Service Principal does have Application.ReadWrite.OwnedBy API permission but it can't PATCH using the AZ REST commands. It can LIST/ GET using AZ REST command. az rest --method PATCH --uri "https://graph.microsoft.com/v1.0/applications/{OBJECT_ID}" --headers 'Content-Type=application/json' --body "{web:{redirectUris:['https://URL']}}" Error: Forbidden( { "error": { "code":"Authorization_RequestDenied",…
I'm trying to understand as what can be done in order to enable cross platform communication with Microsoft Teams. I've researched but there is nothing from Microsoft that talks on this subject or even didn't find anything on Google. However,…
I have created an Azure B2C custom attribute called IsAdmin on the portal, added it to a Sign In / Sign Up user flow, and then using the Graph API, successfully created a new user with IsAdmin = true. If…
I'm trying to check that users consent to apps accessing company data on their behalf is not allowed using Powershell. Originally, this is done using MSOL-CompanyInformation with UsersPermissionToUserConsentToAppEnabled. However, as deprecation gets closer for MSOL, I can not find any…
When running the following code snippet logged in as a simple user i expose my entire organisation emails etc. I'd like to restrict what a regular user can get from the Microsoft Graph API (i.e only see the logged in…
I am trying to change M365 Group email alias [Nickname] with use of Graph API. Below HTTP call returns 204 [as expected]. Group email stays the same :? I have waited several hours. I am able to change other group…
I am trying to get all events associated with a user (in order to cancel them). Here is the API doc I am able through Powershell and Graph API to see a user, and also to sign out this user…
I want to be able to create a new user in our Azure B2C instance using their preferred email address as the username they will use when accessing our web portal. I'm using the Invitation Microsoft Graph API to invite…
I'd like to give some Graph API permission to a non-admin user Bob, so that it is able to read some data without requiring the admin consent. If I give the admin consent here every permission is given to each…
I am tasked with granting admin-consent to an Enterprise application in a long list of tenants. Currently I have automated this task with JMeter with the following steps: GET /{TenantId}/oauth2/authorize POST /{TenantId}/login (login with tenant admin account) POST /{TenantId}/Consent/Set GET…