AuthenticationContext.Read.All
Allows the app to read the authentication context information in your organization without a signed-in user.
Permission Details
Read all authentication context information
Allows the app to read the authentication context information in your organization without a signed-in user.
381f742f-e1f8-4309-b4ab-e3d91ae4c5c1
Read all authentication context information
Allows the app to read all authentication context information in your organization on behalf of the signed-in user.
57b030f1-8c35-469c-b0d9-e4a077debe70
Properties
Properties is shown from beta metadata because a stable v1.0 schema is not available for this resource mapping.
| Property | Type | Description |
|---|---|---|
detail |
authenticationContextDetail |
Describes how the conditional access authentication context was triggered. A value of previouslySatisfied means the auth context was because the user already satisfied the requirements for that authentication context in some previous authentication event. A value of required means the user had to meet the authentication context requirement as part of the sign-in flow. The possible values are: required, previouslySatisfied, notApplicable, unknownFutureValue. |
id |
StringNullable |
The identifier of an authentication context in your tenant. |
JSON Representation
JSON representation is shown from beta metadata because a stable v1.0 schema is not available for this resource mapping.
{
"@odata.type": "#microsoft.graph.authenticationContext",
"id": "String (identifier)",
"detail": "String"
}Relationships
Relationships metadata is not available for this permission mapping.
View resource documentationGraph Methods
Microsoft Graph v1.0 endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
| Methods |
|---|
GET
/identity/conditionalAccess/authenticationContextClassReferences
|
GET
/identity/conditionalAccess/authenticationContextClassReferences/{id}
|
Microsoft Graph beta endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
| Methods |
|---|
GET
/identity/conditionalAccess/authenticationContextClassReferences
|
GET
/identity/conditionalAccess/authenticationContextClassReferences/{id}
|
Microsoft Graph PowerShell v1.0 commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Microsoft Graph PowerShell beta commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Code Examples
// Code snippets are only available for the latest version. Current version is 5.x
// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.Identity.ConditionalAccess.AuthenticationContextClassReferences["{authenticationContextClassReference-id}"].GetAsync();const options = {
authProvider,
};
const client = Client.init(options);
let authenticationContextClassReference = await client.api('/identity/conditionalAccess/authenticationContextClassReferences/c1')
.get();Import-Module Microsoft.Graph.Identity.SignIns
Get-MgIdentityConditionalAccessAuthenticationContextClassReference -AuthenticationContextClassReferenceId $authenticationContextClassReferenceId# Code snippets are only available for the latest version. Current version is 1.x
from msgraph import GraphServiceClient
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
result = await graph_client.identity.conditional_access.authentication_context_class_references.by_authentication_context_class_reference_id('authenticationContextClassReference-id').get()App Registration
Navigate to Azure Portal
Go to App registrations in Microsoft Entra admin center
Add API Permission
Select your app → API permissions → Add a permission → Microsoft Graph
Select Permission Type
Choose Application permissions or delegated permissions and search for AuthenticationContext.Read.All
Grant Admin Consent
Application permissions always require admin consent.