+description: "Resume a user's access package request after waiting for a callback from a custom extension."

+Resume a user's access package request after waiting for a callback from a custom extension.

+In [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md), when an access package policy has been enabled to call out a custom extension and the request processing is waiting for the callback from the customer, the customer can initiate a resume action. It's performed on an [accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) object whose **requestStatus** is in a `WaitingForCallback` state.

+> [!IMPORTANT]

+> App-only access can be authorized *without* granting the `EntitlementManagement.ReadWrite.All` application permission to the caller. Instead, assign the caller an [Entitlement Management role](/entr#example-4-create-a-role-assignment-with-access-package-catalog-scope) or [Delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers#as-a-catalog-owner-delegate-to-an-access-package-manager).

+> **Note:** For delegated permissions to allow apps to get report settings on behalf of a user, the tenant administrator must have assigned the user the appropriate Microsoft Entra ID limited administrator role. For more information, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization).

+## Optional query parameters

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+> **Note:** For delegated permissions to allow apps to update report settings on behalf of a user, the tenant administrator must have assigned the user the appropriate Microsoft Entra ID limited administrator role. For more information, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization).

+| displayConcealedNames | Boolean | If set to `true`, all reports conceal user information such as usernames, groups, and sites. If `false`, all reports show identifiable information. This property represents a setting in the Microsoft 365 admin center. Required. |

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+ Title: "List owners of an application"

+description: "Retrieve a list of owners for an application."

+# List owners of an application

+Retrieve a list of owners for an application that are [directoryObject](../resources/directoryobject.md) types.

+This method supports the `$count`, `$expand`, `$filter`, `$orderby`, `$search`, `$select`, and `$top` [OData query parameters](/graph/query-parameters) to help customize the response. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For more information, see [Advanced query capabilities on directory objects](/graph/aad-advanced-queries).

+### Request

+The following example shows a request that uses the **appId** alternate key to query the owners of an application.

+GET https://graph.microsoft.com/beta/applications(appId='bbec3106-565f-4907-941e-96b4dbfef21c')/owners

+### Response

+The following example shows the response. It shows only the **id** property as populated while other properties as `null`. This is because the caller did not have permissions to read users in the tenant.

+>**Note:** The response object shown here might be shortened for readability.

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#directoryObjects",

+ "@microsoft.graph.tips": "Use $select to choose only the properties your app needs, as this can lead to performance improvements. For example: GET applications(appId=<key>)/owners?$select=deletedDateTime",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "ce4770b3-70b2-4a38-a242-76631e9f7408",

+ "businessPhones": [],

+ "displayName": null,

+ "givenName": null,

+ "jobTitle": null,

+ "mail": null,

+ "mobilePhone": null,

+ "officeLocation": null,

+ "preferredLanguage": null,

+ "surname": null,

+ "userPrincipalName": null

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "858a9c90-38b3-4e78-b915-234aece712c4",

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "7585d967-f300-43de-b817-7119a6404c5e",

+ }

+ ]

+This API supports the following PSTN scenarios:

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+<!-- { "blockType": "permissions", "name": "approvalitem_cancel" } -->

+<!-- { "blockType": "permissions", "name": "approvalitem_get" } -->

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalitem_list_requests" } -->

+This method supports the `$filter`, `$orderby`, `$count` and `$select` [OData query parameters](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalitem_list_responses" } -->

+This method supports the `$filter`, `$orderby`, `$count` and `$select` [OData query parameters](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalitem_post_responses" } -->

+<!-- { "blockType": "permissions", "name": "approvalitemrequest_get" } -->

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalitemresponse_get" } -->

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvaloperation_get" } -->

+This method supports the `$filter`, `$orderby`, `$count` and `$select` [OData query parameters](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalsolution_get" } -->

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalsolution_list_approvalitems" } -->

+This method supports the `$filter`, `$orderby`, `$top`, `$count`, and `$select` [OData query parameters](/graph/query-parameters) to help customize the response.

+<!-- { "blockType": "permissions", "name": "approvalsolution_post_approvalitems" } -->

+<!-- { "blockType": "permissions", "name": "approvalsolution_provision" } -->

+<!-- { "blockType": "permissions", "name": "authentication_post_fido2methods" } -->

+<!-- { "blockType": "permissions", "name": "authentication_update_2" } -->

+<!-- { "blockType": "permissions", "name": "authentication_update_3" } -->

+Update the properties of an [authenticationEventsFlow](../resources/authenticationeventsflow.md) object by ID. You must specify the **@odata.type** property and the value of the [authenticationEventsFlow](../resources/authenticationeventsflow.md) object type to update. The following derived subtypes are supported:

+- [externalUsersSelfServiceSignupEventsFlow](../resources/externalusersselfservicesignupeventsflow.md)

+|onAttributeCollection|[onAttributeCollectionHandler](../resources/onattributecollectionhandler.md)|The configuration for what to invoke for the onAttributeCollection event. <br/><br/><li> You can only update this property if it was configured during user flow creation. If it wasn't, call the [Add attributes to a user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) API first. </li><li> You can't add or remove attributes by updating the **attributeCollectionPage** > **views** > **inputs** and **attributes** objects. Use the [Add attribute to user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) or [Remove attribute from user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) APIs instead to update both objects.</li><li> To update the **attributeCollectionPage** > **views** > **inputs** collection, you must include all objects in the collection, not only the changed objects. <li> The order of objects in the **attributeCollectionPage** > **views** > **inputs** collection corresponds to the order in which the attributes are displayed on the app's sign-up UI. |

+The following example shows a request that updates the display name of a specific external identities user flow, as well as the priority for all the listeners associated with the policy.

+### Example 2: Update the page layout of a self-service sign up user flow

+The following request updates the configuration of some of the attributes. All the attributes are marked as required; the email attribute is marked as hidden; the input type of the custom attribute is also updated to a radio button with two options.

+ "required": true,

+ "required": true,

+ "attribute": "extension_331d514c0c18477583ea7dd5a79feda2_RockorCountry",

+ "label": "Rock music or Country",

+ "inputType": "radioSingleSelect",

+ "required": true,

+ "options": [

+ {

+ "label": "Rock music",

+ "value": "Rock"

+ },

+ {

+ "label": "Country music",

+ "value": "Country"

+ }

+ ]

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+Enable a bot to answer an incoming [call](../resources/call.md). The incoming call request can be an invitation from a participant in a group call or a peer-to-peer call. If an invitation to a group call is received, the notification contains the [chatInfo](../resources/chatinfo.md) and [meetingInfo](../resources/meetinginfo.md) parameters.

+This API supports the following PSTN scenarios:

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+ "displayName": "Hundred points",

+ "displayName": "microsoft_teams",

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+ "value": "active"

+ "value": "active"

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+<!-- { "blockType": "permissions", "name": "daynote_delete" } -->

+<!-- { "blockType": "permissions", "name": "daynote_get" } -->

+<!-- { "blockType": "permissions", "name": "daynote_list" } -->

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_getretentionlabel" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_lockorunlockrecord" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_removeretentionlabel" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_setretentionlabel" } -->

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+<!-- { "blockType": "permissions", "name": "fido2authenticationmethod_creationoptions" } -->

+GET /users/{user-id}/authentication/fido2Methods/creationOptions(challengeTimeoutInMinutes={challengeTimeoutInMinutes})

+# [PowerShell](#tab/powershell)

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.webauthnCredentialCreationOptions",

+ "challengeTimeoutDateTime": "2024-08-14T16:29:58Z",

+ "publicKey": {

+ "challenge": "ZXlKaGJHY2lPaUpTVTBFdFQwRkZVQzB5TlRZaUxDSmxibU1pT2lKQk1qVTJSME5OSWl3aWVEVmpJanBiSWsxSlNVUmhSRU5EUVd4...",

+ "timeout": 0,

+ "attestation": "direct",

+ "rp": {

+ "id": "login.microsoft.com",

+ "name": "Microsoft"

+ },

+ "user": {

+ "id": "T0Y6Ehqp2EfQP0iExdt54DFwdWuaH7qIZbZGpOc92RGnvbXyRPvU-8AOp9r1T7Cebfc3",

+ "displayName": "Kim User",

+ "name": "kimuser@contoso.com"

+ },

+ "pubKeyCredParams": [

+ {

+ "type": "public-key",

+ "alg": -7

+ },

+ {

+ "type": "public-key",

+ "alg": -257

+ }

+ ],

+ "excludeCredentials": [

+ {

+ "id": "0S64X8KwFmCeJjHzK1oE/39T+JYhfYbhFurwOxMMjtvRWc/sLYq8AMJVuva823XQ",

+ "type": "public-key",

+ "transports": []

+ },

+ {

+ "id": "pgIfj2fnom8rJdb4/h1gKqDkq+gxHFksI+m2aR5T+PNNycBfENAM4ksEBvoXky6d",

+ "type": "public-key",

+ "transports": []

+ },

+ {

+ "id": "u5wuw6SGH0VhAz7OXCLRkCuxhm4UrCB7hcLccyMU6calP1hWexfKe5PJNM69neAM",

+ "type": "public-key",

+ "transports": []

+ },

+ {

+ "id": "6rc0zTSz2YRlaKlCjqxsNDjDe8qY8TSL95Z4WhxEaaP4XfvfSnAGMk49RSwm/uAO",

+ "type": "public-key",

+ "transports": []

+ }

+ ],

+ "authenticatorSelection": {

+ "authenticatorAttachment": "cross-platform",

+ "requireResidentKey": true,

+ "userVerification": "required"

+ },

+ "extensions": {

+ "hmacCreateSecret": true,

+ "enforceCredentialProtectionPolicy": true,

+ "credentialProtectionPolicy": "userVerificationOptional"

+ }

+ }

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+```

+|onAttributeCollection|[onAttributeCollectionHandler](../resources/onattributecollectionhandler.md)|Optional. The configuration for what to invoke when attributes are ready to be collected from the user. To configure this property, you must specify both **attributes** and **onAttributeCollectionPage** > **views** objects.|

+<!-- { "blockType": "permissions", "name": "identitygovernance_deleteditemcontainer_delete" } -->

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+The attribute is removed from both the **attributes** and **views** collections of the **attributeCollectionPage** object in the user flow.

+This API operation fails when you attempt to remove the last remaining attribute on the user flow.

+If successful, this method returns a `204 No Content` response code. If unsuccessful, a `4xx` error is returned with specific details. Attempting to remove the last remaining attribute results in a `400 Bad Request` error code.

+The following example shows a request that removes city as an attribute from the attribute collection step of an external identities self-service sign-up user flow.

+The attribute is added to both the **attributeCollection**> **attributes** and **attributeCollection**> **attributeCollectionPage** > **views** collections on the user flow. In the **views** collection, the attribute is assigned the default settings. You can [PATCH the user flow](../api/authenticationeventsflow-update.md) to customize the settings of the attribute on the **views** object, for example, marking it as required or updating the allowed input types.

+The following example shows a request that adds city as an attribute for attribute collection step of an external identities self-service sign-up user flow. If the request is successful, the attribute is added to both the **attributeCollection**> **attributes** and **attributeCollection**> **attributeCollectionPage** > **views** collections on the user flow. After adding the attribute to the user flow, you can [PATCH the user flow](../api/authenticationeventsflow-update.md) to customize the settings of the attribute on the **views** object, that is, customize the page layout.

+For the list of properties that support updating, see the [Request body](#request-body) section.

+> - **userId** is the object ID of a user in [Microsoft Entra admin center > user management page](https://entra.microsoft.com/#blade/Microsoft_AAD_IAM/UsersManagementMenuBlade). For more information, see [application access policy](/graph/cloud-communication-online-meeting-application-access-policy).

+The following table lists the properties that can be updated. In the request body, supply *only* the values for properties that should be updated, with the following exceptions:

+- If you update the start or end date/time of an online meeting, you must always include both **startDateTime** and **endDateTime** properties in the request body.

+- The **organizer** field of the **participants** property can't be updated. The organizer of the meeting can't be modified after the meeting is created.

+- If you update the **attendees** field of the **participants** property, such as adding or removing an attendee to the meeting, you must always include the full list of attendees in the request body.

+The last column indicates whether updating this property takes effect for an in-progress meeting.

+|--||-| |

+| allowAttendeeToEnableCamera | Boolean | Indicates whether attendees can turn on their camera. | Yes |

+| allowAttendeeToEnableMic | Boolean | Indicates whether attendees can turn on their microphone. | Yes |

+| allowBreakoutRooms | Boolean | Indicates whether breakout rooms are enabled for the meeting. | No |

+| allowedPresenters | onlineMeetingPresenters | Specifies who can be a presenter in a meeting. | Yes |

+| allowLiveShare | Boolean | Indicates whether live share is enabled for the meeting. | No |

+| allowMeetingChat | meetingChatMode | Specifies the mode of meeting chat. | Yes |

+| allowPowerPointSharing | Boolean | Indicates whether PowerPoint live is enabled for the meeting. | No |

+| allowTeamworkReactions | Boolean | Indicates whether Teams reactions are enabled for the meeting. | Yes |

+| allowWhiteboard | Boolean | Indicates whether whiteboard is enabled for the meeting. | No |

+| endDateTime | DateTime | The meeting end time in UTC. | No |

+| isEntryExitAnnounced | Boolean | Whether or not to announce when callers join or leave. | Yes |

+| lobbyBypassSettings | [lobbyBypassSettings](../resources/lobbyBypassSettings.md) | Specifies which participants can bypass the meeting lobby. | Yes |

+| participants | [meetingParticipants](../resources/meetingparticipants.md) | The participants associated with the online meeting. Only attendees can be updated. | No |

+| recordAutomatically | Boolean | Indicates whether to record the meeting automatically. | No |

+| startDateTime | DateTime | The meeting start time in UTC. | No |

+| subject | String | The subject of the online meeting. | No |

+<!-- { "blockType": "permissions", "name": "peopleadminsettings_delete_photoupdatesettings" } -->

+<!-- { "blockType": "permissions", "name": "peopleadminsettings_list_photoupdatesettings" } -->

+```

+<!-- { "blockType": "permissions", "name": "photoupdatesettings_get" } -->

+<!-- { "blockType": "permissions", "name": "photoupdatesettings_update" } -->

+Update the properties of a [plannerPlanConfiguration](../resources/plannerplanconfiguration.md) object and its [plannerPlanConfigurationLocalization](../resources/plannerplanconfigurationlocalization.md) collection for a [businessScenario](../resources/businessscenario.md).

+|defaultLanguage|String|The language that should be used for creating plans when no language has been specified.|

+|buckets|[plannerPlanConfigurationBucketDefinition](../resources/plannerplanconfigurationbucketdefinition.md) collection|Buckets available in the plan.|

+|localizations|[plannerPlanConfigurationLocalization](../resources/plannerplanconfigurationlocalization.md) collection|Localized names for the plan configuration.|

+ ],

+ "localizations": [

+ {

+ "id": "en-us",

+ "languageTag": "en-us",

+ "planTitle": "Order Tracking",

+ "buckets": [

+ {

+ "externalBucketId": "deliveryBucket",

+ "name": "Deliveries"

+ },

+ {

+ "externalBucketId": "storePickupBucket",

+ "name": "Pickup"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Special Orders"

+ },

+ {

+ "externalBucketId": "returnProcessingBucket",

+ "name": "Customer Returns"

+ }

+ ]

+ },

+ {

+ "id": "es-es",

+ "languageTag": "es-es",

+ "planTitle": "Seguimiento de pedidos",

+ "buckets": [

+ {

+ "externalBucketId": "deliveryBucket",

+ "name": "Entregas"

+ },

+ {

+ "externalBucketId": "storePickupBucket",

+ "name": "Recogida"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Pedidos especiales"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Devoluciones de clientes"

+ }

+ ]

+ }

+ ],

+ "localizations": [

+ {

+ "id": "en-us",

+ "languageTag": "en-us",

+ "planTitle": "Order Tracking",

+ "buckets": [

+ {

+ "externalBucketId": "deliveryBucket",

+ "name": "Deliveries"

+ },

+ {

+ "externalBucketId": "storePickupBucket",

+ "name": "Pickup"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Special Orders"

+ },

+ {

+ "externalBucketId": "returnProcessingBucket",

+ "name": "Customer Returns"

+ }

+ ]

+ },

+ {

+ "id": "es-es",

+ "languageTag": "es-es",

+ "planTitle": "Seguimiento de pedidos",

+ "buckets": [

+ {

+ "externalBucketId": "deliveryBucket",

+ "name": "Entregas"

+ },

+ {

+ "externalBucketId": "storePickupBucket",

+ "name": "Recogida"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Pedidos especiales"

+ },

+ {

+ "externalBucketId": "specialOrdersBucket",

+ "name": "Devoluciones de clientes"

+ }

+ ]

+ }

+<!-- { "blockType": "permissions", "name": "reflectcheckinresponse_get" } -->

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+|determination|microsoft.graph.security.alertDetermination|Specifies the determination of the incident. Possible values are: `unknown`, `apt`, `malware`, `securityPersonnel`, `securityTesting`, `unwantedSoftware`, `other`, `multiStagedAttack`, `compromisedAccount`, `phishing`, `maliciousUserActivity`, `notMalicious`, `notEnoughDataToValidate`, `confirmedUserActivity`, `lineOfBusinessApplication`, `unknownFutureValue`.|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+ Title: "List owners of a service principal"

+# List owners of a service principal

+This method supports the `$count`, `$expand`, `$filter`, `$orderby`, `$search`, `$select`, and `$top` [OData query parameters](/graph/query-parameters) to help customize the response. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For more information, see [Advanced query capabilities on directory objects](/graph/aad-advanced-queries).

+GET https://graph.microsoft.com/beta/serviceprincipals(appId='bbec3106-565f-4907-941e-96b4dbfef21c')/owners

+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#directoryObjects",

+ "@microsoft.graph.tips": "Use $select to choose only the properties your app needs, as this can lead to performance improvements. For example: GET servicePrincipals(appId=<key>)/owners?$select=deletedDateTime",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "ce4770b3-70b2-4a38-a242-76631e9f7408",

+ "accountEnabled": null,

+ "city": null,

+ "createdDateTime": null,

+ "displayName": null,

+ "mail": null,

+ "mailNickname": null,

+ "otherMails": [],

+ "proxyAddresses": [],

+ "surname": null,

+ "userPrincipalName": null,

+ "userType": null

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "858a9c90-38b3-4e78-b915-234aece712c4"

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "7585d967-f300-43de-b817-7119a6404c5e"

+ }

+ ]

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+> [!NOTE]

+> - The Directory.ReadWrite.All permission is supported only for backward compatibility. We recommend that you update your solutions to use an alternative permission and avoid using this permissions going forward.

+> - You can only use the AppCatalog.Submit permission to delete app definitions in review.

+> - Only global administrators can call this API.

+Permissions for the following HTTP request:

+<!-- { "blockType": "ignored" } -->

+```http

+DELETE /appCatalogs/teamsApps/{id}

+```

+<!-- { "blockType": "permissions", "name": "teamsapp_delete", ΓÇâΓÇâ"requestUrls" : ["DELETE /appCatalogs/teamsApps/{id}"] } -->

+Permissions for the following HTTP request:

+<!-- { "blockType": "ignored" } -->

+```http

+DELETE appCatalogs/teamsApps/{appId}/appDefinitions/{appDefinitionId}

+```

+<!-- { "blockType": "permissions", "name": "teamsapp_delete", ΓÇâΓÇâ"requestUrls" : ["DELETE appCatalogs/teamsApps/{appId}/appDefinitions/{appDefinitionId}"] } -->

+|Permission type|Least privileged permissions|Higher privileged permissions|

+|:|:|:|

+|Delegated (work or school account)|AppCatalog.Submit|AppCatalog.ReadWrite.All|

+|Delegated (personal Microsoft account)|Not supported.|Not supported.|

+|Application|Not supported.|Not supported.|

+### Error response

+If you send a request to upload an app manifest that contains missing information or errors, you receive an error message that includes the inner error code `UnableToParseTeamsAppManifest`. The **details** property of the inner error contains the error code and the error message. The following table describes the error codes that you might encounter.

+<br>

+<details><summary>Error response</summary>

+| Error code | Error message | Description |

+| :- | - | - |

+|`Serialization_FileNotValidJson`| The file couldn't be parsed as a JSON object.| The submitted file didn't comply with a valid JSON format. |

+|`Serialization_FileMissing`| The file {0} couldn't be found in the app package.| The expected file is missing in the app package.|

+|`Serialization_TrailingCommaInManifestJsonFile`| Manifest json file contains trailing comma.| The app manifest file contains a trailing comma.|

+|`SchemaError_MultipleOf`| Integer {0} isn't a multiple of {1}.| The app manifest file failed the `multipleOf` validation of the schema. Here, {0} represents the integer value and {1} indicates the required multiple. |

+|`SchemaError_Maximum`| Integer {0} exceeds maximum value of {1}.| The app manifest file failed the `maximum` validation of the schema. Here, {0} represents the value that exceeds the maximum limit and {1} represents the maximum limit. |

+|`SchemaError_Minimum`| Integer {0} is less than minimum value of {1}.|The app manifest file failed the `minimum` validation of the schema. Here, {0} represents the value that exceeds the minimum limit and {1} represents the minimum limit.|

+|`SchemaError_MaximumLength`| String {0} exceeds maximum length of {1}.| The app manifest file failed the `maximumLength` validation of the schema. Here, {0} represents the string that exceeds the maximum length and {1} represents the maximum length.|

+|`SchemaError_MinimumLength`| String {0} is less than minimum length of {1}. | The app manifest file failed the `minimumLength` validation of the schema. Here, {0} represents the string that is less than the minimum length and {1} represents the minimum.|

+|`SchemaError_Pattern`| String {0} doesn't match regex pattern "{1}". | The app manifest file failed the `pattern` validation of the schema. Here, {0} represents the value that doesn't match the pattern and {1} represents the expected pattern.|

+|`SchemaError_ContentEncoding`| String {0} doesn't validate against content encoding {1}.| The app manifest file failed the `contentEncoding` validation of the schema. Here, {0} represents the string that doesn't match content encoding and {1} represents the expected content encoding.|

+|`SchemaError_Format`| String {0} doesn't validate against format {1}.| The app manifest file failed the `format` validation of the schema. Here, {0} represents the string that isn't in the expected format and {1} represents the expected format.|

+|`SchemaError_Type`| Value {0} isn't of the expected type {1}.| The app manifest file failed the `type` validation of the schema. Here, {0} represents the string that isn't in the expected type and {1} represents the expected type.|

+|`SchemaError_AdditionalItems`| The schema doesn't allow additional items.| The app manifest file failed the `additionalItems` validation of the schema.|

+|`SchemaError_MaximumItems`| Array item count {0} exceeds maximum count of {1}.| The app manifest file failed the `maximumItems` validation of the schema. Here, {0} represents the number of elements in the array and {1} represents the maximum allowed.|

+|`SchemaError_MinimumItems`| Array item count {0} is less than minimum count of {1}.| The app manifest file failed the `minimumItems` validation of the schema. Here, {0} represents the number of elements in the array and {1} represents the minimum allowed.|

+|`SchemaError_UniqueItems`| Array contains items that aren't unique.| The app manifest file failed the `uniqueItems` validation of the schema.|

+|`SchemaError_MaximumProperties`| Object property count {0} exceeds maximum count of {1}.| The app manifest file failed the `maximumProperties` validation of the schema. Here, {0} represents the number of properties provided and {1} represents the maximum allowed properties.|

+|`SchemaError_MinimumProperties`| Object property count {0} is less than minimum count of {1}.|The app manifest file failed the `minimumProperties` validation of the schema. Here, {0} represents the number of properties provided and {1} represents the minimum allowed properties.|

+|`SchemaError_Required`| Required properties are missing from object: {0}.| The app manifest file failed the `required` validation of the schema. Here, {0} represents the required properties. |

+|`SchemaError_AdditionalProperties`| Property {0} hasn't been defined and the schema doesn't allow additional properties.| The app manifest file failed the `additionalProperties` validation of the schema. Here, {0} represents the additional property.|

+|`SchemaError_Dependencies`|Dependencies for property {0} failed. Missing required keys.| The app manifest file failed the `dependencies` validation of the schema. Here, {0} represents the property that failed.|

+|`SchemaError_Enum`| Value {0} isn't defined in the enum.| The app manifest file failed the `enum` validation of the schema. Here, {0} represents the value that isn't in the enum.|

+|`SchemaError_AllOf`| JSON doesn't match all schemas from "allOf".| The app manifest file failed the `allOf` validation of the schema.|

+|`SchemaError_AnyOf`| JSON doesn't match any schemas from "anyOf".| The app manifest file failed the `anyOf` validation of the schema.|

+|`SchemaError_OneOf`| JSON is valid against more than one schema from "oneOf".| The app manifest file failed the `oneOf` validation of the schema.|

+|`SchemaError_Not`| JSON is valid against schema from "not".| The app manifest file failed the `not` validation of the schema.|

+|`SchemaError_Id`| Duplicate schema ID {0} encountered.| The app manifest file failed the `id` validation of the schema. Here, {0} represents the `id` of the schema.|

+|`SchemaError_PatternProperties`| Couldn't test property names with regex pattern "{0}".| The app manifest file failed the `patternProperties` validation of the schema. Here, {0} represents the pattern for the properties.|

+|`SchemaError_Valid`| Schema always fails validation.| The app manifest file failed the `valid` validation of the schema.|

+|`SchemaError_Const`| Value {0} doesn't match constant {1}.| The app manifest file failed the `const` validation of the schema. Here, {0} represents the value that failed and {1} represents the correct value.|

+|`SchemaError_Contains`| Array doesn't contain a required item.| The app manifest file failed the `contains` validation of the schema.|

+|`SchemaError_Then`|JSON doesn't match schema from "then".| The app manifest file failed the `then` validation of the schema.|

+|`SchemaError_Else`| JSON doesn't match schema from "else".|The app manifest file failed the `else` validation of the schema.|

+| `SchemaError_Other`| The value doesn't conform to the schema for this property.| The app manifest file failed other unhandled validations of the schema.|

+|`ActivityGroupIdFromActivitiesTypeValidation` | ActivityGroupId field in ActivityType must be a subset of ID field in ActivityGroup.| The `ActivityGroupId` field in `ActivityType` isn't a subset of the `Id` field in `ActivityGroup` in the app manifest.|

+|`ActivityTypesMustExistWithActivitiesGroupValidation` | Manifest shouldn't contain Activity Group when Activity Types is missing.| The `ActivityGroup` property is available, but the `ActivityType` property is missing in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsMsftEntraConfiguration`|API-based compose extension with apiSecretServiceAuth authType have microsoftEntraConfiguration defined.| The API-based compose extension has `microsoftEntraConfiguration` defined in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsNoApiSecretRegistrationId`| API-based compose extension with apiSecretServiceAuth authType have no apiSecretRegistrationId defined.| The API-based compose extension with `apiSecretServiceAuth` authType without `apiSecretRegistrationId` defined in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsNoApiSecretServiceAuthConfiguration` | API-based compose extension with apiSecretServiceAuth authType have no apiSecretServiceConfiguration.| The API-based compose extension doesn't set `supportsSingleSignOn` to `true` in the app manifest.|

+|`ApiBasedComposeExtensionManifestCommandIdsNotIncludedInOperationIdsOnApiSpecficationFile`| Command Ids on manifest aren't included in Operation Ids on API specification file.| The error that occurs when the `Command Ids` in the app manifest aren't included in `Operation Ids` on API specification file.|

+|`ApiBasedComposeExtensionWithBotId`| API-based compose extension can't have botId defined.| The API-based compose extension has `botId` defined in the app manifest.|

+|`ApiBasedComposeExtensionWithCanUpdateConfiguration`|API-based compose extension can't have canUpdateConfiguration defined on manifest.| The API-based compose extension has `canUpdateConfiguration` defined in the app manifest.|

+|`ApiBasedComposeExtensionWithNoParameter`| API-based compose extension must have command parameters defined on manifest.| The API-based compose extension doesn't have any command parameters defined in the app manifest.|

+|`ApiBasedComposeExtensionApiResponseRenderingTemplateFileNullOrEmpty`| API-based compose extension must have apiResponseRenderingTemplateFile defined on manifest.| The API-based compose extension doesn't have the `apiResponseRenderingTemplateFile` defined in the app manifest.|

+|`ApiBasedComposeExtensionApiSpecificationFileNullOrEmpty`| API-based compose extension must have apiSpecificationFile defined on manifest. | The API-based compose extension doesn't have the `apiSpecificationFile` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionContainsApiSecretServiceConfiguration`|API-based compose extension with microsoftEntra authType have apiSecretServiceConfiguration defined. |The API-based compose extension has `apiSecretServiceConfiguration` defined in the manifest.|

+|`MsftEntraAuthTypeComposeExtensionContainsNoMsftEntraConfiguration`|API-based compose extension with microsoftEntra authType have no microsoftEntraConfiguration defined.| The API-based compose extension doesn't have `microsoftEntraConfiguration` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionWebApplicationInfoOrResourceNotDefined`|API-based compose extension with microsoftEntra authType have no webApplicationInfo or resource defined on manifest.| The API-based compose extension with `microsoftEntra` authType doesn't have `webApplicationInfo` or `resource` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionResourceURLNotMatchServerURLOnApiSpec` |API-based compose extension with microsoftEntra authType resource URL on manifest doesn't match server URL on API specification file.| The API-based compose extension with `microsoftEntra` authType resource URL in the app manifest doesn't match server URL in the API specification file.|

+|`NoAuthTypeComposeExtensionContainsAuthConfiguration` |API-based compose extension with none authType have auth-related configuration defined.| The API-based compose extension with authType `microsoftEntraConfiguration` or `apiSecretServiceConfiguration` isn't defined in the app manifest.|

+|`ApiSpecificationFileContainUnsupportedHttpMethod`| API-based compose extension have server urls that have unsupported http method defined on apiSpecificationFile. Currently only GET and POST are supported.| The API-based compose extension has an unsupported `http` method defined in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequiredParameterContainUnsupportedLocation`| API-based compose extension have unsupported parameter location defined on apiSpecificationFile for {0}. Currently only path and query supported.| The API-based compose extension has an unsupported parameter location defined in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodyContainUnsupportedMediaType`|API-based compose extension have unsupported media type defined in request body on apiSpecificationFile. Currently only application/json is supported.| The API-based compose extension has an unsupported `media` type defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodyContainUnsupportedSchemaType`| API-based compose extension have unsupported schema type defined in request body on apiSpecificationFile. Currently arrays aren't supported.| The API-based compose extension has an unsupported schema type defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodySchemaContainKeywords` | API-based compose extension have keywords.|The API-based compose extension has keywords defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequiredParameterOrPropertyNotDefinedOnManifest`| API-based compose extension have required parameters or properties {0} not defined on manifest.| The API-based compose extension has a `required` parameter, which isn't defined in the app manifest.|

+|`ApiSpecificationFileResponseContainUnsupportedMediaType`| API-based compose extension have unsupported media type defined in response on apiSpecificationFile. Currently only application/json supported. | The API-based compose extension has an unsupported `media` type defined in response in the `apiSpecificationFile`.|

+|`ApiSpecificationFileServerUrlsContainHttp`| API-based compose extension have server urls that have http protocol defined on apiSpecificationFile.| The API-based compose extension has server urls that contain `http` protocol in the `apiSpecificationFile`.|

+|`ApiSpecificationFileServerUrlsContainInvalidUrl`| API-based compose extension have server urls that are invalid URL defined on apiSpecificationFile.| The API-based compose extension has an `invalid` URL defined in the `apiSpecificationFile`.|

+|`ServerUrlsMissingOnApiSpecificationFile`| API-based compose extension have no server urls defined on apiSpecificationFile.| The error that occurs The API-based compose extension has no server urls defined in the `apiSpecificationFile`.|

+|`BotBasedComposeExtensionApiResponseRenderingTemplateFileExists` |Bot based compose extension can't have apiResponseRenderingTemplateFile defined.|The bot-based compose extension has an `apiResponseRenderingTemplateFile` property defined in the app manifest.|

+|`BotBasedComposeExtensionApiSpecificationFileExists` |Bot based compose extension can't have apiSpecificationFile defined.|The bot-based compose extension has an API specification file defined in the app manifest.|

+|`BotBasedComposeExtensionBotIdNotGuid` |Bot based compose extension must have GUID botId.| The bot-based compose extension `botId` isn't GUID.|

+|`CommonAppIdIsNotGuid`| Field 'ID' isn't a Guid in the manifest.| The `appId` isn't GUID.|

+|`CommonAppIdIsRequiredField`| Required field 'ID' is missing in the manifest.| The `appId` isn't provided.|

+|`CommonManifestVersionIsRequiredField`|The required field in manifest 'manifest Version' is missing.| The manifest version isn't provided.|

+|`CommonSchemaUrlIsRequiredField`| Schema URL must be present.| The schema isn't provided.|

+|`DashboardCardBothIconNameAndUrlPresent`| Dashboard cards icon shouldn't contain both icon name and URL.| Dashboard cards icon mustn't contain both icon name and URL.|

+|`DashboardCardEntityIdsAreNotUnique`| Dashboard card entity IDs should be unique.| The returned entity Id for a dashboard card isn't unique within the manifest.|

+|`DeveloperNameIsRequiredField`| Required field 'developer name' is missing in the manifest.| The developer name isn't provided.|

+|`DeveloperNameLengthCheck`| Maximum character length must not exceed 32 chars.| The developer name is more than 32 characters long.|

+|`DeveloperPrivacyUrlIsRequiredField`| Required field 'privacyUrl' is missing in the manifest.| The `privacyUrl` is missing in the app manifest. |

+|`DeveloperPrivacyUrlMustBeHttps`| Privacy URL must be secured Support URL (HTTPS).| The developer privacy URL didn't use HTTPS.|

+|`DeveloperTermsOfUseUrlIsRequiredField`| Required field 'termsOfUseUrl' is missing in the manifest.| The **termsOfUseUrl** is missing from the manifest.|

+|`DeveloperTermsOfUseUrlMustBeHttps`|Terms Of Use URL must be secured Support URL (HTTPS).| The developer terms of use URL didn't use HTTPS.|

+|`DeveloperWebsiteUrlIsRequiredField`| Required field 'websiteUrl' is missing in the manifest.| The developer website URL is missing.|

+|`DeveloperWebsiteUrlMustBeHttps`| Website URL must be secured Support URL (HTTPS).| The developer website URL didn't use HTTPS.|

+|`UniqueActivityTypeInActivitiesValidation` |Manifest shouldn't contain duplicate Activity Type.| The activity type isn't unique in the app manifest.|

+|`UniqueIdInActivitiesGroupValidation` |Manifest shouldn't contain duplicate ID in Activity Groups.| The activity group ID isn't unique in the app manifest.|

+|`FullDescriptionCannotBeEmpty` |Full Description can't be empty.| The full description is empty.|

+|`FullDescriptionLengthCheck`| Maximum character length for long description must not exceed 4,000 chars.| The full description length is more than 4,000 characters.|

+|`GroupChatForBotsLessThanV13`| Please upgrade the version of manifest to V1.3 as group chat bot is supported in manifest v1.3 onwards.| The `groupChat` scope for bots isn't supported in the app manifest version 1.3 and below.|

+|`GroupChatForConfigurableTabsLessThanV13`| Please upgrade the version of manifest to V1.3 as group chat configurable tabs is supported in manifest v1.3 onwards.|The `groupChat` scope for configurable tabs isn't supported in the app manifest version 1.3 and below.|

+|`InvalidColor32x32IconHeightAndWidth`|Color 32x32 icon should be 32x32 with only white and transparent.| The color 32x32 icon doesn't have the correct dimensions.|

+|`InvalidColorIconHeightAndWidth`| Color Icon isn't as per the required dimension.| The dimensions of the color icon are incorrect.|

+|`InvalidOutlineIconHeightAndWidth` | Small icon should be 32x32 with only white and transparent.| The dimensions of the outline icon are incorrect.|

+|`ParameterOnManifestNotDefinedOnApiSpecFile` | API-based compose extension have parameters {0} on manifest not defined on API specification file.| The API-based compose extension parameters in the app manifest aren't defined in the API specification file. |

+|`ReservedActivitiesValidation`| Manifest shouldn't contain reserved Activity Type 'systemDefault'.| The `systemDefault` activity type is defined in the app manifest.|

+|`ReservedStaticTabNameShouldBeNull`| Reserved tab "Name" property shouldn't be specified.| The reserved `staticTabs` name property was specified.|

+|`ShortDescriptionCannotBeEmpty`| Short Description canΓÇÖt be empty| The short description was empty.|

+|`ShortDescriptionLengthCheck`|Maximum character length for short description must not exceed 80 chars.| The short description is more than 80 characters long.|

+|`ShortNameEqualsReservedName`|Short name of the app can't be reserved name.| The short name is a reserved name.|

+|`ShortNameIsRequiredField`| Short name of the app can't be empty.| The short name is empty.|

+|`StaticTabNameCouldNotBeEmpty`| Non-reserved staticTabs "Name" property can't be empty.| The `staticTabs` name property is empty.|

+|`BotIdIsNotGuid`| BotId isn't a Guid value.|The `BotId` value in the app manifest isn't a GUID.|

+|`VersionCannotBeEmpty`| Required field "version" is missing in the manifest.| The app package version is missing.|

+|`VersionContainsOnlyNumbersDotSeparated`| App version supports only numbers in the '#.#.#' format.| The version in the app package isn't matched by the pattern, `#.#.#`.|

+|`VersionHasMajorLessThan1`|App version shouldn't start with '0'. Ex: 0.0.1 or 0.1 aren't valid app versions and 1.0 / 1.5.1 / 1.0.0 / 2.5.0 are valid app versions. In case of new update in manifest to an existing app in store. | The app version is less than 1.0. You need to upgrade your app version. For example, if the current version of your app in the store is 1.0 and youΓÇÖre submitting an update for validation, the app version must be higher than 1.0.|

+|`ShortNameLengthCheck` |Maximum character length for Short Name must not exceed 30 chars.|The short name exceeds 30 characters.|

+|`ApiSpecificationFileParameterContainUnsupportedSchemaType` |API-based compose extension have unsupported parameter schema type defined on apiSpecificationFile.Arrays aren't supported.|The API-based compose extension has an unsupported parameter schema type defined in the `apiSpecificationFile`.|

+</details>

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+Update the signed-in [user's](../resources/user.md) password. Any user can update their password without belonging to any administrator role.

+Get newly created, updated, or deleted users without having to perform a full read of the entire [user](../resources/user.md) collection. See [change tracking](/graph/delta-query-overview) for details.

+| Query parameter | Type |Description|

+Retrieve the properties and relationships of [user](../resources/user.md) object.

+Retrieve the list of [appRoleAssignments](../resources/approleassignment.md) that a [user](../resources/user.md) has been granted. This operation also returns app role assignments granted to groups that the user is a direct member of.

+<!-- { "blockType": "permissions", "name": "user_list_memberof" } -->

+<!-- { "blockType": "permissions", "name": "user_list_transitivememberof" } -->

+Use this API to assign an [app role](../resources/approle.md) to a [user](../resources/user.md), creating an [appRoleAssignment](../resources/approleassignment.md) object. To grant an app role assignment to a user, you need three identifiers:

+| Name | Description|

+|:-|:-|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Content-Type | The nature of the data in the body of an entity. Required. <br/> Use `application/json` for a JSON object and `text/plain` for MIME content |

+<!-- { "blockType": "permissions", "name": "virtualendpoint_retrievetenantencryptionsetting" } -->

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+<!-- { "blockType": "permissions", "name": "workbookformatprotection_get" } -->

+<!-- { "blockType": "permissions", "name": "workbookformatprotection_update" } -->

+ Title: "workingTimeSchedule: endWorkingTime"

+description: "Trigger the policies associated with the end of working hours for a specific user."

+ms.localizationpriority: medium

+# workingTimeSchedule: endWorkingTime

+Namespace: microsoft.graph

+Trigger the policies associated with the end of working hours for a specific user.

+## Permissions

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "workingtimeschedule_endworkingtime" } -->

+## HTTP request

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+POST /users/{userId}/solutions/workingTimeSchedule/endWorkingTime

+```

+## Path parameters

+|Parameter|Type|Description|

+|:|:|:|

+|userId|String|ID of the user whose working time ended.|

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+## Request body

+Don't supply a request body for this method.

+## Response

+If successful, this action returns a `202 Accepted` response code.

+## Examples

+### Request

+The following example shows a request.

+<!-- {

+ "blockType": "request",

+ "name": "workingtimeschedulethis.endworkingtime"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/users/ccdf8279-8a3f-4c10-af1a-4a7f46b1489f/solutions/workingTimeSchedule/endWorkingTime

+```

+### Response

+The following example shows the response.

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 202 Accepted

+```

+ Title: "Get workingTimeSchedule"

+description: "Read the properties and relationships of a workingTimeSchedule object."

+ms.localizationpriority: medium

+# Get workingTimeSchedule

+Namespace: microsoft.graph

+Read the properties and relationships of a [workingTimeSchedule](../resources/workingtimeschedule.md) object.

+## Permissions

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- {

+ "blockType": "permissions",

+ "name": "workingtimeschedule-get-permissions"

+}

+-->

+## HTTP request

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+GET /users/{usersId}/solutions/schedule

+```

+## Optional query parameters

+This method doesn't support [OData query parameters](/graph/query-parameters) to customize the response.

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+## Request body

+Don't supply a request body for this method.

+## Response

+If successful, this method returns a `200 OK` response code and a [workingTimeSchedule](../resources/workingtimeschedule.md) object in the response body.

+## Examples

+### Request

+The following example shows a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_workingtimeschedule"

+}

+-->

+``` http

+GET https://graph.microsoft.com/beta/users/ccdf8279-8a3f-4c10-af1a-4a7f46b1489f/solutions/schedule

+```

+### Response

+The following example shows the response.

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.workingTimeSchedule"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+{

+ "value": {

+ "@odata.type": "#microsoft.teams.workingTime.workingTimeSchedule",

+ "id": "da5f72af-450e-56fc-10d7-afc9acb40cc0"

+ }

+}

+```

+ Title: "workingTimeSchedule: startWorkingTime"

+description: "Trigger the policies associated with the start of working hours for a specific user."

+ms.localizationpriority: medium

+# workingTimeSchedule: startWorkingTime

+Namespace: microsoft.graph

+Trigger the policies associated with the start of working hours for a specific user.

+## Permissions

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "workingtimeschedule_startworkingtime" } -->

+## HTTP request

+<!-- {

+ "blockType": "ignored"

+}

+-->

+``` http

+POST /users/{userId}/solutions/workingTimeSchedule/startWorkingTime

+```

+## Path parameters

+|Parameter|Type|Description|

+|:|:|:|

+|userId|String|ID of the user whose working hours started.|

+## Request headers

+|Name|Description|

+|:|:|

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+## Request body

+Don't supply a request body for this method.

+## Response

+If successful, this action returns a `202 Accepted` response code.

+## Examples

+### Request

+The following example shows a request.

+<!-- {

+ "blockType": "request",

+ "name": "workingtimeschedulethis.startworkingtime"

+}

+-->

+``` http

+POST https://graph.microsoft.com/beta/users/ccdf8279-8a3f-4c10-af1a-4a7f46b1489f/solutions/workingTimeSchedule/startWorkingTime

+```

+### Response

+The following example shows the response.

+<!-- {

+ "blockType": "response",

+ "truncated": true

+}

+-->

+``` http

+HTTP/1.1 202 Accepted

+```

+|[Filter by current user](../api/accesspackageassignmentrequest-filterbycurrentuser.md)|[accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) collection|Retrieve the list of **accessPackageAssignmentRequest** objects filtered on the signed-in user.|

+| [Resume](../api/accesspackageassignmentrequest-resume.md) | None | Resume a user's access package request after waiting for a callback from a custom extension.|

+|[Get](../api/adminreportsettings-get.md)|[adminReportSettings](../resources/adminreportsettings.md)|Get the tenant-level settings for Microsoft 365 reports.|

+|[Update](../api/adminreportsettings-update.md)|[adminReportSettings](../resources/adminreportsettings.md)|Update tenant-level settings for Microsoft 365 reports.|

+| displayConcealedNames | Boolean | If set to `true`, all reports conceal user information such as usernames, groups, and sites. If `false`, all reports show identifiable information. This property represents a setting in the Microsoft 365 admin center. Required. |

+|authenticationBehaviors|[authenticationBehaviors](../resources/authenticationbehaviors.md)| The collection of breaking change behaviors related to token issuance that are configured for the application. Authentication behaviors are unset by default (`null`) and must be explicitly enabled or disabled. Nullable. Returned only on `$select`. <br/><br/> For more information about authentication behaviors, see [Manage application authenticationBehaviors to avoid unverified use of email claims for user identification or authorization](/graph/applications-authenticationbehaviors).|

+description: "Used to record when a user, group, or service principal is assigned to an app role on an application's service principal. You can create, read, and delete app role assignments."

+When the [app role](approle.md) that has been assigned to a principal has a nonempty **value** property, this is included in the **roles** claim of tokens where the subject is the assigned principal (for example, SAML responses, ID tokens, access tokens identifying a signed-in user, or an access token identifying a service principal). Applications and APIs use these claims as part of their authorization logic.

+|[List app role assignments for a group](../api/group-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a group.|

+|[List app role assignments for a user](../api/user-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a user.|

+|[List app role assignments for a client service principal](../api/serviceprincipal-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a client service principal.|

+|[List app role assignments for users, groups, and client service principals for a resource service principal](../api/serviceprincipal-list-approleassignedto.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for users, groups, and client service principals for a specified resource service principal.|

+|[Grant app role to a group](../api/group-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md)|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a group.|

+|[Grant app role to a user](../api/user-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md)|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a user.|

+|[Grant app role to a client service principal](../api/serviceprincipal-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a client service principal.|

+|[Grant app role assignment to user, group, or client service principal for a resource service principal](../api/serviceprincipal-post-approleassignedto.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Create a new [appRoleAssignment](../resources/approleassignment.md) object to a user, group, or client service principal for a specified resource service principal.|

+|[Get app role assignment](../api/approleassignment-get.md)|[appRoleAssignment](../resources/approleassignment.md)|Get an [appRoleAssignment](../resources/approleassignment.md) object assigned to a user, group, or client service principal for a resource service principal.|

+|[Delete app role assignment for a group](../api/group-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a group.|

+|[Delete app role assignment for a user](../api/user-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a user.|

+|[Delete app role assignment for a client service principal](../api/serviceprincipal-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a client service principal.|

+|[Delete app role assignment for user, group, or client service principal to a resource service principal](../api/serviceprincipal-delete-approleassignedto.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a user, group, or client service principal for a specified resource service principal.|

+| appRoleId | Guid | The identifier (**id**) for the [app role](approle.md) that is assigned to the principal. This app role must be exposed in the **appRoles** property on the resource application's service principal (**resourceId**). If the resource application hasn't declared any app roles, a default app role ID of `00000000-0000-0000-0000-000000000000` can be specified to signal that the principal is assigned to the resource app without any specific app roles. Required on create. |

+description: "The base type for several types of attachments on a user, message, task, or group post."

+The base type for several types of attachments on a user, message, task, or group post that serves as the base resource for the following derived types of attachments:

+* A file ([fileAttachment](../resources/fileattachment.md) resource)

+* An item (contact, event, or message, represented by an [itemAttachment](../resources/itemattachment.md) resource)

+* A link to a file ([referenceAttachment](../resources/referenceattachment.md) resource)

+Applications can adopt new breaking changes by enabling a behavior (set the behavior to `true`), or continue using preexisting behavior by disabling it (by setting the behavior to `false`). For more information about managing authentication behaviors, see [Manage application authenticationBehaviors](/graph/applications-authenticationbehaviors).

+|blockAzureADGraphAccess|Boolean| If `false`, allows the app to have extended access to Azure AD Graph until June 30, 2025 when Azure AD Graph is fully retired. For more information on Azure AD retirement updates, see [June 2024 update on Azure AD Graph API retirement](https://techcommunity.microsoft.com/t5/microsoft-entra-blog/june-2024-update-on-azure-ad-graph-api-retirement/ba-p/4094534).|

+|removeUnverifiedEmailClaim|Boolean| If `true`, removes the `email` claim from tokens sent to an application when the email address's domain can't be verified. |

+|requireClientServicePrincipal|Boolean| If `true`, requires multitenant applications to have a service principal in the resource tenant as part of authorization checks before they're granted access tokens. This property is only modifiable for multitenant resource applications that rely on access from clients without a service principal and had this behavior as set to `false` by Microsoft. Tenant administrators should respond to security advisories sent through Azure Health Service events and the Microsoft 365 message center.|

+ "blockAzureADGraphAccess": "Boolean",

+> [!NOTE]

+>

+> If the Default Scheduling Policy is enabled at the service level, the values of this resource are limited to those defined in the policy in the [List services](/graph/api/bookingbusiness-list-services) API response. In this case, the client must fall back to the Default Scheduling Policy for the business.

+|displayName|String|The name of the reaction.|

+|reactionType|String|The reaction type. Supported values include Unicode characters, `custom`, and some backward-compatible reaction types, such as `like`, `angry`, `sad`, `laugh`, `heart`, and `surprised`. |

+ "displayName": "String",

+|[Get frontline access state](../api/cloudpc-getfrontlinecloudpcaccessstate.md)|[frontlineCloudPcAccessState](#frontlinecloudpcaccessstate-values)|Get the access state of the frontline Cloud PC. The possible values are: `unassigned`, `noLicensesAvailable`, `activationFailed`, `active`, `activating`, `standbyMode`, `unknownFutureValue`. The `noLicensesAvailable` member is deprecated and will stop returning on September 30, 2024.|

+|noLicensesAvailable (deprecated)|Indicates that all shared-use licenses are in use. The `noLicensesAvailable` member is deprecated and will stop returning on September 30, 2024.|

+Indicates details of the device used in a sign-in activity. Includes information like device browser and OS info and if the device is Microsoft Entra ID-managed.

+|browser|String|Indicates the browser information of the used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|deviceId|String|Refers to the unique ID of the device used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|displayName|String|Refers to the name of the device used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|operatingSystem|String|Indicates the OS name and version used in the sign-in.|

+|trustType|String|Indicates information on whether the device used in the sign-in is workplace-joined, Microsoft Entra-joined, domain-joined.|

+description: "The education APIs in Microsoft Graph enhance Microsoft 365 resources and data with information that is relevant for education scenarios, including schools, students, teachers, classes, enrollments, and assignments."

+To call the education APIs in Microsoft Graph, your app needs to acquire an access token. For details about access tokens, see [Get access tokens to call Microsoft Graph](/graph/auth/). Your app also needs the appropriate permissions. For more information, see [Education permissions](/graph/permissions-reference#education-permissions).

+- [educationTeacher](educationteacher.md) - Represents a user with the primary role of 'Teacher'.

+- [educationStudent](educationstudent.md) - Represents a user with the primary role of 'student'.

+## Classwork

+You can use Classwork as a one-stop shop to create and organize class resources, including assignments, OneNote Class Notebook pages, web links, files, and Teams channels. This means you no longer have to navigate multiple apps and platforms to find what you need. With Classwork, you can curate a view of content and resources that helps your students navigate the class and see everything in one place.

+The Classwork API provides the following key resources:

+- [educationModule](educationmodule.md) - A module is associated with a class. Represents a group of individual learning resources that are organized in a systematic way.

+- [educationModuleResource](educationmoduleresource.md) - A wrapper object that stores the resources associated with a module. The student is unable to update this resource, which is a handout from the teacher to the student with nothing to be turned in.

+The following lists show the scenarios supported by the Classwork API.

+### Modules

+The **educationModule** resource supports the following scenarios:

+- [List modules](../api/educationclass-list-modules.md)

+- [Create module](../api/educationclass-post-module.md)

+- [Get module](../api/educationmodule-get.md)

+- [Update module](../api/educationmodule-update.md)

+- [Delete module](../api/educationmodule-delete.md)

+- [Pin module](../api/educationmodule-pin.md)

+- [Unpin module](../api/educationmodule-unpin.md)

+- [Publish module](../api/educationmodule-publish.md)

+- [Set up module resources folder](../api/educationmodule-setupresourcesfolder.md)

+### Module resources

+The **educationModuleResource** resource supports the following scenarios:

+- [List module resources](../api/educationmodule-list-resources.md)

+- [Create module resource](../api/educationmodule-post-resources.md)

+- [Get module resource](../api/educationmoduleresource-get.md)

+- [Update module resource](../api/educationmoduleresource-update.md)

+- [Delete resource from module](../api/educationmoduleresource-delete.md)

+### Common use cases

+The following table shows some common use cases for the module-related education APIs.

+| Use case | Description | See also |

+|:|:--|:-|

+| Create a module | Only teachers in a class can create a module. Modules start in the draft state, which means that students don't see the modules until publication. | [Create educationModule](../api/educationclass-post-module.md) |

+| List modules | A teacher or an application with application permissions can see all module objects for the class. Students can only see published modules. | [List class modules](../api/educationclass-list-modules.md) |

+| Publish a module | Changes the state of an **educationModule** from its original `draft` status to the `published` status. | [educationModule: publish](../api/educationmodule-publish.md) |

+| Create a resource in a module | Only teachers can perform this operation. | [Create educationModuleResource](../api/educationmodule-post-resources.md) |

+| List module resources | Get all the **educationModuleResource** objects associated with a module. Only teachers, students, and applications with application permissions can perform this operation. | [List module resources](../api/educationmodule-list-resources.md) |

+### provisionState values

+### approvalOperationStatus values

+### approverRole values

+### approvalItemState values

+### approvalItemType values

+### responseFeedbackType values

+### responseEmotionType values

+### virtualEventRegistrationPredefinedQuestionLabel values

+### fileStorageContainerOwnershipType values

+### groupAccessType values

+### fileStorageContainerStatus values

+### siteLockState values

+### userDefaultAuthenticationMethod values

+### applicationKeyUsage values

+### applicationKeyType values

+### plannerTaskCompletionRequirements values

+### plannerApprovalStatus values

+### applicationKeyOrigin values

+### authenticationAttributeCollectionInputType values

+### userType values

+### assignmentType values

+### courseStatus values

+### usqState values

+### userPurpose values

+### releaseType values

+### requiredLicenses values

+### recommendationCategory values

+### recommendationFeatureAreas values

+### recommendationPriority values

+### recommendationStatus values

+### recommendationType values

+### layoutTemplateType values

+### conditionalAccessExternalTenantsMembershipKind values

+### conditionalAccessGuestOrExternalUserTypes values

+### teamTemplateAudience values

+### decisionItemPrincipalResourceMembershipType values

+### signInFrequencyAuthenticationType values

+### signInFrequencyInterval values

+### authenticationProtocol values

+### federatedIdpMfaBehavior values

+### promptLoginBehavior values

+### bookingsAvailabilityStatus values

+### accessPackageCustomExtensionHandlerStatus values

+### accessPackageSubjectLifecycle values

+### customExtensionCalloutInstanceStatus values

+### accessPackageCustomExtensionStage values

+### accessReviewHistoryStatus values

+### accessReviewHistoryDecisionFilter values

+### crossTenantAccessPolicyTargetConfigurationAccessType values

+### crossTenantAccessPolicyTargetType values

+### multiTenantOrganizationMemberProcessingStatus values

+### multiTenantOrganizationMemberRole values

+### multiTenantOrganizationMemberState values

+### multiTenantOrganizationState values

+### templateApplicationLevel values

+### approvalFilterByCurrentUserOptions values

+### accessPackageFilterByCurrentUserOptions values

+### userSignInRecommendationScope values

+### incomingTokenType values

+### protocolType values

+### accessReviewInstanceDecisionItemFilterByCurrentUserOptions values

+### accessReviewStageFilterByCurrentUserOptions values

+### continuousAccessEvaluationMode values

+### msiType values

+### multiFactorAuthConfiguration values

+### policyScope values

+### appManagementRestrictionState values

+### appCredentialRestrictionType values

+### appKeyCredentialRestrictionType values

+### synchronizationSecret values

+### synchronizationScheduleState values

+### synchronizationStatusCode values

+### synchronizationTaskExecutionResult values

+### quarantineReason values

+### attributeMappingSourceType values

+### filterMode values

+### lifecycleEventType values

+### changeType values

+### countryLookupMethodType values

+### approvalState values

+### roleSummaryStatus values

+### dataPolicyOperationStatus values

+### conditionalAccessClientApp values

+### consentRequestFilterByCurrentUserOptions values

+### attributeType values

+### scopeOperatorType values

+### synchronizationJobRestartScope values

+### synchronizationMetadata values

+### mutability values

+### directoryDefinitionDiscoverabilities values

+### objectDefinitionMetadata values

+### connectorGroupRegion values

+### connectorGroupType values

+### onPremisesPublishingType values

+### agentStatus values

+### connectorStatus values

+### callType values

+### tone values

+### callState values

+### routingPolicy values

+### meetingCapabilities values

+### onlineMeetingRole values

+### autoAdmittedUsersType values

+### mediaState values

+### callDirection values

+### modality values

+### endpointType values

+### kerberosSignOnMappingAttributeType values

+### externalAuthenticationType values

+### recipientScopeType values

+### appliedConditionalAccessPolicyResult values

+### microsoftAuthenticatorAuthenticationMode values

+### authenticationMethodFeature values

+### authMethodsType values

+### defaultMfaMethodType values

+### clientCredentialType values

+### azureADLicenseType values

+### conditionalAccessConditions values

+### conditionalAccessStatus values

+### featureType values

+### groupType values

+### includedUserRoles values

+### includedUserTypes values

+### initiatorType values

+### migrationStatus values

+### networkType values

+### operationResult values

+### provisioningResult values

+### provisioningStepType values

+### registrationAuthMethod values

+### registrationStatusType values

+### signInIdentifierType values

+### signInUserType values

+### requirementProvider values

+### riskDetail values

+### riskEventType values

+### usageAuthMethod values

+### authenticationAppAdminConfiguration values

+### authenticationAppEvaluation values

+### authenticationAppPolicyStatus values

+### authenticationMethodKeyStrength values

+### authenticationMethodPlatform values

+### authenticationContextDetail values

+### educationAddedStudentAction values

+### educationAddToCalendarOptions values

+### educationModuleStatus values

+### educationAssignmentStatus values

+### educationSubmissionStatus values

+### educationFeedbackResourceOutcomeStatus values

+### externalEmailOtpState values

+### expirationRequirement values

+### replyRestriction values

+### userNewMessageRestriction values

+### volumeType values

+### allowedAudiences values

+### attestationLevel values

+### emailType values

+### authenticationMethodSignInState values

+### authenticationPhoneType values

+### authenticationMethodTargetType values

+### authenticationMethodState values

+### fido2RestrictionEnforcementType values

+### x509CertificateAuthenticationMode values

+### x509CertificateAffinityLevel values

+### x509CertificateRuleType values

+### x509CertificateIssuerHintsState values

+### anniversaryType values

+### skillProficiencyLevel values

+### languageProficiencyLevel values

+### personRelationship values

+### attachmentType values

+### analyticsActivityType values

+### entityTypes values

+### searchAlterationType values

+### bucketAggregationSortProperty values

+### contactRelationship values

+### scheduleEntityTheme values

+### timeOffReasonIconType values

+### timeCardState values

+### scheduleChangeState values

+### scheduleChangeRequestActor values

+### windowsSettingType values

+### workforceIntegrationEncryptionProtocol values

+### workforceIntegrationSupportedEntities values

+### confirmedBy values

+### timeZoneStandard values

+### freeBusyStatus values

+### physicalAddressType values

+### attendeeType values

+### externalAudienceScope values

+### automaticRepliesStatus values

+### calendarColor values

+### educationSynchronizationProfileState values

+### educationSynchronizationStatus values

+### educationExternalSource values

+### educationGender values

+### eventType values

+### sensitivity values

+### importance values

+### educationUserRole values

+### meetingMessageType values

+### followupFlagStatus values

+### inferenceClassificationType values

+### iosNotificationAlertType values

+### deviceEnrollmentFailureReason values

+### bodyType values

+### locationType values

+### locationUniqueIdType values

+### messageActionFlag values

+### onenoteUserRole values

+### operationStatus values

+### onenotePatchActionType values

+### onenotePatchInsertPosition values

+### phoneType values

+### plannerPreviewType values

+### status values

+### weekIndex values

+### dayOfWeek values

+### recurrencePatternType values

+### recurrenceRangeType values

+### onenoteSourceService values

+### responseType values

+### activityDomain values

+### websiteType values

+### categoryColor values

+### alertFeedback values

+### fileHashType values

+### connectionDirection values

+### connectionStatus values

+### processIntegrityLevel values

+### registryHive values

+### registryOperation values

+### registryValueType values

+### alertSeverity values

+### alertStatus values

+### emailRole values

+### logonType values

+### userAccountSecurityType values

+### chatMessagePolicyViolationDlpActionType values

+### scopeOperatorMultiValuedComparisonType values

+### riskLevel values

+### riskState values

+### advancedConfigState values

+### referenceAttachmentPermission values

+### referenceAttachmentProvider values

+### exchangeIdFormat values

+### attributeDefinitionMetadata values

+### attributeFlowBehavior values

+### attributeFlowType values

+### objectFlowTypes values

+### objectMappingMetadata values

+### chatMessageType values

+### chatMessageImportance values

+### stagedFeatureName values

+### tokenIssuerType values

+### riskDetectionTimingType values

+### activityType values

+### chatMessagePolicyViolationUserActionType values

+### chatMessagePolicyViolationVerdictDetailsType values

+### entityType values

+### onlineMeetingProviderType values

+### delegateMeetingMessageDeliveryOptions values

+### calendarRoleType values

+### contentFormat values

+### contentState values

+### assignmentMethod values

+### actionSource values

+### contentAlignment values

+### watermarkLayout values

+### conditionalAccessPolicyState values

+### conditionalAccessGrantControl values

+### perUserMfaState values

+### conditionalAccessRule values

+### signInAccessType values

+### signinFrequencyType values

+### originalTransferMethods values

+### tokenProtectionStatus values

+### conditionalAccessAudienceReason values

+### persistentBrowserSessionMode values

+### cloudAppSecuritySessionControlType values

+### conditionalAccessDevicePlatform values

+### priority values

+### templateScenarios values

+### threatAssessmentContentType values

+### threatExpectedAssessment values

+### threatCategory values

+### threatAssessmentStatus values

+### threatAssessmentRequestSource values

+### threatAssessmentResultType values

+### mailDestinationRoutingReason values

+### threatAssessmentRequestPivotProperty values

+### userFlowType values

+### openIdConnectResponseMode values

+### wellknownListName values

+### taskStatus values

+### columnTypes values

+### contentModelType values

+### documentProcessingJobStatus values

+### documentProcessingJobType values

+### connectedOrganizationState values

+### identityUserFlowAttributeDataType values

+### identityUserFlowAttributeType values

+### permissionClassificationType values

+### permissionType values

+### identityUserFlowAttributeInputType values

+### teamworkActivityTopicSource values

+### cloudPcProvisioningPolicyImageType values

+### cloudPcPolicySettingType values

+### chatType values

+### singleSignOnMode values

+### plannerContainerType values

+### plannerPlanContextType values

+### plannerContextState values

+### plannerExternalTaskSourceDisplayType values

+### plannerCreationSourceKind values

+### teamsAppInstallationScope values

+### assignmentScheduleFilterByCurrentUserOptions values

+### assignmentScheduleInstanceFilterByCurrentUserOptions values

+### assignmentScheduleRequestFilterByCurrentUserOptions values

+### eligibilityScheduleFilterByCurrentUserOptions values

+### eligibilityScheduleInstanceFilterByCurrentUserOptions values

+### eligibilityScheduleRequestFilterByCurrentUserOptions values

+### privilegedAccessGroupAssignmentType values

+### privilegedAccessGroupMemberType values

+### privilegedAccessGroupRelationships values

+### scheduleRequestActions values

+### roleAssignmentScheduleRequestFilterByCurrentUserOptions values

+### roleAssignmentScheduleFilterByCurrentUserOptions values

+### roleAssignmentScheduleInstanceFilterByCurrentUserOptions values

+### roleEligibilityScheduleRequestFilterByCurrentUserOptions values

+### roleEligibilityScheduleFilterByCurrentUserOptions values

+### roleEligibilityScheduleInstanceFilterByCurrentUserOptions values

+### cloudPcAuditActivityOperationType values

+### cloudPcAuditActivityResult values

+### cloudPcAuditActorType values

+### cloudPcAuditCategory values

+### postType values

+### serviceHealthClassificationType values

+### serviceHealthOrigin values

+### serviceHealthStatus values

+### serviceUpdateCategory values

+### serviceUpdateSeverity values

+### teamworkApplicationIdentityType values

+### teamworkConversationIdentityType values

+### teamworkUserIdentityType values

+### callRecordingStatus values

+### payloadDeliveryPlatform values

+### trainingStatus values

+### teamworkCallEventType values

+### binaryOperator values

+### subjectRightsRequestStage values

+### subjectRightsRequestStageStatus values

+### subjectRightsRequestStatus values

+### subjectRightsRequestType values

+### dataSubjectType values

+### answerInputType values

+### taskStatus_v2 values

+### wellKnownListName_v2 values

+### bookingPriceType values

+### bookingStaffRole values

+### bookingReminderRecipients values

+### teamworkConnectionStatus values

+### teamworkDeviceActivityState values

+### teamworkDeviceOperationType values

+### teamworkSoftwareFreshness values

+### teamworkSoftwareType values

+### teamworkSupportedClient values

+### delegatedAdminAccessAssignmentStatus values

+### delegatedAdminAccessContainerType values

+### delegatedAdminRelationshipOperationType values

+### delegatedAdminRelationshipRequestAction values

+### delegatedAdminRelationshipRequestStatus values

+### delegatedAdminRelationshipStatus values

+### featureTargetType values

+### longRunningOperationStatus values

+### submissionCategory values

+### submissionClientSource values

+### submissionContentType values

+### submissionSource values

+### weakAlgorithms values

+### tenantAllowBlockListAction values

+### tenantAllowBlockListEntryType values

+### outlierMemberType values

+### outlierContainerType values

+### browserSharedCookieSourceEnvironment values

+### browserSiteCompatibilityMode values

+### browserSiteMergeType values

+### browserSiteTargetEnvironment values

+### browserSiteStatus values

+### browserSharedCookieStatus values

+### browserSiteListStatus values

+### authenticationStrengthPolicyType values

+### authenticationStrengthRequirements values

+### authenticationStrengthResult values

+### authenticationMethodModes values

+### baseAuthenticationMethod values

+### searchContent values

+### chatMessageActions values

+### plannerRelationshipUserRoles values

+### plannerRuleKind values

+### plannerUserRoleKind values

+### plannerTaskTargetKind values

+### onPremisesDirectorySynchronizationDeletionPreventionType values

+### authenticationMethodsPolicyMigrationState values

+### authenticationEventType values

+### microsoftAuthenticatorAuthenticationMethodClientAppName values

+### userDefaultAuthenticationMethodType values

+### endUserNotificationPreference values

+### endUserNotificationSettingType values

+### endUserNotificationType values

+### notificationDeliveryFrequency values

+### notificationDeliveryPreference values

+### oAuthAppScope values

+### targettedUserType values

+### trainingAssignedTo values

+### trainingAvailabilityStatus values

+### trainingCompletionDuration values

+### trainingSettingType values

+### trainingType values

+### verifiableCredentialPresentationStatusCode values

+### labelKind values

+### permissionKind values

+### resourceScopeType values

+### rootDomains values

+### allowedRolePrincipalTypes values

+### b2bIdentityProvidersType values

+### authorizationSystemActionSeverity values

+### authorizationSystemActionType values

+### awsPolicyType values

+### awsRoleTrustEntityType values

+### awsRoleType values

+### awsStatementEffect values

+### azureRoleDefinitionType values

+### dataCollectionStatus values

+### gcpRoleType values

+### permissionsDefinitionIdentityType values

+### permissionsModificationCapability values

+### permissionsRequestOccurrenceStatus values

+### statusDetail values

+### socialIdentitySourceType values

+### authorizationSystemType values

+### awsAccessType values

+### awsSecretInformationWebServices values

+### awsSecurityToolWebServices values

+### azureAccessType values

+### azureEncryption values

+### externalSystemAccessMethods values

+### gcpAccessType values

+### gcpEncryption values

+### iamStatus values

+### devicePlatformType values

+### bookingPageAccessControl values

+### bookingsServiceAvailabilityType values

+### conditionalAccessTransferMethods values

+### claimConditionUserType values

+### filterType values

+### matchOn values

+### samlAttributeNameFormat values

+### samlNameIDFormat values

+### samlSLOBindingType values

+### tokenFormat values

+### transformationExtractType values

+### transformationTrimType values

+### sharingRole values

+### sharingScope values

+### sharingVariant values

+### trustFrameworkKeyStatus values

+### conditionalAccessInsiderRiskLevels values

+### compliantNetworkType values

+### meetingRequestType values

+### photoUpdateSource values

+### uriUsageType values

+### nativeAuthenticationApisEnabled values

+Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md).

+| allowAttendeeToEnableCamera | Boolean | Indicates whether attendees can turn on their camera. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowAttendeeToEnableMic | Boolean | Indicates whether attendees can turn on their microphone. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowBreakoutRooms | Boolean | Indicates whether breakout rooms are enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowedPresenters | [onlineMeetingPresenters](#onlinemeetingpresenters-values)| Specifies who can be a presenter in a meeting. Possible values are: `everyone`, `organization`, `roleIsPresenter`, `organizer`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowLiveShare | [meetingLiveShareOptions](#meetingliveshareoptions-values) | Indicates whether live share is enabled for the meeting. Possible values are: `enabled`, `disabled`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowMeetingChat | [meetingChatMode](#meetingchatmode-values) | Specifies the mode of meeting chat. Possible values are: `enabled`, `disabled`, `limited`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowPowerPointSharing | Boolean | Indicates whether PowerPoint live is enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowRecording | Boolean | Indicates whether recording is enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowTeamworkReactions | Boolean | Indicates whether Teams reactions are enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowTranscription | Boolean | Indicates whether transcription is enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowWhiteboard | Boolean | Indicates whether whiteboard is enabled for the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| anonymizeIdentityForRoles | onlineMeetingRole collection | Specifies whose identity is anonymized in the meeting. Possible values are: `attendee`. The `attendee` value can't be removed through a PATCH operation once added. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for an online meeting. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).|

+| chatInfo | [chatInfo](chatinfo.md) | The chat information associated with this online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| id | String | The default ID associated with the online meeting. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| isEntryExitAnnounced | Boolean | Indicates whether to announce when callers join or leave. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| joinInformation | [itemBody](itembody.md) | The join information in the language and locale variant specified in 'Accept-Language' request HTTP header. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| joinMeetingIdSettings | [joinMeetingIdSettings](joinmeetingidsettings.md) | Specifies the **joinMeetingId**, the meeting passcode, and the requirement for the passcode. Once an **onlineMeeting** is created, the **joinMeetingIdSettings** can't be modified. To make any changes to this property, the meeting needs to be canceled and a new one needs to be created. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| lobbyBypassSettings | [lobbyBypassSettings](lobbybypasssettings.md) | Specifies which participants can bypass the meeting lobby. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| recordAutomatically | Boolean | Indicates whether to record the meeting automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. Possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| subject | String | The subject of the online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| videoTeleconferenceId | String | The video teleconferencing ID. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| watermarkProtection | [watermarkProtectionValues](watermarkprotectionvalues.md) | Specifies whether the client application should apply a watermark to a content type. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+### meetingChatHistoryDefaultMode values

+| Value | Description |

+| | - |

+| all | All meeting chat history is shared. |

+| none | No meeting chat history is shared. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+| limited | Meeting chat is enabled but only during the meeting call. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+### meetingLiveShareOptions values

+| enabled | Meeting live share is enabled. |

+| disabled | Meeting live share is disabled. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+### onlineMeetingPresenters values

+| Value | Description |

+| | - |

+| everyone | Everyone is a presenter. Default. |

+| organization | Everyone in organizerΓÇÖs organization is a presenter. |

+| roleIsPresenter | Only the participants whose role is presenter are presenters. |

+| organizer | Only the organizer is a presenter. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+> [!TIP]

+>

+> When creating or updating an online meeting with **allowedPresenters** set to `roleIsPresenter`, include a full list of **attendees** with the specified attendees' **role** set to `presenter` in the request body.

+| attendanceReports | [meetingAttendanceReport](meetingattendancereport.md) collection | The attendance reports of an online meeting. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+ "allowBreakoutRooms": "Boolean",

+ "allowLiveShare": "String",

+ "allowMeetingChat": "String",

+ "allowParticipantsToChangeName": "Boolean",

+ "allowPowerPointSharing": "Boolean",

+ "allowRecording": "Boolean",

+ "allowTeamworkReactions": "Boolean",

+ "allowTranscription": "Boolean",

+ "allowWhiteboard": "Boolean",

+ "shareMeetingChatHistoryDefault": "String",

+Represents a base online meeting. The base type of [onlineMeeting](onlinemeeting.md) and [virtualEventSession](virtualeventsession.md).

+> This is an abstract type and can't be used directly. Use the derived types [onlineMeeting](onlinemeeting.md) and [virtualEventSession](virtualeventsession.md) instead.

+| allowBreakoutRooms | Boolean | Indicates whether breakout rooms are enabled for the meeting. |

+| allowedPresenters | [onlineMeetingPresenters](#onlinemeetingpresenters-values)| Specifies who can be a presenter in a meeting. Possible values are: `everyone`, `organization`, `roleIsPresenter`, `organizer`, `unknownFutureValue`. |

+| allowLiveShare | [meetingLiveShareOptions](#meetingliveshareoptions-values) | Indicates whether live share is enabled for the meeting. Possible values are: `enabled`, `disabled`, `unknownFutureValue`. |

+| allowMeetingChat | [meetingChatMode](#meetingchatmode-values) | Specifies the mode of meeting chat. Possible values are: `enabled`, `disabled`, `limited`, `unknownFutureValue`. |

+| allowPowerPointSharing | Boolean | Indicates whether PowerPoint live is enabled for the meeting. |

+| allowRecording | Boolean | Indicates whether recording is enabled for the meeting. |

+| allowWhiteboard | Boolean | Indicates whether whiteboard is enabled for the meeting. |

+| lobbyBypassSettings | [lobbyBypassSettings](lobbybypasssettings.md) | Specifies which participants can bypass the meeting lobby. |

+| shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) |Specifies whether meeting chat history is shared with participants. Possible values are: `all`, `none`, `unknownFutureValue`.|

+### meetingChatHistoryDefaultMode values

+| Value | Description |

+| | - |

+| all | All meeting chat history is shared. |

+| none | No meeting chat history is shared. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+### meetingLiveShareOptions values

+| enabled | Meeting live share is enabled. |

+| disabled | Meeting live share is disabled. |

+### onlineMeetingPresenters values

+| Value | Description |

+| | - |

+| everyone | Everyone is a presenter. Default. |

+| organization | Everyone in organizerΓÇÖs organization is a presenter. |

+| roleIsPresenter | Only the participants whose role is presenter are presenters. |

+| organizer | Only the organizer is a presenter. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+ "allowBreakoutRooms": "Boolean",

+ "allowLiveShare": "String",

+ "allowMeetingChat": "String",

+ "allowParticipantsToChangeName": "Boolean",

+ "allowPowerPointSharing": "Boolean",

+ "allowRecording": "Boolean",

+ "allowTeamworkReactions": "Boolean",

+ "allowTranscription": "Boolean",

+ "allowWhiteboard": "Boolean",

+ "id": "String (identifier)",

+ "shareMeetingChatHistoryDefault": "String",

+A complex type that contains the settings required to perform the OIDC request to the external authentication provider for an [external authentication method](../resources/externalauthenticationmethodconfiguration.md). External authentication methods enable Microsoft Entra ID users to satisfy the second factor of multifactor authentication requirements using an external provider.

+toc. Title: Outlook category (deprecated)

+Each category is attributed by two properties: **displayName** and **color**. The **displayName** value must be unique in a user's master list.

+The **color** however doesn't have to be unique; multiple categories in the master list can be mapped to the same color. You can map up to 25 different colors to categories in a user's master list.

+|[List](../api/outlookuser-list-mastercategories.md) | [outlookCategory](../resources/outlookcategory.md) collection |Get all the categories that have been defined for the user.|

+|[Get](../api/outlookcategory-get.md) | [outlookCategory](../resources/outlookcategory.md) |Get the properties and relationships of the specified **outlookCategory** object.|

+|[Create](../api/outlookuser-post-mastercategories.md) | [outlookCategory](../resources/outlookcategory.md) |Create an **outlookCategory** object in the user's master list of categories.|

+|[Update](../api/outlookcategory-update.md) | [outlookCategory](../resources/outlookcategory.md) |Update the writable property, **color**, of the specified **outlookCategory** object. |

+|[Delete](../api/outlookcategory-delete.md) | None |Delete the specified **outlookCategory** object. |

+|color|String|A preset color constant that characterizes a category, and that is mapped to one of 25 predefined colors. For more information, see the following note. |

+|displayName|String|A unique name that identifies a category in the user's mailbox. After a category is created, the name can't be changed. Read-only.|

+> **Note** The possible values for **color** are preset constants such as `None`, `preset0` and `preset1`. Each preset constant is further mapped to a color; the actual

+color is dependent on the Outlook client that the categories are being displayed in. The following table shows the colors mapped to each preset constant for Outlook (desktop client).

+| Preset constant | Color mapped to in Outlook |

+toc. Title: Outlook task (deprecated)

+toc. Title: Outlook task folder (deprecated)

+toc. Title: Outlook task group (deprecated)

+|lastModifiedDateTime|DateTimeOffset|Read-only. Date and time at which this is last modified. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.|

+|title|String|Title of the checklist item.|

+## Relationships

+None.

+description: "Represents the collection of checklist items on a task. This complex type is an open type that's part of the task details object. The value in the property-value pair is the checklistItem object."

+Represents the collection of checklist items on a task. This complex type is an open type that's part of the [task details](plannertaskdetails.md) object. The value in the property-value pair is the [checklistItem](plannerchecklistitem.md) object.

+Properties of an open type can be defined by the client. In this case, the client should provide **GUIDs** as properties and their values must be [checklistItem](plannerchecklistitem.md) objects. To remove an item in the checklist, set the value of the property to `null`.

+ "@odata.type": "microsoft.graph.plannerChecklistItem",

+ "lastModifiedBy": {"@odata.type": "microsoft.graph.identitySet"},

+|[Create](../api/planner-post-plans.md) | [plannerPlan](plannerplan.md) |Create a **plannerPlan** object.|

+|[Get](../api/plannerplan-get.md) | [plannerPlan](plannerplan.md) |Read properties and relationships of **plannerPlan** object.|

+|[Update](../api/plannerplan-update.md) | [plannerPlan](plannerplan.md) |Update **plannerPlan** object. |

+|[Delete](../api/plannerplan-delete.md) | None | Delete **plannerPlan** object. |

+|[Archive plan](../api/plannerplan-archive.md) | [plannerPlan](plannerplan.md) | Archive a **plannerPlan** object.|

+|[Unarchive plan](../api/plannerplan-unarchive.md) | [plannerPlan](plannerplan.md) | Unarchive an archived **plannerPlan** object.|

+|[Move to container](../api/plannerplan-movetocontainer.md) | [plannerPlan](../resources/plannerplan.md) | Move a **plannerPlan** object from one **plannerPlanContainer** to another. |

+|[Update](../api/plannerplanconfiguration-update.md)|[plannerPlanConfiguration](../resources/plannerplanconfiguration.md)|Add, remove, or update a [plannerPlanConfigurationLocalization](../resources/plannerplanconfigurationlocalization.md) via the update of the plannerPlanConfiguration.|

+|[Create](../api/planner-post-tasks.md) | [plannerTask](plannertask.md) |Create a **plannerTask** object.|

+|[Get](../api/plannertask-get.md) | [plannerTask](plannertask.md) |Read the properties and relationships of **plannerTask** object.|

+|[Update](../api/plannertask-update.md) | [plannerTask](plannertask.md) |Update a **plannerTask** object. |

+|[Delete](../api/plannertask-delete.md) | None |Delete a **plannerTask** object. |

+In Microsoft 365 reports, user information such as usernames, groups, and sites is concealed; actual values aren't displayed. You can use the [adminReportSettings](../resources/adminreportsettings.md) API to control the display of user information in the reports.

+| [Admin report settings](../resources/adminreportsettings.md) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Microsoft 365 activations](../resources/reportroot.md#microsoft-365-activations) | Γ£ö | Γ£ö | Γ£ö | Γ₧û |

+| [Microsoft 365 active users](../resources/reportroot.md#microsoft-365-active-users)| Γ£ö | Γ£ö | Γ£ö | Γ₧û |

+| [Microsoft 365 Apps usage](../resources/reportroot.md#microsoft-365-apps-usage) | Γ£ö | Γ£ö | Γ£ö | Γ₧û |

+| [Microsoft 365 browser usage](../resources/reportroot.md#microsoft-365-browser-usage) | Γ£ö | Γ₧û | Γ₧û | Γ₧û |

+| [Microsoft 365 groups activity](../resources/reportroot.md#microsoft-365-groups-activity) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Microsoft Forms Usage](../resources/reportroot.md#forms-activity) | Γ£ö | Γ₧û |

+| [Microsoft Teams device usage](../resources/reportroot.md#microsoft-teams-device-usage) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Microsoft Teams team activity](../resources/reportroot.md#microsoft-teams-team-activity) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Microsoft Teams user activity](../resources/reportroot.md#microsoft-teams-user-activity) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Outlook activity](../resources/reportroot.md#outlook-activity) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Outlook app usage](../resources/reportroot.md#outlook-app-usage) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Outlook mailbox usage](../resources/reportroot.md#outlook-mailbox-usage) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [OneDrive activity](../resources/reportroot.md#onedrive-activity) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [OneDrive usage](../resources/reportroot.md#onedrive-usage) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [SharePoint activity](../resources/reportroot.md#sharepoint-activity) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [SharePoint site usage](../resources/reportroot.md#sharepoint-site-usage) | Γ£ö | Γ£ö | Γ£ö | Γ£ö |

+| [Skype for Business activity](../resources/reportroot.md#skype-for-business-activity) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Skype for Business device usage](../resources/reportroot.md#skype-for-business-device-usage) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Skype for Business organizer activity](../resources/reportroot.md#skype-for-business-organizer-activity) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Skype for Business participant activity](../resources/reportroot.md#skype-for-business-participant-activity) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Skype for Business peer-to-peer activity](../resources/reportroot.md#skype-for-business-peer-to-peer-activity) | Γ£ö | Γ₧û | Γ£ö | Γ₧û |

+| [Viva Engage activity](../resources/reportroot.md#viva-engage-activity) | Γ£ö | Γ₧û | Γ₧û | Γ₧û |

+| [Viva Engage device usage](../resources/reportroot.md#viva-engage-device-usage) | Γ£ö | Γ₧û | Γ₧û | Γ₧û |

+| [Viva Engage groups activity](../resources/reportroot.md#viva-engage-groups-activity) | Γ£ö | Γ₧û | Γ₧û | Γ₧û |

+|determination|[microsoft.graph.security.alertDetermination](#alertdetermination-values)| Specifies the result of the investigation, whether the alert represents a true attack, and if so, the nature of the attack. Possible values are: `unknown`, `apt`, `malware`, `securityPersonnel`, `securityTesting`, `unwantedSoftware`, `other`, `multiStagedAttack`, `compromisedAccount`, `phishing`, `maliciousUserActivity`, `notMalicious`, `notEnoughDataToValidate`, `confirmedUserActivity`, `lineOfBusinessApplication`, `unknownFutureValue`.|

+| other | Other determination. |

+toc. Title: To-do tasks API overview (deprecated)

+|region|string|Represents the region of the organization or the tenant. The **region** value can be any region supported by the Teams payload. The possible values are: `Americas`, `Europe and MiddleEast`, `Asia Pacific`, `UAE`, `Australia`, `Brazil`, `Canada`, `Switzerland`, `Germany`, `France`, `India`, `Japan`, `South Korea`, `Norway`, `Singapore`, `United Kingdom`, `South Africa`, `Sweden`, `Qatar`, `Poland`, `Italy`, `Israel`, `Spain`, `Mexico`, `USGov Community Cloud`, `USGov Community Cloud High`, `USGov Department of Defense`, and `China`.|

+|solutions|[userSolutionRoot](../resources/usersolutionroot.md)| Represents a user's custom solution entity. Read-Only. Nullable.|

+ Title: "userSolutionRoot resource type"

+description: "Represents a user's custom userSolutionRoot entity."

+ms.localizationpriority: medium

+# userSolutionRoot resource type

+Namespace: microsoft.graph

+Represents a user's custom solution entity.

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|id|String|A unique programmatic identifier for the entity. Read-only.|

+## Relationships

+|Relationship|Type|Description|

+|:|:|:|

+|workingTimeSchedule|[workingTimeSchedule](../resources/workingtimeschedule.md)|The working time schedule entity associated with the solution.|

+## JSON representation

+The following JSON representation shows the resource type.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.userSolutionRoot",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.userSolutionRoot",

+ "id": "String (identifier)"

+}

+```

+|region|string|Represents the region of the organization or the user. For users with multigeo licenses, the property contains the user's region (if available). For users without multigeo licenses, the property contains the organization's region.<br><br>The **region** value can be any region supported by the Teams payload. The possible values are: `Americas`, `Europe and MiddleEast`, `Asia Pacific`, `UAE`, `Australia`, `Brazil`, `Canada`, `Switzerland`, `Germany`, `France`, `India`, `Japan`, `South Korea`, `Norway`, `Singapore`, `United Kingdom`, `South Africa`, `Sweden`, `Qatar`, `Poland`, `Italy`, `Israel`, `Spain`, `Mexico`, `USGov Community Cloud`, `USGov Community Cloud High`, `USGov Department of Defense`, and `China`.|

+Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md).

+| allowAttendeeToEnableCamera | Boolean | Indicates whether attendees can turn on their camera. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowAttendeeToEnableMic | Boolean | Indicates whether attendees can turn on their microphone. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowBreakoutRooms | Boolean | Indicates whether breakout rooms are enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowedPresenters | [onlineMeetingPresenters](#onlinemeetingpresenters-values)| Specifies who can be a presenter in a virtual event session. Possible values are: `everyone`, `organization`, `roleIsPresenter`, `organizer`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowLiveShare | [meetingLiveShareOptions](#meetingliveshareoptions-values) | Indicates whether live share is enabled for the virtual event session. Possible values are: `enabled`, `disabled`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowMeetingChat | [meetingChatMode](#meetingchatmode-values) | Specifies the mode of meeting chat. Possible values are: `enabled`, `disabled`, `limited`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowParticipantsToChangeName | Boolean | Specifies whether participants are allowed to rename themselves in an instance of the meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowPowerPointSharing | Boolean | Indicates whether PowerPoint live is enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowRecording | Boolean | Indicates whether recording is enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowTeamworkReactions | Boolean | Indicates whether Teams reactions are enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowTranscription | Boolean | Indicates whether transcription is enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| allowWhiteboard | Boolean | Indicates whether whiteboard is enabled for the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| anonymizeIdentityForRoles | onlineMeetingRole collection | Specifies whose identity is anonymized in the virtual event session. Possible values are: `attendee`. The `attendee` value can't be removed through a PATCH operation once added. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).|

+| audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| chatInfo | [chatInfo](chatinfo.md) | The chat information associated with the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| id | String | The unique identifier of the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| isEntryExitAnnounced | Boolean | Indicates whether to announce when callers join or leave. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| joinInformation | [itemBody](itembody.md) | The join information of the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| joinMeetingIdSettings | [joinMeetingIdSettings](joinmeetingidsettings.md) | Specifies the **joinMeetingId**, the meeting passcode, and the requirement for the passcode. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| joinWebUrl | String | The join URL of the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| lobbyBypassSettings | [lobbyBypassSettings](lobbyBypassSettings.md) | Specifies which participants can bypass the meeting lobby. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| recordAutomatically | Boolean | Indicates whether to record the virtual event session automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. Possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| subject | String | The subject of the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| videoTeleconferenceId | String | The video teleconferencing ID. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+| watermarkProtection | [watermarkProtectionValues](watermarkprotectionvalues.md) | Specifies whether the client application should apply a watermark to a content type. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). |

+### meetingChatHistoryDefaultMode values

+| Value | Description |

+| | - |

+| all | All meeting chat history is shared. |

+| none | No meeting chat history is shared. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+| limited | Meeting chat is enabled but only during the meeting call. |

+### meetingLiveShareOptions values

+| enabled | Meeting live share is enabled. |

+| disabled | Meeting live share is disabled. |

+### onlineMeetingPresenters values

+| Value | Description |

+| | - |

+| everyone | Everyone is a presenter. Default. |

+| organization | Everyone in organizerΓÇÖs organization is a presenter. |

+| roleIsPresenter | Only the participants whose role is presenter are presenters. |

+| organizer | Only the organizer is a presenter. |

+| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. |

+ "allowBreakoutRooms": "Boolean",

+ "allowedPresenters": "String",

+ "allowLiveShare": "String",

+ "allowPowerPointSharing": "Boolean",

+ "allowRecording": "Boolean",

+ "allowTranscription": "Boolean",

+ "allowWhiteboard": "Boolean",

+## Relationships

+None.

+The following JSON representation shows the resource type.

+ Title: "workingTimeSchedule resource type"

+description: "Represents a user's scheduled working hours."

+ms.localizationpriority: medium

+# workingTimeSchedule resource type

+Namespace: microsoft.graph

+Represents a user's scheduled working hours.

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[Get](../api/workingtimeschedule-get.md)|[workingTimeSchedule](../resources/workingtimeschedule.md)|Read the properties and relationships of a [workingTimeSchedule](../resources/workingtimeschedule.md) object.|

+|[Start working time](../api/workingtimeschedule-startworkingtime.md)|None|Trigger the policies associated with the start of working hours for a specific user.|

+|[End working time](../api/workingtimeschedule-endworkingtime.md)|None|Trigger the policies associated with the end of working hours for a specific user.|

+## Properties

+|Property|Type|Description|

+|:|:|:|

+|id|String|A unique programmatic identifier for the entity. Read-only.|

+## Relationships

+None.

+## JSON representation

+The following JSON representation shows the resource type.

+<!-- {

+ "blockType": "resource",

+ "keyProperty": "id",

+ "@odata.type": "microsoft.graph.workingTimeSchedule",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.workingTimeSchedule",

+ "id": "String (identifier)"

+}

+```

+|sensorType|[workplaceSensorType](../resources/workplacesensor.md#workplacesensortype-values)|The type of sensor. The possible values are: `occupancy`, `peopleCount`, `inferredOccupancy`, `heartbeat`, `badge`, `unknownFutureValue`. Required. |

+|sensorType|[workplaceSensorType](../resources/workplacesensor.md#workplacesensortype-values)| The type of sensor. The possible values are: `occupancy`, `peopleCount`, `inferredOccupancy`, `heartbeat`, `badge`, `unknownFutureValue`.|

+|eventValue| [workplaceSensorEventValue](../resources/workplacesensoreventvalue.md)| The extra values associated with badge signals. |

+description: "Represents the data collected and reported by a badge-swiping device."

+Represents the data collected and reported by a badge-swiping device.

+| eventType | [workplaceSensorEventType](../resources/workplacesensoreventvalue.md#workplacesensoreventtype-values) | The type of possible sensor event value. The possible values are: `badgeIn`, `badgeOut`, `unknownFutureValue`. |

+description: "Resume a user's access package request after waiting for a callback from a custom extension."

+Resume a user's access package request after waiting for a callback from a custom extension.

+In [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md), when an access package policy has been enabled to call out a custom extension and the request processing is waiting for the callback from the customer, the customer can initiate a resume action. It's performed on an [accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) object whose **requestStatus** is in a `WaitingForCallback` state.

+> [!IMPORTANT]

+> App-only access can be authorized *without* granting the `EntitlementManagement.ReadWrite.All` application permission to the caller. Instead, assign the caller an [Entitlement Management role](/entr#example-4-create-a-role-assignment-with-access-package-catalog-scope) or [Delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers#as-a-catalog-owner-delegate-to-an-access-package-manager).

+The following example shows a request of a call to resume an access package assignment request that's waiting for a callback.

+The following example shows a request to resume the processing of an access package assignment request by denying the request that's waiting for a callback. A request cannot be denied at the `assignmentRequestCreated` stage of the callout.

+ Title: "Get adminReportSettings"

+description: "Get the tenant-level settings for Microsoft 365 reports."

+ms.localizationpriority: medium

+# Get adminReportSettings

+Namespace: microsoft.graph

+Get the tenant-level settings for Microsoft 365 reports.

+> **Note:** For details about different report views and names, see [Microsoft 365 Reports in the admin center - Microsoft 365 Apps usage](/microsoft-365/admin/activity-reports/microsoft365-apps-usage).

+## Permissions

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "adminreportsettings_get" } -->

+> **Note:** For delegated permissions to allow apps to get report settings on behalf of a user, the tenant administrator must have assigned the user the appropriate Microsoft Entra ID limited administrator role. For more information, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization).

+## HTTP request

+<!-- { "blockType": "ignored" } -->

+```http

+GET /admin/reportSettings

+```

+## Optional query parameters

+This method supports the `$select` [OData query parameter](/graph/query-parameters) to help customize the response.

+## Request headers

+| Name | Description |

+| : | : |

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+## Request body

+Don't supply a request body for this method.

+## Response

+If successful, this method returns a `200 OK` response code and an [adminReportSettings](../resources/adminreportsettings.md) object in the response body.

+## Examples

+### Request

+The following example shows a request.

+<!-- {

+ "blockType": "request",

+ "name": "get_adminreportsettings"

+}

+-->

+``` http

+GET https://graph.microsoft.com/v1.0/admin/reportSettings

+```

+### Response

+The following example shows the response.

+>**Note:** The response object shown here might be shortened for readability.

+<!-- {

+ "blockType": "response",

+ "truncated": true,

+ "@odata.type": "microsoft.graph.adminReportSettings"

+}

+-->

+``` http

+HTTP/1.1 200 OK

+Content-Type: application/json

+{

+ "value": {

+ "@odata.type": "#microsoft.graph.adminReportSettings",

+ "displayConcealedNames": true

+ }

+}

+```

+ Title: "Update adminReportSettings"

+description: "Update tenant-level settings for Microsoft 365 reports."

+ms.localizationpriority: medium

+# Update adminReportSettings

+Namespace: microsoft.graph

+Update tenant-level settings for Microsoft 365 reports.

+## Permissions

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "adminreportsettings_update" } -->

+> **Note:** For delegated permissions to allow apps to update report settings on behalf of a user, the tenant administrator must have assigned the user the appropriate Microsoft Entra ID limited administrator role. For more information, see [Authorization for APIs to read Microsoft 365 usage reports](/graph/reportroot-authorization).

+## HTTP request

+<!-- { "blockType": "ignored" } -->

+```http

+PATCH /admin/reportSettings

+```

+## Request headers

+| Name | Description |

+| : | :--|

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Content-Type | application/json. Required.|

+## Request body

+| Property | Type | Description |

+| -- | -- | - |

+| displayConcealedNames | Boolean | If set to `true`, all reports conceal user information such as usernames, groups, and sites. If `false`, all reports show identifiable information. This property represents a setting in the Microsoft 365 admin center. Required. |

+## Response

+If successful, this method returns a `204 No Content` response code.

+## Examples

+The following example shows a request that updates a tenant-level setting for Microsoft 365 reports.

+### Request

+The following example shows a request.

+<!-- {

+ "blockType": "request",

+ "name": "update_adminreportsettings"

+}

+-->

+``` http

+PATCH https://graph.microsoft.com/v1.0/admin/reportSettings

+Content-Type: application/json

+Content-length: 37

+{

+ "displayConcealedNames": true

+}

+```

+### Response

+The following example shows the response.

+<!-- {

+ "blockType": "response"

+} -->

+```http

+HTTP/1.1 204 No Content

+```

+ Title: "List owners of an application"

+description: "Retrieve a list of owners for an application."

+# List owners of an application

+Retrieve a list of owners for an application that are [directoryObject](../resources/directoryobject.md) types.

+This method supports the `$count`, `$expand`, `$filter`, `$orderby`, `$search`, `$select`, and `$top` [OData query parameters](/graph/query-parameters) to help customize the response. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For more information, see [Advanced query capabilities on directory objects](/graph/aad-advanced-queries).

+### Request

+The following example shows a request that uses the **appId** alternate key to query the owners of an application.

+GET https://graph.microsoft.com/v1.0/applications(appId='bbec3106-565f-4907-941e-96b4dbfef21c')/owners

+### Response

+The following example shows the response. It shows only the **id** property as populated while other properties as `null`. This is because the caller did not have permissions to read users in the tenant.

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects",

+ "@microsoft.graph.tips": "Use $select to choose only the properties your app needs, as this can lead to performance improvements. For example: GET applications(appId=<key>)/owners?$select=deletedDateTime",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "ce4770b3-70b2-4a38-a242-76631e9f7408",

+ "businessPhones": [],

+ "displayName": null,

+ "givenName": null,

+ "jobTitle": null,

+ "mail": null,

+ "mobilePhone": null,

+ "officeLocation": null,

+ "preferredLanguage": null,

+ "surname": null,

+ "userPrincipalName": null

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "858a9c90-38b3-4e78-b915-234aece712c4",

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "7585d967-f300-43de-b817-7119a6404c5e",

+ }

+ ]

+This API supports the following PSTN scenarios:

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+|onAttributeCollection|[onAttributeCollectionHandler](../resources/onattributecollectionhandler.md)|The configuration for what to invoke for the onAttributeCollection event. <br/><br/><li> You can only update this property if it was configured during user flow creation. If it wasn't, call the [Add attributes to a user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) API first. </li><li> You can't add or remove attributes by updating the **attributeCollectionPage** > **views** > **inputs** and **attributes** objects. Use the [Add attribute to user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) or [Remove attribute from user flow](../api/onattributecollectionexternalusersselfservicesignup-post-attributes.md) APIs instead to update both objects.</li><li> To update the **attributeCollectionPage** > **views** > **inputs** collection, you must include all objects in the collection, not only the changed objects. <li> The order of objects in the **attributeCollectionPage** > **views** > **inputs** collection corresponds to the order in which the attributes are displayed on the app's sign-up UI. |

+# [PowerShell](#tab/powershell)

+### Example 2: Update the page layout of a self-service sign up user flow

+The following request updates the configuration of some of the attributes. All the attributes are marked as required; the email attribute is marked as hidden; the input type of the custom attribute is also updated to a radio button with two options.

+ "required": true,

+ "required": true,

+ "attribute": "extension_331d514c0c18477583ea7dd5a79feda2_RockorCountry",

+ "label": "Rock music or Country",

+ "inputType": "radioSingleSelect",

+ "required": true,

+ "options": [

+ {

+ "label": "Rock music",

+ "value": "Rock"

+ },

+ {

+ "label": "Country music",

+ "value": "Country"

+ }

+ ]

+# [PowerShell](#tab/powershell)

+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| Required|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+Enable a bot to answer an incoming [call](../resources/call.md). The incoming call request can be an invitation from a participant in a group call or a peer-to-peer call. If an invitation to a group call is received, the notification will contain the [chatInfo](../resources/chatinfo.md) and [meetingInfo](../resources/meetinginfo.md) parameters.

+This API supports the following PSTN scenarios:

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_getretentionlabel" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_lockorunlockrecord" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_removeretentionlabel" } -->

+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).

+<!-- { "blockType": "permissions", "name": "driveitem_setretentionlabel" } -->

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+```

+|onAttributeCollection|[onAttributeCollectionHandler](../resources/onattributecollectionhandler.md)|Optional. The configuration for what to invoke when attributes are ready to be collected from the user. To configure this property, you must specify both **attributes** and **onAttributeCollectionPage** > **views** objects.|

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+<!-- { "blockType": "permissions", "name": "identitygovernance_deleteditemcontainer_delete" } -->

+# [PowerShell](#tab/powershell)

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+The attribute is removed from both the **onAttributeCollection** > **attributes** and **onAttributeCollection** > **attributeCollectionPage** > **views** collections of the user flow.

+This API operation fails when you attempt to remove the last remaining attribute on the user flow.

+If successful, this method returns a `204 No Content` response code. If unsuccessful, a `4xx` error is returned with specific details. Attempting to remove the last remaining attribute results in a `400 Bad Request` error code.

+The following example shows a request that removes city as an attribute from the attribute collection step of an external identities self-service sign-up user flow.

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+Add an attribute to an external identities self-service sign up user flow that's represented by an [externalUsersSelfServiceSignupEventsFlow](../resources/externalusersselfservicesignupeventsflow.md) object. You can add both custom and built-in attributes to a user flow.

+The attribute is added to both the **attributeCollection**> **attributes** and **attributeCollection**> **attributeCollectionPage** > **views** collections on the user flow. In the **views** collection, the attribute is assigned the default settings. You can [PATCH the user flow](../api/authenticationeventsflow-update.md) to customize the settings of the attribute on the **views** object, for example, marking it as required or updating the allowed input types.

+The following example shows a request that adds city as an attribute for attribute collection step of an external identities self-service sign-up user flow. If the request is successful, the attribute is added to both the **attributeCollection**> **attributes** and **attributeCollection**> **attributeCollectionPage** > **views** collections on the user flow. After adding the attribute to the user flow, you can [PATCH the user flow](../api/authenticationeventsflow-update.md) to customize the settings of the attribute on the **views** object, that is, customize the page layout.

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+# [PowerShell](#tab/powershell)

+|determination|microsoft.graph.security.alertDetermination|Specifies the determination of the incident. Possible values are: `unknown`, `apt`, `malware`, `securityPersonnel`, `securityTesting`, `unwantedSoftware`, `other`, `multiStagedAttack`, `compromisedAccount`, `phishing`, `maliciousUserActivity`, `notMalicious`, `notEnoughDataToValidate`, `confirmedUserActivity`, `lineOfBusinessApplication`, `unknownFutureValue`.|

+ Title: "List owners of a service principal"

+# List owners of a service principal

+This method supports the `$count`, `$expand`, `$filter`, `$orderby`, `$search`, `$select`, and `$top` [OData query parameters](/graph/query-parameters) to help customize the response. Some queries are supported only when you use the **ConsistencyLevel** header set to `eventual` and `$count`. For more information, see [Advanced query capabilities on directory objects](/graph/aad-advanced-queries).

+GET https://graph.microsoft.com/v1.0/serviceprincipals(appId='bbec3106-565f-4907-941e-96b4dbfef21c')/owners

+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#directoryObjects",

+ "@microsoft.graph.tips": "Use $select to choose only the properties your app needs, as this can lead to performance improvements. For example: GET servicePrincipals(appId=<key>)/owners?$select=deletedDateTime",

+ "value": [

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "ce4770b3-70b2-4a38-a242-76631e9f7408",

+ "businessPhones": [],

+ "displayName": null,

+ "givenName": null,

+ "jobTitle": null,

+ "mail": null,

+ "mobilePhone": null,

+ "officeLocation": null,

+ "preferredLanguage": null,

+ "surname": null,

+ "userPrincipalName": null

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "858a9c90-38b3-4e78-b915-234aece712c4"

+ },

+ {

+ "@odata.type": "#microsoft.graph.user",

+ "id": "7585d967-f300-43de-b817-7119a6404c5e"

+ }

+ ]

+<!-- { "blockType": "permissions", "name": "serviceprincipal_post_approleassignedto" } -->

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+### Error response

+If you send a request to upload an app manifest that contains missing information or errors, you receive an error message that includes the inner error code `UnableToParseTeamsAppManifest`. The **details** property of the inner error contains the error code and the error message. The following table describes the error codes that you might encounter.

+<br>

+<details><summary>Error response</summary>

+| Error code | Error message | Description |

+| :- | - | - |

+|`Serialization_FileNotValidJson`| The file couldn't be parsed as a JSON object.| The submitted file didn't comply with a valid JSON format. |

+|`Serialization_FileMissing`| The file {0} couldn't be found in the app package.| The expected file is missing in the app package.|

+|`Serialization_TrailingCommaInManifestJsonFile`| Manifest json file contains trailing comma.| The app manifest file contains a trailing comma.|

+|`SchemaError_MultipleOf`| Integer {0} isn't a multiple of {1}.| The app manifest file failed the `multipleOf` validation of the schema. Here, {0} represents the integer value and {1} indicates the required multiple. |

+|`SchemaError_Maximum`| Integer {0} exceeds maximum value of {1}.| The app manifest file failed the `maximum` validation of the schema. Here, {0} represents the value that exceeds the maximum limit and {1} represents the maximum limit. |

+|`SchemaError_Minimum`| Integer {0} is less than minimum value of {1}.|The app manifest file failed the `minimum` validation of the schema. Here, {0} represents the value that exceeds the minimum limit and {1} represents the minimum limit.|

+|`SchemaError_MaximumLength`| String {0} exceeds maximum length of {1}.| The app manifest file failed the `maximumLength` validation of the schema. Here, {0} represents the string that exceeds the maximum length and {1} represents the maximum length.|

+|`SchemaError_MinimumLength`| String {0} is less than minimum length of {1}. | The app manifest file failed the `minimumLength` validation of the schema. Here, {0} represents the string that is less than the minimum length and {1} represents the minimum.|

+|`SchemaError_Pattern`| String {0} doesn't match regex pattern "{1}". | The app manifest file failed the `pattern` validation of the schema. Here, {0} represents the value that doesn't match the pattern and {1} represents the expected pattern.|

+|`SchemaError_ContentEncoding`| String {0} doesn't validate against content encoding {1}.| The app manifest file failed the `contentEncoding` validation of the schema. Here, {0} represents the string that doesn't match content encoding and {1} represents the expected content encoding.|

+|`SchemaError_Format`| String {0} doesn't validate against format {1}.| The app manifest file failed the `format` validation of the schema. Here, {0} represents the string that isn't in the expected format and {1} represents the expected format.|

+|`SchemaError_Type`| Value {0} isn't of the expected type {1}.| The app manifest file failed the `type` validation of the schema. Here, {0} represents the string that isn't in the expected type and {1} represents the expected type.|

+|`SchemaError_AdditionalItems`| The schema doesn't allow additional items.| The app manifest file failed the `additionalItems` validation of the schema.|

+|`SchemaError_MaximumItems`| Array item count {0} exceeds maximum count of {1}.| The app manifest file failed the `maximumItems` validation of the schema. Here, {0} represents the number of elements in the array and {1} represents the maximum allowed.|

+|`SchemaError_MinimumItems`| Array item count {0} is less than minimum count of {1}.| The app manifest file failed the `minimumItems` validation of the schema. Here, {0} represents the number of elements in the array and {1} represents the minimum allowed.|

+|`SchemaError_UniqueItems`| Array contains items that aren't unique.| The app manifest file failed the `uniqueItems` validation of the schema.|

+|`SchemaError_MaximumProperties`| Object property count {0} exceeds maximum count of {1}.| The app manifest file failed the `maximumProperties` validation of the schema. Here, {0} represents the number of properties provided and {1} represents the maximum allowed properties.|

+|`SchemaError_MinimumProperties`| Object property count {0} is less than minimum count of {1}.|The app manifest file failed the `minimumProperties` validation of the schema. Here, {0} represents the number of properties provided and {1} represents the minimum allowed properties.|

+|`SchemaError_Required`| Required properties are missing from object: {0}.| The app manifest file failed the `required` validation of the schema. Here, {0} represents the required properties. |

+|`SchemaError_AdditionalProperties`| Property {0} hasn't been defined and the schema doesn't allow additional properties.| The app manifest file failed the `additionalProperties` validation of the schema. Here, {0} represents the additional property.|

+|`SchemaError_Dependencies`|Dependencies for property {0} failed. Missing required keys.| The app manifest file failed the `dependencies` validation of the schema. Here, {0} represents the property that failed.|

+|`SchemaError_Enum`| Value {0} isn't defined in the enum.| The app manifest file failed the `enum` validation of the schema. Here, {0} represents the value that isn't in the enum.|

+|`SchemaError_AllOf`| JSON doesn't match all schemas from "allOf".| The app manifest file failed the `allOf` validation of the schema.|

+|`SchemaError_AnyOf`| JSON doesn't match any schemas from "anyOf".| The app manifest file failed the `anyOf` validation of the schema.|

+|`SchemaError_OneOf`| JSON is valid against more than one schema from "oneOf".| The app manifest file failed the `oneOf` validation of the schema.|

+|`SchemaError_Not`| JSON is valid against schema from "not".| The app manifest file failed the `not` validation of the schema.|

+|`SchemaError_Id`| Duplicate schema ID {0} encountered.| The app manifest file failed the `id` validation of the schema. Here, {0} represents the `id` of the schema.|

+|`SchemaError_PatternProperties`| Couldn't test property names with regex pattern "{0}".| The app manifest file failed the `patternProperties` validation of the schema. Here, {0} represents the pattern for the properties.|

+|`SchemaError_Valid`| Schema always fails validation.| The app manifest file failed the `valid` validation of the schema.|

+|`SchemaError_Const`| Value {0} doesn't match constant {1}.| The app manifest file failed the `const` validation of the schema. Here, {0} represents the value that failed and {1} represents the correct value.|

+|`SchemaError_Contains`| Array doesn't contain a required item.| The app manifest file failed the `contains` validation of the schema.|

+|`SchemaError_Then`|JSON doesn't match schema from "then".| The app manifest file failed the `then` validation of the schema.|

+|`SchemaError_Else`| JSON doesn't match schema from "else".|The app manifest file failed the `else` validation of the schema.|

+| `SchemaError_Other`| The value doesn't conform to the schema for this property.| The app manifest file failed other unhandled validations of the schema.|

+|`ActivityGroupIdFromActivitiesTypeValidation` | ActivityGroupId field in ActivityType must be a subset of ID field in ActivityGroup.| The `ActivityGroupId` field in `ActivityType` isn't a subset of the `Id` field in `ActivityGroup` in the app manifest.|

+|`ActivityTypesMustExistWithActivitiesGroupValidation` | Manifest shouldn't contain Activity Group when Activity Types is missing.| The `ActivityGroup` property is available, but the `ActivityType` property is missing in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsMsftEntraConfiguration`|API-based compose extension with apiSecretServiceAuth authType have microsoftEntraConfiguration defined.| The API-based compose extension has `microsoftEntraConfiguration` defined in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsNoApiSecretRegistrationId`| API-based compose extension with apiSecretServiceAuth authType have no apiSecretRegistrationId defined.| The API-based compose extension with `apiSecretServiceAuth` authType without `apiSecretRegistrationId` defined in the app manifest.|

+|`ApiSecretServiceAuthTypeComposeExtensionContainsNoApiSecretServiceAuthConfiguration` | API-based compose extension with apiSecretServiceAuth authType have no apiSecretServiceConfiguration.| The API-based compose extension doesn't set `supportsSingleSignOn` to `true` in the app manifest.|

+|`ApiBasedComposeExtensionManifestCommandIdsNotIncludedInOperationIdsOnApiSpecficationFile`| Command Ids on manifest aren't included in Operation Ids on API specification file.| The error that occurs when the `Command Ids` in the app manifest aren't included in `Operation Ids` on API specification file.|

+|`ApiBasedComposeExtensionWithBotId`| API-based compose extension can't have botId defined.| The API-based compose extension has `botId` defined in the app manifest.|

+|`ApiBasedComposeExtensionWithCanUpdateConfiguration`|API-based compose extension can't have canUpdateConfiguration defined on manifest.| The API-based compose extension has `canUpdateConfiguration` defined in the app manifest.|

+|`ApiBasedComposeExtensionWithNoParameter`| API-based compose extension must have command parameters defined on manifest.| The API-based compose extension doesn't have any command parameters defined in the app manifest.|

+|`ApiBasedComposeExtensionApiResponseRenderingTemplateFileNullOrEmpty`| API-based compose extension must have apiResponseRenderingTemplateFile defined on manifest.| The API-based compose extension doesn't have the `apiResponseRenderingTemplateFile` defined in the app manifest.|

+|`ApiBasedComposeExtensionApiSpecificationFileNullOrEmpty`| API-based compose extension must have apiSpecificationFile defined on manifest. | The API-based compose extension doesn't have the `apiSpecificationFile` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionContainsApiSecretServiceConfiguration`|API-based compose extension with microsoftEntra authType have apiSecretServiceConfiguration defined. |The API-based compose extension has `apiSecretServiceConfiguration` defined in the manifest.|

+|`MsftEntraAuthTypeComposeExtensionContainsNoMsftEntraConfiguration`|API-based compose extension with microsoftEntra authType have no microsoftEntraConfiguration defined.| The API-based compose extension doesn't have `microsoftEntraConfiguration` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionWebApplicationInfoOrResourceNotDefined`|API-based compose extension with microsoftEntra authType have no webApplicationInfo or resource defined on manifest.| The API-based compose extension with `microsoftEntra` authType doesn't have `webApplicationInfo` or `resource` defined in the app manifest.|

+|`MsftEntraAuthTypeComposeExtensionResourceURLNotMatchServerURLOnApiSpec` |API-based compose extension with microsoftEntra authType resource URL on manifest doesn't match server URL on API specification file.| The API-based compose extension with `microsoftEntra` authType resource URL in the app manifest doesn't match server URL in the API specification file.|

+|`NoAuthTypeComposeExtensionContainsAuthConfiguration` |API-based compose extension with none authType have auth-related configuration defined.| The API-based compose extension with authType `microsoftEntraConfiguration` or `apiSecretServiceConfiguration` isn't defined in the app manifest.|

+|`ApiSpecificationFileContainUnsupportedHttpMethod`| API-based compose extension have server urls that have unsupported http method defined on apiSpecificationFile. Currently only GET and POST are supported.| The API-based compose extension has an unsupported `http` method defined in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequiredParameterContainUnsupportedLocation`| API-based compose extension have unsupported parameter location defined on apiSpecificationFile for {0}. Currently only path and query supported.| The API-based compose extension has an unsupported parameter location defined in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodyContainUnsupportedMediaType`|API-based compose extension have unsupported media type defined in request body on apiSpecificationFile. Currently only application/json is supported.| The API-based compose extension has an unsupported `media` type defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodyContainUnsupportedSchemaType`| API-based compose extension have unsupported schema type defined in request body on apiSpecificationFile. Currently arrays aren't supported.| The API-based compose extension has an unsupported schema type defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequestBodySchemaContainKeywords` | API-based compose extension have keywords.|The API-based compose extension has keywords defined in request body in the `apiSpecificationFile`.|

+|`ApiSpecificationFileRequiredParameterOrPropertyNotDefinedOnManifest`| API-based compose extension have required parameters or properties {0} not defined on manifest.| The API-based compose extension has a `required` parameter, which isn't defined in the app manifest.|

+|`ApiSpecificationFileResponseContainUnsupportedMediaType`| API-based compose extension have unsupported media type defined in response on apiSpecificationFile. Currently only application/json supported. | The API-based compose extension has an unsupported `media` type defined in response in the `apiSpecificationFile`.|

+|`ApiSpecificationFileServerUrlsContainHttp`| API-based compose extension have server urls that have http protocol defined on apiSpecificationFile.| The API-based compose extension has server urls that contain `http` protocol in the `apiSpecificationFile`.|

+|`ApiSpecificationFileServerUrlsContainInvalidUrl`| API-based compose extension have server urls that are invalid URL defined on apiSpecificationFile.| The API-based compose extension has an `invalid` URL defined in the `apiSpecificationFile`.|

+|`ServerUrlsMissingOnApiSpecificationFile`| API-based compose extension have no server urls defined on apiSpecificationFile.| The error that occurs The API-based compose extension has no server urls defined in the `apiSpecificationFile`.|

+|`BotBasedComposeExtensionApiResponseRenderingTemplateFileExists` |Bot based compose extension can't have apiResponseRenderingTemplateFile defined.|The bot-based compose extension has an `apiResponseRenderingTemplateFile` property defined in the app manifest.|

+|`BotBasedComposeExtensionApiSpecificationFileExists` |Bot based compose extension can't have apiSpecificationFile defined.|The bot-based compose extension has an API specification file defined in the app manifest.|

+|`BotBasedComposeExtensionBotIdNotGuid` |Bot based compose extension must have GUID botId.| The bot-based compose extension `botId` isn't GUID.|

+|`CommonAppIdIsNotGuid`| Field 'ID' isn't a Guid in the manifest.| The `appId` isn't GUID.|

+|`CommonAppIdIsRequiredField`| Required field 'ID' is missing in the manifest.| The `appId` isn't provided.|

+|`CommonManifestVersionIsRequiredField`|The required field in manifest 'manifest Version' is missing.| The manifest version isn't provided.|

+|`CommonSchemaUrlIsRequiredField`| Schema URL must be present.| The schema isn't provided.|

+|`DashboardCardBothIconNameAndUrlPresent`| Dashboard cards icon shouldn't contain both icon name and URL.| Dashboard cards icon mustn't contain both icon name and URL.|

+|`DashboardCardEntityIdsAreNotUnique`| Dashboard card entity IDs should be unique.| The returned entity Id for a dashboard card isn't unique within the manifest.|

+|`DeveloperNameIsRequiredField`| Required field 'developer name' is missing in the manifest.| The developer name isn't provided.|

+|`DeveloperNameLengthCheck`| Maximum character length must not exceed 32 chars.| The developer name is more than 32 characters long.|

+|`DeveloperPrivacyUrlIsRequiredField`| Required field 'privacyUrl' is missing in the manifest.| The `privacyUrl` is missing in the app manifest. |

+|`DeveloperPrivacyUrlMustBeHttps`| Privacy URL must be secured Support URL (HTTPS).| The developer privacy URL didn't use HTTPS.|

+|`DeveloperTermsOfUseUrlIsRequiredField`| Required field 'termsOfUseUrl' is missing in the manifest.| The **termsOfUseUrl** is missing from the manifest.|

+|`DeveloperTermsOfUseUrlMustBeHttps`|Terms Of Use URL must be secured Support URL (HTTPS).| The developer terms of use URL didn't use HTTPS.|

+|`DeveloperWebsiteUrlIsRequiredField`| Required field 'websiteUrl' is missing in the manifest.| The developer website URL is missing.|

+|`DeveloperWebsiteUrlMustBeHttps`| Website URL must be secured Support URL (HTTPS).| The developer website URL didn't use HTTPS.|

+|`UniqueActivityTypeInActivitiesValidation` |Manifest shouldn't contain duplicate Activity Type.| The activity type isn't unique in the app manifest.|

+|`UniqueIdInActivitiesGroupValidation` |Manifest shouldn't contain duplicate ID in Activity Groups.| The activity group ID isn't unique in the app manifest.|

+|`FullDescriptionCannotBeEmpty` |Full Description can't be empty.| The full description is empty.|

+|`FullDescriptionLengthCheck`| Maximum character length for long description must not exceed 4,000 chars.| The full description length is more than 4,000 characters.|

+|`GroupChatForBotsLessThanV13`| Please upgrade the version of manifest to V1.3 as group chat bot is supported in manifest v1.3 onwards.| The `groupChat` scope for bots isn't supported in the app manifest version 1.3 and below.|

+|`GroupChatForConfigurableTabsLessThanV13`| Please upgrade the version of manifest to V1.3 as group chat configurable tabs is supported in manifest v1.3 onwards.|The `groupChat` scope for configurable tabs isn't supported in the app manifest version 1.3 and below.|

+|`InvalidColor32x32IconHeightAndWidth`|Color 32x32 icon should be 32x32 with only white and transparent.| The color 32x32 icon doesn't have the correct dimensions.|

+|`InvalidColorIconHeightAndWidth`| Color Icon isn't as per the required dimension.| The dimensions of the color icon are incorrect.|

+|`InvalidOutlineIconHeightAndWidth` | Small icon should be 32x32 with only white and transparent.| The dimensions of the outline icon are incorrect.|

+|`ParameterOnManifestNotDefinedOnApiSpecFile` | API-based compose extension have parameters {0} on manifest not defined on API specification file.| The API-based compose extension parameters in the app manifest aren't defined in the API specification file. |

+|`ReservedActivitiesValidation`| Manifest shouldn't contain reserved Activity Type 'systemDefault'.| The `systemDefault` activity type is defined in the app manifest.|

+|`ReservedStaticTabNameShouldBeNull`| Reserved tab "Name" property shouldn't be specified.| The reserved `staticTabs` name property was specified.|

+|`ShortDescriptionCannotBeEmpty`| Short Description canΓÇÖt be empty| The short description was empty.|

+|`ShortDescriptionLengthCheck`|Maximum character length for short description must not exceed 80 chars.| The short description is more than 80 characters long.|

+|`ShortNameEqualsReservedName`|Short name of the app can't be reserved name.| The short name is a reserved name.|

+|`ShortNameIsRequiredField`| Short name of the app can't be empty.| The short name is empty.|

+|`StaticTabNameCouldNotBeEmpty`| Non-reserved staticTabs "Name" property can't be empty.| The `staticTabs` name property is empty.|

+|`BotIdIsNotGuid`| BotId isn't a Guid value.|The `BotId` value in the app manifest isn't a GUID.|

+|`VersionCannotBeEmpty`| Required field "version" is missing in the manifest.| The app package version is missing.|

+|`VersionContainsOnlyNumbersDotSeparated`| App version supports only numbers in the '#.#.#' format.| The version in the app package isn't matched by the pattern, `#.#.#`.|

+|`VersionHasMajorLessThan1`|App version shouldn't start with '0'. Ex: 0.0.1 or 0.1 aren't valid app versions and 1.0 / 1.5.1 / 1.0.0 / 2.5.0 are valid app versions. In case of new update in manifest to an existing app in store. | The app version is less than 1.0. You need to upgrade your app version. For example, if the current version of your app in the store is 1.0 and youΓÇÖre submitting an update for validation, the app version must be higher than 1.0.|

+|`ShortNameLengthCheck` |Maximum character length for Short Name must not exceed 30 chars.|The short name exceeds 30 characters.|

+|`ApiSpecificationFileParameterContainUnsupportedSchemaType` |API-based compose extension have unsupported parameter schema type defined on apiSpecificationFile.Arrays aren't supported.|The API-based compose extension has an unsupported parameter schema type defined in the `apiSpecificationFile`.|

+</details>

+Update the signed-in [user's](../resources/user.md) password. Any user can update their password without belonging to any administrator role.

+Delete an [appRoleAssignment](../resources/approleassignment.md) that has been granted to a [user](../resources/user.md).

+Get newly created, updated, or deleted users without having to perform a full read of the entire [user](../resources/user.md) collection. See [change tracking](/graph/delta-query-overview) for details.

+| Query parameter | Type |Description|

+Retrieve the properties and relationships of [user](../resources/user.md) object.

+Retrieve the list of [appRoleAssignments](../resources/approleassignment.md) that are currently granted to a [user](../resources/user.md). This operation also returns app role assignments granted to groups that the user is a direct member of.

+<!-- { "blockType": "permissions", "name": "user_list_memberof" } -->

+<!-- { "blockType": "permissions", "name": "user_list_transitivememberof" } -->

+Assign an [app role](../resources/approle.md) to a [user](../resources/user.md), creating an [appRoleAssignment](../resources/approleassignment.md) object. To grant an app role assignment to a user, you need three identifiers:

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+# [HTTP](#tab/http)

+# [C#](#tab/csharp)

+# [CLI](#tab/cli)

+# [Go](#tab/go)

+# [Java](#tab/java)

+# [JavaScript](#tab/javascript)

+# [PHP](#tab/php)

+# [PowerShell](#tab/powershell)

+# [Python](#tab/python)

+| settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The virtual event settings. |

+ ],

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ }

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ },

+| settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The webinar settings. Inherited from [virtualEvent](../resources/virtualevent.md). |

+ ],

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ }

+ ],

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ }

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ },

+| settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The virtual event settings. |

+ ],

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ }

+| settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The webinar settings. Inherited from [virtualEvent](../resources/virtualevent.md). |

+ ],

+ "settings": {

+ "isAttendeeEmailNotificationEnabled": false

+ }

+|Name|Description|

+|:|:|

+|Authorization| Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|

+| _if-match_ | eTag. If this request header is included and the eTag provided does not match the current tag on the item, a `412 Precondition Failed` response is returned and the item will not be deleted.|

+<!-- { "blockType": "permissions", "name": "workbookformatprotection_get" } -->

+<!-- { "blockType": "permissions", "name": "workbookformatprotection_update" } -->

+|[Filter by current user](../api/accesspackageassignmentrequest-filterbycurrentuser.md)|[accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) collection|Retrieve the list of **accessPackageAssignmentRequest** objects filtered on the signed-in user.|

+|[Resume](../api/accesspackageassignmentrequest-resume.md) | None | Resume a user's access package request after waiting for a callback from a custom extension.|

+## Relationships

+None.

+## Relationships

+None.

+The following JSON representation shows the resource type.

+| reportSettings |[adminReportSettings](../resources/adminreportsettings.md)|A container for administrative resources to manage reports.|

+ Title: "adminReportSettings resource type"

+description: "Represents the tenant-level settings for Microsoft 365 reports."

+ms.localizationpriority: medium

+# adminReportSettings resource type

+Namespace: microsoft.graph

+Represents the tenant-level settings for Microsoft 365 reports.

+## Methods

+|Method|Return type|Description|

+|:|:|:|

+|[Get](../api/adminreportsettings-get.md)|[adminReportSettings](../resources/adminreportsettings.md)|Get the tenant-level settings for Microsoft 365 reports.|

+|[Update](../api/adminreportsettings-update.md)|[adminReportSettings](../resources/adminreportsettings.md)|Update tenant-level settings for Microsoft 365 reports.|

+## Properties

+| Property | Type | Description |

+| -- | -- | - |

+| displayConcealedNames | Boolean | If set to `true`, all reports conceal user information such as usernames, groups, and sites. If `false`, all reports show identifiable information. This property represents a setting in the Microsoft 365 admin center. Required. |

+## JSON representation

+The following JSON representation shows the resource type.

+<!-- {

+ "blockType": "resource",

+ "@odata.type": "microsoft.graph.adminReportSettings",

+ "baseType": "microsoft.graph.entity",

+ "openType": false

+}

+-->

+``` json

+{

+ "@odata.type": "#microsoft.graph.adminReportSettings",

+ "displayConcealedNames": "Boolean"

+}

+```

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+description: "Indicates the identity of the application that performed the action or was changed. This resource is called by the directoryAudit API"

+Indicates the identity of the application that performed the action or was changed. Includes the application ID, name, and service principal ID and name. This resource is used by the [directoryAudit](../api/directoryaudit-get.md) operation.

+## Relationships

+None.

+description: "Used to record when a user, group, or service principal is assigned to an app role on an application's service principal. You can create, read, and delete app role assignments."

+When the [app role](approle.md) that has been assigned to a principal has a nonempty **value** property, it's included in the **roles** claim of tokens where the subject is the assigned principal (for example, SAML responses, ID tokens, access tokens identifying a signed-in user, or an access token identifying a service principal). Applications and APIs use these claims as part of their authorization logic.

+|[List app role assignments for a group](../api/group-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a group.|

+|[List app role assignments for a user](../api/user-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a user.|

+|[List app role assignments for a client service principal](../api/serviceprincipal-list-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for a client service principal.|

+|[List app role assignments for users, groups, and client service principals for a resource service principal](../api/serviceprincipal-list-approleassignedto.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Get a list of the [appRoleAssignment](../resources/approleassignment.md) objects and their properties for users, groups, and client service principals for a specified resource service principal.|

+|[Grant app role to a group](../api/group-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md)|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a group.|

+|[Grant app role to a user](../api/user-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md)|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a user.|

+|[Grant app role to a client service principal](../api/serviceprincipal-post-approleassignments.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Create a new [appRoleAssignment](../resources/approleassignment.md) object for a client service principal.|

+|[Grant app role assignment to user, group, or client service principal for a resource service principal](../api/serviceprincipal-post-approleassignedto.md)|[appRoleAssignment](../resources/approleassignment.md) collection|Create a new [appRoleAssignment](../resources/approleassignment.md) object to a user, group, or client service principal for a specified resource service principal.|

+|[Get app role assignment](../api/approleassignment-get.md)|[appRoleAssignment](../resources/approleassignment.md)|Get an [appRoleAssignment](../resources/approleassignment.md) object assigned to a user, group, or client service principal for a resource service principal.|

+|[Delete app role assignment for a group](../api/group-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a group.|

+|[Delete app role assignment for a user](../api/user-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a user.|

+|[Delete app role assignment for a client service principal](../api/serviceprincipal-delete-approleassignments.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a client service principal.|

+|[Delete app role assignment for user, group, or client service principal to a resource service principal](../api/serviceprincipal-delete-approleassignedto.md)|None|Delete an [appRoleAssignment](../resources/approleassignment.md) object from a user, group, or client service principal for a specified resource service principal.|

+| appRoleId | Guid | The identifier (**id**) for the [app role](approle.md) that's assigned to the principal. This app role must be exposed in the **appRoles** property on the resource application's service principal (**resourceId**). If the resource application hasn't declared any app roles, a default app role ID of `00000000-0000-0000-0000-000000000000` can be specified to signal that the principal is assigned to the resource app without any specific app roles. Required on create. |

+|completionDateTime|DateTimeOffset|The dateTimeOffset when the job was completed, canceled, or aborted. Read-only.|

+## Relationships

+None.

+## Relationships

+None.

+## Properties

+None.

+## Relationships

+None.

+## Relationships

+None.

+> [!NOTE]

+>

+> If the Default Scheduling Policy is enabled at the service level, the values of this resource are limited to those defined in the policy in the [List services](/graph/api/bookingbusiness-list-services) API response. In this case, the client must fall back to the Default Scheduling Policy for the business.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+|sortBy|bucketAggregationSortProperty| The possible values are `count` to sort by the number of matches in the aggregation, `keyAsString`to sort alphabetically based on the key in the aggregation, `keyAsNumber` for numerical sorting based on the key in the aggregation. Required.|

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+Indicates details of the device used in a sign-in activity. Includes information like device browser and OS info and if the device is Microsoft Entra ID-managed.

+|browser|String|Indicates the browser information of the used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|deviceId|String|Refers to the unique ID of the device used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|displayName|String|Refers to the name of the device used in the sign-in. Populated for devices registered in Microsoft Entra.|

+|isCompliant|Boolean|Indicates whether the device is compliant or not.|

+|isManaged|Boolean|Indicates if the device is managed or not.|

+|operatingSystem|String|Indicates the OS name and version used in the sign-in.|

+|trustType|String|Indicates information on whether the device used in the sign-in is workplace-joined, Microsoft Entra-joined, domain-joined.|

+## Relationships

+None.

+## JSON representation

+The following JSON representation shows the resource type.

+## Relationships

+None.

+## Relationships

+None.

+## JSON representation

+The following JSON representation shows the resource type.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## JSON representation

+The following JSON representation shows the resource type.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+|webUrl|String|Location of the resource. Required.|

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## Relationships

+None.

+## JSON representation

+The following JSON representation shows the resource type.

+## Relationships

+None.

+## Relationships

+None.

+### fileStorageContainerStatus values

+### binaryOperator values

+### entityType values

+### conditionalAccessExternalTenantsMembershipKind values

+### conditionalAccessGuestOrExternalUserTypes values

+### migrationStatus values

+### appCredentialRestrictionType values

+### appKeyCredentialRestrictionType values

+### assignmentType values

+### courseStatus values

+### userPurpose values

+### bookingsAvailabilityStatus values

+### signInFrequencyAuthenticationType values

+### signInFrequencyInterval values

+### crossTenantAccessPolicyTargetConfigurationAccessType values

+### crossTenantAccessPolicyTargetType values

+### multiTenantOrganizationMemberProcessingStatus values

+### multiTenantOrganizationMemberRole values

+### multiTenantOrganizationMemberState values

+### multiTenantOrganizationState values

+### templateApplicationLevel values

+### federatedIdpMfaBehavior values

+### promptLoginBehavior values

+### expirationPatternType values

+### recurrencePatternType values

+### assignmentScheduleFilterByCurrentUserOptions values

+### assignmentScheduleInstanceFilterByCurrentUserOptions values

+### assignmentScheduleRequestFilterByCurrentUserOptions values

+### eligibilityScheduleFilterByCurrentUserOptions values

+### eligibilityScheduleInstanceFilterByCurrentUserOptions values

+### eligibilityScheduleRequestFilterByCurrentUserOptions values

+### privilegedAccessGroupAssignmentType values

+### privilegedAccessGroupMemberType values

+### privilegedAccessGroupRelationships values

+### scheduleRequestActions values

+### roleAssignmentScheduleFilterByCurrentUserOptions values

+### roleAssignmentScheduleInstanceFilterByCurrentUserOptions values

+### roleAssignmentScheduleRequestFilterByCurrentUserOptions values

+### roleEligibilityScheduleFilterByCurrentUserOptions values

+### roleEligibilityScheduleInstanceFilterByCurrentUserOptions values

+### roleEligibilityScheduleRequestFilterByCurrentUserOptions values

+### unifiedRoleManagementPolicyRuleTargetOperations values

+### userSignInRecommendationScope values

+### unifiedRoleScheduleRequestActions values

+### approvalFilterByCurrentUserOptions values

+### accessReviewExpirationBehavior values

+### allowedTargetScope values

+### accessPackageAssignmentFilterByCurrentUserOptions values

+### accessPackageAssignmentRequestFilterByCurrentUserOptions values

+### accessPackageAssignmentState values

+### accessPackageCatalogState values

+### accessPackageCatalogType values

+### accessPackageExternalUserLifecycleAction values

+### accessPackageFilterByCurrentUserOptions values

+### accessPackageRequestState values

+### accessPackageRequestType values

+### accessPackageSubjectType values

+### connectedOrganizationState values

+### accessReviewInstanceDecisionItemFilterByCurrentUserOptions values

+### accessReviewStageFilterByCurrentUserOptions values

+### accessPackageCustomExtensionStage values

+### customExtensionCalloutInstanceStatus values

+### volumeType values

+### filterMode values

+### lifecycleEventType values

+### changeType values

+### countryLookupMethodType values

+### consentRequestFilterByCurrentUserOptions values

+### educationFeedbackResourceOutcomeStatus values

+### externalEmailOtpState values

+### educationAddedStudentAction values

+### educationModuleStatus values

+### fido2RestrictionEnforcementType values

+### x509CertificateAuthenticationMode values

+### x509CertificateRuleType values

+### attestationLevel values

+### authenticationMethodTargetType values

+### authenticationMethodState values

+### microsoftAuthenticatorAuthenticationMode values

+### keyStrength values

+### authenticationMethodKeyStrength values

+### allowInvitesFrom values

+### dataPolicyOperationStatus values

+### conditionalAccessDevicePlatform values

+### signinFrequencyType values

+### persistentBrowserSessionMode values

+### cloudAppSecuritySessionControlType values

+### conditionalAccessGrantControl values

+### conditionalAccessClientApp values

+### conditionalAccessPolicyState values

+### deviceProfileType values

+### appliedConditionalAccessPolicyResult values

+### groupType values

+### conditionalAccessStatus values

+### templateScenarios values

+### operationResult values

+### tone values

+### mediaState values

+### basicStatus values

+### callState values

+### callType values

+### educationAddToCalendarOptions values

+### educationSubmissionStatus values

+### onlineMeetingRole values

+### modality values

+### endpointType values

+### callDirection values

+### signInAudience values

+### groupMembershipClaims values

+### recipientScopeType values

+### activityType values

+### riskDetectionTimingType values

+### tokenIssuerType values

+### attachmentType values

+### contactRelationship values

+### scheduleEntityTheme values

+### timeOffReasonIconType values

+### windowsSettingType values

+### workforceIntegrationEncryptionProtocol values

+### workforceIntegrationSupportedEntities values

+### timeZoneStandard values

+### freeBusyStatus values

+### attendeeType values

+### externalAudienceScope values

+### automaticRepliesStatus values

+### calendarColor values

+### educationExternalSource values

+### educationGender values

+### eventType values

+### sensitivity values

+### importance values

+### educationUserRole values

+### meetingMessageType values

+### followupFlagStatus values

+### inferenceClassificationType values

+### iosNotificationAlertType values

+### deviceEnrollmentFailureReason values

+### bodyType values

+### locationType values

+### locationUniqueIdType values

+### messageActionFlag values

+### onenoteUserRole values

+### operationStatus values

+### onenotePatchActionType values

+### onenotePatchInsertPosition values

+### phoneType values

+### plannerContainerType values

+### plannerPreviewType values

+### status values

+### weekIndex values

+### dayOfWeek values

+### recurrenceRangeType values

+### onenoteSourceService values

+### responseType values

+### activityDomain values

+### websiteType values

+### categoryColor values

+### alertFeedback values

+### fileHashType values

+### connectionDirection values

+### connectionStatus values

+### processIntegrityLevel values

+### registryHive values

+### registryOperation values

+### registryValueType values

+### alertSeverity values

+### alertStatus values

+### emailRole values

+### logonType values

+### userAccountSecurityType values