ESC
Type to search...
Navigate Open ESC Close

ConfigurationMonitoring.Read.All

Export JSON
Export CSV
Copy URL
Print
ApplicationDelegated Read All Resources

Allows the app to read all Configuration Monitoring entities, without a signed-in user.

Permission data: April 6, 2026 at 4:06 AM UTC
Delegated Access App-Only Access

Permission Details

Application Permission

Read all Configuration Monitoring entities

Allows the app to read all Configuration Monitoring entities, without a signed-in user.

Permission ID: aca929ec-9830-44dc-bda1-85cf938aaa95
Delegated Permission Admin consent required

Read all Configuration Monitoring entities

Allows the app to read all Configuration Monitoring entities on behalf of the signed-in user.

User sees: Allows the app to read all Configuration Monitoring entities on your behalf.
Permission ID: c645bb69-adc4-4242-b620-02e635f03bf6

Properties

Microsoft Graph v1.0 endpoint-derived-docs

Properties is shown from stable Microsoft Graph v1.0 metadata.

Property Type Description
edge object A container for Microsoft Edge resources. Read-only.
exchange object A container for the Exchange admin functionality. Read-only.
microsoft365Apps object A container for the Microsoft 365 apps admin functionality.
people object Represents a setting to control people-related admin settings in the tenant.
reportSettings object A container for administrative resources to manage reports.
serviceAnnouncement object A container for service communications resources. Read-only.
sharepoint object
teams object A container for Teams administration functionalities, such as Teams telephone number management functionalities, user Teams configurations, and policy assignments.

JSON Representation

Microsoft Graph v1.0 endpoint-derived-docs

JSON representation is shown from stable Microsoft Graph v1.0 metadata.

JSON representation 
{
  "@odata.type": "#microsoft.graph.admin"
}

Relationships

Microsoft Graph v1.0 endpoint-derived-docs

Relationships is shown from stable Microsoft Graph v1.0 metadata.

Relationship Type Description
configurationManagement configurationManagement A container for Tenant Configuration Management (TCM) resources. Read-only.
edge edge A container for Microsoft Edge resources. Read-only.
exchange exchangeAdmin A container for the Exchange admin functionality. Read-only.
microsoft365Apps adminMicrosoft365Apps A container for the Microsoft 365 apps admin functionality.
people peopleAdminSettings Represents a setting to control people-related admin settings in the tenant.
reportSettings adminReportSettings A container for administrative resources to manage reports.
serviceAnnouncement serviceAnnouncement A container for service communications resources. Read-only.
sharepointSettings sharepointSettings A container for administrative resources to manage tenant-level settings for SharePoint and OneDrive.
teams teamsAdministration.teamsAdminRoot A container for Teams administration functionalities, such as Teams telephone number management functionalities, user Teams configurations, and policy assignments.

Graph Methods

Delegated access App-only access
Exact Microsoft Learn match

Microsoft Graph v1.0 endpoints are mapped directly from refreshed Microsoft Learn permissions tables.

Methods
GET /admin/configurationManagement/configurationDrifts
GET /admin/configurationManagement/configurationDrifts/{configurationDriftId}
GET /admin/configurationManagement/configurationMonitoringResults
GET /admin/configurationManagement/configurationMonitoringResults/{configurationMonitoringResultId}
GET /admin/configurationManagement/configurationMonitors
GET /admin/configurationManagement/configurationMonitors/{configurationMonitorId}
GET /admin/configurationManagement/configurationMonitors/{configurationMonitorId}/baseline
GET /admin/configurationManagement/configurationSnapshotJobs
GET /admin/configurationManagement/configurationSnapshotJobs/{configurationSnapshotJobId}
Exact Microsoft Learn match

Microsoft Graph beta endpoints are mapped directly from refreshed Microsoft Learn permissions tables.

Methods
GET /admin/configurationManagement/configurationDrifts
GET /admin/configurationManagement/configurationDrifts/{configurationDriftId}
GET /admin/configurationManagement/configurationMonitoringResults
GET /admin/configurationManagement/configurationMonitoringResults/{configurationMonitoringResultId}
GET /admin/configurationManagement/configurationMonitors
GET /admin/configurationManagement/configurationMonitors/{configurationMonitorId}
GET /admin/configurationManagement/configurationMonitors/{configurationMonitorId}/baseline
GET /admin/configurationManagement/configurationSnapshotJobs
GET /admin/configurationManagement/configurationSnapshotJobs/{configurationSnapshotJobId}
GET /admin/configurationManagement/configurationSnapshots
Exact Microsoft Learn PowerShell match

Microsoft Graph PowerShell v1.0 commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.

No deterministic PowerShell command map is available for this permission.

Browse PowerShell docs
Exact Microsoft Learn PowerShell match

Microsoft Graph PowerShell beta commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.

Commands
Get-MgBetaAdminConfigurationManagementConfigurationDrift /admin/configurationManagement/configurationDrifts
List configurationDrifts
Get-MgBetaAdminConfigurationManagementConfigurationDrift /admin/configurationManagement/configurationDrifts/{configurationDriftId}
Get configurationDrift
Get-MgBetaAdminConfigurationManagementConfigurationMonitor /admin/configurationManagement/configurationMonitors
List configurationMonitors
Get-MgBetaAdminConfigurationManagementConfigurationMonitor /admin/configurationManagement/configurationMonitors/{configurationMonitorId}
Get configurationMonitor
Get-MgBetaAdminConfigurationManagementConfigurationMonitorBaseline /admin/configurationManagement/configurationMonitors/{configurationMonitorId}/baseline
Get configurationBaseline
Get-MgBetaAdminConfigurationManagementConfigurationMonitoringResult /admin/configurationManagement/configurationMonitoringResults
List configurationMonitoringResults
Get-MgBetaAdminConfigurationManagementConfigurationMonitoringResult /admin/configurationManagement/configurationMonitoringResults/{configurationMonitoringResultId}
Get configurationMonitoringResult
Get-MgBetaAdminConfigurationManagementConfigurationSnapshot /admin/configurationManagement/configurationSnapshots
List configurationSnapshots
Get-MgBetaAdminConfigurationManagementConfigurationSnapshotJob /admin/configurationManagement/configurationSnapshotJobs
List configurationSnapshotJobs
Get-MgBetaAdminConfigurationManagementConfigurationSnapshotJob /admin/configurationManagement/configurationSnapshotJobs/{configurationSnapshotJobId}
Get configurationSnapshotJob

Code Examples

C# / .NET SDK
Get configurationBaseline
View official example on Microsoft Learn
// Code snippets are only available for the latest version. Current version is 5.x

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.Admin.ConfigurationManagement.ConfigurationMonitors["{configurationMonitor-id}"].Baseline.GetAsync();
JavaScript
Get configurationBaseline
View official example on Microsoft Learn
const options = {
	authProvider,
};

const client = Client.init(options);

let configurationBaseline = await client.api('/admin/configurationManagement/configurationMonitors/b86049ce-0180-404e-803a-5616d49290d7/baseline')
	.get();
PowerShell
Get configurationBaseline
View official example on Microsoft Learn
Import-Module Microsoft.Graph.Beta.ConfigurationManagement

Get-MgBetaAdminConfigurationManagementConfigurationMonitorBaseline -ConfigurationMonitorId $configurationMonitorId
Python
Get configurationBaseline
View official example on Microsoft Learn
# Code snippets are only available for the latest version. Current version is 1.x
from msgraph_beta import GraphServiceClient
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python

result = await graph_client.admin.configuration_management.configuration_monitors.by_configuration_monitor_id('configurationMonitor-id').baseline.get()

App Registration

1

Navigate to Azure Portal

Go to App registrations in Microsoft Entra admin center

2

Add API Permission

Select your app → API permissions → Add a permission → Microsoft Graph

3

Select Permission Type

Choose Application permissions or delegated permissions and search for ConfigurationMonitoring.Read.All

4

Grant Admin Consent

Application permissions always require admin consent.