that the transcription began while the conversation was ongoing. + >Note: The response object shown here might be shortened for readability. <!-- { "blockType": "response", WEBVTT 0:0:0.0 --> 0:0:5.320 <v User Name>This is a transcript test.</v> ```+ ### Example 4: Get a callTranscript content specifying Accept header+ +>Note: The docx format and `Accept` header will be deprecated starting May 31, 2023. + #### Request # [HTTP](#tab/http) User Name This is a transcript test. ``` ### Example 5: Get a callTranscript content with $format getting precedence over the Accept header+ +>Note: The docx format and `$format` query parameter will be deprecated starting May 31, 2023. + #### Request # [HTTP](#tab/http) WEBVTT 0:0:0.0 --> 0:0:5.320 <v User Name>This is a transcript test.</v> ```+ +### Example 6: Get a callTranscript metadataContent +#### Request +<!-- { +┬á "blockType": "request", +┬á "name": "get_callTranscript_metadatacontent" +} +--> +``` http +GET https://graph.microsoft.com/bethkLWFkNDItOTE2ZDNmZjkwZGY4/metadataContent +``` + +#### Response +> Note: The response object shown here might be shortened for readability. +<!-- { +┬á "blockType": "response", +┬á "truncated": true, +┬á "@odata.type": "stream" +} +--> +```http +HTTP/1.1 200 OK +Content-type: text/vtt + +WEBVTT + +00:00:16.246 --> 00:00:17.726 +{"startDateTime":"2023-03-08T08:22:30.0461639+00:00","endDateTime":"2023-03-08T08:22:31.5261639+00:00","speakerName":"User Name","spokenText":"This is a transcription test.","spokenLanguage":"en-us"} +```
v1.0	Channel Post Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/channel-post-members.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "channel_add_member_6", + "name": "channel_add_member_e6", "sampleKeys": ["ece6f0a1-7ca4-498b-be79-edf6c8fc4d82", "19%3ALpxShHZZh9utjNcEmUS5aOEP9ASw85OUn05NcWYAhX81%40thread.tacv2"] } --> ```http
v1.0	Channel Removeemail	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/channel-removeemail.md	If successful, this action returns a `204 No Content` response code. <!-- { "blockType": "request", "sampleKeys": ["893075dd-2487-4122-925f-022c42e20265", "19:561fbdbbfca848a484f0a6f00ce9dbbd@thread.tacv2"], - "name": "channel_removeemail" + "name": "channel_removeemail_e1" } --> ```http
v1.0	Chat Get Installedapps	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chat-get-installedapps.md	One of the following permissions is required to call this API. To learn more, in \|:--\|:\| \|Delegated (work or school account) \| TeamsAppInstallation.ReadForChat, TeamsAppInstallation.ReadWriteSelfForChat, TeamsAppInstallation.ReadWriteForChat \| \|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| TeamsAppInstallation.Read.Chat, Chat.Manage.Chat, TeamsAppInstallation.ReadForChat.All, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All \| +\|Application \| TeamsAppInstallation.Read.Chat<sup>1</sup>, Chat.Manage.Chat<sup>1</sup>, TeamsAppInstallation.ReadForChat.All, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All \| -> Note: Permissions marked with * use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). +> Note: +<br><sup>1</sup> These permissions use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). ## HTTP request GET /chats/{chat-id}/installedApps/{app-installation-id} ## Response -If successful, this method returns a `200 OK` and a [teamsApp](../resources/teamsapp.md) object in the body. +If successful, this method returns a `200 OK` response code and [teamsAppInstallation](../resources/teamsappinstallation.md) object in the response body. -## Example +## Examples -### Request +### Example 1 : Get the app installed in the specified chat + +#### Request The following example gets an app installed in the specified chat. GET https://graph.microsoft.com/beta/chats/19:d65713bc498c4a428c71ef9353e6ce20@t -### Response +#### Response <!-- { "blockType": "response", Content-type: application/json "id": "MTk6ZDY1NzEzYmM0OThjNGE0MjhjNzFlZjkzNTNlNmNlMjBAdGhyZWFkLnYyIyMwMDAwMTAxNi1kZTA1LTQ5MmUtOTEwNi00ODI4ZmM4YTg2ODc=" } ``` +### Example 2: Get the set of resource-specific permissions consented for the app installed in the specified chat + +The following example gets the list of any [resource-specific permissions that were granted to an app](../resources/teamsapppermissionset.md) as part of installation. A `$select` query parameterd is required to show the consented permission set. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_installedApps_in_chat_select_consentedPermissionSet", + "sampleKeys": ["19%5bd86ec7f6b247d3b9e519b0bfef5d03%40thread.v2"] +} +--> + +```msgraph-interactive +GET https://graph.microsoft.com/betNAdGhyZWFkLnYyIyMyYjUyNGUyOC05NWNlLTRjOWItOTc3My00YTViZDZlYzE3NzA=?$select=consentedPermissionSet,id +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response + +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "name": "get_installedApps_in_chat_select_consentedPermissionSet", + "truncated": true, + "@odata.type": "microsoft.graph.teamsAppInstallation", + "isCollection": false +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/chats('19%3A5bd86ec7f6b247d3b9e519b0bfef5d03%40thread.v2')/installedApps(consentedPermissionSet,id)/$entity", + "id": "MTk6NWJkODZlYzdmNmIyNDdkM2I5ZTUxOWIwYmZlZjVkMDNAdGhyZWFkLnYyIyMyYjUyNGUyOC05NWNlLTRjOWItOTc3My00YTViZDZlYzE3NzA=", + "consentedPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "OnlineMeeting.ReadBasic.Chat", + "permissionType": "delegated" + }, + { + "permissionValue": "OnlineMeetingIncomingAudio.Detect.Chat", + "permissionType": "delegated" + } + ] + } +} +``` +## See also +- [List apps in catalog](appcatalogs-list-teamsapps.md) +- [Request resource-specific consent for apps](/microsoftteams/platform/graph-api/rsc/resource-specific-consent) <!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 2015-10-25 14:57:30 UTC -->
v1.0	Chat Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chat-get.md	The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_group_chat", + "name": "get_group_chat_e1", "sampleKeys": ["19:b8577894a63548969c5c92bb9c80c5e1@thread.v2"] }--> ```msgraph-interactive The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_chat", + "name": "get_chat_e2", "sampleKeys": ["8b081ef6-4792-4def-b2c9-c363a1bf41d5", "19:8b081ef6-4792-4def-b2c9-c363a1bf41d5_877192bd-9183-47d3-a74c-8aa0426716cf@unq.gbl.spaces"] }--> ```msgraph-interactive The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_chat_withmembers", + "name": "get_chat_withmembers_e3", "sampleKeys": ["19:b8577894a63548969c5c92bb9c80c5e1@thread.v2"] }--> ```msgraph-interactive The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_meeting_chat", + "name": "get_meeting_chat_e4", "sampleKeys": ["19:meeting_ZDZlYTYxOWUtYzdlMi00ZmMxLWIxMTAtN2YzODZlZjAxYzI4@thread.v2"] }--> ```msgraph-interactive The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_meeting_chat", + "name": "get_meeting_chat_e5", "sampleKeys": ["19:ebe3857aa388434bab0cad9d2e09f4de@thread.v2"] }--> ```msgraph-interactive
v1.0	Chat List Installedapps	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chat-list-installedapps.md	Namespace: microsoft.graph List all [app installations](../resources/teamsappinstallation.md) within a [chat](../resources/chat.md). -> Note: If the chat is associated with an [onlineMeeting](../resources/onlinemeeting.md) instance, then, effectively, the teamsApps installed in the meeting will be listed. +If the chat is associated with an [onlineMeeting](../resources/onlinemeeting.md) instance, then, effectively, the teamsApps installed in the meeting will be listed. > [!NOTE] > The `id` of a teamsAppInstallation resource is not the same value as the `id` of the associated teamsApp resource. One of the following permissions is required to call this API. To learn more, in \|Permission type \| Permissions (from least to most privileged) \| \|:--\|:\| -\|Delegated (work or school account) \| TeamsAppInstallation.ReadForChat, TeamsAppInstallation.ReadWriteSelfForChat, TeamsAppInstallation.ReadWriteForChat \| +\|Delegated (work or school account) \| TeamsAppInstallation.ReadForChat, TeamsAppInstallation.ReadWriteSelfForChat, TeamsAppInstallation.ReadWriteForChat, TeamsAppInstallation.ReadWriteAndConsentSelfForChat<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentForChat<sup>1</sup> \| \|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| TeamsAppInstallation.Read.Chat, Chat.Manage.Chat, TeamsAppInstallation.ReadForChat.All, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All \| +\|Application \| TeamsAppInstallation.Read.Chat<sup>1</sup>, Chat.Manage.Chat<sup>1</sup>, TeamsAppInstallation.ReadForChat.All, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All, TeamsAppInstallation.ReadWriteAndConsentSelfForChat.All<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentForChat.All<sup>1</sup> \| -> Note: Permissions marked with * use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). +> Note: +<br><sup>1</sup> These permissions use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). ## HTTP request Content-type: application/json ] } ``` +### Example 4: Get the set of resource specific permissions consented for the apps installed in the specified chat + +The following example gets the list of any [resource-specific permissions that were granted to an app](../resources/teamsapppermissionset.md) as part of installation. A `$select` query parameter is required to show the consented permission set. + +#### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "list_installed_apps_in_chat_select_consentedPermissionSet", + "sampleKeys": ["19%5bd86ec7f6b247d3b9e519b0bfef5d03%40thread.v2"] +} +--> + +```msgraph-interactive +GET https://graph.microsoft.com/beta/chats/19%5bd86ec7f6b247d3b9e519b0bfef5d03%40thread.v2/installedApps?$select=consentedPermissionSet,id +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +#### Response + +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "name": "list_installed_apps_in_chat_select_consentedPermissionSet", + "truncated": true, + "@odata.type": "microsoft.graph.teamsAppInstallation", + "isCollection": true +} --> + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/chats('19%3A5bd86ec7f6b247d3b9e519b0bfef5d03%40thread.v2')/installedApps(consentedPermissionSet,id)", + "value": [ + { + "id": "MTk6NWJkODZlYzdmNmIyNDdkM2I5ZTUxOWIwYmZlZjVkMDNAdGhyZWFkLnYyIyM0ZTVhNmMzYy1jOTU5LTRiY2EtOGRiNy0wMGRiM2E0ODdjZTE=", + "consentedPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "ChatMessage.Read.Chat", + "permissionType": "application" + } + ] + } + }, + { + "id": "MTk6NWJkODZlYzdmNmIyNDdkM2I5ZTUxOWIwYmZlZjVkMDNAdGhyZWFkLnYyIyMyYjUyNGUyOC05NWNlLTRjOWItOTc3My00YTViZDZlYzE3NzA=", + "consentedPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "OnlineMeeting.ReadBasic.Chat", + "permissionType": "delegated" + }, + { + "permissionValue": "OnlineMeetingIncomingAudio.Detect.Chat", + "permissionType": "delegated" + } + ] + } + } + ] +} +``` + ## See also - [List apps in catalog](appcatalogs-list-teamsapps.md) +- [Request resource-specific consent for apps](/microsoftteams/platform/graph-api/rsc/resource-specific-consent) <!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 2015-10-25 14:57:30 UTC --> <!-- {
v1.0	Chat Post Installedapps	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chat-post-installedapps.md	Install a [teamsApp](../resources/teamsapp.md) to the specified [chat](../resour > Notes: > - If the chat is associated with an [onlineMeeting](../resources/onlinemeeting.md) instance, then, effectively, the teamsApp will get installed to the meeting. -> - Currently, this operation does not support installation of apps that require resource-specific consent permissions. For details, see [Known issues](/graph/known-issues#Installation-of-apps-that-require-resource-specific-consent-permissions-is-not-supported). +> - Currently, installing an app that requires resource-specific consent permissions is not supported in application context. ## Permissions One of the following permissions is required to call this API. To learn more, in \|Permission type \| Permissions (from least to most privileged) \| \|:--\|:\| -\|Delegated (work or school account) \| TeamsAppInstallation.ReadWriteSelfForChat, TeamsAppInstallation.ReadWriteForChat \| +\|Delegated (work or school account) \| TeamsAppInstallation.ReadWriteSelfForChat<sup>1</sup>, TeamsAppInstallation.ReadWriteForChat<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentSelfForChat, TeamsAppInstallation.ReadWriteAndConsentForChat \| \|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Chat.Manage.Chat, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All \| +\|Application \| Chat.Manage.Chat<sup>2</sup>, TeamsAppInstallation.ReadWriteSelfForChat.All<sup>1</sup>, TeamsAppInstallation.ReadWriteForChat.All<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentSelfForChat.All, TeamsAppInstallation.ReadWriteAndConsentForChat.All \| -> Note: Permissions marked with use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). +> Note: +<br><sup>1</sup> These permissions cannot be used to install apps that require consent to resource-specific permissions. +<br><sup>2</sup> These permissions use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). ## HTTP request POST /chats/{chat-id}/installedApps ## Request body -The request body should contain the catalog app's generated app ID. For details, see [teamsApp properties](../resources/teamsapp.md#properties). +The request body should contain the catalog generated app ID for the app catalog. For details, see [teamsApp properties](../resources/teamsapp.md#properties). +The following table lists additional parameters that can be used with the request body. + +\|Parameter\|Type\|Description\| +\|:\|:\|:\| +\|consentedPermissionSet\|[teamsAppPermissionSet](../resources/teamsapppermissionset.md)\|Set of resource-specific permissions that are being consented to.\| + +> Note: The permissions consented to during the install must be same as the resource-specific permissions present in the [teamsAppDefinition](../resources/teamsAppDefinition.md) of the app. To get the application and delegated resource-specific permissions, see [Example 7](../api/appcatalogs-list-teamsapps.md#example-7-list-applications-with-a-given-id-and-return-only-the-resource-specific-permissions-required-by-the-app). If only delegated resource-specific permissions are present in teamsAppDefinition, permissions can be omitted in the body of this request. ## Response If successful, this method returns a `201 Created` response code. ## Examples -### Request +### Example 1: Install app in a chat + +#### Request # [HTTP](#tab/http) Content-Type: application/json -### Response +#### Response + +<!-- { + "blockType": "response" +} --> + +```http +HTTP/1.1 201 Created +``` +### Example 2: Install app in a chat and and consent to the resource-specific permissions required by the app +To get the list of resource-specific permissions required by the app, get the app from appCatalog, as shown in [Example 7](../api/appcatalogs-list-teamsapps.md#example-7-list-applications-with-a-given-id-and-return-only-the-resource-specific-permissions-required-by-the-app). + +#### Request + +<!-- { + "blockType": "request", + "name": "add_app_in_chat", + "sampleKeys": ["19:ea28e88c00e94c7786b065394a61f296@thread.v2"] +}--> + +```http +POST https://graph.microsoft.com/beta/chats/19:ea28e88c00e94c7786b065394a61f296@thread.v2/installedApps +Content-Type: application/json + +{ + "teamsApp@odata.bind" : "https://graph.microsoft.com/beta/appCatalogs/teamsApps/2b524e28-95ce-4c9b-9773-4a5bd6ec1770", + "consentedPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "OnlineMeeting.ReadBasic.Chat", + "permissionType": "Delegated" + }, + { + "permissionValue": "OnlineMeetingIncomingAudio.Detect.Chat", + "permissionType": "Delegated" + }, + { + "permissionValue": "ChatMember.Read.Chat", + "permissionType": "Application" + }, + { + "permissionValue": "ChatMessage.Read.Chat", + "permissionType": "Application" + }] + } +} +``` + +#### Response <!-- { "blockType": "response" Content-Type: application/json HTTP/1.1 201 Created ``` +## See also +- [List apps in catalog](appcatalogs-list-teamsapps.md) +- [Request resource-specific consent for apps](/microsoftteams/platform/graph-api/rsc/resource-specific-consent) + <!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 2015-10-25 14:57:30 UTC --> <!-- {
v1.0	Chat Teamsappinstallation Upgrade	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chat-teamsappinstallation-upgrade.md	Upgrade an [app installation](../resources/teamsappinstallation.md) within a [ch > Notes: > - If the chat is associated with an [onlineMeeting](../resources/onlinemeeting.md) instance, then effectively, the teamsApp installed in the meeting will get upgraded. -> - Currently, this operation does not support upgrade of apps that require resource-specific consent permissions. For details, see [Known issues](/graph/known-issues#Installation-of-apps-that-require-resource-specific-consent-permissions-is-not-supported). +> - Currently, upgrading an app that requires resource-specific consent permissions is not supported in application context. ## Permissions One of the following permissions is required to call this API. To learn more, in \|Permission type \| Permissions (from least to most privileged) \| \|:--\|:\| -\|Delegated (work or school account) \| TeamsAppInstallation.ReadWriteSelfForChat, TeamsAppInstallation.ReadWriteForChat \| +\|Delegated (work or school account) \| TeamsAppInstallation.ReadWriteSelfForChat<sup>1</sup>, TeamsAppInstallation.ReadWriteForChat<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentSelfForChat, TeamsAppInstallation.ReadWriteAndConsentForChat \| \|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Chat.Manage.Chat, TeamsAppInstallation.ReadWriteSelfForChat.All, TeamsAppInstallation.ReadWriteForChat.All \| +\|Application \| Chat.Manage.Chat<sup>2</sup>, TeamsAppInstallation.ReadWriteSelfForChat.All<sup>1</sup>, TeamsAppInstallation.ReadWriteForChat.All<sup>1</sup>, TeamsAppInstallation.ReadWriteAndConsentSelfForChat.All, TeamsAppInstallation.ReadWriteAndConsentForChat.All \| -> Note: Permissions marked with use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). +> Notes: +<br><sup>1</sup> These permissions cannot be used to install apps that require consent to resource-specific permissions. +<br><sup>2</sup> These permissions use [resource-specific consent](/microsoftteams/platform/graph-api/rsc/resource-specific-consent). ## HTTP request <!-- { "blockType": "ignored" } --> One of the following permissions is required to call this API. To learn more, in ```http POST /chats/{chat-id}/installedApps/{app-installation-id}/upgrade ``` +## Request body + +In the request body, supply a JSON representation of the parameters. + +The following table lists additional parameters that can be used with the upgrade action. + +\|Parameter\|Type\|Description\| +\|:\|:\|:\| +\|consentedPermissionSet\|[teamsAppPermissionSet](../resources/teamsapppermissionset.md)\|The set of resource-specific permissions that are being consented to.\| + +> Note: +> The permissions consented to during the upgrade must be the same as the resource-specific permissions present in the [teamsAppDefinition](../resources/teamsAppDefinition.md) of the app. To get the application and delegated resource-specific permissions, see [Example 7](../api/appcatalogs-list-teamsapps.md#example-7-list-applications-with-a-given-id-and-return-only-the-resource-specific-permissions-required-by-the-app). If only delegated resource-specific permissions are present in teamsAppDefinition, permissions can be omitted in the body of this request. ## Response If successful, this method returns a `204 No Content` response code. -## Example +## Examples + +### Example 1: Upgrade the teams app installed in chat -### Request +#### Request The following example upgrades an app installed in a chat. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "upgrade_installedApps_in_chat", + "name": "upgrade_installedApps_in_chat_e1", "sampleKeys": ["19:ea28e88c00e94c7786b065394a61f296@thread.v2", "NjRiOWM3NDYtYjE1NS00MDQyLThkNDctOTQxYmQzODE2ODFiIyMwZDgyMGVjZC1kZWYyLTQyOTctYWRhZC03ODA1NmNkZTdjNzg="] }--> POST https://graph.microsoft.com/beta/chats/19:ea28e88c00e94c7786b065394a61f296@ -### Response +#### Response <!-- { "blockType": "response", POST https://graph.microsoft.com/beta/chats/19:ea28e88c00e94c7786b065394a61f296@ HTTP/1.1 204 No Content ``` +### Example 2: Upgrade app installed in a chat and consent to the resource specific permissions + +To get the list of resource-specific permissions required by the app, get the app from appCatalog, as shown in [Example 7](../api/appcatalogs-list-teamsapps.md#example-7-list-applications-with-a-given-id-and-return-only-the-resource-specific-permissions-required-by-the-app). + +#### Request + +<!-- { + "blockType": "request", + "name": "upgrade_installedApps_in_chat_e2", + "sampleKeys": ["19:ea28e88c00e94c7786b065394a61f296@thread.v2", "NjRiOWM3NDYtYjE1NS00MDQyLThkNDctOTQxYmQzODE2ODFiIyMwZDgyMGVjZC1kZWYyLTQyOTctYWRhZC03ODA1NmNkZTdjNzg="] +}--> + +```http +POST https://graph.microsoft.com/betQyLThkNDctOTQxYmQzODE2ODFiIyMwZDgyMGVjZC1kZWYyLTQyOTctYWRhZC03ODA1NmNkZTdjNzg=/upgrade +Content-Type: application/json + +{ + "consentedPermissionSet": { + "resourceSpecificPermissions": [ + { + "permissionValue": "OnlineMeeting.ReadBasic.Chat", + "permissionType": "Delegated" + }, + { + "permissionValue": "ChatMember.Read.Chat", + "permissionType": "Application" + }] + } +} +``` + +#### Response + +<!-- { + "blockType": "response" +} --> + +```http +HTTP/1.1 204 No Content +``` +## See also +- [List apps in catalog](appcatalogs-list-teamsapps.md) +- [Request resource-specific consent for apps](/microsoftteams/platform/graph-api/rsc/resource-specific-consent) <!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 2015-10-25 14:57:30 UTC --> <!-- {
v1.0	Chatmessage Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessage-delta.md	Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": {
v1.0	Chatmessage Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessage-get.md	Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": {
v1.0	Chatmessage List Replies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessage-list-replies.md	Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": {
v1.0	Chatmessage Post Replies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessage-post-replies.md	Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", "userIdentityType": "aadUser" HTTP/1.1 200 OK "application":null, "device":null, "user":{ + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id":"8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca", "displayName":"Joh Doe", - "userIdentityType":"aadUser" + "userIdentityType":"aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body":{
v1.0	Chatmessage Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessage-post.md	Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "device": null, "conversation": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "ef1c916a-3135-4417-ba27-8eb7bd084193", "displayName": "Jane Smith", "userIdentityType": "aadUser" Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "post_chatmessage_10", + "name": "post_chatmessage_e10", "sampleKeys": ["fbe2bf47-16c8-47cf-b4a5-4b9b187c508b", "19:4a95f7d8db4c4e7fae857bcebe0623e6@thread.tacv2"] }--> Content-type: application/json "application": null, "device": null, "user": { + "@odata.type": "#Microsoft.Teams.GraphSvc.teamworkUserIdentity", "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline", - "userIdentityType": "aadUser" + "userIdentityType": "aadUser", + "tenantId": "e61ef81e-8bd8-476a-92e8-4a62f8426fca" } }, "body": { HTTP/1.1 201 Created Content-type: application/json { - "@odata.context": "https://canary.graph.microsoft.com/testprodbetateamsgraphsumanach/$metadata#chats('19%3A7fb82b685f9c457296a0ab6a1d98b4c1%40thread.v2')/messages/$entity", + "@odata.context": "https://graph.microsoft.com/beta/$metadata#chats('19%3A7fb82b685f9c457296a0ab6a1d98b4c1%40thread.v2')/messages/$entity", "id": "1675459162626", "replyToId": null, "etag": "1675459162626",
v1.0	Chatmessagehostedcontent Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/chatmessagehostedcontent-get.md	GET https://graph.microsoft.com/beta/chats/19:2da4c29f6d7041eca70b638b43d45437@t ``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) GET https://graph.microsoft.com/beta/chats/19:2da4c29f6d7041eca70b638b43d45437@t [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PowerShell](#tab/powershell) GET https://graph.microsoft.com/beta/chats/19:2da4c29f6d7041eca70b638b43d45437@t [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Cloudpc Getcloudpclaunchinfo	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getcloudpclaunchinfo.md	If successful, this function returns a `200 OK` response code and a [cloudPcLaun # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "cloudpcthis.getcloudpclaunchinfo" + "name": "cloudpc.getcloudpclaunchinfo" } --> ``` http GET https://graph.microsoft.com/beta/me/cloudPCs/{cloudPCId}/getCloudPcLaunchInf ``` # [C#](#tab/csharp) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [JavaScript](#tab/javascript) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Java](#tab/java) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [Go](#tab/go) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] # [PHP](#tab/php) [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Cloudpc Getshiftworkcloudpcaccessstate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/cloudpc-getshiftworkcloudpcaccessstate.md	+ + Title: "cloudPC: getShiftWorkCloudPcAccessState" +description: "Get the access state of a shift work Cloud PC. Callers can get the latest shift work Cloud PC accessState and determine if the shift work Cloud PC is accessible to the user." + +ms.localizationpriority: medium ++ +# cloudPC: getShiftWorkCloudPcAccessState +Namespace: microsoft.graph ++ +Get the [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) of a shift work Cloud PC. + +This API only supports shared-use licenses. For more information, see [cloudPcProvisioningPolicy](../resources/cloudpcprovisioningpolicy.md#cloudpcprovisioningtype-values). Shared-use licenses allow three users per license, with one user signed in at a time. Callers can get the latest shift work Cloud PC accessState and determine whether the shift work Cloud PC is accessible to the user. + +If a web client needs to connect to a shift work Cloud PC, the sharedCloudPcAccessState validates the bookmark scenario. If sharedCloudPcAccessState is not active/activating/hibernated, the web client shows a "bad bookmark". + +## Permissions +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|CloudPC.Read.All, CloudPC.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not supported.\| +\|Application\|Not supported.\| + +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> +``` http +GET /me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState +``` + +## Request headers +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body +Do not supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [shiftWorkCloudPcAccessState](../resources/cloudpc.md#shiftworkcloudpcaccessstate-values) object in the response body. + +If the Cloud PC has been provisioned as a dedicated device, this method returns `400 Bad request`. + +## Examples + +### Request +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "cloudpc.getShiftWorkCloudPcAccessState" +} +--> +``` http +GET https://graph.microsoft.com/beta/me/cloudPCs/{cloudPCId}/getShiftWorkCloudPcAccessState +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +### Response +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "string" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context":"https://graph.microsoft.com/beta/$metadata#Edm.String", + "value": "noLicensesAvailable" +} +``` +
v1.0	Contactmergesuggestions Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/contactmergesuggestions-get.md	If successful, this method returns a `200 OK` response code and a [contactMergeS ## Examples -The following is an example of the request to get contactMergeSuggestions settings for the user. - ### Request +The following is an example of the request to get contactMergeSuggestions settings for the user. + # [HTTP](#tab/http) <!-- { "blockType": "request", GET https://graph.microsoft.com/beta/me/settings/contactMergeSuggestions ### Response+ +The following is an example of the response. + >Note: The response object shown here might be shortened for readability. <!-- { "blockType": "response", Content-Type: application/json "isEnabled": true } ```-
v1.0	Device Delete Registeredusers	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/device-delete-registeredusers.md	Here is an example of the request. DELETE https://graph.microsoft.com/beta/devices/{id}/registeredUsers/{id}/$ref ``` +# [C#](#tab/csharp) + # [JavaScript](#tab/javascript) [!INCLUDE [sample-code](../includes/snippets/javascript/delete-registeredusers-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] DELETE https://graph.microsoft.com/beta/devices/{id}/registeredUsers/{id}/$ref [!INCLUDE [sample-code](../includes/snippets/jav)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +# [Go](#tab/go) + +# [PHP](#tab/php) + ##### Response
v1.0	Device Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/device-get.md	The following example shows a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_device" + "name": "get_device_e1" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices/000005c3-b7a6-4c61-89fc-80bf5ccfc366 The following request retrieves the id and extensionAttributes property # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_device_select" + "name": "get_device_select_e2" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices/6a59ea83-02bd-468f-a40b-f2c3d1821983?$select=id,extensionAttributes
v1.0	Device List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/device-list.md	Here is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_devices" + "name": "get_devices_e1" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices The following is an example of the request. This request requires the Consiste <!-- { "blockType": "ignored", - "name": "get_count_only" + "name": "get_count_only_e2" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices/$count Content-type: text/plain # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_devices_select" + "name": "get_devices_select_e3" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices?$select=id,extensionAttributes The following is an example of the request. This request requires the Consiste # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_devices_startswith" + "name": "list_devices_startswith_e4" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices?$filter=startswith(displayName, 'a')&$count=true&$top=1&$orderby=displayName The following is an example of the request. This request requires the Consiste <!-- { "blockType": "ignored", - "name": "get_video_count" + "name": "get_video_count_e5" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices?$search="displayName:Android"&$count=true The following is an example of the request. This request requires the Consiste # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_devices_by_extensionAttribute" + "name": "get_devices_by_extensionAttribute_e6" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/devices?$filter=extensionAttributes/extensionAttribute1 eq 'BYOD-Device'&$count=true
v1.0	Directory Deleteditems Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-delete.md	Permanently delete a recently deleted [application](../resources/application.md) Administrative units cannot be permanently deleted by using the deletedItems API. Soft-deleted administrative units will be permanently deleted 30 days after initial deletion unless they are restored. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### For applications and service principals: +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [application](../resources/application.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.OwnedBy \| +\| [group](../resources/group.md) \| Group.ReadWrite.All \| Not supported. \| Not supported. \| +\| [servicePrincipal](../resources/serviceprincipal.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.OwnedBy \| +\| [user](../resources/user.md) \| User.ReadWrite.All \| Not supported. \| Not supported. \| -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Application.ReadWrite.All, Directory.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Application.ReadWrite.OwnedBy, Application.ReadWrite.All \| - -The calling user must be the owner of the application or the calling app must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): -+ Global Administrator -+ Application Administrator -+ Cloud Application Administrator -+ Hybrid Identity Administrator - -### For users: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| User.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Not supported. \| - -The signed-in user needs to have one of the following roles: Global Administrator or User Administrator. - -### For groups: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Group.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Not supported. \| - -The requestor needs to have one of the following roles: Global Administrator or Groups Administrator. ## HTTP request <!-- { "blockType": "ignored" } --> ```http DELETE /directory/deleteditems/{id} ```+ ## Request headers \| Name \| Description\| \|:\|:-\|
v1.0	Directory Deleteditems Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-get.md	Retrieve the properties of a recently deleted [application](../resources/applica >Note: Deleted security groups are deleted permanently and can't be retrieved through this API. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### For applications and service principals: +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Application.Read.All, Application.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Application.Read.All, Application.ReadWrite.OwnedBy, Application.ReadWrite.All, Directory.Read.All \| - -### For users: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| User.Read.All, User.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| User.Read.All, User.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| - -### For groups: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Group.Read.All, Group.ReadWrite.All, Directory.Read.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Group.Read.All, Group.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| - -### For administrative units: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| AdministrativeUnit.Read.All, AdministrativeUnit.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| AdministrativeUnit.Read.All, AdministrativeUnit.ReadWrite.All \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [administrativeUnit](../resources/administrativeunit.md) \| AdministrativeUnit.Read.All \| Not supported. \| AdministrativeUnit.Read.All \| +\| [application](../resources/application.md) \| Application.Read.All \| Not supported. \| Application.Read.All \| +\| [group](../resources/group.md) \| Group.Read.All \| Not supported. \| Group.Read.All \| +\| [servicePrincipal](../resources/serviceprincipal.md) \| Application.Read.All \| Not supported. \| Application.Read.All \| +\| [user](../resources/user.md) \| User.Read.All \| Not supported. \| User.Read.All \| ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Directory Deleteditems List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-list.md	Retrieve a list of recently deleted directory objects. Currently, deleted items ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -### For applications and service principals: +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [administrativeUnit](../resources/administrativeunit.md) \| AdministrativeUnit.Read.All \| Not supported. \| AdministrativeUnit.Read.All \| +\| [application](../resources/application.md) \| Application.Read.All \| Not supported. \| Application.Read.All \| +\| [group](../resources/group.md) \| Group.Read.All \| Not supported. \| Group.Read.All \| +\| [servicePrincipal](../resources/serviceprincipal.md) \| Application.Read.All \| Not supported. \| Application.Read.All \| +\| [user](../resources/user.md) \| User.Read.All \| Not supported. \| User.Read.All \| -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Application.Read.All, Application.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Application.Read.All, Application.ReadWrite.All, Directory.Read.All \| - -### For users: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| User.Read.All, User.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| User.Read.All, User.ReadWrite.All, Directory.Read.All, Directory.ReadWrite.All \| - -### For groups: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Group.Read.All, Group.ReadWrite.All, Directory.Read.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Group.Read.All, Group.ReadWrite.All, Directory.Read.All \| - -### For administrative units: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| AdministrativeUnit.Read.All, AdministrativeUnit.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| AdministrativeUnit.Read.All, AdministrativeUnit.ReadWrite.All \| ## HTTP request <!-- { "blockType": "ignored" } --> The OData cast type is a required part of the URI and calling `GET /directory/de ## Optional query parameters -This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: +This method supports the query parameters that are supported by the resource that is specified by the OData cast. That is, `$count`, `$expand`, `$filter`, `$orderBy`, `$search`, `$select`, and `$top` query parameters. This API returns 100 objects by default and supports returning up to 999 objects per page using `$top`. + +Some queries are supported only when you use the ConsistencyLevel header set to `eventual` and `$count`. For example: ```msgraph-interactive https://graph.microsoft.com/beta/directory/deletedItems/microsoft.graph.group?&$count=true&$orderBy=deletedDateTime desc&$select=id,displayName,deletedDateTime
v1.0	Directory Deleteditems Restore	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-deleteditems-restore.md	Restore a recently deleted [application](../resources/application.md), [group](. A recently deleted item will remain available for up to 30 days. After 30 days, the item is permanently deleted. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### For applications and service principals: +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Application.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Application.ReadWrite.OwnedBy, Application.ReadWrite.All \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [administrativeUnit](../resources/administrativeunit.md) \| AdministrativeUnit.ReadWrite.All \| Not supported. \| AdministrativeUnit.ReadWrite.All \| +\| [application](../resources/application.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.OwnedBy \| +\| [group](../resources/group.md) \| Group.ReadWrite.All \| Not supported. \| Not supported. \| +\| [servicePrincipal](../resources/serviceprincipal.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.OwnedBy \| +\| [user](../resources/user.md) \| User.ReadWrite.All \| Not supported. \| Not supported. \| -The calling app must be assigned one of the following [Azure AD roles](/azure/active-directory/roles/permissions-reference): -+ Global Administrator -+ Application Administrator -+ Cloud Application Administrator -+ Hybrid Identity Administrator - -### For users: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| User.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| User.ReadWrite.All \| - -To restore users with privileged administrator roles in delegated scenarios, the app must be assigned with Directory.AccessAsUser.All delegated permission, and the calling user must also be assigned a higher privileged administrator role as indicated in [Who can perform sensitive actions](../resources/users.md#who-can-perform-sensitive-actions). - -In app-only scenarios, the User.ReadWrite.All application permission isn't enough privilege to restore deleted users with privileged administrator roles. The app must be assigned a higher privileged administrator role as indicated in [Who can perform sensitive actions](../resources/users.md#who-can-perform-sensitive-actions). - -### For groups: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Group.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Group.ReadWrite.All \| - -### For administrative units: - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| AdministrativeUnit.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| AdministrativeUnit.ReadWrite.All \| ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Directory List Administrativeunits	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-list-administrativeunits.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| AdministrativeUnit.Read.All, Directory.Read.All, AdministrativeUnit.ReadWrite.All, Directory.ReadWrite.All \| + ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Directory List Inboundshareduserprofiles	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-list-inboundshareduserprofiles.md	+ + Title: "List inboundSharedUserProfiles" +description: "Retrieve the properties of an inboundSharedUserProfiles." + +ms.localizationpriority: medium ++ +# List inboundSharedUserProfiles + +Namespace: microsoft.graph ++ +Retrieve the properties of all [inboundSharedUserProfiles](../resources/inboundshareduserprofile.md). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not applicable\| +\|Application\|CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +``` http +GET /directory/inboundSharedUserProfiles +``` + +## Request headers + +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [inboundSharedUserProfile](../resources/inboundshareduserprofile.md) collection in the response body. + +## Examples + +### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_inboundshareduserprofiles" +} +--> + +``` http +GET https://graph.microsoft.com/beta/directory/inboundSharedUserProfiles +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.inboundSharedUserProfile" +} +--> + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "userId":"c228b2ae-c4fb-4eda-9620-7e73dddd1cac", + "userPrincipalName":"bob@contoso.onmicrosoft.com", + "displayName":"Bob", + "homeTenantId":"486fb458-9474-4c44-896b-b30942d055f0" + }, + { + "userId":"5586b2ae-c4fb-4eda-9620-7e73dddd1cac", + "userPrincipalName":"alice@fabrikam.com", + "displayName":"Alice", + "homeTenantId":"385ab357-9774-4c44-896b-a35942d755e8" + } + ] +} + +```
v1.0	Directory List Outboundshareduserprofiles	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-list-outboundshareduserprofiles.md	+ + Title: "List outboundSharedUserProfiles" +description: "Retrieve the properties of all outboundSharedUserProfiles." + +ms.localizationpriority: medium ++ +# List outboundSharedUserProfiles + +Namespace: microsoft.graph ++ +Retrieve the properties of all [outboundSharedUserProfiles](../resources/outboundshareduserprofile.md). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|CrossTenantUserProfileSharing.Read, CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite, CrossTenantUserProfileSharing.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not applicable\| +\|Application\|CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +``` http +GET /directory/outboundSharedUserProfiles +``` + +## Request headers + +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [outboundSharedUserProfiles](../resources/outboundshareduserprofile.md) object in the response body. + +## Examples + +### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_outboundshareduserprofile_e1" +} +--> + +``` http +GET https://graph.microsoft.com/beta/directory/outboundSharedUserProfiles +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.outboundSharedUserProfile" +} +--> + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#directory/outboundSharedUserProfiles", + "value": [ + { + "userId":"62bfb458-9474-4c44-896b-b30942d055f0" + }, + { + "userId":"5269b458-9474-4a44-996b-a30942d05000" + } + ] +} +```
v1.0	Directory List Recommendation	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directory-list-recommendation.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_recommendation" + "name": "list_recommendation_e1" } --> ``` http The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_recommendation" + "name": "get_recommendation_e2" } --> ``` http The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_recommendation" + "name": "get_recommendation_e3" } --> ``` http
v1.0	Directoryobject Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryobject-delete.md	Namespace: microsoft.graph Delete a directory object, for example, a group, user, application, or service principal. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -### Delete a user +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| User.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| User.ReadWrite.All \| - -### Delete a group - -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| Group.ReadWrite.All \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Group.ReadWrite.All \| - -### Delete an application or service principal - -\|Permission type \| Permissions (from least to most privileged) \| -\|:--\|:\| -\|Delegated (work or school account) \| Application.ReadWrite.All \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Application.ReadWrite.All \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [application](../resources/application.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.All \| +\| [group](../resources/group.md) \| Group.ReadWrite.All \| Not supported. \| Group.ReadWrite.All \| +\| [servicePrincipal](../resources/serviceprincipal.md) \| Application.ReadWrite.All \| Not supported. \| Application.ReadWrite.All \| +\| [user](../resources/user.md) \| User.ReadWrite.All \| Not supported. \| User.ReadWrite.All \| ## HTTP request
v1.0	Directoryobject Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryobject-delta.md	GET https://graph.microsoft.com/beta/directoryObjects/delta?filter=isof('microso - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=isof('{resource type}')`. Note the presence of the _members@delta_ property which includes the ids of member objects in the group. GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=id eq '87d34 - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization with `$filter=id eq '{id}'`. GET https://graph.microsoft.com/beta/directoryObjects/delta?$filter=isof('micros - #### Response The following is an example of the response when using `@odata.deltaLink` obtained from the query initialization. Note that both properties are included in the response and it is not known which ones have changed since the `@odata.deltaLink` was obtained.
v1.0	Directoryrole Delete Member	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-delete-member.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.ReadWrite.Directory \| + ## HTTP request You can address the directory role using either its id or roleTemplateId.
v1.0	Directoryrole Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.Read.Directory, Directory.Read.All, RoleManagement.ReadWrite.Directory, Directory.ReadWrite.All \| + ## HTTP request You can address the directory role using either its id or roleTemplateId.
v1.0	Directoryrole List Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-list-members.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.Read.Directory, Directory.Read.All, RoleManagement.ReadWrite.Directory, Directory.ReadWrite.All \| + [!INCLUDE [limited-info](../../includes/limited-info.md)] ## HTTP request
v1.0	Directoryrole List Scopedmembers	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-list-scopedmembers.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.Read.Directory, Directory.Read.All, RoleManagement.ReadWrite.Directory, Directory.ReadWrite.All \| + ## HTTP request You can address the directory role using either its id or roleTemplateId.
v1.0	Directoryrole List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-list.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.Read.Directory, Directory.Read.All, RoleManagement.ReadWrite.Directory, Directory.ReadWrite.All \| + ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Directoryrole Post Members	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/directoryrole-post-members.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account) \| Not supported. \| \|Application \| RoleManagement.ReadWrite.Directory \| + ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Driveitem Restore	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/driveitem-restore.md	The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "restore-item", + "name": "restore-item-e1", "scopes": "files.readwrite", "target": "action" }-->
v1.0	Dynamics Companies Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/dynamics-companies-get.md	Title: Get companies -description: Gets a company object in Dynamics 365 Business Central. -- + Title: "Get companies" +description: "Get a companies object in Dynamics 365 Business Central." + +documentationcenter: "" + ms.localizationpriority: medium ms.prod: "dynamics-365-business-central" doc_type: apiPageType Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve the properties and relationships of a companies object for Dynamics 365 Business Central. +Get a [companies](../resources/dynamics-companies.md) object in Dynamics 365 Business Central. ## Permissions+ One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). \|Permission type \|Permissions (from least to most privileged)\| One of the following permissions is required to call this API. To learn more, in \|Application\|Financials.ReadWrite.All\| ## HTTP request+ +<!-- { "blockType": "ignored" } --> ```http GET /financials/companies ``` ## Optional query parameters -This method supports the [OData Query Parameters](/graph/query-parameters) to help customize the response. + +This method supports the [OData query parameters](/graph/query-parameters) to help customize the response. ## Request headers+ \|Header\|Value\| \|\|--\| \|Authorization \|Bearer {token}. Required. \| ## Request body+ Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a companies object in the response body. + +If successful, this method returns a `200 OK` response code and a [companies](../resources/dynamics-companies.md) object in the response body. ## Example -Request +### Request + +The following is an example of the request. + +<!-- { + "blockType": "ignored", + "name": "get_companies" +}--> -Here is an example of the request. ```http GET https://graph.microsoft.com/beta/financials/companies ``` -Response +### Response -Here is an example of the response. +The following is an example of the response. > Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "ignored", + "truncated": true, + "@odata.type": "microsoft.graph.companies" +} --> + ```json +HTTP/1.1 200 OK +Content-Type: application/json + { "id": "id-value", "systemVersion": "17806", Here is an example of the response. "businessProfileId": "" } ```--
v1.0	Ediscovery Unifiedgroupsource Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/ediscovery-unifiedgroupsource-delete.md	DELETE https://graph.microsoft.com/beta/compliance/ediscovery/cases/{caseId}/cus [!INCLUDE [sample-code](../includes/snippets/go/delete-unifiedgroupsource-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/delete-unifiedgroupsource-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Educationassignmentdefaults Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/educationassignmentdefaults-update.md	If successful, this method returns a `200 OK` response code and an updated [educ # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "update_educationassignmentdefaults" + "name": "update_educationassignmentdefaults_e1" } --> ``` http
v1.0	Educationassignmentresource Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/educationassignmentresource-get.md	The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_educationassignmentresource" + "name": "get_educationassignmentresource_e1" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/fb92ec62-3996-4c3a-ad41-720dd930c834 The following is an example of the request. <!-- { "blockType": "request", "sampleKeys": ["72a7baec-c3e9-4213-a850-f62de0adad5f","1618dfb0-3ff2-4edf-8d5c-b8f81df00e80","a2f95693-aea2-4d5e-a936-11ef390f8f20"], - "name": "get_educationlinkresource_from_educationassignment" + "name": "get_educationlinkresource_from_educationassignment_e2" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/a2f95693-aea2-4d5e-a936-11ef390f8f20 The following is an example of the request. <!-- { "blockType": "request", "sampleKeys": ["72a7baec-c3e9-4213-a850-f62de0adad5f","1618dfb0-3ff2-4edf-8d5c-b8f81df00e80","517b36a6-9ca2-4e7b-9748-3af25f5cd4fd"], - "name": "get_educationexcelresource_from_educationassignment" + "name": "get_educationexcelresource_from_educationassignment_e3" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/517b36a6-9ca2-4e7b-9748-3af25f5cd4fd The following is an example of the request. <!-- { "blockType": "request", "sampleKeys": ["72a7baec-c3e9-4213-a850-f62de0adad5f","1618dfb0-3ff2-4edf-8d5c-b8f81df00e80","3cb7968b-082f-4756-bdfb-782b4538cc0a"], - "name": "get_educationpowerpointresource_from_educationassignment" + "name": "get_educationpowerpointresource_from_educationassignment_e4" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/3cb7968b-082f-4756-bdfb-782b4538cc0a The following is an example of the request. <!-- { "blockType": "request", "sampleKeys": ["72a7baec-c3e9-4213-a850-f62de0adad5f","1618dfb0-3ff2-4edf-8d5c-b8f81df00e80","a7a2fec0-2a26-47bf-8d40-2319c0afb1f4"], - "name": "get_educationfileresource_from_educationassignment" + "name": "get_educationfileresource_from_educationassignment_e5" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/a7a2fec0-2a26-47bf-8d40-2319c0afb1f4 The following is an example of the request. <!-- { "blockType": "request", "sampleKeys": ["72a7baec-c3e9-4213-a850-f62de0adad5f","1618dfb0-3ff2-4edf-8d5c-b8f81df00e80","f3687fc5-908b-4006-8040-dbba9e04023c"], - "name": "get_educationmediaresource_from_educationassignment" + "name": "get_educationmediaresource_from_educationassignment_e6" }--> ```msgraph-interactive GET https://graph.microsoft.com/beta/education/classes/72a7baec-c3e9-4213-a850-f62de0adad5f/assignments/1618dfb0-3ff2-4edf-8d5c-b8f81df00e80/resources/f3687fc5-908b-4006-8040-dbba9e04023c
v1.0	Emailauthenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-delete.md	Deletes a user's [email Authentication Method](../resources/emailauthenticationm ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). +### Permissions acting on self + \|Permission type \| Permissions (from least to most privileged) \| \|:\|:-\| \| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite \| One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Privileged authentication administrator -* Authentication admin ## HTTP request -<!-- { - "blockType": "ignored" -} > +Delete the email method from your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in. +<!-- { "blockType": "ignored" } --> +``` http +DELETE /me/authentication/emailMethods/{id} +``` + +Delete the email authentication method from another user's account. +<!-- { "blockType": "ignored" } --> ``` http DELETE /users/{id \| userPrincipalName}/authentication/emailMethods/{id} ```
v1.0	Emailauthenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Get details of your own email authentication method. +<!-- { "blockType": "ignored" } --> ``` http GET /me/authentication/emailMethods/{id} +``` + +Get details of your own or another user's email authentication method. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/emailMethods/{id} ```
v1.0	Emailauthenticationmethod Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethod-update.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): -* Global administrator -* Privileged authentication administrator -* Authentication administrator +Users without one of the supported Azure AD roles cannot update their own email authentication method. ## HTTP request -<!-- { - "blockType": "ignored" -} > +Update the email method for your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in. +<!-- { "blockType": "ignored" } --> +``` http +PATCH /me/authentication/emailMethods/{id} +``` + +Update the email authentication method for another user's account. +<!-- { "blockType": "ignored" } --> ``` http PATCH /users/{id \| userPrincipalName}/authentication/emailMethods/{id} ```
v1.0	Emailauthenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Emailauthenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request For delegated scenarios, the administrator needs one of the following [Azure AD --> ```http -GET https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy/authenticationMethodConfigurations/email +GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/email ``` ## Request headers
v1.0	Emailauthenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/emailauthenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Entitlementmanagement Post Accesspackageassignmentpolicies	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/entitlementmanagement-post-accesspackageassignmentpolicies.md	Content-type: application/json } ``` -- ### Example 4: Create a policy and specify the stages to trigger pre-defined custom workflow extensions #### Request Content-type: application/json } ``` +### Example 5: Create a policy and specify the stages to trigger pre-defined access package custom extensions + +#### Request + +In the following example, the pre-defined accessPackageCustomWorkflowExtension object is triggered when an access package assignment request is created and when it's granted. The identifier provided within the customExtension field is the accessPackageCustomWorkflowExtension object's ID. ++ +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "create_accesspackageassignmentpolicy_accessPackageCustomWorkflowExtension" +}--> ++ +```msgraph-interactive +POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignmentPolicies +Content-type: application/json + +{ + "displayName": "extension-policy", + "description": "test", + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "expiration": { + "type": "afterDuration", + "duration": "P365D" + }, + "canExtend": false, + "requestApprovalSettings": null, + "requestorSettings": { + "acceptRequests": true, + "scopeType": "AllExistingDirectorySubjects", + "allowedRequestors": [], + "isOnBehalfAllowed": false + }, + "accessReviewSettings": null, + "questions": [], + "customExtensionStageSettings": [ + { + "stage": "assignmentRequestCreated", + "customExtension": { + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8" + } + }, + { + "stage": "assignmentRequestGranted", + "customExtension": { + "id": "219f57b6-7983-45a1-be01-2c228b7a43f8" + } + } + ] +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) ++++ +#### Response + +The following is an example of the response. The customExtensionStageSettings object isn't returned by default. To retrieve this object, use the GET method with `$expand`. For more information, see [Retrieve the custom extension stage settings for a policy](accesspackageassignmentpolicy-get.md#example-3-retrieve-the-custom-extension-stage-settings-for-a-policy) + +> Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.accessPackageAssignmentPolicy" +} --> + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "d0324cbb-24a2-4edb-acca-fee5384c6a5e", + "displayName": "extension-policy", + "description": "test", + "canExtend": false, + "durationInDays": 0, + "expirationDateTime": null, + "accessPackageId": "ba5807c7-2aa9-4c8a-907e-4a17ee587500", + "accessReviewSettings": null, + "questions": [], + "requestorSettings": { + "scopeType": "AllExistingDirectorySubjects", + "acceptRequests": true, + "allowedRequestors": [] + }, + "requestApprovalSettings": { + "isApprovalRequired": false, + "isApprovalRequiredForExtension": false, + "isRequestorJustificationRequired": false, + "approvalMode": "NoApproval", + "approvalStages": [] + } +} +``` + <!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98 2019-02-04 14:57:30 UTC --> <!-- {
v1.0	Externalconnectors Externalitem Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/externalconnectors-externalitem-get.md	The following is an example of the request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_externalitem", + "name": "get_externalitem_e1", "sampleKeys": ["contosohr", "TSP228082938"] } -->
v1.0	Externalconnectors Externalitem Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/externalconnectors-externalitem-update.md	Content-type: application/json [!INCLUDE [sample-code](../includes/snippets/go/update-externalitem-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/update-externalitem-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Fido2authenticationmethod Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-delete.md	Deletes a user's [FIDO2 Security Key Authentication Method](../resources/fido2au ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). -\|Permission type\|Permissions acting on self (from least to most privileged)\|Permissions acting on others (from least to most privileged)\| -\|:\|:\|:--\| -\| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite \| UserAuthenticationMethod.ReadWrite.All \| -\| Delegated (personal Microsoft account) \| Not supported. \| Not supported. \| -\| Application \| Not applicable. \| UserAuthenticationMethod.ReadWrite.All \| +### Permissions acting on self -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): +\|Permission type \| Permissions (from least to most privileged) \| +\|:\|:-\| +\| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| Not supported. \| -* Global administrator -* Privileged authentication administrator -* Authentication administrator +### Permissions acting on other users + +\|Permission type \| Permissions (from least to most privileged) \| +\|:\|:-\|:--\| +\| Delegated (work or school account) \| UserAuthenticationMethod.ReadWrite.All \| +\| Delegated (personal Microsoft account) \| Not supported. \| +\| Application \| UserAuthenticationMethod.ReadWrite.All \| + ## HTTP request -<!-- { - "blockType": "ignored" -} > -``` http +Remove a FIDO2 authentication method from your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in. +<!-- { "blockType": "ignored" } --> +```http +DELETE /me/authentication/fido2Methods/{id} +``` + +Remove a FIDO2 authentication method from another user's account. +<!-- { "blockType": "ignored" } --> +```http DELETE /users/{id \| userPrincipalName}/authentication/fido2Methods/{id} ```
v1.0	Fido2authenticationmethod Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-get.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Get details of your own FIDO2 authentication method. +<!-- { "blockType": "ignored" } --> ``` http GET /me/authentication/fido2Methods/{id} +``` + +Get details of your own or another user's FIDO2 authentication method. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/fido2Methods/{id} ```
v1.0	Fido2authenticationmethod List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethod-list.md	One of the following permissions is required to call this API. To learn more, in \| Delegated (personal Microsoft account) \| Not supported. \| \| Application \| UserAuthenticationMethod.Read.All, UserAuthenticationMethod.ReadWrite.All \| -For delegated scenarios where an admin is acting on another user, the admin needs one of the following [roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global administrator -* Global reader -* Privileged authentication administrator -* Authentication administrator ## HTTP request -<!-- { - "blockType": "ignored" -} > +Retrieve the details of your own FIDO2 authentication methods. +<!-- { "blockType": "ignored" } --> ``` http GET /me/authentication/fido2Methods +``` + +Retrieve the details of your own or another user's FIDO2 authentication methods. +<!-- { "blockType": "ignored" } --> +``` http GET /users/{id \| userPrincipalName}/authentication/fido2Methods ```
v1.0	Fido2authenticationmethodconfiguration Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.Read.All, Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Global Reader -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Fido2authenticationmethodconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/fido2authenticationmethodconfiguration-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|Policy.ReadWrite.AuthenticationMethod\| -For delegated scenarios, the administrator needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): - -* Authentication Policy Administrator -* Global Administrator ## HTTP request
v1.0	Governanceresource Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceresource-get.md	Namespace: microsoft.graph Retrieve the properties and relationships of a [governanceResource](../resources/governanceresource.md) object. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, this API requires the requestor to have at least one role assignment on the resource. +The requestor must also have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governanceresource List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceresource-list.md	Namespace: microsoft.graph Retrieve a collection of [governanceResource](../resources/governanceresource.md) that the requestor has access to. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governanceresource Register	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceresource-register.md	Register a [governanceResource](../resources/governanceresource.md) object in Pr ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). ->Note: This API also requires that the requester have at least one active role assignment on the resource. +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| Not supported. \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| Not supported. \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| Not supported. \| -### Azure resources - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +The requester must also have at least one active role assignment on the resource. ## HTTP request This method only supports the `$select` and `$expand` [OData query parameter ## Request body -\| Properties \| Type \| Description \| +\| Properties \| Type \| Description \| \|:- \|:- \|:-- \| \| externalId \| String \| The external identifier of the resource to be registered in PIM. If registering a subscription, the identifier is the subscription identifier prepended by `/subscriptions/`. For example, `/subscriptions/c14ae696-5e0c-4e5d-88cc-bef6637737ac`. \|
v1.0	Governanceroleassignment Export	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignment-export.md	Namespace: microsoft.graph Retrieve a collection of [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) in the format `application/octet-stream`, which can be parsed as a .csv file in the browser. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| +The requestor must also have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } --> -Export a collection of [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) on a resource - ->Note: Besides the permission scope, this request requires the requestor to have at least one role assignment on the resource. +Export a collection of [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) on a resource. ```http GET /privilegedAccess/azureResources/roleAssignments/export?$filter=resourceId+eq+'{resourceId}' ``` -Export a collection of [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) of mine +Export a collection of [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) for the signed-in user. ```http GET /privilegedAccess/azureResources/roleAssignments/export?$filter=subjectId+eq+'{myId}' ```
v1.0	Governanceroleassignment Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignment-get.md	Namespace: microsoft.graph Retrieve the properties and relationships of a [governanceRoleAssignment](../resources/governanceroleassignment.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| +The requestor must also have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } --> -1. Get a [governanceRoleAssignment](../resources/governanceroleassignment.md) on a resource +1. Get a [governanceRoleAssignment](../resources/governanceroleassignment.md) on a resource. - Note: Besides the permission scope, it requires the requestor to have at least one role assignment on the resource. ```http GET /privilegedAccess/azureResources/resources/{resourceId}/roleAssignments/{id} GET /privilegedAccess/azureResources/roleAssignments/{id}?$filter=resourceId+eq+'{resourceId}' ``` -2. Get a [governanceRoleAssignment](../resources/governanceroleassignment.md) of mine +2. Get a [governanceRoleAssignment](../resources/governanceroleassignment.md) for the signed-in user. ```http GET /privilegedAccess/azureResources/roleAssignments/{id}?$filter=subjectId+eq+'{myId}' ```
v1.0	Governanceroleassignment List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignment-list.md	Namespace: microsoft.graph Retrieve a collection of [governanceRoleAssignments](../resources/governanceroleassignment.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| +The requestor must also have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } --> List a collection of [governanceRoleAssignments](../resources/governanceroleassignment.md) on a resource. ->Note: Besides the permission scope, this request requires the requestor to have at least one role assignment on the resource. ```http GET /privilegedAccess/azureResources/resources/{resourceId}/roleAssignments GET /privilegedAccess/azureResources/roleAssignments?$filter=resourceId+eq+'{resourceId}' ``` -List a collection of [governanceRoleAssignments](../resources/governanceroleassignment.md) of mine. +List a collection of [governanceRoleAssignments](../resources/governanceroleassignment.md) for the signed-in user. ```http GET /privilegedAccess/azureResources/roleAssignments?$filter=subjectId+eq+'{myId}' ```
v1.0	Governanceroleassignmentrequest Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignmentrequest-get.md	Namespace: microsoft.graph Get a [governanceRoleAssignmentRequest](../resources/governanceroleassignmentrequest.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, it requires the requestor -* to have at least one role assignment on the resource; or -* is the subject of the [governanceRoleAssignmentRequest](../resources/governanceroleassignmentrequest.md). +The requester must also have at least one active role assignment on the resource or must be the subject of the [governanceRoleAssignmentRequest](../resources/governanceroleassignmentrequest.md). ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governanceroleassignmentrequest Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignmentrequest-post.md	Create a role assignment request to represent the operation you want on a role a ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -### Azure resources - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| Not supported. \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| Not supported. \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| Not supported. \| ## HTTP request
v1.0	Governanceroleassignmentrequest Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroleassignmentrequest-update.md	Namespace: microsoft.graph Enable administrators to update their decisions (`AdminApproved` or `AdminDenied`) on [governanceRoleAssignmentRequests](../resources/governanceroleassignmentrequest.md) that are in status of `PendingAdminDecision`. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). ->Note: This API also requires that the requester have at least one `Active` administrator role assignment (`owner` or `user access administrator`) on the resource that the [governanceRoleAssignmentRequest](../resources/governanceroleassignmentrequest.md) belongs to. +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -### Azure resources +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| Not supported. \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| Not supported. \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| Not supported. \| -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +The requester must also have at least one active administrator role assignment (`owner` or `user access administrator`) on the resource that the [governanceRoleAssignmentRequest](../resources/governanceroleassignmentrequest.md) belongs to. ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governanceroledefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroledefinition-get.md	Namespace: microsoft.graph Retrieve the properties and relationships of a [governanceRoleDefinition](../resources/governanceroledefinition.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, this API requires the requestor to have at least one role assignment on the resource, which the [governanceRoleDefinition](../resources/governanceroledefinition.md) belongs to. +The requestor must also have at least one role assignment on the resource which the [governanceRoleDefinition](../resources/governanceroledefinition.md) belongs to. ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governanceroledefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governanceroledefinition-list.md	Namespace: microsoft.graph Get a collection of [governanceRoleDefinitions](../resources/governanceroledefinition.md) on a resource. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, this API requires the requestor to have at least one role assignment on the resource. +The requestor must also have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } -->
v1.0	Governancerolesetting Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governancerolesetting-get.md	Namespace: microsoft.graph Retrieve the properties and relationships of a [governanceRoleSetting](../resources/governancerolesetting.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD +The requestor must also have at least one role assignment on the resource which the [governanceRoleSetting](../resources/governancerolesetting.md) belongs to. -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, this API requires the requestor to have at least one role assignment on the resource, which the [governanceRoleSetting](../resources/governancerolesetting.md) belongs to. ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Governancerolesetting List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governancerolesetting-list.md	Namespace: microsoft.graph Retrieve a collection of [governanceRoleSettings](../resources/governancerolesetting.md) on a resource. ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). -### Azure resources +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureResources \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| PrivilegedAccess.Read.AzureAD \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| PrivilegedAccess.Read.AzureResources \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| PrivilegedAccess.Read.AzureADGroup \| -### Azure AD +The requestor must also have at least one role assignment on the resource. -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureAD \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| PrivilegedAccess.Read.AzureADGroup \| - -Besides the permission scope, this API requires the requestor to have at least one role assignment on the resource. ## HTTP request <!-- { "blockType": "ignored" } --> ```http
v1.0	Governancerolesetting Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/governancerolesetting-update.md	Namespace: microsoft.graph Update the properties of [governanceRoleSetting](../resources/governancerolesetting.md). ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference#privileged-access-permissions). ->Note: This API also requires that the requester have at least one `Active` administrator role assignment (`owner` or `user access administrator`) on the resource. +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). -\|Permission type \| Permissions \| -\|:--\|:\| -\|Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\|Delegated (personal Microsoft account) \| Not supported. \| -\|Application \| Not supported. \| -### Azure resources +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| Azure AD \| PrivilegedAccess.ReadWrite.AzureAD \| Not supported. \| Not supported. \| +\| Azure resources \| PrivilegedAccess.ReadWrite.AzureResources \| Not supported. \| Not supported. \| +\| [group](../resources/group.md) \| PrivilegedAccess.ReadWrite.AzureADGroup \| Not supported. \| Not supported. \| -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureResources \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Azure AD - -\| Permission type \| Permissions \| -\|: \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureAD \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| - -### Groups - -\|Permission type \| Permissions \| -\|:-- \|:-- \| -\| Delegated (work or school account) \| PrivilegedAccess.ReadWrite.AzureADGroup \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +The requester must also have at least one active administrator role assignment (`owner` or `user access administrator`) on the resource. ## HTTP request <!-- { "blockType": "ignored" } --> PATCH /privilegedAccess/azureResources/roleSettings/{id} ## Request body In the request body, supply the values for [governanceRuleSettings](../resources/governancerulesetting.md) that need to be updated. -\| Property \| Type \|Description\| +\| Property \| Type \|Description\| \|:\|:--\|:-\| \|adminEligibleSettings\|[governanceRuleSetting](../resources/governancerulesetting.md) collection\|The rule settings that are evaluated when an administrator tries to add an eligible role assignment.\| \|adminMemberSettings\|[governanceRuleSetting](../resources/governancerulesetting.md) collection\|The rule settings that are evaluated when an administrator tries to add a direct member role assignment.\|
v1.0	Group Delta	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-delta.md	The following is an example of the request. There is no `$select` parameter, so <!-- { "blockType": "request", - "name": "group_delta" + "name": "group_delta_e1" }--> ```msgraph-interactive The next example shows the initial request selecting 3 properties for change tra <!-- { "blockType": "request", - "name": "group_delta_with_selelct" + "name": "group_delta_with_selelct_e2" }--> ```msgraph-interactive The next example shows the initial request selecting 3 properties for change tra <!-- { "blockType": "request", - "name": "group_delta_minimal" + "name": "group_delta_minimal_e3" }--> ```msgraph-interactive
v1.0	Group Evaluatedynamicmembership	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-evaluatedynamicmembership.md	Evaluate whether a user or device is or would be a member of a dynamic group. Th ## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). +The following table shows the least privileged permission or permissions required to call this API on each supported resource type. Follow [best practices](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions) to request least privileged permissions. For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). ### Evaluate dynamic membership with member ID and group ID -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| :-- \| -\| Delegated (work or school account) \| For user: Group.Read.All and User.Read.All, Directory.Read.All<br>For device: Group.Read.All and Device.Read.All, Directory.Read.All \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [device](../resources/device.md) \| Group.Read.All and Device.Read.All \| Not supported. \| Not supported. \| +\| [user](../resources/user.md) \| Group.Read.All and User.Read.All \| Not supported. \| Not supported. \| ### Evaluate dynamic membership with member ID and membership rule -\| Permission type \| Permissions (from least to most privileged) \| -\| :- \| : \| -\| Delegated (work or school account) \| For user: User.Read.All, Directory.Read.All<br>For device: Device.Read.All, Directory.Read.All \| -\| Delegated (personal Microsoft account) \| Not supported. \| -\| Application \| Not supported. \| +\| Supported resource \| Delegated (work or school account) \| Delegated (personal Microsoft account) \| Application \| +\|:-\|:-\|:-\|:-\| +\| [device](../resources/device.md) \| Device.Read.All \| Not supported. \| Not supported. \| +\| [user](../resources/user.md) \| User.Read.All \| Not supported. \| Not supported. \| ## HTTP request
v1.0	Group List Settings	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-list-settings.md	One of the following permissions is required to call this API. To learn more, in ## HTTP request <!-- { "blockType": "ignored" } --> -List tenant-wide or group settings +List tenant-wide or group settings. ```http GET /settings ``` <!-- { "blockType": "ignored" } --> -List group-specific settings +List group-specific settings. ```http GET /groups/{groupId}/settings ``` Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and collection of [directorySetting](../resources/directorysetting.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [directorySetting](../resources/directorysetting.md) objects in the response body. ## Example ### Request -Here is an example of the request. + +The following is an example of a request. # [HTTP](#tab/http) <!-- {
v1.0	Group Post Groups	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/group-post-groups.md	The following table shows the properties that are required when you create the [ \| :-- \| : \| :-- \| \| displayName \| string \| The name to display in the address book for the group. Maximum length is 256 characters. Required. \| \| mailEnabled \| boolean \| Set to `true` for mail-enabled groups. Required. \| -\| mailNickname \| string \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : . <> , SPACE`. Required. \| +\| mailNickname \| string \| The mail alias for the group, unique for Microsoft 365 groups in the organization. Maximum length is 64 characters. This property can contain only characters in the [ASCII character set 0 - 127](/office/vba/language/reference/user-interface-help/character-set-0127) except the following: ` @ () \ [] " ; : <> , SPACE`. Required. \| \| securityEnabled \| boolean \| Set to `true` for security-enabled groups, including Microsoft 365 groups. Required. Note: Groups created using the Microsoft Azure portal always have securityEnabled initially set to `true`. \| > [!IMPORTANT]
v1.0	Horizontalsection Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/horizontalsection-get.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_horizontalsection" + "name": "get_horizontalsection_e1" } --> With `select` and `expand` statements, you can retrieve horizontalSection metada # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_horizontalsection" + "name": "get_horizontalsection_e2" } -->
v1.0	Horizontalsectioncolumn Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/horizontalsectioncolumn-get.md	The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_horizontalsectioncolumn" + "name": "get_horizontalsectioncolumn_e1" } --> With `select` and `expand` statements, you can retrieve horizontalSectionColumn # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_horizontalSectionColumn" + "name": "get_horizontalSectionColumn_e2" } -->
v1.0	Identityapiconnector Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identityapiconnector-get.md	GET https://graph.microsoft.com/beta/identity/apiConnectors/{id} [!INCLUDE [sample-code](../includes/snippets/go/get-identityapiconnector-go-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] -# [PowerShell](#tab/powershell) - # [PHP](#tab/php) [!INCLUDE [sample-code](../includes/snippets/php/get-identityapiconnector-php-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
v1.0	Identitygovernance Customtaskextension Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Customtaskextension Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Customtaskextension Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-customtaskextension-update.md	One of the following permissions is required to call this API. To learn more, in > [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: Logic App contributor, Contributor, or Owner. -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Deleteditemcontainer Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deletedItemcontainer-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Deleteditemcontainer Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-deleteditemcontainer-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Lifecyclemanagementsettings Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity", - "workflowScheduleIntervalInHours": 1 + "workflowScheduleIntervalInHours": 1, + "emailSettings": { + "senderDomain": "ContosoIndustries.net", + "useCompanyBranding": true + } } ```
v1.0	Identitygovernance Lifecyclemanagementsettings Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecyclemanagementsettings-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request PATCH /identityGovernance/lifecycleWorkflows/settings \|Property\|Type\|Description\| \|:\|:\|:\| \|workflowScheduleIntervalInHours\|Int32\|The workflow schedule interval. Required.\| +\|emailSettings\|[microsoft.graph.emailSettings](../resources/emailsettings.md)\|The settings for emails sent from email-specific tasks within a workflow. Required.\| ## Response Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#identityGovernance/lifecycleWorkflows/settings/$entity", - "workflowScheduleIntervalInHours": 3 + "workflowScheduleIntervalInHours": 3, + "emailSettings": { + "senderDomain": "ContosoIndustries.net", + "useCompanyBranding": true + } } ```
v1.0	Identitygovernance Lifecycleworkflowscontainer List Customtaskextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-customtaskextensions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Lifecycleworkflowscontainer List Deleteditems	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-deleteditems.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Lifecycleworkflowscontainer List Taskdefinitions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-taskdefinitions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. Because the category is a flagged enumeration that can be one of `joiner`, `joiner,leaver`, or `leaver`, the `has` operator checks tasks where the category includes "joiner". - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Lifecycleworkflowscontainer List Workflows	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflows.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Lifecycleworkflowscontainer List Workflowtemplates	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-list-workflowtemplates.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Lifecycleworkflowscontainer Post Customtaskextensions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-customtaskextensions.md	One of the following permissions is required to call this API. To learn more, in > [!IMPORTANT] > The calling user also requires one of the following Azure Resource Manager roles for the specified Azure Logic App: Logic App contributor, Contributor, or Owner. -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Lifecycleworkflowscontainer Post Workflows	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-lifecycleworkflowscontainer-post-workflows.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request The following is an example of a request that creates a workflow with the follow + It runs for new users that are based in Australia, on their employeeHireDate. + Two tasks are carried out when the workflow runs: the user's account is enabled and a "Welcome" email is sent to the user. + # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Run Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "lifecycleworkflows_get_workflow_run" + "name": "lifecycleworkflows_get_workflow_run_e1" } --> ``` http Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "lifecycleworkflows_get_workflow_run" + "name": "lifecycleworkflows_get_workflow_run_e2" } --> ``` http
v1.0	Identitygovernance Run List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Run List Userprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-list-userprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Run Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-run-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Task Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Task Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-task-update.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request PATCH /identityGovernance/lifecycleWorkflows/workflows/{workflowId}/tasks/{taskI \|description\|String\|Describes the purpose of the task for administrative use.\| \|displayName\|String\|A unique string that identifies the task within the workflow.\| +> [!NOTE] +> All other properties can be updated by creating a new workflow version. For details, see [workflow: createNewVersion](identitygovernance-workflow-createnewversion.md). + ## Response If successful, this action returns a `204 No Content` response code. If successful, this action returns a `204 No Content` response code. The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Taskdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskdefinition-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Taskprocessingresult Resume	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskprocessingresult-resume.md	Title: "taskProcessingResult: resume" -description: "An Azure Logic Apps system-assigned managed identity calls this API to resume the task processing result that's in progress." +description: "In the default case an Azure Logic Apps system-assigned managed identity calls this API to resume the task processing result that's in progress." ms.localizationpriority: medium ms.prod: "governance" Namespace: microsoft.graph.identityGovernance [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Resume a task processing result that's `inProgress`. An Azure Logic Apps system-assigned managed identity calls this API. +Resume a task processing result that's `inProgress`. In the default case an Azure Logic Apps system-assigned managed identity calls this API. For more information read about [Lifecycle Workflows extensibility approach](/azure/active-directory/governance/lifecycle-workflow-extensibility). ## Permissions One of the following permissions is required to call this API. To learn more, in \|Permission type\|Permissions (from least to most privileged)\| \|:\|:\| -\|Delegated (work or school account)\|Not supported.\| +\|Delegated (work or school account)\|LifecycleWorkflows.ReadWrite.All\| \|Delegated (personal Microsoft account)\|Not supported.\| -\|Application\|Not Supported.\| +\|Application\|LifecycleWorkflows.ReadWrite.All (See note below for least privileged)\| + > [!IMPORTANT] -> Only the Azure Logic Apps system-assigned managed identity that's specified in the [custom task extension authentication Configuration](../resources/identitygovernance-customtaskextension.md) can call this API. The authorized resource doesn't require any Microsoft Graph permissions. +> Apps specified in `authorizedApps` within the [customTaskExtensionCallbackConfiguration](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md) of the [custom task extension](../resources/identitygovernance-customtaskextension.md) are allowed to resume the task processing result without application permissions or role assignments. +> The app specified in `resourceId` within the [azureAdTokenAuthentication](../resources/identitygovernance-customtaskextensioncallbackconfiguration.md) of the [custom task extension](../resources/identitygovernance-customtaskextension.md) is allowed to resume the task processing result without an application permission or role assignment. ## HTTP request
v1.0	Identitygovernance Taskreport List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Taskreport Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-taskreport-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Userprocessingresult Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request The following is an example of a request. # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "lifecycleworkflows_get_run_userprocessingresult" + "name": "lifecycleworkflows_get_run_userprocessingresult_e1" } --> ``` http Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "lifecycleworkflows_get_run_userprocessingresult" + "name": "lifecycleworkflows_get_run_userprocessingresult_e2" } --> ``` http
v1.0	Identitygovernance Userprocessingresult List Taskprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-list-taskprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request", Content-Type: application/json ### Example 3: Get the task processing results for a user processing result in a run report for a workflow - # [HTTP](#tab/http) <!-- { "blockType": "request", Content-Type: application/json The following is an example of a request. -- # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Userprocessingresult Summary	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-userprocessingresult-summary.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow Activate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-activate.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow Createnewversion	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-createnewversion.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request If successful, this action returns a `200 OK` response code and a [microsoft.gra ## Examples -### Request +### Example 1: Create a new version of a workflow + +#### Request The following is an example of a request. Content-length: 631 { "workflow":{ + "category": "joiner", "description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true, Content-length: 631 -### Response +#### Response The following is an example of the response >Note: The response object shown here might be shortened for readability. The following is an example of the response HTTP/1.1 200 OK Content-Type: application/json + { "workflow":{ + "category": "joiner", "description": "Configure new hire tasks for onboarding employees on their first day", "displayName": "Global onboard new hire employee", "isEnabled": true, Content-Type: application/json } } ```+ +### Example 2: Create a new version of a task with customized email + +#### Request + +The following is an example of a request. + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "lifecycleworkflows_workflowthis.createnewversion_customemail" +} +--> +``` http +POST https://graph.microsoft.com/beta/identityGovernance/lifecycleWorkflows/workflows/{workflowId}/createNewVersion +Content-Type: application/json +Content-length: 631 + +{ + "workflow":{ + "category": "joiner", + "description": "Configure new hire tasks for onboarding employees on their first day", + "displayName": "Global onboard new hire employee", + "isEnabled": true, + "isSchedulingEnabled": false, + "executionConditions": { + "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions", + "scope": { + "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet", + "rule": "(department eq 'Marketing')" + }, + "trigger": { + "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger", + "timeBasedAttribute": "employeeHireDate", + "offsetInDays": 1 + } + }, + "tasks": [ + { + "continueOnError": false, + "description": "Enable user account in the directory", + "displayName": "Enable User Account", + "isEnabled": true, + "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc", + "arguments": [] + }, + { + "continueOnError": false, + "description": "Send welcome email to new hire", + "displayName": "Send Welcome Email", + "isEnabled": true, + "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea", + "arguments": [ + { + "name": "cc", + "value": "1baa57fa-3c4e-4526-ba5a-db47a9df95f0" + }, + { + "name": "customSubject", + "value": "Welcome to the organization {{userDisplayName}}!" + }, + { + "name": "customBody", + "value": "Welcome to our organization {{userGivenName}}!" + }, + { + "name": "locale", + "value": "en-us" + } + ] + } + ] + } +} +``` + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +#### Response ++ +The following is an example of the response +>Note: The response object shown here might be shortened for readability. +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.identityGovernance.workflow" +} +--> +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "workflow":{ + "category": "joiner", + "description": "Configure new hire tasks for onboarding employees on their first day", + "displayName": "Global onboard new hire employee", + "isEnabled": true, + "isSchedulingEnabled": false, + "executionConditions": { + "@odata.type": "#microsoft.graph.identityGovernance.triggerAndScopeBasedConditions", + "scope": { + "@odata.type": "#microsoft.graph.identityGovernance.ruleBasedSubjectSet", + "rule": "(department eq 'Marketing')" + }, + "trigger": { + "@odata.type": "#microsoft.graph.identityGovernance.timeBasedAttributeTrigger", + "timeBasedAttribute": "employeeHireDate", + "offsetInDays": 1 + } + }, + "tasks": [ + { + "continueOnError": false, + "description": "Enable user account in the directory", + "displayName": "Enable User Account", + "isEnabled": true, + "taskDefinitionId": "6fc52c9d-398b-4305-9763-15f42c1676fc", + "arguments": [] + }, + { + "continueOnError": false, + "description": "Send welcome email to new hire", + "displayName": "Send Welcome Email", + "isEnabled": true, + "taskDefinitionId": "70b29d51-b59a-4773-9280-8841dfd3f2ea", + "arguments": [ + { + "name": "cc", + "value": "b47471b9-af8f-4a5a-bfa2-b78e82398f6e, a7a23ce0-909b-40b9-82cf-95d31f0aaca2" + }, + { + "name": "customSubject", + "value": "Welcome to the organization {{userDisplayName}}!" + }, + { + "name": "customBody", + "value": "Welcome to our organization {{userGivenName}} {{userSurname}}. \nFor more information, reach out to your manager {{managerDisplayName}} at {{managerEmail}}." + }, + { + "name": "locale", + "value": "en-us" + }, + ] + } + ] + } +} +```
v1.0	Identitygovernance Workflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-delete.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json } ``` - ### Example 2: Retrieve specific properties of a workflow #### Request
v1.0	Identitygovernance Workflow List Runs	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-runs.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Workflow List Task	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-task.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow List Taskreports	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-taskreports.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Workflow List Userprocessingresults	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-userprocessingresults.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Workflow List Versions	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-list-versions.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Workflow Restore	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-restore.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflow-update.md	Namespace: microsoft.graph.identityGovernance [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Update the properties of a [workflow](../resources/identitygovernance-workflow.md) object. +Update the properties of a [workflow](../resources/identitygovernance-workflow.md) object. Only the properties listed in the [request body](identitygovernance-workflow-update.md#request-body) table can be updated. To update any other workflow properties, see [workflow: createNewVersion](identitygovernance-workflow-createnewversion.md). ## Permissions One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Lifecycle workflows administrator ## HTTP request PATCH /identityGovernance/lifecycleWorkflows/workflows/{workflowId} \|isEnabled\|Boolean\|A boolean value that denotes whether the workflow is set to run or not.\| \|isSchedulingEnabled\|Boolean\|A Boolean value that denotes whether scheduling is enabled or not. \| +> [!NOTE] +> You can also update task name and description within a workflow without creating a new version. For more information on these properties, see: [update task](identitygovernance-task-update.md). ## Response
v1.0	Identitygovernance Workflowtemplate Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowtemplate-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Identitygovernance Workflowversion Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-get.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request Content-Type: application/json The following is an example of a request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0	Identitygovernance Workflowversion List Tasks	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/identitygovernance-workflowversion-list-tasks.md	One of the following permissions is required to call this API. To learn more, in \|Delegated (personal Microsoft account)\|Not supported.\| \|Application\|LifecycleWorkflows.Read.All, LifecycleWorkflows.ReadWrite.All\| -For delegated scenarios, the admin needs one of the following [Azure AD roles](/azure/active-directory/users-groups-roles/directory-assign-admin-roles#available-roles): --- Global administrator-- Global reader-- Lifecycle workflows administrator ## HTTP request
v1.0	Inboundshareduserprofile Exportpersonaldata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/inboundshareduserprofile-exportpersonaldata.md	+ + Title: "inboundSharedUserProfile: exportPersonalData" +description: "Create a request to export the personal data for an inboundSharedUserProfile." + +ms.localizationpriority: medium ++ +# inboundSharedUserProfiles: exportPersonalData + +Namespace: microsoft.graph ++ +Create a request to export the personal data for an [inboundSharedUserProfile](../resources/inboundshareduserprofile.md). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not applicable\| +\|Application\|CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +``` http +POST /directory/inboundSharedUserProfiles/{userId}/exportPersonalData +``` + +## Request headers + +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body + +In the request body, supply JSON representation of the parameters. + +The following table shows the parameters that can be used with this action. + +\|Parameter\|Type\|Description\| +\|:\|:\|:\| +\|storageLocation\|String\|The storage location to download the exported data to. This can be an Azure Storage Account.\| + +## Response + +If successful, this method returns a `202 Accepted` response code and a Location header in the response body pointing to the storage location of the exported data. + +## Examples + +### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "inboundshareduserprofile_exportpersonaldata" +} +--> + +``` http +POST https://graph.microsoft.com/beta/directory/inboundSharedUserProfiles/c228b2ae-c4fb-4eda-9620-7e73dddd1cac/exportPersonalData + +{ + "storageLocation": "MyStorageAccount" +} +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ +### Response + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.inboundSharedUserProfile" +} +--> + +``` http +HTTP/1.1 202 Accepted + +{ + "Location": "https://graph.microsoft.com/v1.0/dataPolicyOperations/d007e3da-cd9b-4b02-8d66-422403c53e3f", + "Retry-After": 60 +} +```
v1.0	Inboundshareduserprofile Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/inboundshareduserprofile-get.md	+ + Title: "Get inboundSharedUserProfile" +description: "Read the properties of an inboundSharedUserProfile." + +ms.localizationpriority: medium ++ +# Get inboundSharedUserProfile + +Namespace: microsoft.graph ++ +Read the properties of an [inboundSharedUserProfile](../resources/inboundshareduserprofile.md). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\|CrossTenantUserProfileSharing.Read, CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite, CrossTenantUserProfileSharing.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not applicable\| +\|Application\|CrossTenantUserProfileSharing.Read.All, CrossTenantUserProfileSharing.ReadWrite.All\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +``` http +GET /directory/inboundSharedUserProfiles/{userId} +``` + +## Request headers + +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [inboundSharedUserProfile](../resources/inboundshareduserprofile.md) object in the response body. + +## Examples + +### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "get_inboundshareduserprofile" +} +--> + +``` http +GET https://graph.microsoft.com/beta/directory/inboundSharedUserProfiles/c228b2ae-c4fb-4eda-9620-7e73dddd1cac +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response + +<!-- { + "blockType": "response", + "truncated": true, + "@odata.type": "microsoft.graph.inboundSharedUserProfile" +} +--> + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "userId": "c228b2ae-c4fb-4eda-9620-7e73dddd1cac", + "userPrincipalName": "bob@contoso.com", + "displayName": "Bob", + "homeTenantId": "486fb458-9474-4c44-896b-b30942d055f0" +} +```
v1.0	Inboundshareduserprofile Removepersonaldata	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/inboundshareduserprofile-removepersonaldata.md	+ + Title: "inboundSharedUserProfile: removePersonalData" +description: "Create a request to remove the personal data for an inboundSharedUserProfile." + +ms.localizationpriority: medium ++ +# inboundSharedUserProfiles: removePersonalData + +Namespace: microsoft.graph ++ +Create a request to remove the personal data for an [inboundSharedUserProfile](../resources/inboundshareduserprofile.md). + +## Permissions + +One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). + +\|Permission type\|Permissions (from least to most privileged)\| +\|:\|:\| +\|Delegated (work or school account)\| CrossTenantUserProfileSharing.ReadWrite, CrossTenantUserProfileSharing.ReadWrite.All\| +\|Delegated (personal Microsoft account)\|Not applicable\| +\|Application\|CrossTenantUserProfileSharing.ReadWrite.All\| ++ +## HTTP request + +<!-- { + "blockType": "ignored" +} +--> + +``` http +POST /directory/inboundSharedUserProfiles/{userId}/removePersonalData +``` + +## Request headers + +\|Name\|Description\| +\|:\|:\| +\|Authorization\|Bearer {token}. Required.\| + +## Request body + +Do not supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +# [HTTP](#tab/http) +<!-- { + "blockType": "request", + "name": "inboundshareuserprofile_removepersonaldata" +} +--> + +``` http +POST https://graph.microsoft.com/beta/directory/inboundSharedUserProfiles/c228b2ae-c4fb-4eda-9620-7e73dddd1cac/removePersonalData +``` + +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ +### Response + +<!-- { + "blockType": "response", + "truncated": true +} +--> + +``` http +HTTP/1.1 204 No Content +```
v1.0	Industrydata Azuredatalakeconnector Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "delete_azuredatalakeconnector", + "name": "delete_azuredatalakeconnector_e1", "sampleKeys": ["8c010e87-c28b-4350-bdc1-65ec29258b93"] } --> The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_azuredatalakeconnector", + "name": "get_azuredatalakeconnector_e1", "sampleKeys": ["51dca0a0-85f6-4478-f526-08daddab2271"] } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Getuploadsession	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-getuploadsession.md	If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "azuredatalakeconnectorthis.getuploadsession", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271/microsoft.graph.industryData.azureDataLakeConnector/getUploadSession ``` +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_azuredatalakeconnector" + "name": "list_azuredatalakeconnector_e1" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_azureDataLakeConnector_from_dataConnectors" Content-length: 104 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Azuredatalakeconnector Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-azuredatalakeconnector-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_azuredatalakeconnector", Content-type: application/json } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Filevalidateoperation Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_fileValidateOperation", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/operations/581b2ef8-dda2-4a3e-bb62-df13fd4a5808 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Filevalidateoperation List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-filevalidateoperation-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_fileValidateOperation" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/operations ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "delete_inboundflow" + "name": "delete_inboundflow_e1" } --> The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_inboundflow", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "list_inboundflow" + "name": "list_inboundflow_e1" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_inboundfileflow_from_inboundflows" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundfileflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundfileflow-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "update_inboundfileflow" + "name": "update_inboundfileflow_e1" } --> Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_inboundflow", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/inboundFlows/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", - "name": "get_inboundflow", + "name": "get_inboundflow_e1", "sampleKeys": ["7bd62d17-8c37-4494-f68d-08daddab2911"] } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows/7bd62d17-8c37-4494-f68d-08daddab2911 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_inboundflow" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/inboundFlows ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_inboundflow_from_inboundFlows" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Inboundflow Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-inboundflow-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_inboundfileflow" Content-length: 246 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_azuredatalakeconnector", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_azuredatalakeconnector", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors/51dca0a0-85f6-4478-f526-08daddab2271 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_azuredatalakeconnector" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/dataConnectors ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_industrydataconnector_from_dataConnectors" Content-length: 104 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydataconnector Validate	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydataconnector-validate.md	If successful, this action returns a `202 Accepted` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "industrydataconnectorthis.validate", The following is an example of a request. POST https://graph.microsoft.com/beta/external/industryData/dataConnectors/8c010e87-c28b-4350-bdc1-65ec29258b93/validate ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_industrydatarun", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun Getstatistics	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-getstatistics.md	If successful, this function returns a `200 OK` response code and a [microsoft.g The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "industrydatarunthis.getstatistics", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs/918d4a8f-599b-4f6a-b409-e892855db534/getStatistics ``` +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) +++ ### Response The following is an example of the response.
v1.0	Industrydata Industrydatarun List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-industrydatarun-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_industrydatarun" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/runs ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Referencedefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_referencedefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions/RefAcademicSubject-01 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Referencedefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-referencedefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_referencedefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/referenceDefinitions ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Rolegroup Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_rolegroup", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/roleGroups/students ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Rolegroup List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-rolegroup-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_rolegroup" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/roleGroups ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/sourceSystems/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_sourcesystemdefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/sourceSystems/0190210e-8827-4747-6f2b-08dacc885e72 ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_sourcesystemdefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/sourceSystems ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_sourcesystemdefinition_from_sourceSystems" Content-length: 250 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Sourcesystemdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-sourcesystemdefinition-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_sourcesystemdefinition", Content-length: 250 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-delete.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "delete_yearTimePeriodDefinition_from_", The following is an example of a request. DELETE https://graph.microsoft.com/beta/external/industryData/years/0c629a1a-a85c-4365-bdf0-623a32ca69cb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-get.md	If successful, this method returns a `200 OK` response code and a [microsoft.gra The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "get_yeartimeperioddefinition", The following is an example of a request. } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/years/ebf18762-ab92-487e-21d1-08daddab28bb ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-list.md	If successful, this method returns a `200 OK` response code and a collection of The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "list_yearTimePeriodDefinition" } --> -```http +```msgraph-interactive GET https://graph.microsoft.com/beta/external/industryData/years ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Post	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-post.md	If successful, this method returns a `201 Created` response code and a [microsof The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "create_yeartimeperioddefinition_from_years" Content-length: 242 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) +++ ### Response The following is an example of the response.
v1.0	Industrydata Yeartimeperioddefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/industrydata-yeartimeperioddefinition-update.md	If successful, this method returns a `204 No Content` response code. The following is an example of a request. +# [HTTP](#tab/http) <!-- { "blockType": "request", "name": "update_yeartimeperioddefinition", Content-length: 242 } ``` +# [C#](#tab/csharp) + +# [JavaScript](#tab/javascript) + +# [Java](#tab/java) + +# [Go](#tab/go) + +# [PowerShell](#tab/powershell) + +# [PHP](#tab/php) +++ ### Response The following is an example of the response.
v1.0	Intune Androidfotaservice Zebrafotadeployment Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-androidfotaservice-zebrafotadeployment-create.md	Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/zebraFotaDeployments Content-type: application/json -Content-length: 2024 +Content-length: 2079 { "@odata.type": "#microsoft.graph.zebraFotaDeployment", Content-length: 2024 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14, Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 2073 +Content-Length: 2128 { "@odata.type": "#microsoft.graph.zebraFotaDeployment", Content-Length: 2073 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14,
v1.0	Intune Androidfotaservice Zebrafotadeployment Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-androidfotaservice-zebrafotadeployment-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 2194 +Content-Length: 2251 { "value": { Content-Length: 2194 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14,
v1.0	Intune Androidfotaservice Zebrafotadeployment List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-androidfotaservice-zebrafotadeployment-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 2310 +Content-Length: 2369 { "value": [ Content-Length: 2310 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14,
v1.0	Intune Androidfotaservice Zebrafotadeployment Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-androidfotaservice-zebrafotadeployment-update.md	Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/zebraFotaDeployments/{zebraFotaDeploymentId} Content-type: application/json -Content-length: 2024 +Content-length: 2079 { "@odata.type": "#microsoft.graph.zebraFotaDeployment", Content-length: 2024 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14, Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 2073 +Content-Length: 2128 { "@odata.type": "#microsoft.graph.zebraFotaDeployment", Content-Length: 2073 "deploymentStatus": { "@odata.type": "microsoft.graph.zebraFotaDeploymentStatus", "state": "createFailed", + "errorCode": "noDevicesFoundInSelectedAadGroups", "totalDevices": 12, "totalCreated": 12, "totalScheduled": 14,
v1.0	Intune Apps Androidlobapp Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-androidlobapp-create.md	The following table shows the properties that are required when you create the a \|fileName\|String\|The name of the main Lob application file. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|packageId\|String\|The package identifier.\| -\|identityName\|String\|The Identity Name. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityName\|String\|The Identity Name. This property is being deprecated in 2302(February 2023).\| \|minimumSupportedOperatingSystem\|[androidMinimumOperatingSystem](../resources/intune-apps-androidminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| \|versionName\|String\|The version name of Android Line of Business (LoB) app.\| \|versionCode\|String\|The version code of Android Line of Business (LoB) app.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityVersion\|String\|The identity version. This property is being deprecated in 2302(February 2023).\|
v1.0	Intune Apps Androidlobapp Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-androidlobapp-update.md	The following table shows the properties that are required when you create the [ \|fileName\|String\|The name of the main Lob application file. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|packageId\|String\|The package identifier.\| -\|identityName\|String\|The Identity Name. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityName\|String\|The Identity Name. This property is being deprecated in 2302(February 2023).\| \|minimumSupportedOperatingSystem\|[androidMinimumOperatingSystem](../resources/intune-apps-androidminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| \|versionName\|String\|The version name of Android Line of Business (LoB) app.\| \|versionCode\|String\|The version code of Android Line of Business (LoB) app.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityVersion\|String\|The identity version. This property is being deprecated in 2302(February 2023).\|
v1.0	Intune Apps Enterprisecodesigningcertificate Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-enterprisecodesigningcertificate-create.md	The following table shows the properties that are required when you create the e \|:\|:\|:\| \|id\|String\|The unique identifier of the certificate, assigned upon creation. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Read-only.\| \|content\|Binary\|The Windows Enterprise Code-Signing Certificate in the raw data format. Set to null once certificate has been uploaded and other properties have been populated.\| -\|status\|[certificateStatus](../resources/intune-apps-certificatestatus.md)\|Whether the Certificate Status Provisioned or not Provisioned. Possible values are: notProvisioned, provisioned. Default is notProvisioned. Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Possible values are: `notProvisioned`, `provisioned`.\| +\|status\|certificateStatus\|Whether the Certificate Status Provisioned or not Provisioned. Possible values are: notProvisioned, provisioned. Default is notProvisioned. Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Possible values are: `notProvisioned`, `provisioned`.\| \|subjectName\|String\|The subject name for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\| \|subject\|String\|The subject value for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\| \|issuerName\|String\|The issuer name for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\|
v1.0	Intune Apps Enterprisecodesigningcertificate Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-enterprisecodesigningcertificate-update.md	The following table shows the properties that are required when you create the [ \|:\|:\|:\| \|id\|String\|The unique identifier of the certificate, assigned upon creation. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Read-only.\| \|content\|Binary\|The Windows Enterprise Code-Signing Certificate in the raw data format. Set to null once certificate has been uploaded and other properties have been populated.\| -\|status\|[certificateStatus](../resources/intune-apps-certificatestatus.md)\|Whether the Certificate Status Provisioned or not Provisioned. Possible values are: notProvisioned, provisioned. Default is notProvisioned. Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Possible values are: `notProvisioned`, `provisioned`.\| +\|status\|certificateStatus\|Whether the Certificate Status Provisioned or not Provisioned. Possible values are: notProvisioned, provisioned. Default is notProvisioned. Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported. Possible values are: `notProvisioned`, `provisioned`.\| \|subjectName\|String\|The subject name for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\| \|subject\|String\|The subject value for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\| \|issuerName\|String\|The issuer name for the cert. This might contain information such as country (C), state or province (S), locality (L), common name of the cert (CN), organization (O), and organizational unit (OU). Uploading a valid cert file through the Intune admin console will automatically populate this value in the HTTP response. Supports: $filter, $select, $top, $OrderBy, $skip. $Search is not supported.\|
v1.0	Intune Apps Macoslobapp Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-macoslobapp-create.md	The following table shows the properties that are required when you create the m \|buildNumber\|String\|The build number of the package. This should match the package CFBundleShortVersionString of the .pkg file.\| \|versionNumber\|String\|The version number of the package. This should match the package CFBundleVersion in the packageinfo file.\| \|childApps\|[macOSLobChildApp](../resources/intune-apps-macoslobchildapp.md) collection\|List of ComplexType macOSLobChildApp objects. Represents the apps expected to be installed by the package.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in 2211(November 2022).\| \|md5HashChunkSize\|Int32\|The chunk size for MD5 hash. This is '0' or empty if the package was uploaded directly. If the Intune App Wrapping Tool is used to create a .intunemac, this value can be found inside the Detection.xml file.\| \|md5Hash\|String collection\|The MD5 hash codes. This is empty if the package was uploaded directly. If the Intune App Wrapping Tool is used to create a .intunemac, this value can be found inside the Detection.xml file.\| \|ignoreVersionDetection\|Boolean\|When TRUE, indicates that the app's version will NOT be used to detect if the app is installed on a device. When FALSE, indicates that the app's version will be used to detect if the app is installed on a device. Set this to true for apps that use a self update feature.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceAppManagement/mobileApps Content-type: application/json -Content-length: 1762 +Content-length: 1714 { "@odata.type": "#microsoft.graph.macOSLobApp", Content-length: 1762 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value" Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 1934 +Content-Length: 1886 { "@odata.type": "#microsoft.graph.macOSLobApp", Content-Length: 1934 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value"
v1.0	Intune Apps Macoslobapp Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-macoslobapp-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 2079 +Content-Length: 2029 { "value": { Content-Length: 2079 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value"
v1.0	Intune Apps Macoslobapp List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-macoslobapp-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 2219 +Content-Length: 2167 { "value": [ Content-Length: 2219 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value"
v1.0	Intune Apps Macoslobapp Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-macoslobapp-update.md	The following table shows the properties that are required when you create the [ \|buildNumber\|String\|The build number of the package. This should match the package CFBundleShortVersionString of the .pkg file.\| \|versionNumber\|String\|The version number of the package. This should match the package CFBundleVersion in the packageinfo file.\| \|childApps\|[macOSLobChildApp](../resources/intune-apps-macoslobchildapp.md) collection\|List of ComplexType macOSLobChildApp objects. Represents the apps expected to be installed by the package.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in 2211(November 2022).\| \|md5HashChunkSize\|Int32\|The chunk size for MD5 hash. This is '0' or empty if the package was uploaded directly. If the Intune App Wrapping Tool is used to create a .intunemac, this value can be found inside the Detection.xml file.\| \|md5Hash\|String collection\|The MD5 hash codes. This is empty if the package was uploaded directly. If the Intune App Wrapping Tool is used to create a .intunemac, this value can be found inside the Detection.xml file.\| \|ignoreVersionDetection\|Boolean\|When TRUE, indicates that the app's version will NOT be used to detect if the app is installed on a device. When FALSE, indicates that the app's version will be used to detect if the app is installed on a device. Set this to true for apps that use a self update feature.\| Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceAppManagement/mobileApps/{mobileAppId} Content-type: application/json -Content-length: 1762 +Content-length: 1714 { "@odata.type": "#microsoft.graph.macOSLobApp", Content-length: 1762 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value" Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 1934 +Content-Length: 1886 { "@odata.type": "#microsoft.graph.macOSLobApp", Content-Length: 1934 "versionNumber": "Version Number value" } ], - "identityVersion": "Identity Version value", "md5HashChunkSize": 0, "md5Hash": [ "Md5Hash value"
v1.0	Intune Apps Managedandroidlobapp Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-managedandroidlobapp-create.md	The following table shows the properties that are required when you create the m \|fileName\|String\|The name of the main Lob application file. Inherited from [managedMobileLobApp](../resources/intune-apps-managedmobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [managedMobileLobApp](../resources/intune-apps-managedmobilelobapp.md)\| \|packageId\|String\|The package identifier.\| -\|identityName\|String\|The Identity Name. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityName\|String\|The Identity Name. This property is being deprecated in 2302(February 2023).\| \|minimumSupportedOperatingSystem\|[androidMinimumOperatingSystem](../resources/intune-apps-androidminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| \|versionName\|String\|The version name of managed Android Line of Business (LoB) app.\| \|versionCode\|String\|The version code of managed Android Line of Business (LoB) app.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityVersion\|String\|The identity version. This property is being deprecated in 2302(February 2023).\|
v1.0	Intune Apps Managedandroidlobapp Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-managedandroidlobapp-update.md	The following table shows the properties that are required when you create the [ \|fileName\|String\|The name of the main Lob application file. Inherited from [managedMobileLobApp](../resources/intune-apps-managedmobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [managedMobileLobApp](../resources/intune-apps-managedmobilelobapp.md)\| \|packageId\|String\|The package identifier.\| -\|identityName\|String\|The Identity Name. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityName\|String\|The Identity Name. This property is being deprecated in 2302(February 2023).\| \|minimumSupportedOperatingSystem\|[androidMinimumOperatingSystem](../resources/intune-apps-androidminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| \|versionName\|String\|The version name of managed Android Line of Business (LoB) app.\| \|versionCode\|String\|The version code of managed Android Line of Business (LoB) app.\| -\|identityVersion\|String\|The identity version. This property is deprecated starting in February 2023 (Release 2302).\| +\|identityVersion\|String\|The identity version. This property is being deprecated in 2302(February 2023).\|
v1.0	Intune Apps Symanteccodesigningcertificate Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-symanteccodesigningcertificate-update.md	The following table shows the properties that are required when you create the [ \|:\|:\|:\| \|id\|String\|The key of the entity.\| \|content\|Binary\|The Windows Symantec Code-Signing Certificate in the raw data format.\| -\|status\|[certificateStatus](../resources/intune-apps-certificatestatus.md)\|The Cert Status Provisioned or not Provisioned. Possible values are: `notProvisioned`, `provisioned`.\| +\|status\|certificateStatus\|The Cert Status Provisioned or not Provisioned. Possible values are: `notProvisioned`, `provisioned`.\| \|password\|String\|The Password required for .pfx file.\| \|subjectName\|String\|The Subject Name for the cert.\| \|subject\|String\|The Subject value for the cert.\|
v1.0	Intune Apps Windowsappx Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-windowsappx-create.md	The following table shows the properties that are required when you create the w \|committedContentVersion\|String\|The internal committed content version. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|fileName\|String\|The name of the main Lob application file. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| -\|applicableArchitectures\|[windowsArchitecture](../resources/intune-apps-windowsarchitecture.md)\|The Windows architecture(s) for which this app can run on. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`, `arm64`.\| -\|identityName\|String\|The Identity Name.\| -\|identityPublisherHash\|String\|The Identity Publisher Hash.\| -\|identityResourceIdentifier\|String\|The Identity Resource Identifier.\| -\|isBundle\|Boolean\|Whether or not the app is a bundle.\| -\|minimumSupportedOperatingSystem\|[windowsMinimumOperatingSystem](../resources/intune-apps-windowsminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| -\|identityVersion\|String\|The identity version.\| +\|applicableArchitectures\|[windowsArchitecture](../resources/intune-apps-windowsarchitecture.md)\|The Windows architecture(s) on which this app can run. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`; default value is `none`. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`, `arm64`.\| +\|identityName\|String\|The identity name of the uploaded app package. For example: "Contoso.DemoApp".\| +\|identityPublisherHash\|String\|The identity publisher hash of the uploaded app package. This is the hash of the publisher from the manifest. For example: "AB82CD0XYZ".\| +\|identityResourceIdentifier\|String\|The identity resource identifier of the uploaded app package. For example: "TestResourceId".\| +\|isBundle\|Boolean\|When TRUE, indicates that the app is a bundle. When FALSE, indicates that the app is not a bundle. By default, property is set to FALSE.\| +\|minimumSupportedOperatingSystem\|[windowsMinimumOperatingSystem](../resources/intune-apps-windowsminimumoperatingsystem.md)\|The value for the minimum applicable operating system. Valid values for a WindowsAppX app include `v8_0`, `v8_1` and `v10_0`. If the app is a bundle, the minimum supported OS has to be at least `v8_1`.\| +\|identityVersion\|String\|The identity version of the uploaded app package. For example: "1.0.0.0".\|
v1.0	Intune Apps Windowsappx Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-apps-windowsappx-update.md	The following table shows the properties that are required when you create the [ \|committedContentVersion\|String\|The internal committed content version. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|fileName\|String\|The name of the main Lob application file. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| \|size\|Int64\|The total size, including all uploaded files. Inherited from [mobileLobApp](../resources/intune-apps-mobilelobapp.md)\| -\|applicableArchitectures\|[windowsArchitecture](../resources/intune-apps-windowsarchitecture.md)\|The Windows architecture(s) for which this app can run on. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`, `arm64`.\| -\|identityName\|String\|The Identity Name.\| -\|identityPublisherHash\|String\|The Identity Publisher Hash.\| -\|identityResourceIdentifier\|String\|The Identity Resource Identifier.\| -\|isBundle\|Boolean\|Whether or not the app is a bundle.\| -\|minimumSupportedOperatingSystem\|[windowsMinimumOperatingSystem](../resources/intune-apps-windowsminimumoperatingsystem.md)\|The value for the minimum applicable operating system.\| -\|identityVersion\|String\|The identity version.\| +\|applicableArchitectures\|[windowsArchitecture](../resources/intune-apps-windowsarchitecture.md)\|The Windows architecture(s) on which this app can run. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`; default value is `none`. Possible values are: `none`, `x86`, `x64`, `arm`, `neutral`, `arm64`.\| +\|identityName\|String\|The identity name of the uploaded app package. For example: "Contoso.DemoApp".\| +\|identityPublisherHash\|String\|The identity publisher hash of the uploaded app package. This is the hash of the publisher from the manifest. For example: "AB82CD0XYZ".\| +\|identityResourceIdentifier\|String\|The identity resource identifier of the uploaded app package. For example: "TestResourceId".\| +\|isBundle\|Boolean\|When TRUE, indicates that the app is a bundle. When FALSE, indicates that the app is not a bundle. By default, property is set to FALSE.\| +\|minimumSupportedOperatingSystem\|[windowsMinimumOperatingSystem](../resources/intune-apps-windowsminimumoperatingsystem.md)\|The value for the minimum applicable operating system. Valid values for a WindowsAppX app include `v8_0`, `v8_1` and `v10_0`. If the app is a bundle, the minimum supported OS has to be at least `v8_1`.\| +\|identityVersion\|String\|The identity version of the uploaded app package. For example: "1.0.0.0".\|
v1.0	Intune Deviceconfig Androidforworkgeneraldeviceconfiguration Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidforworkgeneraldeviceconfiguration-create.md	The following table shows the properties that are required when you create the a \|vpnEnableAlwaysOnLockdownMode\|Boolean\|Enable lockdown mode for always-on VPN.\| \|workProfileAllowWidgets\|Boolean\|Allow widgets from work profile apps.\| \|workProfileBlockPersonalAppInstallsFromUnknownSources\|Boolean\|Prevent app installations from unknown sources in the personal profile.\| +\|workProfileAccountUse\|[androidWorkProfileAccountUse](../resources/intune-deviceconfig-androidworkprofileaccountuse.md)\|Control user's ability to add accounts in work profile including Google accounts. Possible values are: `allowAllExceptGoogleAccounts`, `blockAll`, `allowAll`, `unknownFutureValue`.\| +\|allowedGoogleAccountDomains\|String collection\|Determine domains allow-list for accounts that can be added to work profile.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations Content-type: application/json -Content-length: 3170 +Content-length: 3296 { "@odata.type": "#microsoft.graph.androidForWorkGeneralDeviceConfiguration", Content-length: 3170 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 3342 +Content-Length: 3468 { "@odata.type": "#microsoft.graph.androidForWorkGeneralDeviceConfiguration", Content-Length: 3342 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ```
v1.0	Intune Deviceconfig Androidforworkgeneraldeviceconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidforworkgeneraldeviceconfiguration-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3513 +Content-Length: 3647 { "value": { Content-Length: 3513 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } } ```
v1.0	Intune Deviceconfig Androidforworkgeneraldeviceconfiguration List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidforworkgeneraldeviceconfiguration-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3679 +Content-Length: 3821 { "value": [ Content-Length: 3679 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ] }
v1.0	Intune Deviceconfig Androidforworkgeneraldeviceconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidforworkgeneraldeviceconfiguration-update.md	The following table shows the properties that are required when you create the [ \|vpnEnableAlwaysOnLockdownMode\|Boolean\|Enable lockdown mode for always-on VPN.\| \|workProfileAllowWidgets\|Boolean\|Allow widgets from work profile apps.\| \|workProfileBlockPersonalAppInstallsFromUnknownSources\|Boolean\|Prevent app installations from unknown sources in the personal profile.\| +\|workProfileAccountUse\|[androidWorkProfileAccountUse](../resources/intune-deviceconfig-androidworkprofileaccountuse.md)\|Control user's ability to add accounts in work profile including Google accounts. Possible values are: `allowAllExceptGoogleAccounts`, `blockAll`, `allowAll`, `unknownFutureValue`.\| +\|allowedGoogleAccountDomains\|String collection\|Determine domains allow-list for accounts that can be added to work profile.\| Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId} Content-type: application/json -Content-length: 3170 +Content-length: 3296 { "@odata.type": "#microsoft.graph.androidForWorkGeneralDeviceConfiguration", Content-length: 3170 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3342 +Content-Length: 3468 { "@odata.type": "#microsoft.graph.androidForWorkGeneralDeviceConfiguration", Content-Length: 3342 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ```
v1.0	Intune Deviceconfig Androidworkprofilegeneraldeviceconfiguration Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidworkprofilegeneraldeviceconfiguration-create.md	The following table shows the properties that are required when you create the a \|vpnEnableAlwaysOnLockdownMode\|Boolean\|Enable lockdown mode for always-on VPN.\| \|workProfileAllowWidgets\|Boolean\|Allow widgets from work profile apps.\| \|workProfileBlockPersonalAppInstallsFromUnknownSources\|Boolean\|Prevent app installations from unknown sources in the personal profile.\| +\|workProfileAccountUse\|[androidWorkProfileAccountUse](../resources/intune-deviceconfig-androidworkprofileaccountuse.md)\|Control user's ability to add accounts in work profile including Google accounts. Possible values are: `allowAllExceptGoogleAccounts`, `blockAll`, `allowAll`, `unknownFutureValue`.\| +\|allowedGoogleAccountDomains\|String collection\|Determine domains allow-list for accounts that can be added to work profile.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations Content-type: application/json -Content-length: 3232 +Content-length: 3358 { "@odata.type": "#microsoft.graph.androidWorkProfileGeneralDeviceConfiguration", Content-length: 3232 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 3404 +Content-Length: 3530 { "@odata.type": "#microsoft.graph.androidWorkProfileGeneralDeviceConfiguration", Content-Length: 3404 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ```
v1.0	Intune Deviceconfig Androidworkprofilegeneraldeviceconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidworkprofilegeneraldeviceconfiguration-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3577 +Content-Length: 3711 { "value": { Content-Length: 3577 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } } ```
v1.0	Intune Deviceconfig Androidworkprofilegeneraldeviceconfiguration List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidworkprofilegeneraldeviceconfiguration-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3745 +Content-Length: 3887 { "value": [ Content-Length: 3745 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ] }
v1.0	Intune Deviceconfig Androidworkprofilegeneraldeviceconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-androidworkprofilegeneraldeviceconfiguration-update.md	The following table shows the properties that are required when you create the [ \|vpnEnableAlwaysOnLockdownMode\|Boolean\|Enable lockdown mode for always-on VPN.\| \|workProfileAllowWidgets\|Boolean\|Allow widgets from work profile apps.\| \|workProfileBlockPersonalAppInstallsFromUnknownSources\|Boolean\|Prevent app installations from unknown sources in the personal profile.\| +\|workProfileAccountUse\|[androidWorkProfileAccountUse](../resources/intune-deviceconfig-androidworkprofileaccountuse.md)\|Control user's ability to add accounts in work profile including Google accounts. Possible values are: `allowAllExceptGoogleAccounts`, `blockAll`, `allowAll`, `unknownFutureValue`.\| +\|allowedGoogleAccountDomains\|String collection\|Determine domains allow-list for accounts that can be added to work profile.\| Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId} Content-type: application/json -Content-length: 3232 +Content-length: 3358 { "@odata.type": "#microsoft.graph.androidWorkProfileGeneralDeviceConfiguration", Content-length: 3232 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 3404 +Content-Length: 3530 { "@odata.type": "#microsoft.graph.androidWorkProfileGeneralDeviceConfiguration", Content-Length: 3404 "vpnAlwaysOnPackageIdentifier": "Vpn Always On Package Identifier value", "vpnEnableAlwaysOnLockdownMode": true, "workProfileAllowWidgets": true, - "workProfileBlockPersonalAppInstallsFromUnknownSources": true + "workProfileBlockPersonalAppInstallsFromUnknownSources": true, + "workProfileAccountUse": "blockAll", + "allowedGoogleAccountDomains": [ + "Allowed Google Account Domains value" + ] } ```
v1.0	Intune Deviceconfig Devicemanagement Enableendpointprivilegemanagement	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-devicemanagement-enableendpointprivilegemanagement.md	- Title: "enableEndpointPrivilegeManagement action" -description: "Triggers onboarding of tenant to Microsoft Managed Platform - Cloud (MMP-C)." - -localization_priority: Normal -doc_type: apiPageType -- -# enableEndpointPrivilegeManagement action - -Namespace: microsoft.graph - -> Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported. - -> Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. - -Triggers onboarding of tenant to Microsoft Managed Platform - Cloud (MMP-C). - -## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). - -\|Permission type\|Permissions (from least to most privileged)\| -\|:\|:\| -\|Delegated (work or school account)\|DeviceManagementConfiguration.Read.All\| -\|Delegated (personal Microsoft account)\|Not supported.\| -\|Application\|DeviceManagementConfiguration.Read.All\| - -## HTTP Request -<!-- { - "blockType": "ignored" -} > -``` http -POST /deviceManagement/enableEndpointPrivilegeManagement -``` - -## Request headers -\|Header\|Value\| -\|:\|:\| -\|Authorization\|Bearer <token> Required.\| -\|Accept\|application/json\| - -## Request body -Do not supply a request body for this method. - -## Response -If successful, this action returns a `204 No Content` response code. - -## Example - -### Request -Here is an example of the request. -``` http -POST https://graph.microsoft.com/beta/deviceManagement/enableEndpointPrivilegeManagement -``` - -### Response -Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call. -``` http -HTTP/1.1 204 No Content -```
v1.0	Intune Deviceconfig Endpointprivilegemanagementprovisioningstatus Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus-get.md	- Title: "Get endpointPrivilegeManagementProvisioningStatus" -description: "Read properties and relationships of the endpointPrivilegeManagementProvisioningStatus object." - -localization_priority: Normal -doc_type: apiPageType -- -# Get endpointPrivilegeManagementProvisioningStatus - -Namespace: microsoft.graph - -> Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported. - -> Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. - -Read properties and relationships of the [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md) object. - -## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). - -\|Permission type\|Permissions (from least to most privileged)\| -\|:\|:\| -\|Delegated (work or school account)\|DeviceManagementConfiguration.Read.All, DeviceManagementConfiguration.ReadWrite.All\| -\|Delegated (personal Microsoft account)\|Not supported.\| -\|Application\|DeviceManagementConfiguration.Read.All, DeviceManagementConfiguration.ReadWrite.All\| - -## HTTP Request -<!-- { - "blockType": "ignored" -} > -``` http -GET /deviceManagement/endpointPrivilegeManagementProvisioningStatus -``` - -## Optional query parameters -This method supports the [OData Query Parameters](/graph/query-parameters) to help customize the response. - -## Request headers -\|Header\|Value\| -\|:\|:\| -\|Authorization\|Bearer <token> Required.\| -\|Accept\|application/json\| - -## Request body -Do not supply a request body for this method. - -## Response -If successful, this method returns a `200 OK` response code and [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md) object in the response body. - -## Example - -### Request -Here is an example of the request. -``` http -GET https://graph.microsoft.com/beta/deviceManagement/endpointPrivilegeManagementProvisioningStatus -``` - -### Response -Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call. -``` http -HTTP/1.1 200 OK -Content-Type: application/json -Content-Length: 237 - -{ - "value": { - "@odata.type": "#microsoft.graph.endpointPrivilegeManagementProvisioningStatus", - "id": "49a26797-6797-49a2-9767-a2499767a249", - "licenseType": "paid", - "onboardedToMicrosoftManagedPlatform": true - } -} -```
v1.0	Intune Deviceconfig Endpointprivilegemanagementprovisioningstatus Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus-update.md	- Title: "Update endpointPrivilegeManagementProvisioningStatus" -description: "Update the properties of a endpointPrivilegeManagementProvisioningStatus object." - -localization_priority: Normal -doc_type: apiPageType -- -# Update endpointPrivilegeManagementProvisioningStatus - -Namespace: microsoft.graph - -> Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported. - -> Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. - -Update the properties of a [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md) object. - -## Permissions -One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). - -\|Permission type\|Permissions (from least to most privileged)\| -\|:\|:\| -\|Delegated (work or school account)\|DeviceManagementConfiguration.ReadWrite.All\| -\|Delegated (personal Microsoft account)\|Not supported.\| -\|Application\|DeviceManagementConfiguration.ReadWrite.All\| - -## HTTP Request -<!-- { - "blockType": "ignored" -} > -``` http -PATCH /deviceManagement/endpointPrivilegeManagementProvisioningStatus -``` - -## Request headers -\|Header\|Value\| -\|:\|:\| -\|Authorization\|Bearer <token> Required.\| -\|Accept\|application/json\| - -## Request body -In the request body, supply a JSON representation for the [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md) object. - -The following table shows the properties that are required when you create the [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md). - -\|Property\|Type\|Description\| -\|:\|:\|:\| -\|id\|String\|A unique identifier represents Intune Account identifier.\| -\|licenseType\|[licenseType](../resources/intune-deviceconfig-licensetype.md)\|Indicates whether tenant has a valid Intune Endpoint Privilege Management license. Possible value are : 0 - notPaid, 1 - paid, 2 - trial. See LicenseType enum for more details. Default notPaid. Possible values are: `notPaid`, `paid`, `trial`, `unknownFutureValue`.\| -\|onboardedToMicrosoftManagedPlatform\|Boolean\|Indicates whether tenant is onboarded to Microsoft Managed Platform - Cloud (MMPC). When set to true, implies tenant is onboarded and when set to false, implies tenant is not onboarded. Default set to false.\| --- -## Response -If successful, this method returns a `200 OK` response code and an updated [endpointPrivilegeManagementProvisioningStatus](../resources/intune-deviceconfig-endpointprivilegemanagementprovisioningstatus.md) object in the response body. - -## Example - -### Request -Here is an example of the request. -``` http -PATCH https://graph.microsoft.com/beta/deviceManagement/endpointPrivilegeManagementProvisioningStatus -Content-type: application/json -Content-length: 161 - -{ - "@odata.type": "#microsoft.graph.endpointPrivilegeManagementProvisioningStatus", - "licenseType": "paid", - "onboardedToMicrosoftManagedPlatform": true -} -``` - -### Response -Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call. -``` http -HTTP/1.1 200 OK -Content-Type: application/json -Content-Length: 210 - -{ - "@odata.type": "#microsoft.graph.endpointPrivilegeManagementProvisioningStatus", - "id": "49a26797-6797-49a2-9767-a2499767a249", - "licenseType": "paid", - "onboardedToMicrosoftManagedPlatform": true -} -```
v1.0	Intune Deviceconfig Macosgeneraldeviceconfiguration Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macosgeneraldeviceconfiguration-create.md	The following table shows the properties that are required when you create the m \|touchIdTimeoutInHours\|Int32\|Maximum hours after which the user must enter their password to unlock the device instead of using Touch ID. Available for devices running macOS 12 and later. Valid values 0 to 2147483647\| \|iCloudPrivateRelayBlocked\|Boolean\|iCloud private relay is an iCloud+ service that prevents networks and servers from monitoring a person's activity across the internet. By blocking iCloud private relay, Apple will not encrypt the traffic leaving the device. Available for devices running macOS 12 and later.\| \|iCloudDesktopAndDocumentsBlocked\|Boolean\|When TRUE the synchronization of cloud desktop and documents is blocked. When FALSE, synchronization of the cloud desktop and documents are allowed. Available for devices running macOS 10.12.4 and later.\| +\|activationLockWhenSupervisedAllowed\|Boolean\|When TRUE, activation lock is allowed when the devices is in the supervised mode. When FALSE, activation lock is not allowed. Default is false.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations Content-type: application/json -Content-length: 5014 +Content-length: 5062 { "@odata.type": "#microsoft.graph.macOSGeneralDeviceConfiguration", Content-length: 5014 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 5186 +Content-Length: 5234 { "@odata.type": "#microsoft.graph.macOSGeneralDeviceConfiguration", Content-Length: 5186 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } ```
v1.0	Intune Deviceconfig Macosgeneraldeviceconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macosgeneraldeviceconfiguration-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 5483 +Content-Length: 5533 { "value": { Content-Length: 5483 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } } ```
v1.0	Intune Deviceconfig Macosgeneraldeviceconfiguration List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macosgeneraldeviceconfiguration-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 5775 +Content-Length: 5827 { "value": [ Content-Length: 5775 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } ] }
v1.0	Intune Deviceconfig Macosgeneraldeviceconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macosgeneraldeviceconfiguration-update.md	The following table shows the properties that are required when you create the [ \|touchIdTimeoutInHours\|Int32\|Maximum hours after which the user must enter their password to unlock the device instead of using Touch ID. Available for devices running macOS 12 and later. Valid values 0 to 2147483647\| \|iCloudPrivateRelayBlocked\|Boolean\|iCloud private relay is an iCloud+ service that prevents networks and servers from monitoring a person's activity across the internet. By blocking iCloud private relay, Apple will not encrypt the traffic leaving the device. Available for devices running macOS 12 and later.\| \|iCloudDesktopAndDocumentsBlocked\|Boolean\|When TRUE the synchronization of cloud desktop and documents is blocked. When FALSE, synchronization of the cloud desktop and documents are allowed. Available for devices running macOS 10.12.4 and later.\| +\|activationLockWhenSupervisedAllowed\|Boolean\|When TRUE, activation lock is allowed when the devices is in the supervised mode. When FALSE, activation lock is not allowed. Default is false.\| Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId} Content-type: application/json -Content-length: 5014 +Content-length: 5062 { "@odata.type": "#microsoft.graph.macOSGeneralDeviceConfiguration", Content-length: 5014 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 5186 +Content-Length: 5234 { "@odata.type": "#microsoft.graph.macOSGeneralDeviceConfiguration", Content-Length: 5186 "softwareUpdateNonOSDeferredInstallDelayInDays": 13, "touchIdTimeoutInHours": 5, "iCloudPrivateRelayBlocked": true, - "iCloudDesktopAndDocumentsBlocked": true + "iCloudDesktopAndDocumentsBlocked": true, + "activationLockWhenSupervisedAllowed": true } ```
v1.0	Intune Deviceconfig Macossoftwareupdateconfiguration Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macossoftwareupdateconfiguration-create.md	The following table shows the properties that are required when you create the m \|updateScheduleType\|[macOSSoftwareUpdateScheduleType](../resources/intune-deviceconfig-macossoftwareupdatescheduletype.md)\|Update schedule type. Possible values are: `alwaysUpdate`, `updateDuringTimeWindows`, `updateOutsideOfTimeWindows`.\| \|customUpdateTimeWindows\|[customUpdateTimeWindow](../resources/intune-deviceconfig-customupdatetimewindow.md) collection\|Custom Time windows when updates will be allowed or blocked. This collection can contain a maximum of 20 elements.\| \|updateTimeWindowUtcOffsetInMinutes\|Int32\|Minutes indicating UTC offset for each update time window\| +\|maxUserDeferralsCount\|Int32\|The maximum number of times the system allows the user to postpone an update before itΓÇÖs installed. Supported values: 0 - 366. Valid values 0 to 365\| +\|priority\|[macOSPriority](../resources/intune-deviceconfig-macospriority.md)\|The scheduling priority for downloading and preparing the requested update. Default: Low. Possible values: Null, Low, High. Possible values are: `low`, `high`, `unknownFutureValue`.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations Content-type: application/json -Content-length: 1542 +Content-length: 1596 { "@odata.type": "#microsoft.graph.macOSSoftwareUpdateConfiguration", Content-length: 1542 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 1714 +Content-Length: 1768 { "@odata.type": "#microsoft.graph.macOSSoftwareUpdateConfiguration", Content-Length: 1714 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } ```
v1.0	Intune Deviceconfig Macossoftwareupdateconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macossoftwareupdateconfiguration-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 1827 +Content-Length: 1885 { "value": { Content-Length: 1827 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } } ```
v1.0	Intune Deviceconfig Macossoftwareupdateconfiguration List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macossoftwareupdateconfiguration-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 1935 +Content-Length: 1997 { "value": [ Content-Length: 1935 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } ] }
v1.0	Intune Deviceconfig Macossoftwareupdateconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-macossoftwareupdateconfiguration-update.md	The following table shows the properties that are required when you create the [ \|updateScheduleType\|[macOSSoftwareUpdateScheduleType](../resources/intune-deviceconfig-macossoftwareupdatescheduletype.md)\|Update schedule type. Possible values are: `alwaysUpdate`, `updateDuringTimeWindows`, `updateOutsideOfTimeWindows`.\| \|customUpdateTimeWindows\|[customUpdateTimeWindow](../resources/intune-deviceconfig-customupdatetimewindow.md) collection\|Custom Time windows when updates will be allowed or blocked. This collection can contain a maximum of 20 elements.\| \|updateTimeWindowUtcOffsetInMinutes\|Int32\|Minutes indicating UTC offset for each update time window\| +\|maxUserDeferralsCount\|Int32\|The maximum number of times the system allows the user to postpone an update before itΓÇÖs installed. Supported values: 0 - 366. Valid values 0 to 365\| +\|priority\|[macOSPriority](../resources/intune-deviceconfig-macospriority.md)\|The scheduling priority for downloading and preparing the requested update. Default: Low. Possible values: Null, Low, High. Possible values are: `low`, `high`, `unknownFutureValue`.\| Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId} Content-type: application/json -Content-length: 1542 +Content-length: 1596 { "@odata.type": "#microsoft.graph.macOSSoftwareUpdateConfiguration", Content-length: 1542 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } ``` Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 1714 +Content-Length: 1768 { "@odata.type": "#microsoft.graph.macOSSoftwareUpdateConfiguration", Content-Length: 1714 "endTime": "12:03:02.3740000" } ], - "updateTimeWindowUtcOffsetInMinutes": 2 + "updateTimeWindowUtcOffsetInMinutes": 2, + "maxUserDeferralsCount": 5, + "priority": "high" } ```
v1.0	Intune Deviceconfig Windows10vpnconfiguration Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-windows10vpnconfiguration-create.md	Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations Content-type: application/json -Content-length: 4525 +Content-length: 4566 { "@odata.type": "#microsoft.graph.windows10VpnConfiguration", Content-length: 4525 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [ Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 4697 +Content-Length: 4738 { "@odata.type": "#microsoft.graph.windows10VpnConfiguration", Content-Length: 4697 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [
v1.0	Intune Deviceconfig Windows10vpnconfiguration Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-windows10vpnconfiguration-get.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 5014 +Content-Length: 5057 { "value": { Content-Length: 5014 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [
v1.0	Intune Deviceconfig Windows10vpnconfiguration List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-windows10vpnconfiguration-list.md	Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 5326 +Content-Length: 5371 { "value": [ Content-Length: 5326 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [
v1.0	Intune Deviceconfig Windows10vpnconfiguration Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfig-windows10vpnconfiguration-update.md	Here is an example of the request. ``` http PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId} Content-type: application/json -Content-length: 4525 +Content-length: 4566 { "@odata.type": "#microsoft.graph.windows10VpnConfiguration", Content-length: 4525 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [ Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 200 OK Content-Type: application/json -Content-Length: 4697 +Content-Length: 4738 { "@odata.type": "#microsoft.graph.windows10VpnConfiguration", Content-Length: 4697 "appId": "App Id value", "appType": "desktop", "routingPolicyType": "splitTunnel", - "claims": "Claims value" + "claims": "Claims value", + "vpnTrafficDirection": "inbound" } ], "routes": [
v1.0	Intune Deviceconfigv2 Devicemanagementcompliancepolicy Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementcompliancepolicy-create.md	The following table shows the properties that are required when you create the d \|id\|String\|Key of the policy document. Automatically generated.\| \|name\|String\|Policy name\| \|description\|String\|Policy description\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|createdDateTime\|DateTimeOffset\|Policy creation date and time. This property is read-only.\| \|lastModifiedDateTime\|DateTimeOffset\|Policy last modification date and time. This property is read-only.\| \|settingCount\|Int32\|Number of settings. This property is read-only.\|
v1.0	Intune Deviceconfigv2 Devicemanagementcompliancepolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementcompliancepolicy-update.md	The following table shows the properties that are required when you create the [ \|id\|String\|Key of the policy document. Automatically generated.\| \|name\|String\|Policy name\| \|description\|String\|Policy description\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|createdDateTime\|DateTimeOffset\|Policy creation date and time. This property is read-only.\| \|lastModifiedDateTime\|DateTimeOffset\|Policy last modification date and time. This property is read-only.\| \|settingCount\|Int32\|Number of settings. This property is read-only.\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationcategory Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationcategory-create.md	The following table shows the properties that are required when you create the d \|helpText\|String\|Help text of the item\| \|name\|String\|Name of the item\| \|displayName\|String\|Display name of the item\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms types, which settings in the category have. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies types, which settings in the category have. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Indicates that the category contains settings that are used for Compliance or Configuration. Possible values are: `none`, `configuration`, `compliance`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms types, which settings in the category have. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies types, which settings in the category have. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Indicates that the category contains settings that are used for Compliance or Configuration. Possible values are: `none`, `configuration`, `compliance`.\| \|parentCategoryId\|String\|Parent id of the category.\| \|rootCategoryId\|String\|Root id of the category.\| \|childCategoryIds\|String collection\|List of child ids of the category.\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationcategory Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationcategory-update.md	The following table shows the properties that are required when you create the [ \|helpText\|String\|Help text of the item\| \|name\|String\|Name of the item\| \|displayName\|String\|Display name of the item\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms types, which settings in the category have. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies types, which settings in the category have. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Indicates that the category contains settings that are used for Compliance or Configuration. Possible values are: `none`, `configuration`, `compliance`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms types, which settings in the category have. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies types, which settings in the category have. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Indicates that the category contains settings that are used for Compliance or Configuration. Possible values are: `none`, `configuration`, `compliance`.\| \|parentCategoryId\|String\|Parent id of the category.\| \|rootCategoryId\|String\|Root id of the category.\| \|childCategoryIds\|String collection\|List of child ids of the category.\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingcollectiondefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingcollectiondefinition-create.md	The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-shared-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md)\| -\|defaultOptionId\|String\|Default option for choice setting Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md)\| +\|defaultOptionId\|String\|Default option for choice setting Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md)\| \|maximumCount\|Int32\|Maximum number of choices in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of choices in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingcollectiondefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingcollectiondefinition-update.md	The following table shows the properties that are required when you create the [ \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-shared-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md)\| -\|defaultOptionId\|String\|Default option for choice setting Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md)\| +\|defaultOptionId\|String\|Default option for choice setting Inherited from [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md)\| \|maximumCount\|Int32\|Maximum number of choices in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of choices in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingdefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition-create.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Create a new [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object. +Create a new [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-shared-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected\| \|defaultOptionId\|String\|Default option for choice setting\| ## Response -If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition-delete.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Deletes a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md). +Deletes a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md). ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition-get.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Read properties and relationships of the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object. +Read properties and relationships of the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). This method supports the [OData Query Parameters](/graph/query-parameters) to he Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition-list.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -List properties and relationships of the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) objects. +List properties and relationships of the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) objects. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). GET /deviceManagement/configurationPolicyTemplates/{deviceManagementConfiguratio Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) objects in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationchoicesettingdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition-update.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Update the properties of a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object. +Update the properties of a [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). PATCH /deviceManagement/configurationPolicyTemplates/{deviceManagementConfigurat \|Accept\|application/json\| ## Request body -In the request body, supply a JSON representation for the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object. +In the request body, supply a JSON representation for the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object. -The following table shows the properties that are required when you create the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md). +The following table shows the properties that are required when you create the [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-shared-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|options\|[deviceManagementConfigurationOptionDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationoptiondefinition.md) collection\|Options for the setting that can be selected\| \|defaultOptionId\|String\|Default option for choice setting\| ## Response -If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-shared-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationChoiceSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationchoicesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationpolicy Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationpolicy-create.md	The following table shows the properties that are required when you create the d \|id\|String\|Key of the policy document. Automatically generated.\| \|name\|String\|Policy name\| \|description\|String\|Policy description\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|createdDateTime\|DateTimeOffset\|Policy creation date and time\| \|lastModifiedDateTime\|DateTimeOffset\|Policy last modification date and time\| \|settingCount\|Int32\|Number of settings\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationpolicy Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationpolicy-update.md	The following table shows the properties that are required when you create the [ \|id\|String\|Key of the policy document. Automatically generated.\| \|name\|String\|Policy name\| \|description\|String\|Policy description\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this policy. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this policy. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|createdDateTime\|DateTimeOffset\|Policy creation date and time\| \|lastModifiedDateTime\|DateTimeOffset\|Policy last modification date and time\| \|settingCount\|Int32\|Number of settings\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationpolicytemplate Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationpolicytemplate-create.md	The following table shows the properties that are required when you create the d \|description\|String\|Template description\| \|displayVersion\|String\|Description of template version\| \|lifecycleState\|[deviceManagementTemplateLifecycleState](../resources/intune-deviceconfigv2-devicemanagementtemplatelifecyclestate.md)\|Indicate current lifecycle state of template. Possible values are: `invalid`, `draft`, `active`, `superseded`, `deprecated`, `retired`.\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this template. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this template. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this template. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this template. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|templateFamily\|[deviceManagementConfigurationTemplateFamily](../resources/intune-deviceconfigv2-devicemanagementconfigurationtemplatefamily.md)\|TemplateFamily for this template. Possible values are: `none`, `endpointSecurityAntivirus`, `endpointSecurityDiskEncryption`, `endpointSecurityFirewall`, `endpointSecurityEndpointDetectionAndResponse`, `endpointSecurityAttackSurfaceReduction`, `endpointSecurityAccountProtection`, `endpointSecurityApplicationControl`, `endpointSecurityEndpointPrivilegeManagement`, `enrollmentConfiguration`, `appQuietTime`, `baseline`, `unknownFutureValue`, `deviceConfigurationScripts`.\| \|allowUnmanagedSettings\|Boolean\|Allow unmanaged setting templates\| \|settingTemplateCount\|Int32\|Number of setting templates. Valid values 0 to 2147483647. This property is read-only.\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationpolicytemplate Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationpolicytemplate-update.md	The following table shows the properties that are required when you create the [ \|description\|String\|Template description\| \|displayVersion\|String\|Description of template version\| \|lifecycleState\|[deviceManagementTemplateLifecycleState](../resources/intune-deviceconfigv2-devicemanagementtemplatelifecyclestate.md)\|Indicate current lifecycle state of template. Possible values are: `invalid`, `draft`, `active`, `superseded`, `deprecated`, `retired`.\| -\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-shared-devicemanagementconfigurationplatforms.md)\|Platforms for this template. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| -\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-shared-devicemanagementconfigurationtechnologies.md)\|Technologies for this template. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| +\|platforms\|[deviceManagementConfigurationPlatforms](../resources/intune-deviceconfigv2-devicemanagementconfigurationplatforms.md)\|Platforms for this template. Possible values are: `none`, `android`, `iOS`, `macOS`, `windows10X`, `windows10`, `linux`, `unknownFutureValue`.\| +\|technologies\|[deviceManagementConfigurationTechnologies](../resources/intune-deviceconfigv2-devicemanagementconfigurationtechnologies.md)\|Technologies for this template. Possible values are: `none`, `mdm`, `windows10XManagement`, `configManager`, `appleRemoteManagement`, `microsoftSense`, `exchangeOnline`, `edgeMAM`, `linuxMdm`, `enrollment`, `endpointPrivilegeManagement`, `unknownFutureValue`.\| \|templateFamily\|[deviceManagementConfigurationTemplateFamily](../resources/intune-deviceconfigv2-devicemanagementconfigurationtemplatefamily.md)\|TemplateFamily for this template. Possible values are: `none`, `endpointSecurityAntivirus`, `endpointSecurityDiskEncryption`, `endpointSecurityFirewall`, `endpointSecurityEndpointDetectionAndResponse`, `endpointSecurityAttackSurfaceReduction`, `endpointSecurityAccountProtection`, `endpointSecurityApplicationControl`, `endpointSecurityEndpointPrivilegeManagement`, `enrollmentConfiguration`, `appQuietTime`, `baseline`, `unknownFutureValue`, `deviceConfigurationScripts`.\| \|allowUnmanagedSettings\|Boolean\|Allow unmanaged setting templates\| \|settingTemplateCount\|Int32\|Number of setting templates. Valid values 0 to 2147483647. This property is read-only.\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationredirectsettingdefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition-create.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Create a new [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object. +Create a new [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| \|deepLink\|String\|A deep link that points to the specific location in the Intune console where feature support must be managed from.\| \|redirectMessage\|String\|A message that explains that clicking the link will redirect the user to a supported page to manage the settings.\| \|redirectReason\|String\|Indicates the reason for redirecting the user to an alternative location in the console. For example: WiFi profiles are not supported in the settings catalog and must be created with a template policy.\| The following table shows the properties that are required when you create the d ## Response -If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationredirectsettingdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition-delete.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Deletes a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md). +Deletes a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md). ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationredirectsettingdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition-get.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Read properties and relationships of the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object. +Read properties and relationships of the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). This method supports the [OData Query Parameters](/graph/query-parameters) to he Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationredirectsettingdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition-list.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -List properties and relationships of the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) objects. +List properties and relationships of the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) objects. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). GET /deviceManagement/configurationPolicyTemplates/{deviceManagementConfiguratio Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) objects in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationredirectsettingdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition-update.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Update the properties of a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object. +Update the properties of a [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). PATCH /deviceManagement/configurationPolicyTemplates/{deviceManagementConfigurat \|Accept\|application/json\| ## Request body -In the request body, supply a JSON representation for the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object. +In the request body, supply a JSON representation for the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object. -The following table shows the properties that are required when you create the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md). +The following table shows the properties that are required when you create the [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| \|deepLink\|String\|A deep link that points to the specific location in the Intune console where feature support must be managed from.\| \|redirectMessage\|String\|A message that explains that clicking the link will redirect the user to a supported page to manage the settings.\| \|redirectReason\|String\|Indicates the reason for redirecting the user to an alternative location in the console. For example: WiFi profiles are not supported in the settings catalog and must be created with a template policy.\| The following table shows the properties that are required when you create the [ ## Response -If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-shared-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationRedirectSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationredirectsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsetting Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsetting-create.md	The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| \|id\|String\|Key of this setting within the policy which contains it. Automatically generated.\| -\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-shared-devicemanagementconfigurationsettinginstance.md)\|Setting Instance\| +\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinginstance.md)\|Setting Instance\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsetting Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsetting-update.md	The following table shows the properties that are required when you create the [ \|Property\|Type\|Description\| \|:\|:\|:\| \|id\|String\|Key of this setting within the policy which contains it. Automatically generated.\| -\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-shared-devicemanagementconfigurationsettinginstance.md)\|Setting Instance\| +\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinginstance.md)\|Setting Instance\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettingdefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition-create.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Create a new [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object. +Create a new [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting. Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting. Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| \|keywords\|String collection\|Tokens which to search settings on\| \|infoUrls\|String collection\|List of links more info for the setting can be found at\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not\| \|baseUri\|String\|Base CSP Path\| \|offsetUri\|String\|Offset CSP Path from Base\| \|rootDefinitionId\|String\|Root setting definition if the setting is a child setting.\| \|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance. Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX. Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX. Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information.\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance. Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX. Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX. Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information.\| \|id\|String\|Identifier for item\| \|description\|String\|Description of the item\| \|helpText\|String\|Help text of the item\| The following table shows the properties that are required when you create the d ## Response -If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettingdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition-delete.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Deletes a [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). +Deletes a [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettingdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition-get.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Read properties and relationships of the [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object. +Read properties and relationships of the [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). This method supports the [OData Query Parameters](/graph/query-parameters) to he Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettingdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition-list.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -List properties and relationships of the [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) objects. +List properties and relationships of the [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) objects. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). GET /deviceManagement/configurationPolicyTemplates/{deviceManagementConfiguratio Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) objects in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettingdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition-update.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Update the properties of a [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object. +Update the properties of a [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). PATCH /deviceManagement/configurationPolicyTemplates/{deviceManagementConfigurat \|Accept\|application/json\| ## Request body -In the request body, supply a JSON representation for the [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object. +In the request body, supply a JSON representation for the [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object. -The following table shows the properties that are required when you create the [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). +The following table shows the properties that are required when you create the [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting. Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting. Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| \|keywords\|String collection\|Tokens which to search settings on\| \|infoUrls\|String collection\|List of links more info for the setting can be found at\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not\| \|baseUri\|String\|Base CSP Path\| \|offsetUri\|String\|Offset CSP Path from Base\| \|rootDefinitionId\|String\|Root setting definition if the setting is a child setting.\| \|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance. Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX. Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX. Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information.\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance. Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX. Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX. Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information.\| \|id\|String\|Identifier for item\| \|description\|String\|Description of the item\| \|helpText\|String\|Help text of the item\| The following table shows the properties that are required when you create the [ ## Response -If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupcollectiondefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupcollectiondefinition-create.md	The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|childIds\|String collection\|Dependent child settings to this group of settings Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|childIds\|String collection\|Dependent child settings to this group of settings Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| \|maximumCount\|Int32\|Maximum number of setting group count in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of setting group count in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupcollectiondefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupcollectiondefinition-update.md	The following table shows the properties that are required when you create the [ \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|childIds\|String collection\|Dependent child settings to this group of settings Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|childIds\|String collection\|Dependent child settings to this group of settings Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting Inherited from [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md)\| \|maximumCount\|Int32\|Maximum number of setting group count in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of setting group count in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupdefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition-create.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Create a new [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object. +Create a new [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| \|childIds\|String collection\|Dependent child settings to this group of settings\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting\| ## Response -If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition-delete.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Deletes a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md). +Deletes a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md). ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition-get.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Read properties and relationships of the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object. +Read properties and relationships of the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). This method supports the [OData Query Parameters](/graph/query-parameters) to he Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition-list.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -List properties and relationships of the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) objects. +List properties and relationships of the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) objects. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). GET /deviceManagement/configurationPolicyTemplates/{deviceManagementConfiguratio Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) objects in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsettinggroupdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition-update.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Update the properties of a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object. +Update the properties of a [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). PATCH /deviceManagement/configurationPolicyTemplates/{deviceManagementConfigurat \|Accept\|application/json\| ## Request body -In the request body, supply a JSON representation for the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object. +In the request body, supply a JSON representation for the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object. -The following table shows the properties that are required when you create the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md). +The following table shows the properties that are required when you create the [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| \|childIds\|String collection\|Dependent child settings to this group of settings\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|List of Dependencies for the setting group\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|List of child settings that depend on this setting\| ## Response -If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-shared-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSettingGroupDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinggroupdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingcollectiondefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingcollectiondefinition-create.md	The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-shared-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-shared-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| \|maximumCount\|Int32\|Maximum number of simple settings in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of simple settings in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingcollectiondefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingcollectiondefinition-update.md	The following table shows the properties that are required when you create the [ \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-shared-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-shared-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting Inherited from [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md)\| \|maximumCount\|Int32\|Maximum number of simple settings in the collection. Valid values 1 to 100\| \|minimumCount\|Int32\|Minimum number of simple settings in the collection. Valid values 1 to 100\|
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingdefinition Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition-create.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Create a new [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object. +Create a new [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). The following table shows the properties that are required when you create the d \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-shared-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting\| -\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-shared-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting\| +\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting\| ## Response -If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingdefinition Delete	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition-delete.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Deletes a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md). +Deletes a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md). ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingdefinition Get	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition-get.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Read properties and relationships of the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object. +Read properties and relationships of the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). This method supports the [OData Query Parameters](/graph/query-parameters) to he Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingdefinition List	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition-list.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -List properties and relationships of the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) objects. +List properties and relationships of the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) objects. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). GET /deviceManagement/configurationPolicyTemplates/{deviceManagementConfiguratio Do not supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) objects in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementconfigurationsimplesettingdefinition Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition-update.md	Namespace: microsoft.graph > Note: The Microsoft Graph API for Intune requires an [active Intune license](https://go.microsoft.com/fwlink/?linkid=839381) for the tenant. -Update the properties of a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object. +Update the properties of a [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object. ## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference). PATCH /deviceManagement/configurationPolicyTemplates/{deviceManagementConfigurat \|Accept\|application/json\| ## Request body -In the request body, supply a JSON representation for the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object. +In the request body, supply a JSON representation for the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object. -The following table shows the properties that are required when you create the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md). +The following table shows the properties that are required when you create the [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md). \|Property\|Type\|Description\| \|:\|:\|:\| -\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-shared-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-shared-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| -\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-shared-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-shared-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| -\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-shared-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| -\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-shared-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| -\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-shared-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsettingdefinition.md)\| -\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-shared-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting\| -\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-shared-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting\| -\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-shared-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on\| -\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-shared-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting\| +\|applicability\|[deviceManagementConfigurationSettingApplicability](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingapplicability.md)\|Details which device setting is applicable on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|accessTypes\|[deviceManagementConfigurationSettingAccessTypes](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingaccesstypes.md)\|Read/write access mode of the setting Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `add`, `copy`, `delete`, `get`, `replace`, `execute`.\| +\|keywords\|String collection\|Tokens which to search settings on Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|infoUrls\|String collection\|List of links more info for the setting can be found at Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|occurrence\|[deviceManagementConfigurationSettingOccurrence](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingoccurrence.md)\|Indicates whether the setting is required or not Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|baseUri\|String\|Base CSP Path Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|offsetUri\|String\|Offset CSP Path from Base Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|rootDefinitionId\|String\|Root setting definition if the setting is a child setting. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|categoryId\|String\|Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|settingUsage\|[deviceManagementConfigurationSettingUsage](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingusage.md)\|Setting type, for example, configuration and compliance Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `configuration`, `compliance`.\| +\|uxBehavior\|[deviceManagementConfigurationControlType](../resources/intune-deviceconfigv2-devicemanagementconfigurationcontroltype.md)\|Setting control type representation in the UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `default`, `dropdown`, `smallTextBox`, `largeTextBox`, `toggle`, `multiheaderGrid`, `contextPane`.\| +\|visibility\|[deviceManagementConfigurationSettingVisibility](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvisibility.md)\|Setting visibility scope to UX Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md). Possible values are: `none`, `settingsCatalog`, `template`.\| +\|referredSettingInformationList\|[deviceManagementConfigurationReferredSettingInformation](../resources/intune-deviceconfigv2-devicemanagementconfigurationreferredsettinginformation.md) collection\|List of referred setting information. Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|id\|String\|Identifier for item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|description\|String\|Description of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|helpText\|String\|Help text of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|name\|String\|Name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|displayName\|String\|Display name of the item Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|version\|String\|Item Version Inherited from [deviceManagementConfigurationSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdefinition.md)\| +\|valueDefinition\|[deviceManagementConfigurationSettingValueDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvaluedefinition.md)\|Definition of the value for this setting\| +\|defaultValue\|[deviceManagementConfigurationSettingValue](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingvalue.md)\|Default setting value for this setting\| +\|dependentOn\|[deviceManagementConfigurationDependentOn](../resources/intune-deviceconfigv2-devicemanagementconfigurationdependenton.md) collection\|list of parent settings this setting is dependent on\| +\|dependedOnBy\|[deviceManagementConfigurationSettingDependedOnBy](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettingdependedonby.md) collection\|list of child settings that depend on this setting\| ## Response -If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-shared-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. +If successful, this method returns a `200 OK` response code and an updated [deviceManagementConfigurationSimpleSettingDefinition](../resources/intune-deviceconfigv2-devicemanagementconfigurationsimplesettingdefinition.md) object in the response body. ## Example
v1.0	Intune Deviceconfigv2 Devicemanagementreusablepolicysetting Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementreusablepolicysetting-create.md	The following table shows the properties that are required when you create the d \|displayName\|String\|reusable setting display name supplied by user.\| \|description\|String\|reusable setting description supplied by user.\| \|settingDefinitionId\|String\|setting definition id associated with this reusable setting.\| -\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-shared-devicemanagementconfigurationsettinginstance.md)\|reusable setting configuration instance\| +\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinginstance.md)\|reusable setting configuration instance\| \|createdDateTime\|DateTimeOffset\|reusable setting creation date and time. This property is read-only.\| \|lastModifiedDateTime\|DateTimeOffset\|date and time when reusable setting was last modified. This property is read-only.\| \|version\|Int32\|version number for reusable setting. Valid values 0 to 2147483647. This property is read-only.\|
v1.0	Intune Deviceconfigv2 Devicemanagementreusablepolicysetting Update	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceconfigv2-devicemanagementreusablepolicysetting-update.md	The following table shows the properties that are required when you create the [ \|displayName\|String\|reusable setting display name supplied by user.\| \|description\|String\|reusable setting description supplied by user.\| \|settingDefinitionId\|String\|setting definition id associated with this reusable setting.\| -\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-shared-devicemanagementconfigurationsettinginstance.md)\|reusable setting configuration instance\| +\|settingInstance\|[deviceManagementConfigurationSettingInstance](../resources/intune-deviceconfigv2-devicemanagementconfigurationsettinginstance.md)\|reusable setting configuration instance\| \|createdDateTime\|DateTimeOffset\|reusable setting creation date and time. This property is read-only.\| \|lastModifiedDateTime\|DateTimeOffset\|date and time when reusable setting was last modified. This property is read-only.\| \|version\|Int32\|version number for reusable setting. Valid values 0 to 2147483647. This property is read-only.\|
v1.0	Intune Deviceintent Devicemanagementintent Create	https://github.com/microsoftgraph/microsoft-graph-docs/commits/main/api-reference/beta/api/intune-deviceintent-devicemanagementintent-create.md	The following table shows the properties that are required when you create the d \|displayName\|String\|The user given display name\| \|description\|String\|The user given description\| \|isAssigned\|Boolean\|Signifies whether or not the intent is assigned to users\| +\|isMigratingToConfigurationPolicy\|Boolean\|Signifies whether or not the intent is being migrated to the configurationPolicies endpoint\| \|lastModifiedDateTime\|DateTimeOffset\|When the intent was last modified\| \|templateId\|String\|The ID of the template this intent was created from (if any)\| \|roleScopeTagIds\|String collection\|List of Scope Tags for this Entity instance.\| Here is an example of the request. ``` http POST https://graph.microsoft.com/beta/deviceManagement/intents Content-type: application/json -Content-length: 266 +Content-length: 311 { "@odata.type": "#microsoft.graph.deviceManagementIntent", "displayName": "Display Name value", "description": "Description value", "isAssigned": true, + "isMigratingToConfigurationPolicy": true, "templateId": "Template Id value", "roleScopeTagIds": [ "Role Scope Tag Ids value" Here is an example of the response. Note: The response object shown here may be ``` http HTTP/1.1 201 Created Content-Type: application/json -Content-Length: 379 +Content-Length: 424 { "@odata.type": "#microsoft.graph.deviceManagementIntent", Content-Length: 379 "displayName": "Display Name value", "description": "Description value", "isAssigned": true, + "isMigratingToConfigurationPolicy": true, "lastModifiedDateTime": "2017-01-01T00:00:35.1329464-08:00", "templateId": "Template Id value", "roleScopeTagIds": [
v1.0